Overview

URL www.glowmagicshop.com/67-7253vfwr-6xiamlk70j/qetax-28785
IP167.114.82.126
ASNAS16276 OVH SAS
Location Canada
Report completed2019-06-10 10:34:01 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2019-06-10 10:33:34 CEST 2  167.114.82.126 Client IP ET WEB_CLIENT eval String.fromCharCode String Which May Be Malicious


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-06-10 2 www.glowmagicshop.com/67-7253vfwr-6xiamlk70j/qetax-28785 Malware
2019-06-10 2 www.learningtoolkit.club/link.php Malware
2019-06-10 2 www.glowmagicshop.com/wp-includes/js/wp-emoji-release.min.js Malware
2019-06-10 2 www.glowmagicshop.com/wp-content/themes/distro-bandung/js/jquery-migrate.js Malware
2019-06-10 2 www.glowmagicshop.com/wp-content/themes/distro-bandung/js/vjQuery.script.js Malware
2019-06-10 2 www.glowmagicshop.com/wp-content/themes/distro-bandung/includes/stores/js/b (...) Malware
2019-06-10 2 www.glowmagicshop.com/wp-content/themes/distro-bandung/includes/stores/js/v (...) Malware
2019-06-10 2 www.glowmagicshop.com/wp-includes/js/wp-embed.min.js Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 167.114.82.126

Date UQ / IDS / BL URL IP
2019-06-10 10:36:58 +0200
0 - 1 - 3 glowmagicshop.com/67-7253vfwr-6xiamlk70j/qeta (...) 167.114.82.126
2019-06-10 10:36:38 +0200
0 - 1 - 3 glowmagicshop.com/72mdolk/0pbz6yht-798qys/w3p (...) 167.114.82.126
2019-06-10 09:33:26 +0200
0 - 1 - 3 glowmagicshop.com/53mbszg/w6uz8b-432xfg/yadmz (...) 167.114.82.126
2019-06-10 09:29:54 +0200
0 - 1 - 3 www.glowmagicshop.com/53mbszg/w6uz8b-432xfg/y (...) 167.114.82.126
2019-06-09 19:32:24 +0200
0 - 0 - 1 glowmagicshop.com/rgqzjuh_127_23689547_2oasg7 (...) 167.114.82.126
2019-06-09 19:32:00 +0200
0 - 0 - 2 glowmagicshop.com/rw244uq-k0e7hajgbc-03821co- (...) 167.114.82.126
2019-06-09 19:31:39 +0200
0 - 0 - 1 www.glowmagicshop.com/rgqzjuh_127_23689547_2o (...) 167.114.82.126
2019-06-09 19:31:30 +0200
0 - 0 - 2 glowmagicshop.com/nmurdba-34-85672019-hjxpeln (...) 167.114.82.126
2019-06-09 19:31:25 +0200
0 - 0 - 1 glowmagicshop.com/wkrmzfnjdas15-4wxto6l2df-n9 (...) 167.114.82.126
2019-06-09 19:31:07 +0200
0 - 0 - 1 glowmagicshop.com/rluhkpc_195_13489762_4vxlkd (...) 167.114.82.126

Last 10 reports on ASN: AS16276 OVH SAS

Date UQ / IDS / BL URL IP
2019-07-01 07:47:12 +0200
0 - 0 - 0 https://www.munplanet.com/articles/arlo-camer (...) 158.69.39.233
2019-07-01 04:15:44 +0200
0 - 3 - 0 www.asind.ae/wp-content/uploads/2019/seconder (...) 5.39.72.197
2019-07-01 03:56:20 +0200
0 - 0 - 0 webcamsteen.com/16y4[CUSTOM_AFF 192.99.67.89
2019-07-01 02:43:31 +0200
0 - 0 - 0 167.114.144.169/Android/ 167.114.144.169
2019-06-30 21:34:01 +0200
0 - 0 - 0 streams.tvxweb.org 158.69.54.221
2019-06-30 21:30:47 +0200
0 - 0 - 0 source.magikserv.com 37.187.171.206
2019-06-30 20:09:51 +0200
0 - 0 - 0 www.kweeper.com/popcorn2kg/sentence/6382508 91.121.242.21
2019-06-30 18:49:10 +0200
0 - 0 - 0 www.ovh.com 198.27.92.1
2019-06-30 18:18:47 +0200
0 - 0 - 0 liczniki.org/hit.php?l=alltube&o=1 94.23.92.123
2019-06-30 18:11:40 +0200
0 - 0 - 0 hardrock.blogdns.org/ 91.121.69.126

