r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3212
Expires: Thu, 02 Feb 2023 10:34:54 GMT
Date: Thu, 02 Feb 2023 09:41:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3861
Expires: Thu, 02 Feb 2023 10:45:43 GMT
Date: Thu, 02 Feb 2023 09:41:22 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 08:43:29 GMT
content-type: application/json
age: 3473
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8805
Expires: Thu, 02 Feb 2023 12:08:07 GMT
Date: Thu, 02 Feb 2023 09:41:22 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 4cc6QmkHRW/WBR1UXoOslRrtDFFBSWHQLNFQdykZMLWXPQInlpCSIksafLPLBlBC3bAJklizH8c=
x-amz-request-id: TVRZ4VWNPGFX9CR0
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 09:23:02 GMT
age: 1100
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 09:41:22 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 08:41:43 GMT
age: 3579
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
mojeauxband.com/
69.16.252.49301 Moved Permanently 20 B IP 69.16.252.49:0
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 02 Feb 2023 09:41:21 GMT
Server: Apache
X-Redirect-By: WordPress
Content-Encoding: gzip
Vary: Accept-Encoding
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://mojeauxband.com/
Keep-Alive: timeout=2, max=500
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3085
Expires: Thu, 02 Feb 2023 10:32:47 GMT
Date: Thu, 02 Feb 2023 09:41:22 GMT
Connection: keep-alive
push.services.mozilla.com/
34.208.31.97101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.208.31.97:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: OmCu7rSnoPFBtFcg0eRjIA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: kCObn8vie87Rlv9XTLgfBP4QEWQ=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:41:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mojeauxband.com/wp-includes/css/classic-themes.min.css?ver=1
69.16.252.49200 OK 217 B URL HTTP/2 mojeauxband.com/wp-includes/css/classic-themes.min.css?ver=1
IP 69.16.252.49:0
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 03:24:13 GMT
accept-ranges: bytes
content-length: 217
content-type: text/css
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/js?key=AIzaSyCZH5ez4xWMb3-zsicJonvuMosYPPwGNs4&ver=1.0
142.250.74.138200 OK 53 kB URL HTTP/2 maps.googleapis.com/maps/api/js?key=AIzaSyCZH5ez4xWMb3-zsicJonvuMosYPPwGNs4&ver=1.0
IP 142.250.74.138:0
File type ASCII text, with very long lines (2453)
Hash f4d3ca84997de9e7ad9b0430a58987d7
f53c51c7311a7664de569315ac0f3c23f2d7b6fe
7c2cd1e38b4571555053d2051cbdbebb17fadf9e23f281900a09f83f0f8f70e4
GET /maps/api/js?key=AIzaSyCZH5ez4xWMb3-zsicJonvuMosYPPwGNs4&ver=1.0 HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Thu, 02 Feb 2023 09:41:24 GMT
expires: Thu, 02 Feb 2023 10:11:24 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 53189
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=26
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:41:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0b82319850767880061df0d702840c0a
673944a4ac5ad56f053b91e82c05aaf8ccf86316
a970de3f7ba23c83591f6af5cde78e2ef9da52fcd3fb84aed2c43955bb57f8a1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6106
Cache-Control: max-age=128262
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:41:24 GMT
Etag: "63dabf70-1d7"
Expires: Fri, 03 Feb 2023 21:19:06 GMT
Last-Modified: Wed, 01 Feb 2023 19:37:20 GMT
Server: ECS (amb/6BA4)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:41:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3115
Expires: Thu, 02 Feb 2023 10:33:19 GMT
Date: Thu, 02 Feb 2023 09:41:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3115
Expires: Thu, 02 Feb 2023 10:33:19 GMT
Date: Thu, 02 Feb 2023 09:41:24 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4f8260f-0039-4dd4-be49-93afef573ecb.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4f8260f-0039-4dd4-be49-93afef573ecb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3c56d08c13f357f91a14309b48d75e88
739ff0319e25b99fbf69b6a1c12159d4dda7549b
7f2a2004b2b587a18e99bae5ef216de0a0a12f4ab8e7c817df8eb8aa41f4be73
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4f8260f-0039-4dd4-be49-93afef573ecb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5011
x-amzn-requestid: 0760d4c6-1e6b-4e68-8c90-37229f8110e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5JE0AIAMFn8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6d-43fb25a727dd969b6219bd6f;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zQlfIcpWrJw9N6I7WNmV5feaR9QNy3FUSCOJQeyAnYS0oEH12dtzqg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:59:35 GMT
age: 42109
etag: "739ff0319e25b99fbf69b6a1c12159d4dda7549b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 91987222-d376-4099-a4e9-5f877b5212be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fLzO2FSDIAMFktg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ce325e-281a7e062ee3039d42ae8f83;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 07:08:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: SEH32iK4aCkxhxQyu3fSlW8uVM1Oj5hwnl2U09k_THEOdAqdEeVMJw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:03:43 GMT
age: 41861
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23ac16a6-b0c6-4c81-9bd1-78ee332bf49a.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23ac16a6-b0c6-4c81-9bd1-78ee332bf49a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0ceb09fa3caa0fcda4a6314141e2d019
d08f43956f6859e4c2385231bb5506262257445f
a2100701c69f86920b14714b19ec14db9ebfd91000f0ec2397b8f27d981bc1ee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23ac16a6-b0c6-4c81-9bd1-78ee332bf49a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14593
x-amzn-requestid: 796fc590-5a08-4765-b861-e5f707e4d7f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdLoFHQoAMFaAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadbe3-3f93635c337e77e453bba394;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:38:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: gYo5IyA5mM2B5nw6O2QkkZ6-go2CzG8Nwb_pWSixGplAl7LsbmWUiQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:55:43 GMT
age: 42341
etag: "d08f43956f6859e4c2385231bb5506262257445f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F601fd155-b928-42c6-bfb0-f3599f52fdf5.jpeg
34.120.237.76200 OK 2.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F601fd155-b928-42c6-bfb0-f3599f52fdf5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5a1ddd54f3c344b36a26476a33ccfe20
3cc3a77f6a59cafed25fa0882e13644f4eebef50
65cef0476175fca421fef73419440b82dcb763879b79385f2cacc43f42b3237b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F601fd155-b928-42c6-bfb0-f3599f52fdf5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2530
x-amzn-requestid: 3ce99c09-61b5-4a51-97ec-c40c443238ab
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: freplHVZoAMFz5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dade3d-605687635e0a740e49ff78b9;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:48:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Hs72kBEkTiVNiWczvw7UONt_cbyvWuU_erpoJHQS8z1s1M601xIdug==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:57:28 GMT
age: 42236
etag: "3cc3a77f6a59cafed25fa0882e13644f4eebef50"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash df4a4906103a8f409c066b1cded71384
22847e3926db3e3d5f6b529297a4abe8b377c3a6
84a14b73b2cc7f4641eaa5539cbee0a109ae2b05cf88d06797a2b00c8d4f0c43
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9221
