{"report_id":"1af01a0c-1703-40eb-aa3d-d69bb3cdd0cb","version":6,"status":"done","tags":[],"date":"2026-01-28T20:18:34Z","url":{"schema":"http","addr":"maxglobal.pro","fqdn":"maxglobal.pro","domain":"maxglobal.pro","tld":"pro"},"ip":{"addr":"176.123.0.55","port":0,"asn":200019,"as":"Alexhost Srl","country":"Moldova","country_code":"MD"},"final":{"url":{"schema":"https","addr":"maxglobal.pro/","fqdn":"maxglobal.pro","domain":"maxglobal.pro","tld":"pro"},"title":"Welcome to | Maxglobal","dom":{"size":3101,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (3094), with no line terminators","md5":"fa7c938e11c2d7d6608c2aec2ff4957e","sha1":"2728beb5c3a513a9b4041768607ce9ad37bf0e93","sha256":"5402a3cdbc128bcc2380d97014e54a3ad82547a26d4e350b540a2a2968b0823d","sha512":"5d2eee4559557c13ef44b214ac9b645e6c32792ce41def379cb8df3e297fd3787a907fe4140596ce2d5568d250269c34a8a1c6bd11b9793cc4e176cdfc84493b","ssdeep":"","tlshash":"af51ffa1608c501b9213d5c0e9923adeb0ee015cc73158d07e1c26df96daeb718a717d","dom_hash":"domhashe267eb60b27890093658a64c7f1c1597","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"maxglobal.pro","fqdn":"maxglobal.pro","domain":"maxglobal.pro","tld":"pro"},"ip":{"addr":"176.123.0.55","port":0,"asn":200019,"as":"Alexhost Srl","country":"Moldova","country_code":"MD"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-04T20:18:34Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-28","alert":"Sinkholed","trigger":"maxglobal.pro","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-28","alert":"Sinkholed","trigger":"maxglobal.pro","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"www.gstatic.com","ip":{"addr":"142.250.74.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":146047,"first_seen":"2012-05-29T15:36:17Z","last_seen":"2026-01-25T22:28:03.589555Z","alert_count":0,"request_count":3,"received_data":44801,"sent_data":1675,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.googleapis.com","ip":{"addr":"216.58.211.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-01-25T22:17:37.642954Z","alert_count":0,"request_count":1,"received_data":1102,"sent_data":456,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"www.smartsuppchat.com","ip":{"addr":"185.76.9.12","port":443,"asn":60068,"as":"Datacamp Limited","country":"Sweden","country_code":"SE"},"domain_registered":"2014-02-02","domain_rank":491650,"first_seen":"2017-01-30T05:24:57Z","last_seen":"2026-01-28T17:33:30.317833Z","alert_count":0,"request_count":1,"received_data":18556,"sent_data":418,"comment":"","tags":null,"fingerprints":[{"name":"CDN77","description":"CDN77 is a content delivery network (CDN).","website":"https://www.cdn77.com","common_platform_enumeration":"","icon":"CDN77.png","categories":["CDN"]}]},{"fqdn":"maxglobal.pro","ip":{"addr":"176.123.0.55","port":443,"asn":200019,"as":"Alexhost Srl","country":"Moldova","country_code":"MD"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":32,"request_count":16,"received_data":2056916,"sent_data":7965,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Engintron","description":"Engintron is a plugin that integrates Nginx to cPanel/WHM server.","website":"https://github.com/engintron/engintron","common_platform_enumeration":"","icon":"engintron.png","categories":["Web server extensions"]},{"name":"PHP:8.0.30","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"SweetAlert","description":"SweetAlert is a JavaScript library that provides alternative alert and modal dialog boxes for web applications, with customisable features, aiming to improve the user interface of the default browser dialogs.","website":"https://sweetalert.js.org","common_platform_enumeration":"","icon":"SweetAlert.png","categories":["JavaScript libraries"]}]},{"fqdn":"www.google.com","ip":{"addr":"142.251.38.100","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":22,"first_seen":"2015-05-10T13:11:19Z","last_seen":"2026-01-25T22:25:49.134356Z","alert_count":0,"request_count":1,"received_data":739,"sent_data":441,"comment":"","tags":null,"fingerprints":null},{"fqdn":"bootstrap.smartsuppchat.com","ip":{"addr":"18.158.107.33","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"domain_registered":"2014-02-02","domain_rank":425291,"first_seen":"2018-01-29T06:10:36Z","last_seen":"2026-01-28T19:31:47.810806Z","alert_count":0,"request_count":1,"received_data":379,"sent_data":519,"comment":"","tags":null,"fingerprints":null},{"fqdn":"translate.google.com","ip":{"addr":"142.250.178.78","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":609,"first_seen":"2012-05-30T01:30:32Z","last_seen":"2026-01-26T06:54:43.517877Z","alert_count":0,"request_count":2,"received_data":84034,"sent_data":938,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.74.3","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-01-25T22:14:35.458366Z","alert_count":0,"request_count":2,"received_data":52707,"sent_data":1005,"comment":"","tags":null,"fingerprints":null},{"fqdn":"translate.googleapis.com","ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":6317,"first_seen":"2012-05-31T07:21:21Z","last_seen":"2026-01-26T04:36:08.768233Z","alert_count":0,"request_count":1,"received_data":370814,"sent_data":546,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.Jvw2x7oPD4E.O/am=AAAQ/d=1/exm=el_conf/ed=1/rs=AN8SPfoNN7znqzt0dNyV59XSlfMCCgAClQ/m=el_main","fqdn":"translate.googleapis.com","domain":"translate.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"fa91d84d7ad500006b0663ec17f535e8","sha1":"84d84528ae65cafb304ad77bbab92d72ed0a4afd","sha256":"28e9904fc92408ba2affd0eaf173aaa62d4c4e53840202c108d82776bb127fde","sha512":"6a5604ea3c8bb34e37f8f6c57c9b4d766fdb5fbfffdc44b2a7e379ece36ca8287e52182e9728c3cf5b543f2ced6a1f16550fe33dbd945abeddd5d24a93d8f5f8","ssdeep":"3072:AhdxJmQS0zR+UXm8WRj/kpW6m7CCV7MjyxhJTTDu2MOHceWumXtHNzRfQExm:xYHb12xHcdHjzR2","tlshash":"a174dacab266b8939262f8a190bf004bb93ddd57b4484c6cb149d8ee5db08094177f7f","size":369951,"data":"","first_seen":"2026-01-20T20:12:22.451314Z","last_seen":"2026-04-09T13:46:44.906308Z","times_seen":1324,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maxglobal.pro/","fqdn":"maxglobal.pro","domain":"maxglobal.pro","tld":"pro"},"ip":{"addr":"176.123.0.55","port":443,"asn":200019,"as":"Alexhost Srl","country":"Moldova","country_code":"MD"},"introduction_type":"scriptElement","is_inline":true,"md5":"79d326aeaa6e19d724e6ea8be36c9b41","sha1":"56b0adbce5f2cbe9ea20c6291fcf57ce9ffb2c35","sha256":"60477c993d0d8fd8615f7c81f33b9a4359e34b180161f856640cab5d79866126","sha512":"a842662adac37e51e6e2c33d18f6377aa73e078f6ea553558acf79f4bf4fd0cc7c89aa060560cb8e7c3babc52ff276be78208e7b4ade2ea04d20df91426331d2","ssdeep":"","tlshash":"f2d01247b130150e049ab219e38519cc76788509053e0d25765290cb3db3fac230d1a4","size":197,"data":"","first_seen":"2023-03-07T01:41:05Z","last_seen":"2026-06-07T02:40:44.981399Z","times_seen":781,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maxglobal.pro/_/translate_http/_/js/k=translate_http.tr.no.Jvw2x7oPD4E.O/am=AAQD/d=1/rs=AN8SPfrn9Mop7ahbtpv7AkykkR_oF0NHtA/m=el_conf","fqdn":"maxglobal.pro","domain":"maxglobal.pro","tld":"pro"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"a0bb01bd605b38b51d52a0eeadf74911","sha1":"e7acde234246cc3131137105e4eeeabf314a20ec","sha256":"ff67278e0b3d30b3642997a534b5988d0dbe1618780e877dc53117e9638a70dd","sha512":"c6ee122dc7fd5f15ab76b4b5cd21c8aa70899ff45190c5400975861fa3e2dcec752a01a0d9f01c6461769b695d2dec255aa2bb5e429ff64b92e6ff1d065a42d6","ssdeep":"1536:X3vdWjCj72+e9JCTUHdBjHvK4eb1wh3N4eOdDNezi9wNWr7:XO+e9J3jHvK4EJgziN7","tlshash":"e583b8ccb6a570658263f5b5413f000eb23f59a9f8084dacb288d8e1adf4959417bf7d","size":81716,"data":"","first_seen":"2026-01-28T20:13:57.271616Z","last_seen":"2026-01-28T20:47:14.932174Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maxglobal.pro/","fqdn":"maxglobal.pro","domain":"maxglobal.pro","tld":"pro"},"ip":{"addr":"176.123.0.55","port":443,"asn":200019,"as":"Alexhost Srl","country":"Moldova","country_code":"MD"},"introduction_type":"scriptElement","is_inline":true,"md5":"292f715667cef7ca2128157a9e70353f","sha1":"23e77ffd05aca2dadc93b8e2c899e07c9961ddd5","sha256":"999204f50c99b1ac92a6ebac991957d96a675bb2cbc5977894097fa35f284412","sha512":"3ab7f2545322d9f04011d5d6af35e7736c22f769f8934ef8eb86fedf1fb6d5f7c96b70fbe71bd4ab0242958c0bb0cf693b633071292e25cc7cc246336a84d733","ssdeep":"","tlshash":"51e0617d3c754199479240f4c1b7e6283d1a30604045deab94ebd8796cf0fdd6e46a98","size":418,"data":"","first_seen":"2026-01-28T19:31:30.822971Z","last_seen":"2026-01-28T20:18:41.538219Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maxglobal.pro/myaccount/js/toastr.js","fqdn":"maxglobal.pro","domain":"maxglobal.pro","tld":"pro"},"ip":{"addr":"176.123.0.55","port":443,"asn":200019,"as":"Alexhost Srl","country":"Moldova","country_code":"MD"},"introduction_type":"scriptElement","is_inline":false,"md5":"b8309849622865e0321015ec2482645d","sha1":"5ee2d93004b15046be73afc88d29d0b780d165bd","sha256":"3bffa2cee14e483c528eeade0e59f4705555bf047c2400b0bf9fda105129b638","sha512":"ab01b20bf9f714db876acd866a2641dae72ea17562e6a9a69609e340c9ad109a9f56f8c72a0815d966a505f16540e4c75f34978df34f5b487908b76ce6d0cd0e","ssdeep":"96:N6mApHxN4DcSDaeD88DG+v+LxyX5Y7LuQpbnt4g4EDNHChmGTotgl4NZjOKjv9:NBK+vxpYnPD4eNCfTo6SNZjOKh","tlshash":"38f1f0c1331fa75b4edb239c9036944cfa7de232854a147bb8a996986974708d3e32dc","size":8035,"data":"","first_seen":"2023-03-08T22:47:56Z","last_seen":"2026-06-06T22:35:25.71386Z","times_seen":957,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maxglobal.pro/myaccount/assets/js/bundle.js?ver=2.4.0","fqdn":"maxglobal.pro","domain":"maxglobal.pro","tld":"pro"},"ip":{"addr":"176.123.0.55","port":443,"asn":200019,"as":"Alexhost Srl","country":"Moldova","country_code":"MD"},"introduction_type":"scriptElement","is_inline":false,"md5":"b37367001130299bf41041651172378a","sha1":"e70a5e3774fda09283e90c6dde3d24f365502cbe","sha256":"3a1118ca4ff544e112d6f3d077b4786e57fe09f5e3949a7d2f84283476fe16b8","sha512":"5ab3f4bef917d4ae14c423437ac4c0574eb12ddf2c744c492c0b71f499e9b031099e1738a6c5298220da256899f94af308c5f6be1770cfe9e8dbd0a236cd16e4","ssdeep":"12288:qJ5pqY5WVanOwFHHYlbN7Kq+q7TMzGXhhffJc7Z3Mxa6:qjpqY5WVanOBN7FbXhhHQxk","tlshash":"31151888b281b13543eb30f5006f450fb2376969b40a8498f269d8d96d7cd8e61bbf7d","size":939484,"data":"","first_seen":"2023-03-10T15:57:31Z","last_seen":"2026-06-06T22:35:25.716744Z","times_seen":241,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maxglobal.pro/myaccount/js/vendors/sweetalert.js","fqdn":"maxglobal.pro","domain":"maxglobal.pro","tld":"pro"},"ip":{"addr":"176.123.0.55","port":443,"asn":200019,"as":"Alexhost