No other reports on domain: glowmagicshop.com



JavaScript

Executed Scripts (1)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (18)


Request Response
                                        
                                            GET /67-7253vfwr-6xiamlk70j/qetax-28785 HTTP/1.1 
Host: www.glowmagicshop.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         167.114.82.126
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Mon, 10 Jun 2019 08:33:30 GMT
Server: Apache
Set-Cookie: PHPSESSID=28pk3q0aon5en49fln87f3ler5; path=/
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Pragma: no-cache
Link: <http://www.glowmagicshop.com/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   33770
Md5:    5a3410258fd98e539b9eda6be85a4115
Sha1:   0f66846a754c61cf3e636fce41c9ebffa40856ed
Sha256: 7c9c09943a36fb358bf67661b817e1879a0048bdad935b8569909ce54ec8eda5

Alerts:
  Blacklists:
    - fortinet: Malware
  IDS:
    - ET WEB_CLIENT eval String.fromCharCode String Which May Be Malicious
                                        
                                            GET /link.php HTTP/1.1 
Host: www.learningtoolkit.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.glowmagicshop.com/67-7253vfwr-6xiamlk70j/qetax-28785
Origin: http://www.glowmagicshop.com

                                         
                                         0.0.0.0
                                        


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/twitter1.png HTTP/1.1 
Host: shared.mediavisual.web.id
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.glowmagicshop.com/67-7253vfwr-6xiamlk70j/qetax-28785

                                         
                                         104.27.134.144
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 10 Jun 2019 08:33:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d7a0bf2f0929f099aafd6a820f90e23801560155636; expires=Tue, 09-Jun-20 08:33:56 GMT; path=/; domain=.mediavisual.web.id; HttpOnly
Last-Modified: Fri, 16 Oct 2015 20:18:02 GMT
Vary: Accept-Encoding
Etag: W/"56215b7a-2a5c"
Expires: Thu, 07 Jun 2029 08:33:56 GMT
Cache-Control: public, max-age=315360000
X-Cache: HIT from Backend
Content-Encoding: gzip
CF-Cache-Status: HIT
Server: cloudflare
CF-RAY: 4e4a00d55ecb86bf-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   10619
Md5:    3048eac7dfac4bf29141e51f2cebd5ab
Sha1:   3feed5fcf51277dfe6b9c35090bdf255874107b6
Sha256: 2c97f5dd83b92f9f5677a8411b30478c7700d1f8fe644832ef16715b672f4d0a
                                        
                                            GET /icons/social/gplus1.png HTTP/1.1 
Host: shared.mediavisual.web.id
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.glowmagicshop.com/67-7253vfwr-6xiamlk70j/qetax-28785

                                         
                                         104.27.134.144
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 10 Jun 2019 08:33:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=dd200d035831f46ec2c656925876fe3d81560155636; expires=Tue, 09-Jun-20 08:33:56 GMT; path=/; domain=.mediavisual.web.id; HttpOnly
Last-Modified: Fri, 16 Oct 2015 20:18:02 GMT
Vary: Accept-Encoding
Etag: W/"56215b7a-29f6"
Expires: Thu, 07 Jun 2029 08:33:56 GMT
Cache-Control: public, max-age=315360000
X-Cache: HIT from Backend
Content-Encoding: gzip
CF-Cache-Status: HIT
Server: cloudflare
CF-RAY: 4e4a00d55fb2cafc-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   10510
Md5:    4d35dd76d636b5e13eef3c0f568861bb
Sha1:   21379615e02c3ed07c5c167858f4178224840da9
Sha256: f974c2966545a0471273d99ae458565c0fd8a8093f31db5cd5825812cbec05c8
                                        
                                            GET /icons/social/pinterest1.png HTTP/1.1 
Host: shared.mediavisual.web.id
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.glowmagicshop.com/67-7253vfwr-6xiamlk70j/qetax-28785