x-amzn-requestid: 209c2ad4-7a1f-4867-bf98-4ca8621111a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdTBFv5IAMFgqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc13-1627a9d603c69f7760ad013b;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kAkcQOKAvuq3k-X081MLCqon-cnQJqGryVeE0fwX0a7bcXgJlySIvg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:21:38 GMT
age: 40786
etag: "22847e3926db3e3d5f6b529297a4abe8b377c3a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb20c182-a39b-4222-8a27-155f67b554ab.webp
34.120.237.76200 OK 3.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb20c182-a39b-4222-8a27-155f67b554ab.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4c0980cc80018f2218e1a5a7336a4bcc
461e33619154423dbbf49407a80b70ade9078593
4375676d6ce36b3ec3923eefe2007bb96d96135dae10103a886c24fc9063fce9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb20c182-a39b-4222-8a27-155f67b554ab.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3541
x-amzn-requestid: f65e4be6-20ff-4f14-a722-d6c2c4631a5f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5YHQqoAMFeBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6f-5f9183ed1c2cb640249c2b09;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 5wf_aWTm28747VwFTo8NM2HOVsMWtMBYIAY9502vCrH7GcOmKb0zsg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:57:51 GMT
age: 42213
etag: "461e33619154423dbbf49407a80b70ade9078593"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mojeauxband.com/wp-includes/css/dist/block-library/style.min.css?ver=3377ee0a8df6c7ed5a8931d2db240918
69.16.252.49200 OK 95 kB URL HTTP/2 mojeauxband.com/wp-includes/css/dist/block-library/style.min.css?ver=3377ee0a8df6c7ed5a8931d2db240918
IP 69.16.252.49:0
File type ASCII text, with very long lines (47826)
Hash 71d925864153f0edf91037f3d31048e8
cc16a0524ac63b5ce29f703a66412224f0dd771a
c324ef26b20264369e4568dc9ef1c5cb1f325f6bc4e8b7c01f7fe93fa353276a
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=3377ee0a8df6c7ed5a8931d2db240918 HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 15 Nov 2022 22:55:42 GMT
accept-ranges: bytes
content-length: 94889
content-type: text/css
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/plugins/foobox-image-lightbox/free/css/foobox.free.min.css?ver=2.7.17
69.16.252.49200 OK 30 kB URL HTTP/2 mojeauxband.com/wp-content/plugins/foobox-image-lightbox/free/css/foobox.free.min.css?ver=2.7.17
IP 69.16.252.49:0
File type ASCII text, with very long lines (29458), with no line terminators
Hash ca3bb6965cd59c073b39f7a283c83f1a
f22c796f3fbb6e8f2df994273a484b02e0f0aecc
1f592c1248f3224a2adddaa84e9ec8c8e7ed7a7bcf0913e658534eeb1dd5fe00
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/foobox-image-lightbox/free/css/foobox.free.min.css?ver=2.7.17 HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 01 Mar 2022 16:59:11 GMT
accept-ranges: bytes
content-length: 29458
content-type: text/css
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/plugins/foogallery/extensions/default-templates/shared/css/foogallery.min.css?ver=2.2.26
69.16.252.49200 OK 102 kB URL HTTP/2 mojeauxband.com/wp-content/plugins/foogallery/extensions/default-templates/shared/css/foogallery.min.css?ver=2.2.26
IP 69.16.252.49:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 102 kB (102452 bytes)
Hash 274e892374d457285d33fadfafc3679e
de165d59861e034ff5e92eda2af2460854885bc9
6f84159038fb53f2c20be3a6001db3ac65eafd39cac9e03f1ce34aab907751f0
GET /wp-content/plugins/foogallery/extensions/default-templates/shared/css/foogallery.min.css?ver=2.2.26 HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 03:30:30 GMT
accept-ranges: bytes
content-length: 102452
content-type: text/css
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/themes/pro-child/style.css?ver=6.0.7
69.16.252.49200 OK 225 B URL HTTP/2 mojeauxband.com/wp-content/themes/pro-child/style.css?ver=6.0.7
IP 69.16.252.49:0
Hash 4d65a37076c88012ffc0519e69ab94e8
a236270e55daea789bbae2d60608d40099481161
7aff31e05c0e99e06419048606a455ea0b8adc6435682ecdfa13a61b1c853328
GET /wp-content/themes/pro-child/style.css?ver=6.0.7 HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Jun 2021 21:56:54 GMT
accept-ranges: bytes
content-length: 225
content-type: text/css
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
69.16.252.49200 OK 11 kB URL HTTP/2 mojeauxband.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 69.16.252.49:0
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 09 Dec 2020 16:32:50 GMT
accept-ranges: bytes
content-length: 11224
content-type: application/javascript
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/plugins/ultimate-social-media-icons/js/shuffle/modernizr.custom.min.js?ver=3377ee0a8df6c7ed5a8931d2db240918
69.16.252.49200 OK 3.1 kB URL HTTP/2 mojeauxband.com/wp-content/plugins/ultimate-social-media-icons/js/shuffle/modernizr.custom.min.js?ver=3377ee0a8df6c7ed5a8931d2db240918
IP 69.16.252.49:0
File type HTML document, ASCII text, with very long lines (2861), with CRLF, CR line terminators
Hash 0bd6cb4fbf6f16f1fc46934cd8515f3c
37360c9391c47e9d7b0460bf1fdfc8c380404c4f
29c7ceffe2b367039ee6eb32a7334e2a9131654cdbdaf57a5431d909f69d1cab
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-social-media-icons/js/shuffle/modernizr.custom.min.js?ver=3377ee0a8df6c7ed5a8931d2db240918 HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 26 Nov 2022 23:11:30 GMT
accept-ranges: bytes
content-length: 3089
content-type: application/javascript
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-includes/js/comment-reply.min.js?ver=3377ee0a8df6c7ed5a8931d2db240918
69.16.252.49200 OK 3.0 kB URL HTTP/2 mojeauxband.com/wp-includes/js/comment-reply.min.js?ver=3377ee0a8df6c7ed5a8931d2db240918
IP 69.16.252.49:0
File type ASCII text, with very long lines (2946)
Hash 492f2c1a7ea7eb83fe42e0ff7cb51aa2
db36a77f6aaa2063bfbec02c2c0e967438c5a245
e174a58a503ab84b3d1b9de12fd3895788204485170f1289e445f7b5b98ec789
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/comment-reply.min.js?ver=3377ee0a8df6c7ed5a8931d2db240918 HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 25 May 2022 16:13:42 GMT
accept-ranges: bytes
content-length: 2981
content-type: application/javascript
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/plugins/eventON/assets/css/eventon_dynamic_styles.css?ver=4.1.3
69.16.252.49200 OK 16 kB URL HTTP/2 mojeauxband.com/wp-content/plugins/eventON/assets/css/eventon_dynamic_styles.css?ver=4.1.3
IP 69.16.252.49:0
File type assembler source, ASCII text, with very long lines (2170), with CRLF line terminators
Hash e57af902c2db4c2891ca656e7c590cc5
3173e3a2cd208878ca1650b4f5dd93075ce96d57
65c24beebab96d7a5a0072c26321faafd2cd57ed0e8c437913c0ee5f9e3da36a
GET /wp-content/plugins/eventON/assets/css/eventon_dynamic_styles.css?ver=4.1.3 HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 30 Sep 2022 11:43:29 GMT
accept-ranges: bytes
content-length: 16047
content-type: text/css
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-includes/js/wp-emoji-release.min.js?ver=3377ee0a8df6c7ed5a8931d2db240918
69.16.252.49200 OK 19 kB URL HTTP/2 mojeauxband.com/wp-includes/js/wp-emoji-release.min.js?ver=3377ee0a8df6c7ed5a8931d2db240918
IP 69.16.252.49:0
File type ASCII text, with very long lines (15660)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=3377ee0a8df6c7ed5a8931d2db240918 HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 25 May 2022 16:13:42 GMT