Srl","country":"Moldova","country_code":"MD"},"introduction_type":"scriptElement","is_inline":false,"md5":"f3b8ce97ff6ce324da6232da353adf40","sha1":"2a3daabc70232c6350ab48d32605dc4a6ac1f1fa","sha256":"2ac46ebee46d515be86deeba385b4e41f8cff160364b362c9a6e153df327c66b","sha512":"000d41ce9e50d0ad4a6a728a9af37fe1ddc844a565bfd3d883014fbe6df69cf3ba412f321f51ceecb6e0075a6088ec4fb5f7a0e73127d9b6bae0c51ca89c7a08","ssdeep":"384:/BLa4qL1li0jldLUuuRzdNU/CfFqLyX9ye1hAbj/i5Yy/kyyeu8pgUqaF2XSSHEj:ZLahUvdNU/CNqWX9ye1hWz8+B3c2Bkj","tlshash":"96031a96758470a643e398f191ef020ef2359523b84798d5b361e8e88ff4e8d50a7f1b","size":40808,"data":"","first_seen":"2023-03-07T01:03:31Z","last_seen":"2026-06-07T17:38:40.692045Z","times_seen":10926,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"about","addr":"about:srcdoc#206","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"888a21ab7fc56d220a59dd25a83b18b6","sha1":"3bc9b8d495cf8e016aadf7e2bba091f2bd8b7188","sha256":"18c0d112e350349ca7390bc25c50a5fc92e9dc9b63416147c7e57851d105237e","sha512":"3dd8c3099c3300b3f74ffbe65e93e383d5c31087fb362f08bb241107c1061ef7dc8b61113851723a8588b54465c38056721341402f6a0072adce178ed3daf86e","ssdeep":"","tlshash":"b73147cdbbb7e0554272209a992f860bf17a2577981cd050e555ccd0fc70e9b447de14","size":1713,"data":"","first_seen":"2025-06-11T00:07:11.79824Z","last_seen":"2026-06-07T07:57:06.950641Z","times_seen":36915,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maxglobal.pro/","fqdn":"maxglobal.pro","domain":"maxglobal.pro","tld":"pro"},"ip":{"addr":"176.123.0.55","port":443,"asn":200019,"as":"Alexhost Srl","country":"Moldova","country_code":"MD"},"introduction_type":"scriptElement","is_inline":true,"md5":"ddb04e904109cfb02d231dd49e271104","sha1":"76a8df07041c8314fd658f3abd68c694154ab109","sha256":"2a3666e6ba404faffd6f5d31830f828e65bf424f45aee5345533eb7339bf88d6","sha512":"5a1198de5913594cb2f012a5181f8de8b89ec00abe6f07182ca58a7a0a343b722f15dc0c91aad61f9f75f8c71448abe53c7162930355e01e85fa71d8f0a935c3","ssdeep":"","tlshash":"f0012b5a38b610700777b079992f874a1b2160077d893d157b4c46d02f1de6cf5b2b99","size":670,"data":"","first_seen":"2026-01-28T20:18:41.539267Z","last_seen":"2026-01-28T20:18:41.539267Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maxglobal.pro/myaccount/js/jquery.min.js","fqdn":"maxglobal.pro","domain":"maxglobal.pro","tld":"pro"},"ip":{"addr":"176.123.0.55","port":443,"asn":200019,"as":"Alexhost Srl","country":"Moldova","country_code":"MD"},"introduction_type":"scriptElement","is_inline":false,"md5":"c9f5aeeca3ad37bf2aa006139b935f0a","sha1":"1055018c28ab41087ef9ccefe411606893dabea2","sha256":"87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de","sha512":"dcff2b5c2b8625d3593a7531ff4ddcd633939cc9f7acfeb79c18a9e6038fdaa99487960075502f159d44f902d965b0b5aed32b41bfa66a1dc07d85b5d5152b58","ssdeep":"1536:YNhEyjjTikEJO4edXXe9J578go6MWX2xkj8e4c4j2ll2AckaXEP6n15HZ+FhFcQ7:uxc2yjx4j2uX/kcQDU8Cu9","tlshash":"4483e6d9b2c67062977730b950bf410bb17a98dab44c8c60f158d9d47eb8a8d907bf2c","size":86659,"data":"","first_seen":"2023-03-07T01:02:00Z","last_seen":"2026-06-07T22:12:34.079707Z","times_seen":93014,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maxglobal.pro/myaccount/assets/js/scripts.js?ver=2.4.0","fqdn":"maxglobal.pro","domain":"maxglobal.pro","tld":"pro"},"ip":{"addr":"176.123.0.55","port":443,"asn":200019,"as":"Alexhost Srl","country":"Moldova","country_code":"MD"},"introduction_type":"scriptElement","is_inline":false,"md5":"78eae7d06c77f84a7ef8cfd7922f5a85","sha1":"3a8aeac030ac32a9d1b7fa13220652fbc99eefe0","sha256":"adcd4f31c44fa2895618020d9ea8b74eaf28653c4b31831b58650fe40bf56127","sha512":"cc2771fac731c6178af4a9216b5ae283a7e816dbfdc9d4d9f45587083e01800fbfa1da47142875ecaf2d8383e85b84a780c6c4110e1cc8376a14bb64eac86b27","ssdeep":"384:Ge16sZQtbPG7oABqovdTvDKQuuYnaeTxQdsebfhBYHNDqOcIvlQ0aJlA1jxPiVuj:GSBqRF4R4akjN","tlshash":"e1b20c4974f710b6813b34ad86ef9409366b11074c1eda107d9c9b809f8493e95fafee","size":24949,"data":"","first_seen":"2023-03-12T20:42:29Z","last_seen":"2026-06-06T22:35:25.72359Z","times_seen":244,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maxglobal.pro/myaccount/assets/js/custom.js","fqdn":"maxglobal.pro","domain":"maxglobal.pro","tld":"pro"},"ip":{"addr":"176.123.0.55","port":443,"asn":200019,"as":"Alexhost Srl","country":"Moldova","country_code":"MD"},"introduction_type":"scriptElement","is_inline":false,"md5":"148eb289a3c56badd113210da14f8f22","sha1":"7f957907636bc862f6bf03c2b6c9cbfbacee669e","sha256":"cd4d28b4aa5449c1f0721ea2a18a2539f4b763781c74fb12512d5087625aae7d","sha512":"5ad0ae7e6ecff10e5eb95fd6a9ab384b5724a6c841b8feea132bbf7a2ad8b92ec58f66d7802de3b9f250cdf3fbd605c6d219273ec476f50a145038b37c15e4b7","ssdeep":"384:3//hnAWJc1wEWOsjaZJ59kUXHakxfnMcMWheF8VUiglyK6Cp:vB12wlLu19h33dV6Mv4TVp","tlshash":"cb92fe1b756ca5b1027773b6953bcb06ff21612b1003c719babc99c06f35e9ca01adad","size":20558,"data":"","first_seen":"2023-03-12T20:42:29Z","last_seen":"2026-06-06T22:35:25.718244Z","times_seen":218,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.smartsuppchat.com/loader.js?","fqdn":"www.smartsuppchat.com","domain":"smartsuppchat.com","tld":"com"},"ip":{"addr":"185.76.9.12","port":443,"asn":60068,"as":"Datacamp Limited","country":"Sweden","country_code":"SE"},"introduction_type":"scriptElement","is_inline":false,"md5":"a4d5607cdbc76688d37ad6311610a058","sha1":"534adf5ac8c28e88b13d1549add0d84a57a52c61","sha256":"7c209ce50b76600257f47c0a47333504478e9c89793713cc7d113bbb688c3eda","sha512":"3ee08aedbe06d4a8181f362bcf9694d164f36309b70f048d42079989f139915e340515f56a6f84e3bb24d4e027cceee7c2c32a710f58ddbaaa5a5a662ccd3300","ssdeep":"384:wBWbE0rIcvqSI/aQ/UpIxN5BWbEgl/ET/xzy2A3wBV+:wAxka0/scT/xzy2A3wBV+","tlshash":"f682b6cc7691b16543ab61b4843f620ff1376929740d8821b965eae13c78d8ed037fb8","size":18052,"data":"","first_seen":"2026-01-16T11:03:53.240781Z","last_seen":"2026-04-19T18:18:50.439045Z","times_seen":4264,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"fce307d16762529d7c7c80bed168de50","sha1":"8d7dd5cea51ce687cb33e16afe76415a20c3459c","sha256":"6937fcd8a895481cb0bc9da27e5a252e85fa92106c0ac34ea6c4220680b57ff0","sha512":"113ea311a563cb420f678ea9476774e3bfcf1c13ce19f9fc2662fc562e911cadb5f9606a21c01fa8bc5df83c0acdde5a072abe328462cd666b9c41a7f4c350b3","ssdeep":"","tlshash":"c5f0dcb30138f929c2828620e6c5a92df243cb0445686caa336810b5f1c865e80efeac","size":470,"data":"","first_seen":"2025-12-11T22:09:49.310107Z","last_seen":"2026-02-02T20:32:03.954669Z","times_seen":1489,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"6c1015c3c6e5d67cd64ecaee63722225","sha1":"46fa20e82d7ec4b6914704bfd5576f848b00732f","sha256":"a0e430c8331f1360d9f393571d5340bb4814c9db813b54e36c9d8c76344620dd","sha512":"3d5691cdb04ae7db9332c3b30738e2d16bf3e19e155e1ebcde07342015f2e33ce00225bb140282b72560353a15dad5188fb08c46ded1ba5dd0e639f696a3127c","ssdeep":"","tlshash":"cf5142a1605ca01b5513d9d1f4923edef0ee0058c77268d07e1c29cfdadae7704a716d","size":3011,"data":"","first_seen":"2025-12-11T22:09:49.31135Z","last_seen":"2026-02-02T20:08:09.126045Z","times_seen":518,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"console":null},"http":[{"url":{"schema":"https","addr":"bootstrap.smartsuppchat.com/widget/8fd9102ad786298dea3ce781fc86c19902c3fe02.json","fqdn":"bootstrap.smartsuppchat.com","domain":"smartsuppchat.com","tld":"com"},"ip":{"addr":"18.158.107.33","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://maxglobal.pro/","date":"2026-01-28T20:18:21.959Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.smartsuppchat.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 02 Dec 2025 00:00:00 GMT","end":"Wed, 30 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"DC:47:26:FC:2D:4B:14:19:23:BC:B7:70:14:DA:60:A6:21:B0:1E:81","sha256":"0D:5E:FD:70:25:9E:DE:DD:47:CF:0C:58:1C:08:A2:A1:05:AC:A6:7E:0C:43:6F:50:E7:49:E0:A1:60:D0:0E:0F"}}},"request":{"raw":"GET /widget/8fd9102ad786298dea3ce781fc86c19902c3fe02.json HTTP/1.1\r\nHost: bootstrap.smartsuppchat.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain\r\nOrigin: https://maxglobal.pro\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://maxglobal.pro/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 403 Forbidden\r\ndate: Wed, 28 Jan 2026 20:18:22 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 57\r\nx-version: 8f78827c99f8a70d2cd46ee881b468733ffd9813\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\ncache-control: private, max-age=0, must-revalidate\r\nx-hit: redis\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":null,"data":{"size":57,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"471ad8674b65ae0302f71602143789ca","sha1":"8cbb927ffa584a95af053f00149b47d8295719f3","sha256":"1e3f60d29de08e299aa39aadee4c5c47414c0e6108298deb9ec78d14d62ed238","sha512":"717b067945c9b8d6fed624f98c70d1e534d76801934db5975cc13ebd86b1f1b592fb4e7f377e996893b4a7e78cd111044f49990a427bc5c42f2ebce6fa6bf7a9","ssdeep":"","tlshash":"fe90022f05291cba7f3245053c6851cc025404a1518074d6ccec917d064f540c022112","first_seen":"2023-04-19T00:11:12Z","last_seen":"2026-06-07T03:22:15.031873Z","times_seen":2958,"resource_available":false,"data":null}},"time_used":556,"timings":{"blocked":266,"dns":27,"connect":20,"send":0,"wait":24,"receive":0,"ssl":216},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"translate.google.com/gen204?sl=en\u0026nca=te_ap\u0026client=te\u0026logld=vTE_20260120","fqdn":"translate.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.178.78","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://maxglobal.pro/","date":"2026-01-28T20:18:22.301Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 12 Jan 2026 08:36:50 GMT","end":"Mon, 06 Apr 2026 08:36:49 GMT"},"fingerprint":{"sha1":"21:DA:DF:3A:20:D8:9F:27:DD:87:77:A6:EF:FF:C8:4F:F3:9B:8F:BA","sha256":"81:7C:8A:A6:E6:6D:7F:88:42:51:5E:31:10:30:7D:B8:D5:EE:F9:40:3E:96:D6:AA:F5:DD:F4:84:01:69:70:40"}}},"request":{"raw":"GET /gen204?sl=en\u0026nca=te_ap\u0026client=te\u0026logld=vTE_20260120 HTTP/1.1\r\nHost: translate.