                                         
                                         104.27.134.144
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 10 Jun 2019 08:33:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d916df7dcf3f6d7bdb1b83a1a4e177e211560155636; expires=Tue, 09-Jun-20 08:33:56 GMT; path=/; domain=.mediavisual.web.id; HttpOnly
Last-Modified: Fri, 16 Oct 2015 20:18:02 GMT
Vary: Accept-Encoding
Etag: W/"56215b7a-3738"
Expires: Thu, 07 Jun 2029 08:33:56 GMT
Cache-Control: public, max-age=315360000
X-Cache: HIT from Backend
Content-Encoding: gzip
CF-Cache-Status: HIT
Server: cloudflare
CF-RAY: 4e4a00d55db475ce-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   13940
Md5:    8496a7bac56170de365745bd3eb79a7e
Sha1:   cdfed4188228b78025ad6366d79c7c49ba8a964d
Sha256: 2882f94a934e0885b256d8159387e061bbfb71091eb9cd322b0b0d206b47306b
                                        
                                            GET /icons/social/instagram1.png HTTP/1.1 
Host: shared.mediavisual.web.id
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.glowmagicshop.com/67-7253vfwr-6xiamlk70j/qetax-28785

                                         
                                         104.27.134.144
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 10 Jun 2019 08:33:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d146f2e6942ab26cccfce52121e28608b1560155636; expires=Tue, 09-Jun-20 08:33:56 GMT; path=/; domain=.mediavisual.web.id; HttpOnly
Last-Modified: Fri, 16 Oct 2015 20:18:02 GMT
Vary: Accept-Encoding
Etag: W/"56215b7a-5cd8"
Expires: Thu, 07 Jun 2029 08:33:56 GMT
Cache-Control: public, max-age=315360000
X-Cache: HIT from Backend
Content-Encoding: gzip
CF-Cache-Status: HIT
Server: cloudflare
CF-RAY: 4e4a00d55b9075e0-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   23576
Md5:    9ca610e7fa7dde38f5b5bea55dbdcc35
Sha1:   d124666c10f374ac40b4c05e447012b631b382f8
Sha256: 044534ca4ff5cd5ad6b35728c6c45318f293bf4f0ed32e0f9726836e0e2d26e2
                                        
                                            GET /icons/social/facebook1.png HTTP/1.1 
Host: shared.mediavisual.web.id
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.glowmagicshop.com/67-7253vfwr-6xiamlk70j/qetax-28785

                                         
                                         104.27.134.144
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 10 Jun 2019 08:33:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d6bd784f73a1af347ae9e58308be458141560155636; expires=Tue, 09-Jun-20 08:33:56 GMT; path=/; domain=.mediavisual.web.id; HttpOnly
Last-Modified: Fri, 16 Oct 2015 20:18:02 GMT
Vary: Accept-Encoding
Etag: W/"56215b7a-27f4"
Expires: Thu, 07 Jun 2029 08:33:56 GMT
Cache-Control: public, max-age=315360000
X-Cache: HIT from Backend
Content-Encoding: gzip
CF-Cache-Status: HIT
Server: cloudflare
CF-RAY: 4e4a00d559cb7676-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   10033
Md5:    2796465b31076ccf733838309b0b67b0
Sha1:   af68ae3250c245f9b3ad7b24ef2266a6c42e2705
Sha256: f3b979956d0c13f55ce86894191927075dcf5b8e6a746062d058ba2ac8e0768b
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js HTTP/1.1 
Host: www.glowmagicshop.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.glowmagicshop.com/67-7253vfwr-6xiamlk70j/qetax-28785
Cookie: PHPSESSID=28pk3q0aon5en49fln87f3ler5

                                         
                                         167.114.82.126
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Mon, 10 Jun 2019 08:33:57 GMT
Server: Apache
Last-Modified: Wed, 28 Dec 2016 03:24:19 GMT
Etag: "65c0269-2c96-544af811a0570"
Accept-Ranges: bytes
Content-Length: 11414
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII C++ program text, with very long lines
Size:   11414
Md5:    cb6284b70da03a43468244be7eafa362
Sha1:   41160d8f40b23990a9911fad0efae19eff4672c4
Sha256: 549bffa1c6d412e36a8eab7630e90783665ac071220b220be545478500cae0f8

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/distro-bandung/images/favicon.ico HTTP/1.1 
Host: www.glowmagicshop.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: PHPSESSID=28pk3q0aon5en49fln87f3ler5