accept-ranges: bytes
content-length: 18617
content-type: application/javascript
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/plugins/ultimate-social-media-icons/js/custom.js?ver=2.8.0
69.16.252.49200 OK 31 kB URL HTTP/2 mojeauxband.com/wp-content/plugins/ultimate-social-media-icons/js/custom.js?ver=2.8.0
IP 69.16.252.49:0
File type Unicode text, UTF-8 text, with very long lines (827), with CRLF line terminators
Hash a4a0130e77dc9af40b86dd8055c8c906
28cfdaac2a63dc1494c919cdabd38a27c6208250
292a385750a4d456653c3b8c294a757ddfbe26d6d7c2901c69568742dccf610c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-social-media-icons/js/custom.js?ver=2.8.0 HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 26 Nov 2022 23:11:30 GMT
accept-ranges: bytes
content-length: 30710
content-type: application/javascript
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/plugins/eventON/assets/js/maps/eventon_gen_maps.js?ver=4.1.3
69.16.252.49200 OK 6.1 kB URL HTTP/2 mojeauxband.com/wp-content/plugins/eventON/assets/js/maps/eventon_gen_maps.js?ver=4.1.3
IP 69.16.252.49:0
File type ASCII text, with CRLF line terminators
Hash d21994b2b87caa9bcec8391347af1b5b
f9d8406bb564b514f39404304640f378dfb57f70
db21b8abf0ff2b757ae2dcc56f45442f6a86622cfb6113706d7bc2f241543caf
GET /wp-content/plugins/eventON/assets/js/maps/eventon_gen_maps.js?ver=4.1.3 HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 30 Sep 2022 11:43:29 GMT
accept-ranges: bytes
content-length: 6060
content-type: application/javascript
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/plugins/eventON/assets/js/lib/jquery.easing.1.3.js?ver=1.0
69.16.252.49200 OK 8.1 kB URL HTTP/2 mojeauxband.com/wp-content/plugins/eventON/assets/js/lib/jquery.easing.1.3.js?ver=1.0
IP 69.16.252.49:0
Hash 6516449ed5089677ed3d7e2f11fc8942
82e40d060bc269a6dde20c3990ca5a4fea6ca754
0757f7ff6e5f6a581922a5e2d42c5e0cf7475d880885a9802e8bdd5e4188dd34
GET /wp-content/plugins/eventON/assets/js/lib/jquery.easing.1.3.js?ver=1.0 HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 30 Sep 2022 11:43:29 GMT
accept-ranges: bytes
content-length: 8097
content-type: application/javascript
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/plugins/eventON/assets/js/lib/jquery.mobile.min.js?ver=4.1.3
69.16.252.49200 OK 14 kB URL HTTP/2 mojeauxband.com/wp-content/plugins/eventON/assets/js/lib/jquery.mobile.min.js?ver=4.1.3
IP 69.16.252.49:0
File type ASCII text, with very long lines (13638), with CRLF line terminators
Hash 27f47235a140ce7456d97b5ff8557d20
d3f917c4a70ae3cd3e441bb2b10b8de4a1c378fe
f85fb393b0934a0f339cb2b0c253c86e4f6c0eca7040263c41a834833846bd17
GET /wp-content/plugins/eventON/assets/js/lib/jquery.mobile.min.js?ver=4.1.3 HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 30 Sep 2022 11:43:29 GMT
accept-ranges: bytes
content-length: 13641
content-type: application/javascript
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/plugins/wonderplugin-gridgallery/engine/wonderplugingridgalleryengine.css?ver=17.6.1PRO
69.16.252.49200 OK 20 kB URL HTTP/2 mojeauxband.com/wp-content/plugins/wonderplugin-gridgallery/engine/wonderplugingridgalleryengine.css?ver=17.6.1PRO
IP 69.16.252.49:0
Hash e7b0c1b835f039f122f77bb91e35d135
3c190fbb3d029dd8804df15c687ee47b33b20bfb
17129a6bbf5b5110a2e87f4f3756ede125e7c17882ce674bde72e778f35e65de
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wonderplugin-gridgallery/engine/wonderplugingridgalleryengine.css?ver=17.6.1PRO HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 25 Oct 2022 12:47:12 GMT
accept-ranges: bytes
content-length: 19713
content-type: text/css
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/plugins/eventON/assets/js/lib/jquery.mousewheel.min.js?ver=4.1.3
69.16.252.49200 OK 1.4 kB URL HTTP/2 mojeauxband.com/wp-content/plugins/eventON/assets/js/lib/jquery.mousewheel.min.js?ver=4.1.3
IP 69.16.252.49:0
File type ASCII text, with very long lines (1020)
Hash 25db04e9daee1c00f6ca337537c32c01
cc1d92c5536c9b2dd766b6eddc0c8ba8cf831438
c8104390115f92b27003b1e4e503ef59343ccfef4ac19751093544e8cfaeae26
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/eventON/assets/js/lib/jquery.mousewheel.min.js?ver=4.1.3 HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 30 Sep 2022 11:43:29 GMT
accept-ranges: bytes
content-length: 1392
content-type: application/javascript
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/plugins/ultimate-social-media-icons/js/shuffle/jquery.shuffle.min.js?ver=3377ee0a8df6c7ed5a8931d2db240918
69.16.252.49200 OK 12 kB URL HTTP/2 mojeauxband.com/wp-content/plugins/ultimate-social-media-icons/js/shuffle/jquery.shuffle.min.js?ver=3377ee0a8df6c7ed5a8931d2db240918
IP 69.16.252.49:0
File type ASCII text, with very long lines (11484), with no line terminators
Hash 2b01351f36285d266938cfb15ae487a4
643579a331557dedc16ed0bceb1c7780368b9a52
4c5e10b3496ff844faf3e2d032e243d4a366a5cbc95ad7bef5dd924322e31b3a
GET /wp-content/plugins/ultimate-social-media-icons/js/shuffle/jquery.shuffle.min.js?ver=3377ee0a8df6c7ed5a8931d2db240918 HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 26 Nov 2022 23:11:30 GMT
accept-ranges: bytes
content-length: 11484
content-type: application/javascript
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/plugins/ultimate-social-media-icons/js/shuffle/random-shuffle-min.js?ver=3377ee0a8df6c7ed5a8931d2db240918
69.16.252.49200 OK 1.5 kB URL HTTP/2 mojeauxband.com/wp-content/plugins/ultimate-social-media-icons/js/shuffle/random-shuffle-min.js?ver=3377ee0a8df6c7ed5a8931d2db240918
IP 69.16.252.49:0
File type ASCII text, with very long lines (1472), with no line terminators
Hash 9205d1691f1303227809875d3a6ee811
71094c5c5a6f50bc3d94cf9f99f768708a437e6d
8577be08e13d868781746fd18e27a2d95ee4658c33221ec7659ece82d4d31463
GET /wp-content/plugins/ultimate-social-media-icons/js/shuffle/random-shuffle-min.js?ver=3377ee0a8df6c7ed5a8931d2db240918 HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 26 Nov 2022 23:11:30 GMT
accept-ranges: bytes
content-length: 1472
content-type: application/javascript
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/plugins/ultimate-social-media-icons/images/icons_theme/default/default_twitter.png
69.16.252.49200 OK 1.5 kB URL HTTP/2 mojeauxband.com/wp-content/plugins/ultimate-social-media-icons/images/icons_theme/default/default_twitter.png
IP 69.16.252.49:0
File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Hash b4699c9022529206d2a3f5674a8c6f7d
9949e3326520912ca0d7bd6582b1d655d98bb1fd
6b598958eccff91e50b3f1d35a8193f70e72c2b327abb8fc46b17c46c483cce9
GET /wp-content/plugins/ultimate-social-media-icons/images/icons_theme/default/default_twitter.png HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 26 Nov 2022 23:11:30 GMT
accept-ranges: bytes
content-length: 1529
content-type: image/png
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/plugins/eventON/assets/js/eventon_functions.js?ver=4.1.3
69.16.252.49200 OK 17 kB URL HTTP/2 mojeauxband.com/wp-content/plugins/eventON/assets/js/eventon_functions.js?ver=4.1.3
IP 69.16.252.49:0
File type ASCII text, with CRLF line terminators
Hash 6f681f0ebf3271812a7b86fb9a8f9d28
f66e39382f0a6e72cef8975d5886bac6f86e9d33
427430edc004962e99f8cf856e8c4d4b3a17f40aed35764ece7384edc9c47b2f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/eventON/assets/js/eventon_functions.js?ver=4.1.3 HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 30 Sep 2022 11:43:29 GMT