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://maxglobal.pro/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 204 No Content\r\ncontent-type: image/gif; charset=utf-8\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Wed, 28 Jan 2026 20:18:22 GMT\r\ncross-origin-resource-policy: cross-origin\r\np3p: CP=\"This is not a P3P policy! See g.co/p3phelp for more info.\"\r\ncross-origin-opener-policy: same-origin\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\ncontent-security-policy: require-trusted-types-for 'script';report-uri /_/TranslateApiHttp/cspreport, script-src 'nonce-GU1hgy2r5ocXLPtdvVB3-w' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/TranslateApiHttp/cspreport;worker-src 'self'\r\npermissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*\r\nreporting-endpoints: default=\"/_/TranslateApiHttp/web-reports?context=eJzj4tDikmLw0JBiEOLh6Lv38jSbwIbph7YxKikl5RfGlxQl5hXnJJakFqcWlaUWxRsZGJkZGBqZ6RmYxhcYAAAkdxLV\"\r\nserver: ESF\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nset-cookie: __Secure-ENID=31.SE=bYrRKYiz5zeDymGoHhY8L4qUKKLvBp3G8xxCjgfRLtxxKAsJ8S2T9doJGIuwTMjFdfow0esQk8P-3m03nFSfXB3fmZTndv6IKGusamPkuFln3g-u51ho3QHyx5A1BNTrNv68nKP3-6srUb2bhBtdr3Hhiq7wOfN-jVrw8ETzVdOlrl16CXbbb0QP23CmD_yPY8670zlrzaLQUI4aGRpyMAdzRC9KDmMB5Q-hTvCAxfxE2DP7I6mQbg; expires=Sun, 28-Feb-2027 12:36:40 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=lax\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"image/gif; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-07T22:34:23.045387Z","times_seen":16223158,"resource_available":true,"data":null}},"time_used":104,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":104,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maxglobal.pro/myaccount/assets/css/dashlite.css?ver=2.4.0","fqdn":"maxglobal.pro","domain":"maxglobal.pro","tld":"pro"},"ip":{"addr":"176.123.0.55","port":443,"asn":200019,"as":"Alexhost Srl","country":"Moldova","country_code":"MD"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://maxglobal.pro/","date":"2026-01-28T20:18:21.349Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.maxglobal.pro","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 10 Dec 2025 17:51:15 GMT","end":"Tue, 10 Mar 2026 17:51:14 GMT"},"fingerprint":{"sha1":"23:12:E1:E5:B2:95:87:5E:69:13:36:54:0D:54:E5:D7:74:E2:F7:43","sha256":"3C:39:C4:6F:9A:4E:5F:70:86:FA:DE:D7:1F:55:DA:89:CD:53:7E:90:54:16:FF:20:16:E2:E3:5D:70:DA:D6:46"}}},"request":{"raw":"GET /myaccount/assets/css/dashlite.css?ver=2.4.0 HTTP/1.1\r\nHost: maxglobal.pro\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://maxglobal.pro/\r\nCookie: PHPSESSID=krm1anei5pij142njfv9vmf2pt\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 28 Jan 2026 20:18:20 GMT\r\ncontent-type: text/css\r\nvary: Accept-Encoding\r\nlast-modified: Thu, 11 May 2023 18:14:16 GMT\r\nstrict-transport-security: max-age=16070400;\r\nexpires: Fri, 27 Feb 2026 20:18:20 GMT\r\ncache-control: max-age=2592000\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nx-nginx-upstream-cache-status: STALE\r\nx-server-powered-by: Engintron\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Engintron","description":"Engintron is a plugin that integrates Nginx to cPanel/WHM server.","website":"https://github.com/engintron/engintron","common_platform_enumeration":"","icon":"engintron.png","categories":["Web server extensions"]}],"data":{"size":734027,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (996)","md5":"8d966be8245f7e8fa9f0a872ea326228","sha1":"c8f17f7af15629dafa65ce6dc68e780abd6e6385","sha256":"6335589e1c41d306998b9cf265ee25739afcf25e0dd0ad1c28c74dc45cd3cd7a","sha512":"ef790c683ac71f77cefe0f727d4bfb36def8f84b3de3b1c18e2936981df98bfcc8e2871edc6e85630a953e0651be6310bdce62c59958108bd9696740ddc1c155","ssdeep":"6144:JdN+B/KrB7OGB5ONIb/lyMmkQOFri0LEO:EhIbQ0LN","tlshash":"a1f4d8fbb29121042167c38875d3fbe5872e6194e1564ebef492290cc3cd5d839b6eca","first_seen":"2023-05-28T20:04:51Z","last_seen":"2026-06-06T22:35:25.727493Z","times_seen":136,"resource_available":false,"data":null}},"time_used":114,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":114,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-28","alert":"Sinkholed","trigger":"maxglobal.pro","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-28","alert":"Sinkholed","trigger":"maxglobal.pro","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"maxglobal.pro/myaccount/js/vendors/sweetalert.js","fqdn":"maxglobal.pro","domain":"maxglobal.pro","tld":"pro"},"ip":{"addr":"176.123.0.55","port":443,"asn":200019,"as":"Alexhost Srl","country":"Moldova","country_code":"MD"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://maxglobal.pro/","date":"2026-01-28T20:18:21.369Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.maxglobal.pro","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 10 Dec 2025 17:51:15 GMT","end":"Tue, 10 Mar 2026 17:51:14 GMT"},"fingerprint":{"sha1":"23:12:E1:E5:B2:95:87:5E:69:13:36:54:0D:54:E5:D7:74:E2:F7:43","sha256":"3C:39:C4:6F:9A:4E:5F:70:86:FA:DE:D7:1F:55:DA:89:CD:53:7E:90:54:16:FF:20:16:E2:E3:5D:70:DA:D6:46"}}},"request":{"raw":"GET /myaccount/js/vendors/sweetalert.js HTTP/1.1\r\nHost: maxglobal.pro\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://maxglobal.pro/\r\nCookie: PHPSESSID=krm1anei5pij142njfv9vmf2pt\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 28 Jan 2026 20:18:20 GMT\r\ncontent-type: application/javascript\r\nvary: Accept-Encoding\r\nlast-modified: Thu, 11 May 2023 18:14:15 GMT\r\nstrict-transport-security: max-age=16070400;\r\nexpires: Fri, 27 Feb 2026 20:18:20 GMT\r\ncache-control: max-age=2592000\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nx-nginx-upstream-cache-status: STALE\r\nx-server-powered-by: Engintron\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Engintron","description":"Engintron is a plugin that integrates Nginx to cPanel/WHM server.","website":"https://github.com/engintron/engintron","common_platform_enumeration":"","icon":"engintron.png","categories":["Web server extensions"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":40808,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (40808), with no line terminators","md5":"f3b8ce97ff6ce324da6232da353adf40","sha1":"2a3daabc70232c6350ab48d32605dc4a6ac1f1fa","sha256":"2ac46ebee46d515be86deeba385b4e41f8cff160364b362c9a6e153df327c66b","sha512":"000d41ce9e50d0ad4a6a728a9af37fe1ddc844a565bfd3d883014fbe6df69cf3ba412f321f51ceecb6e0075a6088ec4fb5f7a0e73127d9b6bae0c51ca89c7a08","ssdeep":"384:/BLa4qL1li0jldLUuuRzdNU/CfFqLyX9ye1hAbj/i5Yy/kyyeu8pgUqaF2XSSHEj:ZLahUvdNU/CNqWX9ye1hWz8+B3c2Bkj","tlshash":"96031a96758470a643e398f191ef020ef2359523b84798d5b361e8e88ff4e8d50a7f1b","first_seen":"2023-03-07T01:03:31Z","last_seen":"2026-06-07T17:38:40.692045Z","times_seen":10926,"resource_available":true,"data":null}},"time_used":207,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":207,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-28","alert":"Sinkholed","trigger":"maxglobal.pro","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-28","alert":"Sinkholed","trigger":"maxglobal.pro","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/hennypenny/v18/wXKvE3UZookzsxz_kjGSfPQtvXI.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.3","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://maxglobal.pro/","date":"2026-01-28T20:18:21.720Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 29 Dec 2025 19:52:23 GMT","end":"Mon, 23 Mar 2026 19:52:22 GMT"},"fingerprint":{"sha1":"5A:74:FC:38:D2:7B:9B:E5:E5:0D:67:25:F4:73:BC:BA:2E:12:A7:FD","sha256":"3B:19:CD:BE:44:E6:EE:DC:8D:33:2B:A2:1C:E4:13:F8:6F:7E:2E:52:5D:0E:75:F3:1A:ED:21:1B:7A:B7:2E:BA"}}},"request":{"raw":"GET /s/hennypenny/v18/wXKvE3UZookzsxz_kjGSfPQtvXI.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://maxglobal.pro\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 44808\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 28 Jan 2026 15:12:33 GMT\r\nexpires: Thu, 28 Jan 2027 15:12:33 GMT\r\ncache-control: public, max-age=31536000\r\nage: 18348\r\nlast-modified: Wed, 10 Sep 2025 16:42:20 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":44808,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 44808, version 1.0","md5":"6586678072d3066725a1358683c89bb7","sha1":"b23ac6e73ef6ef71e0e6e9a9abce72e7a669b609","sha256":"2a18c0a4554fd35b393b609bb3fd60be72e773d57600baeb2be1252e30919e26","sha512":"b8eb75eccc5b26c615e6c1821543ef29575d71ec4ac612220c5ec3685fd8cb62e28d3b0f6ce23d27f42729e42228cb3f93c26d73a30f2dd38ab711de1c579f64","ssdeep":"768:/2K7g6UQS0LElsInx/vfJNqcEgLCjr5bI8vg5Umdo/BDMhLOvPaMMS3SWvRE9qY7:uK7O4L4sIxnfzqcXCxbBAUmO/BD2OKMS","tlshash":"9f13f263a36f9aed4ed8c8b1613217dc6254ad025caad54416b8a5f4b03edc312fbfc4","first_seen":"2025-09-14T03:36:24.309565Z","last_seen":"2026-06-06T22:35:25.720972Z","times_seen":161,"resource_available":false,"data":null}},"time_used":144,"timings":{"blocked":61,"dns":1,"connect":7,"send":0,"wait":12,"receive":9,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"translate.google.com/translate_a/element.js?cb=googleTranslateElementInit","fqdn":"translate.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.178.78","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://maxglobal.pro/","date":"2026-01-28T20:18:21.359Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 12 Jan 2026 08:36:50 GMT","end":"Mon, 06 Apr 2026 08:36:49 GMT"},"fingerprint":{"sha1":"21:DA:DF:3A:20:D8:9F:27:DD:87:77:A6:EF:FF:C8:4F:F3:9B:8F:BA","sha256":"81:7C:8A:A6:E6:6D:7F:88:42:51:5E:31:10:30:7D:B8:D5:EE:F9:40:3E:96:D6:AA:F5:DD:F4:84:01:69:70:40"}}},"request":{"raw":"GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1\r\nHost: translate.