                                         
                                         167.114.82.126
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
                                        
Date: Mon, 10 Jun 2019 08:33:57 GMT
Server: Apache
Last-Modified: Tue, 30 Oct 2012 13:25:52 GMT
Etag: "65c03a4-15b-4cd46b9981800"
Accept-Ranges: bytes
Content-Length: 347
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   347
Md5:    fe95230e82e77ff030af5dd047578604
Sha1:   e6f842a979ac4c8a48dedf161382958c4a47aad4
Sha256: af0b180dc196ef527bce5fd7c04d6d702c6a9c89b80d8e76ea43b374a0a6a99a
                                        
                                            GET /wp-content/themes/distro-bandung/images/asli.gif HTTP/1.1 
Host: www.glowmagicshop.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.glowmagicshop.com/67-7253vfwr-6xiamlk70j/qetax-28785
Cookie: PHPSESSID=28pk3q0aon5en49fln87f3ler5

                                         
                                         167.114.82.126
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Mon, 10 Jun 2019 08:33:57 GMT
Server: Apache
Last-Modified: Fri, 03 Apr 2015 11:33:14 GMT
Etag: "65c03a2-7bd-512d050581280"
Accept-Ranges: bytes
Content-Length: 1981
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 150 x 150
Size:   1981
Md5:    01a5e299fc3f3ad299b3e5d4ea39e708
Sha1:   e1b1c885ca6b2705d9f025186d41320354c53be0
Sha256: 8dacc528c2391f3a60fceef5e6e992d0350a88714867ab15f99d591fcae96b34
                                        
                                            GET /count2/4TjP/bg_FFFFFF/txt_000000/border_CCCCCC/columns_2/maxflags_10/viewers_0/labels_1/pageviews_1/flags_0/percent_0/ HTTP/1.1 
Host: s01.flagcounter.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.glowmagicshop.com/67-7253vfwr-6xiamlk70j/qetax-28785

                                         
                                         66.154.110.210
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 10 Jun 2019 08:33:57 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Pragma: no-cache
Cache-Control: no-cache
Connection: close
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  PNG image, 198 x 154, 8-bit/color RGB, non-interlaced
Size:   12969
Md5:    3ca22bf935c51164211a9a2e30091eef
Sha1:   67ff8945b8f2f60170e9945780e5d15688ff4ebb
Sha256: e711ccdf97e65cfee7e48f530563d779d8b28d2bc32dff57404b44b234d2f786
                                        
                                            GET /wp-content/themes/distro-bandung/style.css HTTP/1.1 
Host: www.glowmagicshop.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.glowmagicshop.com/67-7253vfwr-6xiamlk70j/qetax-28785
Cookie: PHPSESSID=28pk3q0aon5en49fln87f3ler5

                                         
                                         167.114.82.126
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 10 Jun 2019 08:33:57 GMT
Server: Apache
Last-Modified: Tue, 30 Jun 2015 01:35:04 GMT
Etag: "65c0433-50c5-519b2372b2200"
Accept-Ranges: bytes
Content-Length: 20677
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII C program text, with CRLF line terminators
Size:   20677
Md5:    21f3226cd7254b5558bdaba568c904ab
Sha1:   f75fef59cc87a56945fa6bc3675600881975def8
Sha256: 83866889b62a21dcc31905141c0ffe3fa705a172a5865c5652af662f2a241972
                                        
                                            GET /wp-content/themes/distro-bandung/css/v-css.css HTTP/1.1 
Host: www.glowmagicshop.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.glowmagicshop.com/67-7253vfwr-6xiamlk70j/qetax-28785
Cookie: PHPSESSID=28pk3q0aon5en49fln87f3ler5

                                         
                                         167.114.82.126
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 10 Jun 2019 08:33:57 GMT
Server: Apache
Last-Modified: Fri, 03 Apr 2015 22:38:16 GMT
Etag: "65c0396-632c-512d99ab04600"
Accept-Ranges: bytes
Content-Length: 25388
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  UTF-8 Unicode C program text, with very long lines, with CRLF line terminators
Size:   25388
Md5:    c417db2104b39b41dc369d5f34da58ec
Sha1:   2f1ce16467f0f02acdf6b9e4d04a57ad93cd2b95
Sha256: 33492ef6e2bd25ff02019c067f68239a2ffcba6be6ac867cc1beec2aac8cd8e2
                                        
                                            GET /wp-content/themes/distro-bandung/js/jquery-migrate.js HTTP/1.1 
Host: www.glowmagicshop.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.glowmagicshop.com/67-7253vfwr-6xiamlk70j/qetax-28785
Cookie: PHPSESSID=28pk3q0aon5en49fln87f3ler5