accept-ranges: bytes
content-length: 17445
content-type: application/javascript
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
69.16.252.49200 OK 21 kB URL HTTP/2 mojeauxband.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 69.16.252.49:0
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 034bd11ecaf6fb9240d905245e42e202
ff136c394ed95badfc0107fb98a890dcff642828
ca7154cdda62b535ceaba9ad2a2b2217ff49de94c069a2c4e89733f3f06b3651
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 03:24:13 GMT
accept-ranges: bytes
content-length: 21440
content-type: application/javascript
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/plugins/ultimate-social-media-icons/images/visit_icons/Visit_us_twitter/icon_Visit_us_en_US.png
69.16.252.49200 OK 850 B URL HTTP/2 mojeauxband.com/wp-content/plugins/ultimate-social-media-icons/images/visit_icons/Visit_us_twitter/icon_Visit_us_en_US.png
IP 69.16.252.49:0
File type PNG image data, 93 x 23, 8-bit colormap, non-interlaced\012- data
Hash 555963a93656dd1cdf2336a00eb8e3e2
352daf76c76654378f648b825e8893ca6b8c4f8c
298b9bc41c30aaea7fc89c925be64addb7c0a1df0d29cfde93ed4d38cc425131
GET /wp-content/plugins/ultimate-social-media-icons/images/visit_icons/Visit_us_twitter/icon_Visit_us_en_US.png HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 26 Nov 2022 23:11:30 GMT
accept-ranges: bytes
content-length: 850
content-type: image/png
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/plugins/ultimate-social-media-icons/css/sfsi-style.css?ver=2.8.0
69.16.252.49200 OK 77 kB URL HTTP/2 mojeauxband.com/wp-content/plugins/ultimate-social-media-icons/css/sfsi-style.css?ver=2.8.0
IP 69.16.252.49:0
Hash 00ba7033adca8a381909900df7e33ecf
b42ac18b1be1ef3d52ee4cf3c58c2722d672ce42
d6b904e9caf0b4757b23042e80cf4f330078d6b1c66c3e81632bd351636d78c1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-social-media-icons/css/sfsi-style.css?ver=2.8.0 HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 26 Nov 2022 23:11:30 GMT
accept-ranges: bytes
content-length: 77436
content-type: text/css
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/plugins/ultimate-social-media-icons/images/share_icons/Twitter_Follow/en_US_Follow.svg
69.16.252.49200 OK 3.6 kB URL HTTP/2 mojeauxband.com/wp-content/plugins/ultimate-social-media-icons/images/share_icons/Twitter_Follow/en_US_Follow.svg
IP 69.16.252.49:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1560)
Hash 1b7653eebb962590b926a8f956181c83
2ef830c247c856cfa1fd125fcb4b7ec48856b21f
2f2d076b1be94cb82395984b41c8aa6e0ad8f0a2b40a5fa2c4585ed98b2b868c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-social-media-icons/images/share_icons/Twitter_Follow/en_US_Follow.svg HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 26 Nov 2022 23:11:30 GMT
accept-ranges: bytes
content-length: 3554
content-type: image/svg+xml
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/plugins/eventON/assets/fonts/all.css?ver=4.1.3
69.16.252.49200 OK 73 kB URL HTTP/2 mojeauxband.com/wp-content/plugins/eventON/assets/fonts/all.css?ver=4.1.3
IP 69.16.252.49:0
Hash bfba2a5bb3d9dee853e54819f5a41181
968c6a7bb854b3319344738cd48777212ced58e5
c0b772ed22cac8346c1245e5985c754a59afaacaf7874ffaec8be4a795ebf0de
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/eventON/assets/fonts/all.css?ver=4.1.3 HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 30 Sep 2022 11:43:29 GMT
accept-ranges: bytes
content-length: 73321
content-type: text/css
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/plugins/eventON/assets/js/lib/moment.min.js?ver=4.1.3
69.16.252.49200 OK 58 kB URL HTTP/2 mojeauxband.com/wp-content/plugins/eventON/assets/js/lib/moment.min.js?ver=4.1.3
IP 69.16.252.49:0
File type ASCII text, with very long lines (58064)
Hash 6c0a2330b0d8d6ea185d4669a0eddeab
d4f50308961144876b2b5fa57684b737694a4b04
f343aa319a17a3fc372ee6ad5af482b9bf6a298cb22652b4aa7502604821071f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/eventON/assets/js/lib/moment.min.js?ver=4.1.3 HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 30 Sep 2022 11:43:29 GMT
accept-ranges: bytes
content-length: 58103
content-type: application/javascript
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/themes/pro/framework/dist/js/site/x.js?ver=6.0.7
69.16.252.49200 OK 57 kB URL HTTP/2 mojeauxband.com/wp-content/themes/pro/framework/dist/js/site/x.js?ver=6.0.7
IP 69.16.252.49:0
File type ASCII text, with very long lines (56606)
Hash 582d81233e824310650bc1d11be2d200
efddab0d76095a08d1744d7bbc6cfc940e909bdd
124b9ef65b8d462bcaa0a3439a50a52ea70fc6feda55c0e1d7b932d63539973b
GET /wp-content/themes/pro/framework/dist/js/site/x.js?ver=6.0.7 HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 30 Jan 2023 21:19:23 GMT
accept-ranges: bytes
content-length: 56607
content-type: application/javascript
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/plugins/eventON/assets/css/eventon_styles.css?ver=4.1.3
69.16.252.49200 OK 142 kB URL HTTP/2 mojeauxband.com/wp-content/plugins/eventON/assets/css/eventon_styles.css?ver=4.1.3
IP 69.16.252.49:0
File type assembler source, ASCII text, with CRLF line terminators
Size 142 kB (141867 bytes)
Hash f76bb5e8c5e43388edf94f2eacfd7269
6eae53ec47f97921cc30322bf926a3153db6f418
58b5eea2e6b51832cc9f7b9d5a185ddd29377c8c8fb31262cd9b95674852b85d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/eventON/assets/css/eventon_styles.css?ver=4.1.3 HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 30 Sep 2022 11:43:29 GMT
accept-ranges: bytes
content-length: 141867
content-type: text/css
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/
69.16.252.49200 OK 107 kB IP 69.16.252.49:0
Size 107 kB (106965 bytes)
Hash 35b4b71b3cc63e67dfec11d39b6370a2
e42eed913029e469438a71d13c24bef76dd60e00
ad19a4b8cfab1ce125afbaca99c1b04992d65c357d5fcfbebc36dff6a527db08
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
link: <https://mojeauxband.com/wp-json/>; rel="https://api.w.org/", <https://mojeauxband.com/wp-json/wp/v2/pages/6>; rel="alternate"; type="application/json", <https://mojeauxband.com/>; rel=shortlink
content-encoding: gzip
vary: Accept-Encoding
content-type: text/html; charset=UTF-8
date: Thu, 02 Feb 2023 09:41:22 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/plugins/eventON/assets/js/eventon_script.js?ver=4.1.3
69.16.252.49200 OK 77 kB URL HTTP/2 mojeauxband.com/wp-content/plugins/eventON/assets/js/eventon_script.js?ver=4.1.3
IP 69.16.252.49:0
File type ASCII text, with very long lines (394), with CRLF line terminators
Hash d27934916efb8132f6a50909d98cc5ee
3dbf6eefefd76567314bd22d1ee418821238c7ef
ceea2addb4179b757df5b7beff361f04196ef4536ed4a2265a422890c9982b13
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/eventON/assets/js/eventon_script.js?ver=4.1.3 HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 30 Sep 2022 11:43:29 GMT
accept-ranges: bytes
content-length: 76645
content-type: application/javascript
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/plugins/foobox-image-lightbox/free/js/foobox.free.min.js?ver=2.7.17
69.16.252.49200 OK 100 kB URL HTTP/2 mojeauxband.com/wp-content/plugins/foobox-image-lightbox/free/js/foobox.free.min.js?ver=2.7.17
IP 69.16.252.49:0
File type ASCII text, with very long lines (44313)
Size 100 kB (100356 bytes)
Hash f83d9c8635a1885c87aa4480d722021b
f4c736e20f6feefc7c279c12e729bfb193da849d
8ca8a4feeb61ae9e7c5b6dc7a7918cf9c214c601be52f73231bb20cec8861c00