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://maxglobal.pro/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/javascript; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Wed, 28 Jan 2026 20:18:21 GMT\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":81716,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (2082)","md5":"a0bb01bd605b38b51d52a0eeadf74911","sha1":"e7acde234246cc3131137105e4eeeabf314a20ec","sha256":"ff67278e0b3d30b3642997a534b5988d0dbe1618780e877dc53117e9638a70dd","sha512":"c6ee122dc7fd5f15ab76b4b5cd21c8aa70899ff45190c5400975861fa3e2dcec752a01a0d9f01c6461769b695d2dec255aa2bb5e429ff64b92e6ff1d065a42d6","ssdeep":"1536:X3vdWjCj72+e9JCTUHdBjHvK4eb1wh3N4eOdDNezi9wNWr7:XO+e9J3jHvK4EJgziN7","tlshash":"e583b8ccb6a570658263f5b5413f000eb23f59a9f8084dacb288d8e1adf4959417bf7d","first_seen":"2026-01-28T20:13:57.271616Z","last_seen":"2026-01-28T20:47:14.932174Z","times_seen":5,"resource_available":true,"data":null}},"time_used":247,"timings":{"blocked":88,"dns":0,"connect":27,"send":0,"wait":54,"receive":0,"ssl":76},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.3","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://maxglobal.pro/","date":"2026-01-28T20:18:22.234Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 29 Dec 2025 19:52:23 GMT","end":"Mon, 23 Mar 2026 19:52:22 GMT"},"fingerprint":{"sha1":"5A:74:FC:38:D2:7B:9B:E5:E5:0D:67:25:F4:73:BC:BA:2E:12:A7:FD","sha256":"3B:19:CD:BE:44:E6:EE:DC:8D:33:2B:A2:1C:E4:13:F8:6F:7E:2E:52:5D:0E:75:F3:1A:ED:21:1B:7A:B7:2E:BA"}}},"request":{"raw":"GET /s/i/productlogos/translate/v14/24px.svg HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://maxglobal.pro/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ncontent-length: 3340\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 23 Jan 2026 13:19:22 GMT\r\nexpires: Sat, 23 Jan 2027 13:19:22 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Wed, 20 Apr 2022 14:24:23 GMT\r\ncontent-type: image/svg+xml\r\nvary: Accept-Encoding\r\nage: 457140\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":6225,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"2bd5c073a88b83ed74db88282a56ddfb","sha1":"d0ebfc376f8c6a44a8d4cd216817dcd7d0c33650","sha256":"ab5c23a05e39deed14d9d8262b0dce9f024f86105a27196cad37d14a3f516e09","sha512":"5c6c4a92e93fc0f6a675658cc84f6187fdebd3eee94efd07e24658736cba598f3bc7156b19834b13fb44c1d43fcb7df9fcca7f0a453037e30da76ba8f4b23b89","ssdeep":"96:+R2K3Z4n7tyVwip82hezk6227gLFoXhu1XuE20ot+pVY3YptWDzOzgXK3Zx:ql3KnxyGGMzb7noR20NTww33","tlshash":"c1d1e6f19309d815cd6a83d8cd9b8002aa1f25ddd50ac6cc7639fb3bd1a50eb1d2d7a4","first_seen":"2023-04-06T21:34:37Z","last_seen":"2026-06-07T22:34:49.528862Z","times_seen":69426,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":2,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maxglobal.pro/myaccount/assets/js/custom.js","fqdn":"maxglobal.pro","domain":"maxglobal.pro","tld":"pro"},"ip":{"addr":"176.123.0.55","port":443,"asn":200019,"as":"Alexhost Srl","country":"Moldova","country_code":"MD"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://maxglobal.pro/","date":"2026-01-28T20:18:21.370Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.maxglobal.pro","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 10 Dec 2025 17:51:15 GMT","end":"Tue, 10 Mar 2026 17:51:14 GMT"},"fingerprint":{"sha1":"23:12:E1:E5:B2:95:87:5E:69:13:36:54:0D:54:E5:D7:74:E2:F7:43","sha256":"3C:39:C4:6F:9A:4E:5F:70:86:FA:DE:D7:1F:55:DA:89:CD:53:7E:90:54:16:FF:20:16:E2:E3:5D:70:DA:D6:46"}}},"request":{"raw":"GET /myaccount/assets/js/custom.js HTTP/1.1\r\nHost: maxglobal.pro\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://maxglobal.pro/\r\nCookie: PHPSESSID=krm1anei5pij142njfv9vmf2pt\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 28 Jan 2026 20:18:20 GMT\r\ncontent-type: application/javascript\r\nvary: Accept-Encoding\r\nlast-modified: Thu, 11 May 2023 18:14:15 GMT\r\nstrict-transport-security: max-age=16070400;\r\nexpires: Fri, 27 Feb 2026 20:18:20 GMT\r\ncache-control: max-age=2592000\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nx-nginx-upstream-cache-status: STALE\r\nx-server-powered-by: Engintron\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Engintron","description":"Engintron is a plugin that integrates Nginx to cPanel/WHM server.","website":"https://github.com/engintron/engintron","common_platform_enumeration":"","icon":"engintron.png","categories":["Web server extensions"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":20558,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with CRLF line terminators","md5":"148eb289a3c56badd113210da14f8f22","sha1":"7f957907636bc862f6bf03c2b6c9cbfbacee669e","sha256":"cd4d28b4aa5449c1f0721ea2a18a2539f4b763781c74fb12512d5087625aae7d","sha512":"5ad0ae7e6ecff10e5eb95fd6a9ab384b5724a6c841b8feea132bbf7a2ad8b92ec58f66d7802de3b9f250cdf3fbd605c6d219273ec476f50a145038b37c15e4b7","ssdeep":"384:3//hnAWJc1wEWOsjaZJ59kUXHakxfnMcMWheF8VUiglyK6Cp:vB12wlLu19h33dV6Mv4TVp","tlshash":"cb92fe1b756ca5b1027773b6953bcb06ff21612b1003c719babc99c06f35e9ca01adad","first_seen":"2023-03-12T20:42:29Z","last_seen":"2026-06-06T22:35:25.718244Z","times_seen":218,"resource_available":true,"data":null}},"time_used":206,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":206,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-28","alert":"Sinkholed","trigger":"maxglobal.pro","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-28","alert":"Sinkholed","trigger":"maxglobal.pro","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"maxglobal.pro/myaccount/js/toastr.js","fqdn":"maxglobal.pro","domain":"maxglobal.pro","tld":"pro"},"ip":{"addr":"176.123.0.55","port":443,"asn":200019,"as":"Alexhost Srl","country":"Moldova","country_code":"MD"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://maxglobal.pro/","date":"2026-01-28T20:18:21.372Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.maxglobal.pro","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 10 Dec 2025 17:51:15 GMT","end":"Tue, 10 Mar 2026 17:51:14 GMT"},"fingerprint":{"sha1":"23:12:E1:E5:B2:95:87:5E:69:13:36:54:0D:54:E5:D7:74:E2:F7:43","sha256":"3C:39:C4:6F:9A:4E:5F:70:86:FA:DE:D7:1F:55:DA:89:CD:53:7E:90:54:16:FF:20:16:E2:E3:5D:70:DA:D6:46"}}},"request":{"raw":"GET /myaccount/js/toastr.js HTTP/1.1\r\nHost: maxglobal.pro\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://maxglobal.pro/\r\nCookie: PHPSESSID=krm1anei5pij142njfv9vmf2pt\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 28 Jan 2026 20:18:20 GMT\r\ncontent-type: application/javascript\r\nvary: Accept-Encoding\r\nlast-modified: Thu, 11 May 2023 18:14:15 GMT\r\nstrict-transport-security: max-age=16070400;\r\nexpires: Fri, 27 Feb 2026 20:18:20 GMT\r\ncache-control: max-age=2592000\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nx-nginx-upstream-cache-status: STALE\r\nx-server-powered-by: Engintron\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Engintron","description":"Engintron is a plugin that integrates Nginx to cPanel/WHM server.","website":"https://github.com/engintron/engintron","common_platform_enumeration":"","icon":"engintron.png","categories":["Web server extensions"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":8035,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators","md5":"b8309849622865e0321015ec2482645d","sha1":"5ee2d93004b15046be73afc88d29d0b780d165bd","sha256":"3bffa2cee14e483c528eeade0e59f4705555bf047c2400b0bf9fda105129b638","sha512":"ab01b20bf9f714db876acd866a2641dae72ea17562e6a9a69609e340c9ad109a9f56f8c72a0815d966a505f16540e4c75f34978df34f5b487908b76ce6d0cd0e","ssdeep":"96:N6mApHxN4DcSDaeD88DG+v+LxyX5Y7LuQpbnt4g4EDNHChmGTotgl4NZjOKjv9:NBK+vxpYnPD4eNCfTo6SNZjOKh","tlshash":"38f1f0c1331fa75b4edb239c9036944cfa7de232854a147bb8a996986974708d3e32dc","first_seen":"2023-03-08T22:47:56Z","last_seen":"2026-06-06T22:35:25.71386Z","times_seen":957,"resource_available":true,"data":null}},"time_used":206,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":206,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-28","alert":"Sinkholed","trigger":"maxglobal.pro","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-28","alert":"Sinkholed","trigger":"maxglobal.pro","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"maxglobal.pro/myaccount/images/favicon.png","fqdn":"maxglobal.pro","domain":"maxglobal.pro","tld":"pro"},"ip":{"addr":"176.123.0.55","port":443,"asn":200019,"as":"Alexhost Srl","country":"Moldova","country_code":"MD"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://maxglobal.pro/","date":"2026-01-28T20:18:21.947Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.maxglobal.pro","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 10 Dec 2025 17:51:15 GMT","end":"Tue, 10 Mar 2026 17:51:14 GMT"},"fingerprint":{"sha1":"23:12:E1:E5:B2:95:87:5E:69:13:36:54:0D:54:E5:D7:74:E2:F7:43","sha256":"3C:39:C4:6F:9A:4E:5F:70:86:FA:DE:D7:1F:55:DA:89:CD:53:7E:90:54:16:FF:20:16:E2:E3:5D:70:DA:D6:46"}}},"request":{"raw":"GET /myaccount/images/favicon.png HTTP/1.1\r\nHost: maxglobal.pro\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://maxglobal.pro/\r\nCookie: PHPSESSID=krm1anei5pij142njfv9vmf2pt\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 28 Jan 2026 20:18:21 GMT\r\ncontent-type: image/png\r\ncontent-length: 15981\r\nlast-modified: Thu, 10 Apr 2025 07:15:42 GMT\r\nstrict-transport-security: max-age=16070400;\r\nexpires: Sun, 29 Mar 2026 20:18:21 GMT\r\ncache-control: max-age=5184000\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nx-nginx-upstream-cache-status: STALE\r\nx-server-powered-by: Engintron\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Engintron","description":"Engintron is a plugin that integrates Nginx to cPanel/WHM server.","website":"https://github.com/engintron/engintron","common_platform_enumeration":"","icon":"engintron.png","categories":["Web server extensions"]}],"data":{"size":15981,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced","md5":"b85cc7c0f022707c51d6fc59fbd6a260","sha1":"3b9544b76075ff4ae78e09170897344f496fc2a5","sha256":"20a6e8ea2eff991b301345c4f97adf6213ca854722506267cd6fe66f4cd796e1","sha512":"988ea4cd19fa5e598ad8930e767cf3de8b604e96fa682c77fbfab255d76e9c7edc9dbcf80c721309718ee81f58a0ac9aa6b3132b91cd44816d4e655d3395ea35","ssdeep":"384:+qYG9Ns8nRF5lBcmWONPZx1JMgLieCN6iM:1VsqRF7BcmWmZxbLCg5","tlshash":"9572c0ade0cf14984f4a95e19cdf427d5beb6491cc4add6ed8e1ad33a90124203a32db","first_seen":"2026-01-28T19:31:30.811971Z","last_seen":"2026-01-28T20:18:41.527Z","times_seen":2,"resource_available":false,"data":null}},"time_used":52,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":51,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-28","alert":"Sinkholed","trigger":"maxglobal.pro","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-28","alert":"Sinkholed","trigger":"maxglobal.pro","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.Jvw2x7oPD4E.O/am=AAAQ/d=1/exm=el_conf/ed=1/rs=AN8SPfoNN7znqzt0dNyV59XSlfMCCgAClQ/m=el_main","fqdn":"translate.googleapis.com","domain":"translate.