                                         
                                         167.114.82.126
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Mon, 10 Jun 2019 08:33:57 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 02:36:46 GMT
Etag: "65c0417-3205-578c81fdc39b6"
Accept-Ranges: bytes
Content-Length: 12805
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII English text, with very long lines, with CRLF line terminators
Size:   12805
Md5:    6b80f19a4aa6b5b3bddb587bc74e9129
Sha1:   0b39482d2fb0d50babe5f4f988f6704d287b30f3
Sha256: 69bcf484eea338efdfb7bff0d4aa92b70f3455518cba1440be3eca7d1183ec96

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/distro-bandung/js/vjQuery.script.js HTTP/1.1 
Host: www.glowmagicshop.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.glowmagicshop.com/67-7253vfwr-6xiamlk70j/qetax-28785
Cookie: PHPSESSID=28pk3q0aon5en49fln87f3ler5

                                         
                                         167.114.82.126
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Mon, 10 Jun 2019 08:33:57 GMT
Server: Apache
Last-Modified: Thu, 02 Apr 2015 14:11:54 GMT
Etag: "65c041a-d4d-512be69f05e80"
Accept-Ranges: bytes
Content-Length: 3405
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with CRLF line terminators
Size:   3405
Md5:    d36b38567bc9c043f807f14adcdfff34
Sha1:   88537a017615a034dcd76b73b1019490f13dba70
Sha256: b5251539f6f2b23144820e127ec8145ad9b4dd6768cc95a13ff901f8328fb949

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/distro-bandung/includes/stores/js/berat.js HTTP/1.1 
Host: www.glowmagicshop.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.glowmagicshop.com/67-7253vfwr-6xiamlk70j/qetax-28785
Cookie: PHPSESSID=28pk3q0aon5en49fln87f3ler5

                                         
                                         167.114.82.126
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Mon, 10 Jun 2019 08:33:57 GMT
Server: Apache
Last-Modified: Wed, 03 Dec 2014 03:23:48 GMT
Etag: "65c03f2-e4-509475f321900"
Accept-Ranges: bytes
Content-Length: 228
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   228
Md5:    12784c8f5f3175a177b0e94202193646
Sha1:   34aaa0802988f01f4ea0c0264987029e7e9a4089
Sha256: 4c4016893a8de38012323d05be59f3d3330807feb214c8d50299d1f279e9c6f7

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/distro-bandung/includes/stores/js/virtacart.js HTTP/1.1 
Host: www.glowmagicshop.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.glowmagicshop.com/67-7253vfwr-6xiamlk70j/qetax-28785
Cookie: PHPSESSID=28pk3q0aon5en49fln87f3ler5

                                         
                                         167.114.82.126
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Mon, 10 Jun 2019 08:33:57 GMT
Server: Apache
Last-Modified: Fri, 05 Dec 2014 22:36:40 GMT
Etag: "65c0400-1026-5097fb5d9ce00"
Accept-Ranges: bytes
Content-Length: 4134
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with CRLF line terminators
Size:   4134
Md5:    e2647bc3424de6712790d6e013f639be
Sha1:   e1d2bd468bd2d1905ecbc17e629d2f12dd5f4648
Sha256: c488ecd79c57104fad38dde57cf29204ccbe63b84918694a2f6094985e299cbe

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/wp-embed.min.js HTTP/1.1 
Host: www.glowmagicshop.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.glowmagicshop.com/67-7253vfwr-6xiamlk70j/qetax-28785
Cookie: PHPSESSID=28pk3q0aon5en49fln87f3ler5

                                         
                                         167.114.82.126
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Mon, 10 Jun 2019 08:33:57 GMT
Server: Apache
Last-Modified: Wed, 28 Dec 2016 03:24:19 GMT
Etag: "65c0266-576-544af8119d690"
Accept-Ranges: bytes
Content-Length: 1398
Keep-Alive: timeout=15, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   1398
Md5:    5a03f97cc479b9f5d7efdaccec31bc17
Sha1:   54518be91b7c5d4b139e032d23ffae568cc7e9fd
Sha256: dcb5e540e62fc85857254a1066afb6a7e8999279c6d4c583eef855d39f9289c0

Alerts:
  Blacklists:
    - fortinet: Malware