GET /wp-content/plugins/foobox-image-lightbox/free/js/foobox.free.min.js?ver=2.7.17 HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 01 Mar 2022 16:59:11 GMT
accept-ranges: bytes
content-length: 100356
content-type: application/javascript
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/plugins/foogallery/extensions/default-templates/shared/js/foogallery.min.js?ver=2.2.26
69.16.252.49200 OK 126 kB URL HTTP/2 mojeauxband.com/wp-content/plugins/foogallery/extensions/default-templates/shared/js/foogallery.min.js?ver=2.2.26
IP 69.16.252.49:0
File type ASCII text, with very long lines (65292), with CRLF line terminators
Size 126 kB (126126 bytes)
Hash 6cb742c1a52ecadd2ee7024b7508100e
dc28523ac0a7c5f8fff80a965a58ca157b848fb8
df115f537f8fc207832efac8f0b98b555d42aedaaaa053e9bbf8212e4acee79e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/foogallery/extensions/default-templates/shared/js/foogallery.min.js?ver=2.2.26 HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 03:30:30 GMT
accept-ranges: bytes
content-length: 126126
content-type: application/javascript
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/plugins/ultimate-social-media-icons/images/icons_theme/default/default_instagram.png
69.16.252.49200 OK 9.1 kB URL HTTP/2 mojeauxband.com/wp-content/plugins/ultimate-social-media-icons/images/icons_theme/default/default_instagram.png
IP 69.16.252.49:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash beba7b387f04613cb0877eb9ce7c9441
133889f27b630134dac00ef42030c89f0b6e6dcd
84b9e1a326d4700c07ace98644a2a0c39d2216ba280ba82a9e6ba37c2cf230cc
GET /wp-content/plugins/ultimate-social-media-icons/images/icons_theme/default/default_instagram.png HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 26 Nov 2022 23:11:30 GMT
accept-ranges: bytes
content-length: 9059
content-type: image/png
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/plugins/wonderplugin-lightbox/engine/wonderpluginlightbox.js?ver=9.8.1PRO
69.16.252.49200 OK 127 kB URL HTTP/2 mojeauxband.com/wp-content/plugins/wonderplugin-lightbox/engine/wonderpluginlightbox.js?ver=9.8.1PRO
IP 69.16.252.49:0
File type ASCII text, with very long lines (926)
Size 127 kB (126901 bytes)
Hash ed123844b3dc47243a4c9306da3a5f69
f2d2d47f7b2699a93ba5ccec0fb60ea46bb157a0
b6c85c5ec70176b1532f1aba4eb0c1841ef74e16271ffc35130bd6b41d838234
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wonderplugin-lightbox/engine/wonderpluginlightbox.js?ver=9.8.1PRO HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 26 Oct 2022 11:23:58 GMT
accept-ranges: bytes
content-length: 126901
content-type: application/javascript
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/themes/pro/framework/dist/css/site/stacks/integrity-dark.css?ver=6.0.7
69.16.252.49200 OK 236 kB URL HTTP/2 mojeauxband.com/wp-content/themes/pro/framework/dist/css/site/stacks/integrity-dark.css?ver=6.0.7
IP 69.16.252.49:0
Size 236 kB (235743 bytes)
Hash bd7e52cbea862dd743d952b35e411d1c
61526c29a2374c94edbcfd0c8c77bef507e5b963
d2db6e6eeebc6de1415a72f509d57f469780cde3093eebfc6f827db678349ff1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/pro/framework/dist/css/site/stacks/integrity-dark.css?ver=6.0.7 HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 30 Jan 2023 21:19:23 GMT
accept-ranges: bytes
content-length: 235743
content-type: text/css
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/plugins/ultimate-social-media-icons/images/icons_theme/default/default_facebook.png
69.16.252.49200 OK 1.4 kB URL HTTP/2 mojeauxband.com/wp-content/plugins/ultimate-social-media-icons/images/icons_theme/default/default_facebook.png
IP 69.16.252.49:0
File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Hash fd252856427200b657dbc55dddbd1217
af4029bf1ab66c8211b37fe27f7e0e3bfa588f41
0dce5940cfbb1995ffa0933df7bdd96af2b9bfff5f4ae12dc1641ad0ce920019
GET /wp-content/plugins/ultimate-social-media-icons/images/icons_theme/default/default_facebook.png HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 26 Nov 2022 23:11:30 GMT
accept-ranges: bytes
content-length: 1357
content-type: image/png
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/uploads/2017/03/mojeaux_logo_sm.png
69.16.252.49200 OK 29 kB URL HTTP/2 mojeauxband.com/wp-content/uploads/2017/03/mojeaux_logo_sm.png
IP 69.16.252.49:0
File type PNG image data, 200 x 56, 8-bit/color RGBA, non-interlaced\012- data
Hash cb9ad604b734c79ddc72f1d52230c7d9
d7e22d709cced31841a38cbf4f1d3bb5e9660b02
7d9ae0227404471df2d443cdd58a8e07e63653d3bd94f2e378ad41b39afc51d6
GET /wp-content/uploads/2017/03/mojeaux_logo_sm.png HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 30 Mar 2017 15:12:09 GMT
accept-ranges: bytes
content-length: 28634
content-type: image/png
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/uploads/2021/06/jazz_video_01.jpg
69.16.252.49200 OK 88 kB URL HTTP/2 mojeauxband.com/wp-content/uploads/2021/06/jazz_video_01.jpg
IP 69.16.252.49:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 469x800, components 3\012- data
Hash 124c7f2831d2ae93d763e8df4db091a8
cc99807e5fc8e58454da223c441cc58f982bce4c
69e0fc8de9aa5fdf10d18c37c41bf8657b509ee2ac806e7f1f16ffaad131fe63
GET /wp-content/uploads/2021/06/jazz_video_01.jpg HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 28 Jun 2021 13:21:24 GMT
accept-ranges: bytes
content-length: 88303
content-type: image/jpeg
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/uploads/2021/06/jazz_video_02.jpg
69.16.252.49200 OK 96 kB URL HTTP/2 mojeauxband.com/wp-content/uploads/2021/06/jazz_video_02.jpg
IP 69.16.252.49:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 586x1000, components 3\012- data
Hash 8aa7d4f0e5d5ace34eaaa931e7e68ac7
4f0a1c79e8edc104232f1d882cae025f8664aa4e
e2d2d5a3a6d50e52af5cb59fa30ff6393246445ca2998e745d4615e5cd2f1189
GET /wp-content/uploads/2021/06/jazz_video_02.jpg HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 28 Jun 2021 13:25:02 GMT
accept-ranges: bytes
content-length: 95611
content-type: image/jpeg
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:41:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 1.1 kB IP 142.250.74.131:0
File type gzip compressed data, max compression\012- data
Hash 1f561a560413629831e1e8dcc9995b3f
a1e85007477a3a2084d3c2fe3fe5b90fa8d200ea
b7234b9fd4ff39f98f92afb561aebbdf994ba0065c8960b27737c8fe7342082e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:41:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:41:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:41:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:41:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.163200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mojeauxband.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 10:05:58 GMT
expires: Fri, 26 Jan 2024 10:05:58 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
age: 603327
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:41:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mojeauxband.com/wp-content/plugins/foogallery/extensions/default-templates/shared/img/icons.svg
69.16.252.49200 OK 9.0 kB URL HTTP/2 mojeauxband.com/wp-content/plugins/foogallery/extensions/default-templates/shared/img/icons.svg
IP 69.16.252.49:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (636), with CRLF line terminators
Hash e2bcc8536d946b613867b8e9565a1558
ef0c75b3e003afc55cecf6c9f1253c1cbcbb99b2