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://maxglobal.pro/","date":"2026-01-28T20:18:21.945Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 29 Dec 2025 19:52:24 GMT","end":"Mon, 23 Mar 2026 19:52:23 GMT"},"fingerprint":{"sha1":"43:39:AF:0A:74:F9:2F:1B:C0:1E:4E:89:21:30:C2:28:EC:9F:6C:67","sha256":"EA:F1:0E:C7:36:18:F3:9D:D1:D5:34:23:44:7D:6F:9D:2F:61:C7:81:09:9E:E9:C8:02:C8:F2:2C:0A:83:B3:A5"}}},"request":{"raw":"GET /_/translate_http/_/js/k=translate_http.tr.no.Jvw2x7oPD4E.O/am=AAAQ/d=1/exm=el_conf/ed=1/rs=AN8SPfoNN7znqzt0dNyV59XSlfMCCgAClQ/m=el_main HTTP/1.1\r\nHost: translate.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://maxglobal.pro/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"rosetta\"\r\nreport-to: {\"group\":\"rosetta\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/rosetta\"}]}\r\ncontent-length: 105101\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Mon, 26 Jan 2026 22:53:37 GMT\r\nexpires: Tue, 26 Jan 2027 22:53:37 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Mon, 19 Jan 2026 18:09:01 GMT\r\ncontent-type: text/javascript; charset=UTF-8\r\nvary: Accept-Encoding\r\nage: 163484\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":369951,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (2481)","md5":"fa91d84d7ad500006b0663ec17f535e8","sha1":"84d84528ae65cafb304ad77bbab92d72ed0a4afd","sha256":"28e9904fc92408ba2affd0eaf173aaa62d4c4e53840202c108d82776bb127fde","sha512":"6a5604ea3c8bb34e37f8f6c57c9b4d766fdb5fbfffdc44b2a7e379ece36ca8287e52182e9728c3cf5b543f2ced6a1f16550fe33dbd945abeddd5d24a93d8f5f8","ssdeep":"3072:AhdxJmQS0zR+UXm8WRj/kpW6m7CCV7MjyxhJTTDu2MOHceWumXtHNzRfQExm:xYHb12xHcdHjzR2","tlshash":"a174dacab266b8939262f8a190bf004bb93ddd57b4484c6cb149d8ee5db08094177f7f","first_seen":"2026-01-20T20:12:22.451314Z","last_seen":"2026-04-09T13:46:44.906308Z","times_seen":1324,"resource_available":true,"data":null}},"time_used":89,"timings":{"blocked":29,"dns":2,"connect":8,"send":0,"wait":9,"receive":20,"ssl":19},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.Qrtd5lGlzn4.L.F4.O/am=AAQD/d=0/rs=AN8SPfo9mDPo5pOm0HC4yPcwcdDdHSiNXw/m=el_main_css","fqdn":"www.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://maxglobal.pro/","date":"2026-01-28T20:18:22.138Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 29 Dec 2025 19:52:23 GMT","end":"Mon, 23 Mar 2026 19:52:22 GMT"},"fingerprint":{"sha1":"5A:74:FC:38:D2:7B:9B:E5:E5:0D:67:25:F4:73:BC:BA:2E:12:A7:FD","sha256":"3B:19:CD:BE:44:E6:EE:DC:8D:33:2B:A2:1C:E4:13:F8:6F:7E:2E:52:5D:0E:75:F3:1A:ED:21:1B:7A:B7:2E:BA"}}},"request":{"raw":"GET /_/translate_http/_/ss/k=translate_http.tr.Qrtd5lGlzn4.L.F4.O/am=AAQD/d=0/rs=AN8SPfo9mDPo5pOm0HC4yPcwcdDdHSiNXw/m=el_main_css HTTP/1.1\r\nHost: www.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://maxglobal.pro/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"rosetta\"\r\nreport-to: {\"group\":\"rosetta\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/rosetta\"}]}\r\ncontent-length: 3969\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Mon, 26 Jan 2026 22:56:04 GMT\r\nexpires: Tue, 26 Jan 2027 22:56:04 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Wed, 15 Oct 2025 01:09:54 GMT\r\ncontent-type: text/css; charset=UTF-8\r\nvary: Accept-Encoding\r\nage: 163338\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":20298,"size_decoded":0,"mime_type":"text/css; charset=UTF-8","magic":"ASCII text, with very long lines (20298), with no line terminators","md5":"183cb263396f0b39789db1ae3f1e1b20","sha1":"502fcf18fa8d865213e282824ab2dfaadb9b8beb","sha256":"6a91c12a6fd1664f4d594040374fda61fe5b02fd3aee5f0c877ccbfc49488ec5","sha512":"ef280b60fa9f4bcb446d952f59a9b89442b6da6737bddc20a8fb38fcf0b4083170c09c008d7d221cf205084c8342da1f995bdd99ce907d70e8e14fc62d827acf","ssdeep":"192:nvqx/EhNINclXsfg0S0Q8CqA3ukLzSJFzvQVMZnUIfIxIRhpTpeuHjPtcmx4v78l:gM78Sr3fWJFzouRUqWQhpTpdHjPtc5G","tlshash":"bf92972047aed01967efa82364d36dff71d444db90523eeaaf5a7352cd821f231ea214","first_seen":"2025-06-11T00:07:11.687997Z","last_seen":"2026-04-13T20:47:54.876807Z","times_seen":37896,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maxglobal.pro/myaccount/scss/sweetalert.css","fqdn":"maxglobal.pro","domain":"maxglobal.pro","tld":"pro"},"ip":{"addr":"176.123.0.55","port":443,"asn":200019,"as":"Alexhost Srl","country":"Moldova","country_code":"MD"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://maxglobal.pro/","date":"2026-01-28T20:18:21.354Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.maxglobal.pro","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 10 Dec 2025 17:51:15 GMT","end":"Tue, 10 Mar 2026 17:51:14 GMT"},"fingerprint":{"sha1":"23:12:E1:E5:B2:95:87:5E:69:13:36:54:0D:54:E5:D7:74:E2:F7:43","sha256":"3C:39:C4:6F:9A:4E:5F:70:86:FA:DE:D7:1F:55:DA:89:CD:53:7E:90:54:16:FF:20:16:E2:E3:5D:70:DA:D6:46"}}},"request":{"raw":"GET /myaccount/scss/sweetalert.css HTTP/1.1\r\nHost: maxglobal.pro\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://maxglobal.pro/\r\nCookie: PHPSESSID=krm1anei5pij142njfv9vmf2pt\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 28 Jan 2026 20:18:20 GMT\r\ncontent-type: text/css\r\nvary: Accept-Encoding\r\nlast-modified: Thu, 11 May 2023 18:14:16 GMT\r\nstrict-transport-security: max-age=16070400;\r\nexpires: Fri, 27 Feb 2026 20:18:20 GMT\r\ncache-control: max-age=2592000\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nx-nginx-upstream-cache-status: STALE\r\nx-server-powered-by: Engintron\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Engintron","description":"Engintron is a plugin that integrates Nginx to cPanel/WHM server.","website":"https://github.com/engintron/engintron","common_platform_enumeration":"","icon":"engintron.png","categories":["Web server extensions"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":32278,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (821), with CRLF line terminators","md5":"713b9e2ceb7dacbc2e2b9dcafd45039a","sha1":"77fa55cc8e506789e0eedef077c2c73ead3665fd","sha256":"4624bff0a6a0cdf7129faf7be37a98905aa8133a165bb854879f91b7c2e94fda","sha512":"35e253f539e3773ebb72d6b0832ac7b3108237962bd31488689d2495d3848033fa1fe0435ed46b4803518b36800b4f75f281b8ffec2a8175e8b3282120055d17","ssdeep":"384:it3WuGFDc/KqTkzBfGyUkxOi/twFXiBMxbUWweI+8ItgMEnHw5EHweAq:itnpkxOotwFyBMxR8ODEnHw5EHweAq","tlshash":"2de2666b4d402244a3374735e3de8e14fe3840639a031dad77ce51ae8fb2e5c15a9f96","first_seen":"2023-05-11T23:04:03Z","last_seen":"2026-06-06T22:35:25.725872Z","times_seen":240,"resource_available":false,"data":null}},"time_used":213,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":213,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-28","alert":"Sinkholed","trigger":"maxglobal.pro","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-28","alert":"Sinkholed","trigger":"maxglobal.pro","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"maxglobal.pro/myaccount/logo.png","fqdn":"maxglobal.pro","domain":"maxglobal.pro","tld":"pro"},"ip":{"addr":"176.123.0.55","port":443,"asn":200019,"as":"Alexhost Srl","country":"Moldova","country_code":"MD"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://maxglobal.pro/","date":"2026-01-28T20:18:21.361Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.maxglobal.pro","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 10 Dec 2025 17:51:15 GMT","end":"Tue, 10 Mar 2026 17:51:14 GMT"},"fingerprint":{"sha1":"23:12:E1:E5:B2:95:87:5E:69:13:36:54:0D:54:E5:D7:74:E2:F7:43","sha256":"3C:39:C4:6F:9A:4E:5F:70:86:FA:DE:D7:1F:55:DA:89:CD:53:7E:90:54:16:FF:20:16:E2:E3:5D:70:DA:D6:46"}}},"request":{"raw":"GET /myaccount/logo.png HTTP/1.1\r\nHost: maxglobal.pro\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://maxglobal.pro/\r\nCookie: PHPSESSID=krm1anei5pij142njfv9vmf2pt\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 28 Jan 2026 20:18:20 GMT\r\ncontent-type: image/png\r\ncontent-length: 19062\r\nlast-modified: Thu, 10 Apr 2025 07:15:24 GMT\r\nstrict-transport-security: max-age=16070400;\r\nexpires: Sun, 29 Mar 2026 20:18:20 GMT\r\ncache-control: max-age=5184000\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nx-nginx-upstream-cache-status: STALE\r\nx-server-powered-by: Engintron\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Engintron","description":"Engintron is a plugin that integrates Nginx to cPanel/WHM server.","website":"https://github.com/engintron/engintron","common_platform_enumeration":"","icon":"engintron.png","categories":["Web server extensions"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":19062,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 938 x 281, 8-bit/color RGBA, non-interlaced","md5":"17b1ad7460df769f79f4793062685807","sha1":"a7d8320c6baf424740c55c1f523aa7c07e59b419","sha256":"61927a66a0ee83d40f50b9977d0a418123fcaffa6aae57d41be4f0d7794a1d39","sha512":"be7d7c34d89208455e19a6fc1a5b7c9c08d6657c4914c57c6ec3fddeab372ad1e4e86d5ddeebb57b0f027b8db974758d5887ebfa598c13085abafde0fc032ea2","ssdeep":"384:vNYlp370L3mnil8M+FsprcX3NSDbEpg7ZbRiZAPnZM:FE37BnMKFsprU90HZWG2","tlshash":"0e82bf0e18a38263cf6732531f7865f79551d69ac042a0ea6ecb4ed30e37e314a8b4d7","first_seen":"2026-01-28T19:31:30.816266Z","last_seen":"2026-01-28T20:18:41.52886Z","times_seen":2,"resource_available":false,"data":null}},"time_used":362,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":210,"receive":152,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-28","alert":"Sinkholed","trigger":"maxglobal.pro","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-28","alert":"Sinkholed","trigger":"maxglobal.pro","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Henny+Penny\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"216.58.211.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://maxglobal.pro/","date":"2026-01-28T20:18:21.362Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 29 Dec 2025 19:52:24 GMT","end":"Mon, 23 Mar 2026 19:52:23 GMT"},"fingerprint":{"sha1":"43:39:AF:0A:74:F9:2F:1B:C0:1E:4E:89:21:30:C2:28:EC:9F:6C:67","sha256":"EA:F1:0E:C7:36:18:F3:9D:D1:D5:34:23:44:7D:6F:9D:2F:61:C7:81:09:9E:E9:C8:02:C8:F2:2C:0A:83:B3:A5"}}},"request":{"raw":"GET /css?family=Henny+Penny\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://maxglobal.pro/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Wed, 28 Jan 2026 20:18:21 GMT\r\ndate: Wed, 28 Jan 2026 20:18:21 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":416,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"5fc6fb3ecb95427a215f115328ab0b9f","sha1":"e968d73b46c7bd8dd2023f2f24e730e4a4ae9c9f","sha256":"4555c6eefea6ceac7492dcccdba12a798dcd9fec176e6c468dca72c95b6d36b4","sha512":"0f0edc8dde398530688d4974d0967f49b44edce0842cb965fe2e0abe0ea9f9629957a17d1c7d3ed10b5d0d6e9741b6d9ff70c6034c7e8126275626f2389a1f1c","ssdeep":"","tlshash":"c7e0ab80083ab900e6a30cc001cdba31df0ea1413445a965a6fd18d8bc56e625392b0e","first_seen":"2025-09-14T03:36:24.312884Z","last_seen":"2026-06-06T22:35:25.713302Z","times_seen":154,"resource_available":false,"data":null}},"time_used":192,"timings":{"blocked":70,"dns":0,"connect":20,"send":0,"wait":34,"receive":0,"ssl":65},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maxglobal.pro/myaccount/js/jquery.min.js","fqdn":"maxglobal.pro","domain":"maxglobal.pro","tld":"pro"},"ip":{"addr":"176.123.0.55","port":443,"asn":200019,"as":"Alexhost Srl","country":"Moldova","country_code":"MD"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://maxglobal.pro/","date":"2026-01-28T20:18:21.364Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.maxglobal.pro","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 10 Dec 2025 17:51:15 GMT","end":"Tue, 10 Mar 2026 17:51:14 GMT"},"fingerprint":{"sha1":"23:12:E1:E5:B2:95:87:5E:69:13:36:54:0D:54:E5:D7:74:E2:F7:43","sha256":"3C:39:C4:6F:9A:4E:5F:70:86:FA:DE:D7:1F:55:DA:89:CD:53:7E:90:54:16:FF:20:16:E2:E3:5D:70:DA:D6:46"}}},"request":{"raw":"GET /myaccount/js/jquery.min.js HTTP/1.1\r\nHost: maxglobal.pro\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://maxglobal.pro/\r\nCookie: PHPSESSID=krm1anei5pij142njfv9vmf2pt\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 28 Jan 2026 20:18:20 GMT\r\ncontent-type: application/javascript\r\nvary: Accept-Encoding\r\nlast-modified: Thu, 11 May 2023 18:14:15 GMT\r\nstrict-transport-security: max-age=16070400;\r\nexpires: Fri, 27 Feb 2026 20:18:20 GMT\r\ncache-control: max-age=2592000\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nx-nginx-upstream-cache-status: STALE\r\nx-server-powered-by: Engintron\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Engintron","description":"Engintron is a plugin that integrates Nginx to cPanel/WHM server.","website":"https://github.com/engintron/engintron","common_platform_enumeration":"","icon":"engintron.png","categories":["Web server extensions"]}],"data":{"size":86659,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (32058)","md5":"c9f5aeeca3ad37bf2aa006139b935f0a","sha1":"1055018c28ab41087ef9ccefe411606893dabea2","sha256":"87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de","sha512":"dcff2b5c2b8625d3593a7531ff4ddcd633939cc9f7acfeb79c18a9e6038fdaa99487960075502f159d44f902d965b0b5aed32b41bfa66a1dc07d85b5d5152b58","ssdeep":"1536:YNhEyjjTikEJO4edXXe9J578go6MWX2xkj8e4c4j2ll2AckaXEP6n15HZ+FhFcQ7:uxc2yjx4j2uX/kcQDU8Cu9","tlshash":"4483e6d9b2c67062977730b950bf410bb17a98dab44c8c60f158d9d47eb8a8d907bf2c","first_seen":"2023-03-07T01:02:00Z","last_seen":"2026-06-07T22:12:34.079707Z","times_seen":93014,"resource_available":true,"data":null}},"time_used":209,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":209,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-28","alert":"Sinkholed","trigger":"maxglobal.pro","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-28","alert":"Sinkholed","trigger":"maxglobal.pro","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"maxglobal.pro/myaccount/assets/fonts/Nunito-Bold.woff2","fqdn":"maxglobal.pro","domain":"maxglobal.pro","tld":"pro"},"ip":{"addr":"176.123.0.55","port":443,"asn":200019,"as":"Alexhost Srl","country":"Moldova","country_code":"MD"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://maxglobal.pro/","date":"2026-01-28T20:18:21.708Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.maxglobal.pro","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 10 Dec 2025 17:51:15 GMT","end":"Tue, 10 Mar 2026 17:51:14 GMT"},"fingerprint":{"sha1":"23:12:E1:E5:B2:95:87:5E:69:13:36:54:0D:54:E5:D7:74:E2:F7:43","sha256":"3C:39:C4:6F:9A:4E:5F:70:86:FA:DE:D7:1F:55:DA:89:CD:53:7E:90:54:16:FF:20:16:E2:E3:5D:70:DA:D6:46"}}},"request":{"raw":"GET /myaccount/assets/fonts/Nunito-Bold.woff2 HTTP/1.1\r\nHost: maxglobal.pro\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://maxglobal.pro/myaccount/assets/css/dashlite.css?ver=2.4.0\r\nCookie: PHPSESSID=krm1anei5pij142njfv9vmf2pt\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 28 Jan 2026 20:18:21 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 43608\r\nlast-modified: Thu, 11 May 2023 18:14:16 GMT\r\nstrict-transport-security: max-age=16070400;\r\nexpires: Sun, 29 Mar 2026 20:18:21 GMT\r\ncache-control: max-age=5184000\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nx-nginx-upstream-cache-status: STALE\r\nx-server-powered-by: Engintron\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Engintron","description":"Engintron is a plugin that integrates Nginx to cPanel/WHM server.","website":"https://github.com/engintron/engintron","common_platform_enumeration":"","icon":"engintron.png","categories":["Web server extensions"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":43608,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 43608, version 1.0","md5":"28a6dc5d5990b88cf70a9faff2b32c73","sha1":"a34abc66b1a704d5ad70bfcb75a9939ffee1f350","sha256":"bbac27a12c4dbc1f1605db29f666da787ba3d0a16b6668526906d94a53307a0c","sha512":"96503282a5dc6e492e974f6ac5170e67a508e325369922867779b18b7221e8ced4a859375e4d270c4ffbc46e70958016d95eca0f6f15a4b22bccdef660e2e1d4","ssdeep":"768:9VvmRZHH/qIXFyzto85USEl4o6savszM0ROZdO28tteKHABL0wKCzeQ5dexHBTgv:2RQIVu5eCogsTAzjm5ABneS4xHoLb","tlshash":"3713f1078c091c98d9d3b916f99b7ef302da24b6fbd6a919f9363407813be4b06105e1","first_seen":"2023-05-04T19:11:18Z","last_seen":"2026-06-06T22:35:25.725297Z","times_seen":715,"resource_available":false,"data":null}},"time_used":53,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":51,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-28","alert":"Sinkholed","trigger":"maxglobal.pro","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-28","alert":"Sinkholed","trigger":"maxglobal.pro","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.gstatic.com/images/branding/product/2x/translate_24dp.png","fqdn":"www.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://maxglobal.pro/","date":"2026-01-28T20:18:22.236Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 29 Dec 2025 19:52:23 GMT","end":"Mon, 23 Mar 2026 19:52:22 GMT"},"fingerprint":{"sha1":"5A:74:FC:38:D2:7B:9B:E5:E5:0D:67:25:F4:73:BC:BA:2E:12:A7:FD","sha256":"3B:19:CD:BE:44:E6:EE:DC:8D:33:2B:A2:1C:E4:13:F8:6F:7E:2E:52:5D:0E:75:F3:1A:ED:21:1B:7A:B7:2E:BA"}}},"request":{"raw":"GET /images/branding/product/2x/translate_24dp.png HTTP/1.1\r\nHost: www.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.Qrtd5lGlzn4.L.F4.O/am=AAQD/d=0/rs=AN8SPfo9mDPo5pOm0HC4yPcwcdDdHSiNXw/m=el_main_css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"static-on-bigtable\"\r\nreport-to: {\"group\":\"static-on-bigtable\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/static-on-bigtable\"}]}\r\ncontent-length: 1842\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 28 Jan 2026 12:30:44 GMT\r\nexpires: Thu, 28 Jan 2027 12:30:44 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Thu, 14 Oct 2021 09:08:00 GMT\r\ncontent-type: image/png\r\nvary: Origin\r\nage: 28058\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1842,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced","md5":"c69c796362406f9e11c7f4bf5bb628da","sha1":"e489ce95ab56208090868882113d7416abf46775","sha256":"4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82","sha512":"d3ad560ed0fd29be7d2cc434694f09e5a6fbea8b29c0611aecb54a1b73b4d722c53f42a19dae9e3d5d358444e50fb8fffbc39d67ce751bdbc8c861f6f95d3162","ssdeep":"","tlshash":"4e31f9fd129220437101ade72165eef798347c15f412da60ce65ba389c9fe20ed9a619","first_seen":"2023-04-05T07:39:29Z","last_seen":"2026-06-07T22:34:49.388937Z","times_seen":64978,"resource_available":false,"data":null}},"time_used":9,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maxglobal.pro/myaccount/css/toastr.css","fqdn":"maxglobal.pro","domain":"maxglobal.pro","tld":"pro"},"ip":{"addr":"176.123.0.55","port":443,"asn":200019,"as":"Alexhost Srl","country":"Moldova","country_code":"MD"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://maxglobal.pro/","date":"2026-01-28T20:18:21.358Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.maxglobal.pro","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 10 Dec 2025 17:51:15 GMT","end":"Tue, 10 Mar 2026 17:51:14 GMT"},"fingerprint":{"sha1":"23:12:E1:E5:B2:95:87:5E:69:13:36:54:0D:54:E5:D7:74:E2:F7:43","sha256":"3C:39:C4:6F:9A:4E:5F:70:86:FA:DE:D7:1F:55:DA:89:CD:53:7E:90:54:16:FF:20:16:E2:E3:5D:70:DA:D6:46"}}},"request":{"raw":"GET /myaccount/css/toastr.css HTTP/1.1\r\nHost: maxglobal.pro\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://maxglobal.pro/\r\nCookie: PHPSESSID=krm1anei5pij142njfv9vmf2pt\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 28 Jan 2026 20:18:20 GMT\r\ncontent-type: text/css\r\nvary: Accept-Encoding\r\nlast-modified: Thu, 11 May 2023 18:14:18 GMT\r\nstrict-transport-security: max-age=16070400;\r\nexpires: Fri, 27 Feb 2026 20:18:20 GMT\r\ncache-control: max-age=2592000\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nx-nginx-upstream-cache-status: STALE\r\nx-server-powered-by: Engintron\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Engintron","description":"Engintron is a plugin that integrates Nginx to cPanel/WHM