c8f7c1bf37afd5f5b582acdfe460876a60324c65f6fa1fe74f711ec5b9666ff8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/foogallery/extensions/default-templates/shared/img/icons.svg HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/wp-content/plugins/foogallery/extensions/default-templates/shared/css/foogallery.min.css?ver=2.2.26
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 03:30:30 GMT
accept-ranges: bytes
content-length: 9005
content-type: image/svg+xml
date: Thu, 02 Feb 2023 09:41:25 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/themes/pro/cornerstone/assets/fonts/fa-solid-900.woff2
69.16.252.49200 OK 141 kB URL HTTP/2 mojeauxband.com/wp-content/themes/pro/cornerstone/assets/fonts/fa-solid-900.woff2
IP 69.16.252.49:0
File type Web Open Font Format (Version 2), TrueType, length 140996, version 331.-31392\012- data
Size 141 kB (140996 bytes)
Hash 25d740d42658b6e2c293ce7b3322aac7
41cc9ae4b5dd70fd3988059dfb864f20f99ae371
8b5a3ff47c2413e0bf3dd3bb7899a25aeef9b390a055847a1185a39ad48a2da2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/pro/cornerstone/assets/fonts/fa-solid-900.woff2 HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 30 Jan 2023 21:19:23 GMT
accept-ranges: bytes
content-length: 140996
content-type: font/woff2
date: Thu, 02 Feb 2023 09:41:25 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:41:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bae868356becb6470806e213f97e8aa6
1a3c7ffdce0f4e9c1f59aa0cd7715f22bade5117
c9930f2471f9a8a87fddfe3989391d65e1c41b3457a3f0fbf2e2357566f81a1b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2030
Cache-Control: max-age=116219
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:41:25 GMT
Etag: "63daa052-1d7"
Expires: Fri, 03 Feb 2023 17:58:24 GMT
Last-Modified: Wed, 01 Feb 2023 17:24:34 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/sdk.js
157.240.205.11200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js
IP 157.240.205.11:0
File type ASCII text, with very long lines (1957)
Hash 28bb80f9e7593417581f2ac804be7a79
3283666e3353b1e56caeb5472f458b793125042e
d3a4852c0745cb78eb5a6659bc4212deee922c5453bf79d718248476f889802f
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 18d25940b494acb7d457767ce84179af
etag: "713b758193d371f5c09d636933ec051e"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Thu, 02 Feb 2023 10:00:34 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: KLuA+edZNBdYHyrIBL56eQ==
x-fb-debug: U6y4ECak43x35/RYFvaMWNt5+9oHGba/UzQfdh3knLG21mXhjn2W/K/8ambLjmbQ5z8Tq0GCyChxkHlxHg4CzA==
content-length: 1683
x-fb-trip-id: 1679558926
date: Thu, 02 Feb 2023 09:41:25 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
mojeauxband.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
69.16.252.49200 OK 471 B URL HTTP/2 mojeauxband.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 69.16.252.49:0
Hash bae868356becb6470806e213f97e8aa6
1a3c7ffdce0f4e9c1f59aa0cd7715f22bade5117
c9930f2471f9a8a87fddfe3989391d65e1c41b3457a3f0fbf2e2357566f81a1b
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 03:24:13 GMT
accept-ranges: bytes
content-length: 89684
content-type: application/javascript
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
142.250.74.163200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Hash e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mojeauxband.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 09:30:27 GMT
expires: Fri, 02 Feb 2024 09:30:27 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
age: 658
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/uploads/2021/06/videography.jpg
69.16.252.49200 OK 49 kB URL HTTP/2 mojeauxband.com/wp-content/uploads/2021/06/videography.jpg
IP 69.16.252.49:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1200x398, components 3\012- data
Hash f67a9f138f2f61dca6791b36bc30fb66
4bf1466830bcfd938c303437f107a23ec45ed8a1
aeed018e2cf7cecd4f1a0b6c8e3256d6e5da600879d5430d20e695f21dc64887
GET /wp-content/uploads/2021/06/videography.jpg HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 28 Jun 2021 13:12:13 GMT
accept-ranges: bytes
content-length: 49255
content-type: image/jpeg
date: Thu, 02 Feb 2023 09:41:25 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a456cd9684a2ff020b854f178c06b509
b5a9e34f112cbe6d41b695ce7234cfe83de1356e
75b3ff1ea527598880cd41f65ebc03440b0ed019d53f8de1b4588de04bc4919e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:41:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.166200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.166:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 09:28:12 GMT
expires: Thu, 02 Feb 2023 09:43:12 GMT
cache-control: public, max-age=900
age: 794
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:41:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/id
142.250.74.162302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Thu, 02 Feb 2023 09:41:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a456cd9684a2ff020b854f178c06b509
b5a9e34f112cbe6d41b695ce7234cfe83de1356e
75b3ff1ea527598880cd41f65ebc03440b0ed019d53f8de1b4588de04bc4919e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:41:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:41:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/embed/FYLX7F4Nbt8
172.217.21.174200 OK 92 kB URL HTTP/2 www.youtube.com/embed/FYLX7F4Nbt8
IP 172.217.21.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (58646)
Hash ac9fce98c96401ffe08179b0a42a015a
0642d7c43e721d494c149b042b59c847091a2f1f
a91621e4ed42f7401a956af0f3d348f2a7fc745560393352b818bedd8a15d6ab
GET /embed/FYLX7F4Nbt8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 02 Feb 2023 09:41:25 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=XEoTaeoVR1A; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
DEVICE_INFO=ChxOekU1TlRRNU1UTTJNVGd4TVRjME9UQTVNZz09EMWK7p4GGMWK7p4G; Domain=.youtube.com; Expires=Tue, 01-Aug-2023 09:41:25 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=MW6JXsD5row; Domain=.youtube.com; Expires=Tue, 01-Aug-2023 09:41:25 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+363; expires=Sat, 01-Feb-2025 09:41:25 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.234200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 02 Feb 2023 09:41:26 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.234200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.234:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash e82958f6f610000ef88dfacdc3891e09
a896efdc0bb4fdd024428d813bb114aaef5ac913
42bac54add024e5fb110d9d7ef120569ca71c8cc6fbe17a7af0db9ce7d5ab426
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 02 Feb 2023 09:41:26 GMT
server: ESF
cache-control: private
content-length: 31116
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 29 kB IP 142.250.74.131:0
Hash b2d6b8904e9ccac31e0167586d1ee244
60e48a238699abac988f18d0bb14f0452f721b2d
4fdfdf5d41e6296c8510eb66e4c3f8a1c2ba42bea8c49724df6c5e03b1572f5d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:41:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/embed/SvMcSNbokXc
172.217.21.174200 OK 70 kB URL HTTP/2 www.youtube.com/embed/SvMcSNbokXc
IP 172.217.21.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (58644)
Hash edafb4c8e172fbeb9e53ea2e43d3469a
c3af360d7e1860432bfc9651e31fc6bb4c0a98c4
ae748515268150f2e422b81c855ef3abba16a1e5b8dd1bbf7b124a174e7d7e3f
GET /embed/SvMcSNbokXc HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 02 Feb 2023 09:41:25 GMT