server.","website":"https://github.com/engintron/engintron","common_platform_enumeration":"","icon":"engintron.png","categories":["Web server extensions"]}],"data":{"size":6988,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (821), with CRLF line terminators","md5":"6f3bc1fed2acd85204fa04c82b6c872d","sha1":"ee57a6e6fd2ee673e0f14d4647f92d4e8d1eab0b","sha256":"bf3687811bb3e963a9fabd3d280d0c7f670257b151be140936dfc6c6cefa00dc","sha512":"623490a79cf3e7004d3cf62b79ccf45d90aeaa5adf613118982dca9bb64726b20c8fa3ddcf00d4b4e955cf82124c7b5165728202f548ff6f0323f2f9884d20c7","ssdeep":"96:N6mQU2sp5h7UkfnqHyweI2AJV5bUbLcTWQ78GhJZCjt+TWP+zLmlDUTWKG8Czym7:NBQU2C4yweItJVdQLY8sybttjGZVM/","tlshash":"bde1b539c7407608aaf20669b71a5607ef2a6053db9c5d6a7d9f916cf387b908c30e84","first_seen":"2023-04-15T05:54:03Z","last_seen":"2026-06-06T22:35:25.722052Z","times_seen":924,"resource_available":false,"data":null}},"time_used":212,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":212,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-28","alert":"Sinkholed","trigger":"maxglobal.pro","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-28","alert":"Sinkholed","trigger":"maxglobal.pro","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"maxglobal.pro/myaccount/assets/js/bundle.js?ver=2.4.0","fqdn":"maxglobal.pro","domain":"maxglobal.pro","tld":"pro"},"ip":{"addr":"176.123.0.55","port":443,"asn":200019,"as":"Alexhost Srl","country":"Moldova","country_code":"MD"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://maxglobal.pro/","date":"2026-01-28T20:18:21.365Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.maxglobal.pro","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 10 Dec 2025 17:51:15 GMT","end":"Tue, 10 Mar 2026 17:51:14 GMT"},"fingerprint":{"sha1":"23:12:E1:E5:B2:95:87:5E:69:13:36:54:0D:54:E5:D7:74:E2:F7:43","sha256":"3C:39:C4:6F:9A:4E:5F:70:86:FA:DE:D7:1F:55:DA:89:CD:53:7E:90:54:16:FF:20:16:E2:E3:5D:70:DA:D6:46"}}},"request":{"raw":"GET /myaccount/assets/js/bundle.js?ver=2.4.0 HTTP/1.1\r\nHost: maxglobal.pro\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://maxglobal.pro/\r\nCookie: PHPSESSID=krm1anei5pij142njfv9vmf2pt\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 28 Jan 2026 20:18:20 GMT\r\ncontent-type: application/javascript\r\nvary: Accept-Encoding\r\nlast-modified: Thu, 11 May 2023 18:14:15 GMT\r\nstrict-transport-security: max-age=16070400;\r\nexpires: Fri, 27 Feb 2026 20:18:20 GMT\r\ncache-control: max-age=2592000\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nx-nginx-upstream-cache-status: STALE\r\nx-server-powered-by: Engintron\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Engintron","description":"Engintron is a plugin that integrates Nginx to cPanel/WHM server.","website":"https://github.com/engintron/engintron","common_platform_enumeration":"","icon":"engintron.png","categories":["Web server extensions"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":939484,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65534), with no line terminators","md5":"b37367001130299bf41041651172378a","sha1":"e70a5e3774fda09283e90c6dde3d24f365502cbe","sha256":"3a1118ca4ff544e112d6f3d077b4786e57fe09f5e3949a7d2f84283476fe16b8","sha512":"5ab3f4bef917d4ae14c423437ac4c0574eb12ddf2c744c492c0b71f499e9b031099e1738a6c5298220da256899f94af308c5f6be1770cfe9e8dbd0a236cd16e4","ssdeep":"12288:qJ5pqY5WVanOwFHHYlbN7Kq+q7TMzGXhhffJc7Z3Mxa6:qjpqY5WVanOBN7FbXhhHQxk","tlshash":"31151888b281b13543eb30f5006f450fb2376969b40a8498f269d8d96d7cd8e61bbf7d","first_seen":"2023-03-10T15:57:31Z","last_seen":"2026-06-06T22:35:25.716744Z","times_seen":241,"resource_available":true,"data":null}},"time_used":208,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":208,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-28","alert":"Sinkholed","trigger":"maxglobal.pro","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-28","alert":"Sinkholed","trigger":"maxglobal.pro","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"maxglobal.pro/myaccount/assets/js/scripts.js?ver=2.4.0","fqdn":"maxglobal.pro","domain":"maxglobal.pro","tld":"pro"},"ip":{"addr":"176.123.0.55","port":443,"asn":200019,"as":"Alexhost Srl","country":"Moldova","country_code":"MD"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://maxglobal.pro/","date":"2026-01-28T20:18:21.368Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.maxglobal.pro","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 10 Dec 2025 17:51:15 GMT","end":"Tue, 10 Mar 2026 17:51:14 GMT"},"fingerprint":{"sha1":"23:12:E1:E5:B2:95:87:5E:69:13:36:54:0D:54:E5:D7:74:E2:F7:43","sha256":"3C:39:C4:6F:9A:4E:5F:70:86:FA:DE:D7:1F:55:DA:89:CD:53:7E:90:54:16:FF:20:16:E2:E3:5D:70:DA:D6:46"}}},"request":{"raw":"GET /myaccount/assets/js/scripts.js?ver=2.4.0 HTTP/1.1\r\nHost: maxglobal.pro\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://maxglobal.pro/\r\nCookie: PHPSESSID=krm1anei5pij142njfv9vmf2pt\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 28 Jan 2026 20:18:20 GMT\r\ncontent-type: application/javascript\r\nvary: Accept-Encoding\r\nlast-modified: Thu, 11 May 2023 18:14:15 GMT\r\nstrict-transport-security: max-age=16070400;\r\nexpires: Fri, 27 Feb 2026 20:18:20 GMT\r\ncache-control: max-age=2592000\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nx-nginx-upstream-cache-status: STALE\r\nx-server-powered-by: Engintron\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Engintron","description":"Engintron is a plugin that integrates Nginx to cPanel/WHM server.","website":"https://github.com/engintron/engintron","common_platform_enumeration":"","icon":"engintron.png","categories":["Web server extensions"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":24949,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (326)","md5":"78eae7d06c77f84a7ef8cfd7922f5a85","sha1":"3a8aeac030ac32a9d1b7fa13220652fbc99eefe0","sha256":"adcd4f31c44fa2895618020d9ea8b74eaf28653c4b31831b58650fe40bf56127","sha512":"cc2771fac731c6178af4a9216b5ae283a7e816dbfdc9d4d9f45587083e01800fbfa1da47142875ecaf2d8383e85b84a780c6c4110e1cc8376a14bb64eac86b27","ssdeep":"384:Ge16sZQtbPG7oABqovdTvDKQuuYnaeTxQdsebfhBYHNDqOcIvlQ0aJlA1jxPiVuj:GSBqRF4R4akjN","tlshash":"e1b20c4974f710b6813b34ad86ef9409366b11074c1eda107d9c9b809f8493e95fafee","first_seen":"2023-03-12T20:42:29Z","last_seen":"2026-06-06T22:35:25.72359Z","times_seen":244,"resource_available":true,"data":null}},"time_used":207,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":207,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-28","alert":"Sinkholed","trigger":"maxglobal.pro","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-28","alert":"Sinkholed","trigger":"maxglobal.pro","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.Qrtd5lGlzn4.L.F4.O/am=AAQD/d=0/rs=AN8SPfo9mDPo5pOm0HC4yPcwcdDdHSiNXw/m=el_main_css","fqdn":"www.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://maxglobal.pro/","date":"2026-01-28T20:18:21.682Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 29 Dec 2025 19:52:23 GMT","end":"Mon, 23 Mar 2026 19:52:22 GMT"},"fingerprint":{"sha1":"5A:74:FC:38:D2:7B:9B:E5:E5:0D:67:25:F4:73:BC:BA:2E:12:A7:FD","sha256":"3B:19:CD:BE:44:E6:EE:DC:8D:33:2B:A2:1C:E4:13:F8:6F:7E:2E:52:5D:0E:75:F3:1A:ED:21:1B:7A:B7:2E:BA"}}},"request":{"raw":"GET /_/translate_http/_/ss/k=translate_http.tr.Qrtd5lGlzn4.L.F4.O/am=AAQD/d=0/rs=AN8SPfo9mDPo5pOm0HC4yPcwcdDdHSiNXw/m=el_main_css HTTP/1.1\r\nHost: www.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://maxglobal.pro/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"rosetta\"\r\nreport-to: {\"group\":\"rosetta\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/rosetta\"}]}\r\ncontent-length: 3969\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Mon, 26 Jan 2026 22:56:04 GMT\r\nexpires: Tue, 26 Jan 2027 22:56:04 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Wed, 15 Oct 2025 01:09:54 GMT\r\ncontent-type: text/css; charset=UTF-8\r\nvary: Accept-Encoding\r\nage: 163337\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":20298,"size_decoded":0,"mime_type":"text/css; charset=UTF-8","magic":"ASCII text, with very long lines (20298), with no line terminators","md5":"183cb263396f0b39789db1ae3f1e1b20","sha1":"502fcf18fa8d865213e282824ab2dfaadb9b8beb","sha256":"6a91c12a6fd1664f4d594040374fda61fe5b02fd3aee5f0c877ccbfc49488ec5","sha512":"ef280b60fa9f4bcb446d952f59a9b89442b6da6737bddc20a8fb38fcf0b4083170c09c008d7d221cf205084c8342da1f995bdd99ce907d70e8e14fc62d827acf","ssdeep":"192:nvqx/EhNINclXsfg0S0Q8CqA3ukLzSJFzvQVMZnUIfIxIRhpTpeuHjPtcmx4v78l:gM78Sr3fWJFzouRUqWQhpTpdHjPtc5G","tlshash":"bf92972047aed01967efa82364d36dff71d444db90523eeaaf5a7352cd821f231ea214","first_seen":"2025-06-11T00:07:11.687997Z","last_seen":"2026-04-13T20:47:54.876807Z","times_seen":37896,"resource_available":false,"data":null}},"time_used":188,"timings":{"blocked":82,"dns":1,"connect":21,"send":0,"wait":22,"receive":0,"ssl":59},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maxglobal.pro/myaccount/assets/fonts/Roboto-Regular.woff2","fqdn":"maxglobal.pro","domain":"maxglobal.pro","tld":"pro"},"ip":{"addr":"176.123.0.55","port":443,"asn":200019,"as":"Alexhost Srl","country":"Moldova","country_code":"MD"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://maxglobal.pro/","date":"2026-01-28T20:18:21.701Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.maxglobal.pro","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 10 Dec 2025 17:51:15 GMT","end":"Tue, 10 Mar 2026 17:51:14 GMT"},"fingerprint":{"sha1":"23:12:E1:E5:B2:95:87:5E:69:13:36:54:0D:54:E5:D7:74:E2:F7:43","sha256":"3C:39:C4:6F:9A:4E:5F:70:86:FA:DE:D7:1F:55:DA:89:CD:53:7E:90:54:16:FF:20:16:E2:E3:5D:70:DA:D6:46"}}},"request":{"raw":"GET /myaccount/assets/fonts/Roboto-Regular.woff2 HTTP/1.1\r\nHost: maxglobal.pro\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://maxglobal.pro/myaccount/assets/css/dashlite.css?ver=2.4.0\r\nCookie: PHPSESSID=krm1anei5pij142njfv9vmf2pt\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 28 Jan 2026 20:18:21 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 65916\r\nlast-modified: Thu, 11 May 2023 18:14:15 GMT\r\nstrict-transport-security: max-age=16070400;\r\nexpires: Sun, 29 Mar 2026 20:18:21 GMT\r\ncache-control: max-age=5184000\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nx-nginx-upstream-cache-status: STALE\r\nx-server-powered-by: Engintron\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Engintron","description":"Engintron is a plugin that integrates Nginx to cPanel/WHM server.","website":"https://github.com/engintron/engintron","common_platform_enumeration":"","icon":"engintron.png","categories":["Web server extensions"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":65916,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 65916, version 1.0","md5":"9feb0110b6dff9ee2b9ebd17f7a1aee6","sha1":"90bbe308a02d7cda492e3beb1a6091809b8f35c8","sha256":"8cef08634dc57d6519717c5a99a9e502bdc96586fe64770520a4820b0b089920","sha512":"e5b4c7643a1e2f3c134d2a0a4e08922d01eedb5cf7f463e885d58167f438cb1745d16aca2e455733f59ac5b63d85d4a34efb37d86281fb51273569a3e35d7085","ssdeep":"1536:nAwBjS40rROWAAffkRf+aFDExB8+m+bHvYc3uezUAAxmn:AQh0ymaFDypmcHvhumUAA0n","tlshash":"0f5302d162117d6596ed003a427b7696d800df22f3baf2698c7fb9d3e2689c603c25a0","first_seen":"2023-04-07T21:58:55Z","last_seen":"2026-06-07T07:18:40.91476Z","times_seen":5080,"resource_available":false,"data":null}},"time_used":53,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":51,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-28","alert":"Sinkholed","trigger":"maxglobal.pro","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-28","alert":"Sinkholed","trigger":"maxglobal.pro","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.google.com/images/cleardot.gif","fqdn":"www.