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=yeB7094f3h8; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
DEVICE_INFO=ChxOekU1TlRRNU1UTTJNVGMyTURNek1qQXpOUT09EMWK7p4GGMWK7p4G; Domain=.youtube.com; Expires=Tue, 01-Aug-2023 09:41:25 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=hsalhHk8Aik; Domain=.youtube.com; Expires=Tue, 01-Aug-2023 09:41:25 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+712; expires=Sat, 01-Feb-2025 09:41:25 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash df74d0c5bbc711a484e4508808c3357a
304f6b29d37c4f6ae20a4031ec6b3a879f9928c8
14200bd4d7eff065de2b62f1770c31edb357a95390c619867f00660a88e92ae8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:41:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash df74d0c5bbc711a484e4508808c3357a
304f6b29d37c4f6ae20a4031ec6b3a879f9928c8
14200bd4d7eff065de2b62f1770c31edb357a95390c619867f00660a88e92ae8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:41:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi_webp/FYLX7F4Nbt8/maxresdefault.webp
172.217.21.182200 OK 88 kB URL HTTP/2 i.ytimg.com/vi_webp/FYLX7F4Nbt8/maxresdefault.webp
IP 172.217.21.182:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 329344dad2b792104c29e8efa1ae65cf
8898b394fc0c1fd05b6de339c9c4e21de706133c
c1b1af5cdd58fa285fedb2bc7d752193b923db23683505f6554609b5bc76e190
GET /vi_webp/FYLX7F4Nbt8/maxresdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 88140
date: Thu, 02 Feb 2023 09:41:26 GMT
expires: Thu, 02 Feb 2023 11:41:26 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
i.ytimg.com/vi_webp/SY55ueuMltQ/sddefault.webp
172.217.21.182200 OK 30 kB URL HTTP/2 i.ytimg.com/vi_webp/SY55ueuMltQ/sddefault.webp
IP 172.217.21.182:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x480, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2b5df95e7ed06e745f66aa01f1a8aef7
d8783ff26e31434d6a300ee7b63a8ae2de4dc35f
da6e4e6226bcd9d9cb4ec3c9fc66ef2e9bb57649e747c96705796382bd229078
GET /vi_webp/SY55ueuMltQ/sddefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 30514
date: Thu, 02 Feb 2023 09:41:26 GMT
expires: Thu, 02 Feb 2023 11:41:26 GMT
cache-control: public, max-age=7200
etag: "1530554909"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash df74d0c5bbc711a484e4508808c3357a
304f6b29d37c4f6ae20a4031ec6b3a879f9928c8
14200bd4d7eff065de2b62f1770c31edb357a95390c619867f00660a88e92ae8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:41:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 737fb1a7e54ea78dd56b4ac44a2c1de8
4fc7537db04c8cedc6a98ea38cfcaa6ba5c8a3a7
596cb4e532b0f523b844981b7e60fba87eb3a904b0a40dfdc3802a02650f790e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:41:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mojeauxband.com/wp-includes/images/w-logo-blue-white-bg.png
69.16.252.49200 OK 4.1 kB URL HTTP/2 mojeauxband.com/wp-includes/images/w-logo-blue-white-bg.png
IP 69.16.252.49:0
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 000bf649cc8f6bf27cfb04d1bcdcd3c7
d73d2f6d74ec6cdcbae07955592962e77d8ae814
6bdb369337ac2496761c6f063bffea0aa6a91d4662279c399071a468251f51f0
GET /wp-includes/images/w-logo-blue-white-bg.png HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mojeauxband.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 09 Dec 2020 16:32:50 GMT
accept-ranges: bytes
content-length: 4119
content-type: image/png
date: Thu, 02 Feb 2023 09:41:27 GMT
server: Apache
X-Firefox-Spdy: h2
yt3.ggpht.com/qb4SgnlT88Wss9b45Naxuqtji_ux6_MyLBwtKTwPL9tzfPey90ekS9uuMq-eEwBxTgIC3hUdrw=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 2.1 kB URL HTTP/2 yt3.ggpht.com/qb4SgnlT88Wss9b45Naxuqtji_ux6_MyLBwtKTwPL9tzfPey90ekS9uuMq-eEwBxTgIC3hUdrw=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash 52cf7925e98bae68942ab63096e14af9
2754ba707786333e03ff99c61a3e763786c5b1bb
a22ad5b089961e943258cc746a4baab2928db04170ed09a449825871f6c9ffbc
GET /qb4SgnlT88Wss9b45Naxuqtji_ux6_MyLBwtKTwPL9tzfPey90ekS9uuMq-eEwBxTgIC3hUdrw=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2107
x-xss-protection: 0
date: Thu, 02 Feb 2023 09:41:27 GMT
expires: Mon, 30 Jan 2023 12:09:46 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
yt3.ggpht.com/ytc/AL5GRJVhgB-XyfJhFDwadphGouPX5pUSn1ZG7LV7Poc-BQ=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 2.4 kB URL HTTP/2 yt3.ggpht.com/ytc/AL5GRJVhgB-XyfJhFDwadphGouPX5pUSn1ZG7LV7Poc-BQ=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash ece5ac1587fd9a32ad8f6a1010bfd167
c6447fc6e360d19330942d23d702b3b737a8299a
28081f8e5b06c71f36368c2045df3344dae8534add161d8a507bc15bc6c4c407
GET /ytc/AL5GRJVhgB-XyfJhFDwadphGouPX5pUSn1ZG7LV7Poc-BQ=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1b2"
expires: Fri, 03 Feb 2023 09:41:27 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 02 Feb 2023 09:41:27 GMT
server: fife
content-length: 2408
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 737fb1a7e54ea78dd56b4ac44a2c1de8
4fc7537db04c8cedc6a98ea38cfcaa6ba5c8a3a7
596cb4e532b0f523b844981b7e60fba87eb3a904b0a40dfdc3802a02650f790e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:41:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mojeauxband.com/wp-content/plugins/wonderplugin-lightbox/engine/froogaloop2.min.js
69.16.252.49200 OK 1.8 kB URL HTTP/2 mojeauxband.com/wp-content/plugins/wonderplugin-lightbox/engine/froogaloop2.min.js
IP 69.16.252.49:0
File type ASCII text, with very long lines (520)
Hash 2a8742c0ac1cdbec23be44a7d4e9a3c9
313b838221e248e5919641e3329594d9bfe9eeb0
fc46f44565a092c856a6d70471d942caca57598049a85ce80366c1c5831d0f3e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wonderplugin-lightbox/engine/froogaloop2.min.js HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 26 Oct 2022 11:23:58 GMT
accept-ranges: bytes
content-length: 1769
content-type: application/javascript
date: Thu, 02 Feb 2023 09:41:28 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/plugins/wonderplugin-lightbox/engine/icons/css/mhfontello.css
69.16.252.49200 OK 4.6 kB URL HTTP/2 mojeauxband.com/wp-content/plugins/wonderplugin-lightbox/engine/icons/css/mhfontello.css
IP 69.16.252.49:0
Hash e719362eaca51ed6d9dd9a5057866a79
9d32a2f79b0c2a5375893d22c6cca49a0898f82d
aa30c2e6451a56a759332771200cc45028b8cb3ae37aad25bf1f6b62db77bd88
GET /wp-content/plugins/wonderplugin-lightbox/engine/icons/css/mhfontello.css HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 26 Oct 2022 11:23:58 GMT
accept-ranges: bytes
content-length: 4625
content-type: text/css
date: Thu, 02 Feb 2023 09:41:28 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/plugins/wonderplugin-gridgallery/engine/froogaloop2.min.js
69.16.252.49200 OK 1.6 kB URL HTTP/2 mojeauxband.com/wp-content/plugins/wonderplugin-gridgallery/engine/froogaloop2.min.js
IP 69.16.252.49:0
File type ASCII text, with very long lines (515)
Hash 7b72792167e88ec94ee1cbf05b95a7aa
e5d2012f71548624a08cc63f89a4ab2a5ecdca3a
b79f7f920cf1c412ae3ad2f18dcaebebea5ed1ddfaac9b94ada561b91749df69
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wonderplugin-gridgallery/engine/froogaloop2.min.js HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 25 Oct 2022 12:47:12 GMT
accept-ranges: bytes
content-length: 1553
content-type: application/javascript
date: Thu, 02 Feb 2023 09:41:28 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/plugins/wonderplugin-gridgallery/engine/icons/css/mhfontello.css
69.16.252.49200 OK 5.6 kB URL HTTP/2 mojeauxband.com/wp-content/plugins/wonderplugin-gridgallery/engine/icons/css/mhfontello.css
IP 69.16.252.49:0
Hash 3c22b05597d80ed8c8a647af78ff9751
a292f6bd983dac04c830f25f88ba4cfa502e1e69
1967e3c8542fb4bb191ce2783e23978df4affa42060c51c671b6160510b988a6
GET /wp-content/plugins/wonderplugin-gridgallery/engine/icons/css/mhfontello.css HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 25 Oct 2022 12:47:12 GMT
accept-ranges: bytes
content-length: 5609
content-type: text/css
date: Thu, 02 Feb 2023 09:41:28 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/plugins/wonderplugin-gridgallery/engine/skins/default/playvideo-64-64-0.png
69.16.252.49200 OK 1.8 kB URL HTTP/2 mojeauxband.com/wp-content/plugins/wonderplugin-gridgallery/engine/skins/default/playvideo-64-64-0.png
IP 69.16.252.49:0
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash d4c1247a73419371266fbb6b9184ddfa
afdc477d08aacf68c175295eefc859932158ae11
f911ab6d125a19310172e92c545c359803e4006d99ae3f7b90ba30d4213c8662
GET /wp-content/plugins/wonderplugin-gridgallery/engine/skins/default/playvideo-64-64-0.png HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 25 Oct 2022 12:47:12 GMT
accept-ranges: bytes
content-length: 1754
content-type: image/png
date: Thu, 02 Feb 2023 09:41:28 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-admin/admin-ajax.php
69.16.252.49200 OK 0 B URL HTTP/2 mojeauxband.com/wp-admin/admin-ajax.php
IP 69.16.252.49:0
Analyzer Verdict Alert fortinet Malware
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 24
Origin: https://mojeauxband.com
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://mojeauxband.com
access-control-allow-credentials: true
x-robots-tag: noindex
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-encoding: gzip
vary: Accept-Encoding
content-type: text/html; charset=UTF-8
date: Thu, 02 Feb 2023 09:41:28 GMT
server: Apache
X-Firefox-Spdy: h2
meet.jit.si/external_api.js?ver=4.1.3
104.18.20.227200 OK 0 B URL HTTP/2 meet.jit.si/external_api.js?ver=4.1.3
IP 104.18.20.227:0
GET /external_api.js?ver=4.1.3 HTTP/1.1
Host: meet.jit.si
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 09:41:24 GMT
content-type: application/javascript
strict-transport-security: max-age=63072000
x-content-type-options: nosniff
x-jitsi-shard: meet-jit-si-ap-mumbai-1-s8
x-jitsi-region: ap-south-1
x-jitsi-release: 47
access-control-expose-headers: Content-Type, X-Jitsi-Region, X-Jitsi-Shard, X-Proxy-Region
x-proxy-region: eu-central-1
x-proxy-host: meet-jit-si-haproxy-185254
last-modified: Thu, 02 Feb 2023 08:40:50 GMT
cf-cache-status: HIT
age: 3628
expires: Thu, 02 Feb 2023 13:41:24 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 7931f88abae30b51-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.youtube.com/embed/yjxKcr2OIMM
172.217.21.174200 OK 0 B URL HTTP/2 www.youtube.com/embed/yjxKcr2OIMM
IP 172.217.21.174:0
GET /embed/yjxKcr2OIMM HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 02 Feb 2023 09:41:25 GMT
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=7FW_kaMaGUc; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
DEVICE_INFO=ChxOekU1TlRRNU1UTTJNakE0TlRJd056a3dOdz09EMWK7p4GGMWK7p4G; Domain=.youtube.com; Expires=Tue, 01-Aug-2023 09:41:25 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=V9gwkFO6B8s; Domain=.youtube.com; Expires=Tue, 01-Aug-2023 09:41:25 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+292; expires=Sat, 01-Feb-2025 09:41:25 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/plugins/eventON/assets/js/lib/handlebars.js?ver=4.1.3
69.16.252.49200 OK 0 B URL HTTP/2 mojeauxband.com/wp-content/plugins/eventON/assets/js/lib/handlebars.js?ver=4.1.3
IP 69.16.252.49:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/eventON/assets/js/lib/handlebars.js?ver=4.1.3 HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 30 Sep 2022 11:43:29 GMT
accept-ranges: bytes
content-length: 179306
content-type: application/javascript
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/favicon.ico
69.16.252.49302 Found 0 B URL HTTP/2 mojeauxband.com/favicon.ico
IP 69.16.252.49:0
GET /favicon.ico HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
link: <https://mojeauxband.com/wp-json/>; rel="https://api.w.org/"
x-redirect-by: WordPress
content-encoding: gzip
vary: Accept-Encoding
location: https://mojeauxband.com/wp-includes/images/w-logo-blue-white-bg.png
content-type: text/html; charset=UTF-8
date: Thu, 02 Feb 2023 09:41:25 GMT
server: Apache
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/plugins/wonderplugin-gridgallery/engine/wonderplugingridlightbox.js?ver=17.6.1PRO
69.16.252.49200 OK 0 B URL HTTP/2 mojeauxband.com/wp-content/plugins/wonderplugin-gridgallery/engine/wonderplugingridlightbox.js?ver=17.6.1PRO
IP 69.16.252.49:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wonderplugin-gridgallery/engine/wonderplugingridlightbox.js?ver=17.6.1PRO HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 25 Oct 2022 12:47:12 GMT
accept-ranges: bytes
content-length: 126176
content-type: application/javascript
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans%3A400%2C400italic%2C700%7CRoboto%3A400%2C700%2C900&subset=latin%2Clatin-ext&ver=4.1.3
142.250.74.138200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A400%2C400italic%2C700%7CRoboto%3A400%2C700%2C900&subset=latin%2Clatin-ext&ver=4.1.3
IP 142.250.74.138:0
GET /css?family=Open+Sans%3A400%2C400italic%2C700%7CRoboto%3A400%2C700%2C900&subset=latin%2Clatin-ext&ver=4.1.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 Feb 2023 09:41:24 GMT
date: Thu, 02 Feb 2023 09:41:24 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/uploads/2020/12/mojeaux_main_02b.jpg
69.16.252.49200 OK 0 B URL HTTP/1.1 mojeauxband.com/wp-content/uploads/2020/12/mojeaux_main_02b.jpg
IP 69.16.252.49:0
GET /wp-content/uploads/2020/12/mojeaux_main_02b.jpg HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 09:41:24 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 09 Dec 2020 16:40:29 GMT
Accept-Ranges: bytes
Content-Length: 280640
Keep-Alive: timeout=2, max=500
Content-Type: image/jpeg
www.youtube.com/embed/SY55ueuMltQ
172.217.21.174200 OK 0 B URL HTTP/2 www.youtube.com/embed/SY55ueuMltQ
IP 172.217.21.174:0
GET /embed/SY55ueuMltQ HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 02 Feb 2023 09:41:25 GMT
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=h6Pw6OjydYs; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
DEVICE_INFO=ChxOekU1TlRRNU1UTTJNamc0Tnprek9UQTBPQT09EMWK7p4GGMWK7p4G; Domain=.youtube.com; Expires=Tue, 01-Aug-2023 09:41:25 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=4Ahfyo156z8; Domain=.youtube.com; Expires=Tue, 01-Aug-2023 09:41:25 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+581; expires=Sat, 01-Feb-2025 09:41:25 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mojeauxband.com/wp-content/themes/pro/cornerstone/assets/js/site/cs-classic.3486198.js
69.16.252.49200 OK 0 B URL HTTP/2 mojeauxband.com/wp-content/themes/pro/cornerstone/assets/js/site/cs-classic.3486198.js
IP 69.16.252.49:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/pro/cornerstone/assets/js/site/cs-classic.3486198.js HTTP/1.1
Host: mojeauxband.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mojeauxband.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 30 Jan 2023 21:19:23 GMT
accept-ranges: bytes
content-length: 143981
content-type: application/javascript
date: Thu, 02 Feb 2023 09:41:24 GMT
server: Apache
X-Firefox-Spdy: h2