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.251.38.100","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://maxglobal.pro/","date":"2026-01-28T20:18:22.235Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 29 Dec 2025 19:53:09 GMT","end":"Mon, 23 Mar 2026 19:53:08 GMT"},"fingerprint":{"sha1":"48:33:DD:3F:0B:48:93:34:93:FB:CD:86:06:0B:02:0A:26:C8:9D:34","sha256":"51:93:52:C6:2F:18:71:EC:3A:8F:29:E1:74:86:FF:6C:A2:EC:19:58:65:2A:9C:A2:DF:E5:86:6A:E9:6A:73:7E"}}},"request":{"raw":"GET /images/cleardot.gif HTTP/1.1\r\nHost: www.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://maxglobal.pro/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-type: image/gif\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"static-on-bigtable\"\r\nreport-to: {\"group\":\"static-on-bigtable\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/static-on-bigtable\"}]}\r\ncontent-length: 43\r\ndate: Wed, 28 Jan 2026 20:18:22 GMT\r\npragma: no-cache\r\nexpires: Fri, 01 Jan 1990 00:00:00 GMT\r\ncache-control: no-cache, no-store, must-revalidate\r\nlast-modified: Tue, 22 Oct 2019 18:30:00 GMT\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":43,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1","md5":"fc94fb0c3ed8a8f909dbc7630a0987ff","sha1":"56d45f8a17f5078a20af9962c992ca4678450765","sha256":"2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363","sha512":"c87bf81fd70cf6434ca3a6c05ad6e9bd3f1d96f77dddad8d45ee043b126b2cb07a5cf23b4137b9d8462cd8a9adf2b463ab6de2b38c93db72d2d511ca60e3b57e","ssdeep":"","tlshash":"cb900003cac8c022c2a2c0300a0c03002bbaa8300228030ec0bc30fcec2a3a38c02000","first_seen":"2023-04-05T02:54:04Z","last_seen":"2026-06-07T22:34:49.455695Z","times_seen":73459,"resource_available":true,"data":null}},"time_used":159,"timings":{"blocked":72,"dns":1,"connect":8,"send":0,"wait":17,"receive":0,"ssl":59},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maxglobal.pro/","fqdn":"maxglobal.pro","domain":"maxglobal.pro","tld":"pro"},"ip":{"addr":"176.123.0.55","port":443,"asn":200019,"as":"Alexhost Srl","country":"Moldova","country_code":"MD"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-28T20:18:12.015Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.maxglobal.pro","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 10 Dec 2025 17:51:15 GMT","end":"Tue, 10 Mar 2026 17:51:14 GMT"},"fingerprint":{"sha1":"23:12:E1:E5:B2:95:87:5E:69:13:36:54:0D:54:E5:D7:74:E2:F7:43","sha256":"3C:39:C4:6F:9A:4E:5F:70:86:FA:DE:D7:1F:55:DA:89:CD:53:7E:90:54:16:FF:20:16:E2:E3:5D:70:DA:D6:46"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: maxglobal.pro\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 28 Jan 2026 20:18:20 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nx-powered-by: PHP/8.0.30\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\nset-cookie: PHPSESSID=krm1anei5pij142njfv9vmf2pt; path=/\r\nstrict-transport-security: max-age=16070400;\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nx-nginx-upstream-cache-status: MISS\r\nx-server-powered-by: Engintron\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Engintron","description":"Engintron is a plugin that integrates Nginx to cPanel/WHM server.","website":"https://github.com/engintron/engintron","common_platform_enumeration":"","icon":"engintron.png","categories":["Web server extensions"]},{"name":"PHP:8.0.30","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"SweetAlert","description":"SweetAlert is a JavaScript library that provides alternative alert and modal dialog boxes for web applications, with customisable features, aiming to improve the user interface of the default browser dialogs.","website":"https://sweetalert.js.org","common_platform_enumeration":"","icon":"SweetAlert.png","categories":["JavaScript libraries"]}],"data":{"size":7242,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (969)","md5":"9f736eec98c1c35b1570ee652dce0b91","sha1":"ff21f6554f95facef2838b1e5b3489512a96e80a","sha256":"64344b1135a41d9a0e7a1f2f40ca0c1c0aac05e9708c1b88d74d3d4632430a72","sha512":"380c6408179b07c1bf0eb00600d85818029c5dae7380e08e6fb994ac72cec4c5455ee2a2365330cb790961ae8f38a22985d262f2cf3358d0f91d272123be9265","ssdeep":"192:r3B8hXOfqli1CsQprjpakkXiC2LutPUAc0UD8:r3WdOG7dpi6ufctD8","tlshash":"34e1a6266cf0809b160355c6d6faf71d6e649103c90aac2472ec82e5bfd9fcc9c676c9","first_seen":"2026-01-28T20:18:41.534847Z","last_seen":"2026-01-28T20:18:41.534847Z","times_seen":1,"resource_available":false,"data":null}},"time_used":9328,"timings":{"blocked":162,"dns":1,"connect":50,"send":0,"wait":9003,"receive":0,"ssl":109},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-28","alert":"Sinkholed","trigger":"maxglobal.pro","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-28","alert":"Sinkholed","trigger":"maxglobal.pro","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"maxglobal.pro/myaccount/assets/css/theme.css?ver=2.4.0","fqdn":"maxglobal.pro","domain":"maxglobal.pro","tld":"pro"},"ip":{"addr":"176.123.0.55","port":443,"asn":200019,"as":"Alexhost Srl","country":"Moldova","country_code":"MD"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://maxglobal.pro/","date":"2026-01-28T20:18:21.356Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.maxglobal.pro","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 10 Dec 2025 17:51:15 GMT","end":"Tue, 10 Mar 2026 17:51:14 GMT"},"fingerprint":{"sha1":"23:12:E1:E5:B2:95:87:5E:69:13:36:54:0D:54:E5:D7:74:E2:F7:43","sha256":"3C:39:C4:6F:9A:4E:5F:70:86:FA:DE:D7:1F:55:DA:89:CD:53:7E:90:54:16:FF:20:16:E2:E3:5D:70:DA:D6:46"}}},"request":{"raw":"GET /myaccount/assets/css/theme.css?ver=2.4.0 HTTP/1.1\r\nHost: maxglobal.pro\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://maxglobal.pro/\r\nCookie: PHPSESSID=krm1anei5pij142njfv9vmf2pt\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 28 Jan 2026 20:18:20 GMT\r\ncontent-type: text/css\r\ncontent-length: 175\r\nlast-modified: Thu, 11 May 2023 18:14:16 GMT\r\nstrict-transport-security: max-age=16070400;\r\nexpires: Fri, 27 Feb 2026 20:18:20 GMT\r\ncache-control: max-age=2592000\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nx-nginx-upstream-cache-status: STALE\r\nx-server-powered-by: Engintron\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Engintron","description":"Engintron is a plugin that integrates Nginx to cPanel/WHM server.","website":"https://github.com/engintron/engintron","common_platform_enumeration":"","icon":"engintron.png","categories":["Web server extensions"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":175,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with CRLF, LF line terminators","md5":"8d0915e1eeea8511fe34275ff68666f6","sha1":"bced5301d3530b50269258edb62d0a4e58f12e5f","sha256":"10d0f050edd4accdb98ca99f3d93c108591db894d8baacaede986882ce973019","sha512":"15172d0f369e6ba8cb371ea97f668733e09e72bbb3cf8069ce2fa14160c173330203127a675193ceaa8389a01bf7363bb62500ffb324f6aa6e57065f5e1908fc","ssdeep":"","tlshash":"19c08c1c138342226ab34f8e22f42163e662b718a1c2a694f0830ca08e330b78548f0c","first_seen":"2023-04-06T19:06:49Z","last_seen":"2026-06-06T22:35:25.716163Z","times_seen":292,"resource_available":false,"data":null}},"time_used":214,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":213,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-28","alert":"Sinkholed","trigger":"maxglobal.pro","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-28","alert":"Sinkholed","trigger":"maxglobal.pro","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.smartsuppchat.com/loader.js?","fqdn":"www.smartsuppchat.com","domain":"smartsuppchat.com","tld":"com"},"ip":{"addr":"185.76.9.12","port":443,"asn":60068,"as":"Datacamp Limited","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://maxglobal.pro/","date":"2026-01-28T20:18:21.738Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"1161431244.rsc.cdn77.org","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:55:02 GMT","end":"Wed, 15 Apr 2026 06:55:01 GMT"},"fingerprint":{"sha1":"D6:AF:CD:AE:04:C9:18:A9:86:FD:53:08:D9:99:99:9B:9D:A8:58:29","sha256":"66:75:58:C3:A9:29:2F:14:30:FB:BE:32:2C:1C:9B:D1:A4:E6:58:D5:9F:33:F7:16:C3:0B:F7:A4:6C:49:F2:B5"}}},"request":{"raw":"GET /loader.js? HTTP/1.1\r\nHost: www.smartsuppchat.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://maxglobal.pro/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 28 Jan 2026 20:18:21 GMT\r\ncontent-type: application/javascript\r\ncache-control: max-age=300, public, s-maxage=60\r\netag: W/\"6969e151-4684\"\r\nexpires: Wed, 28 Jan 2026 20:23:06 GMT\r\nlast-modified: Fri, 16 Jan 2026 06:57:21 GMT\r\nx-77-nzt: EwwBuUwJCgH3DgAAAAwBuUwKCQH3AQAAAAwBJRPCNAG3AAAAAA\r\nx-77-nzt-ray: e2f75420189ca5420d6f7a69659abd2f\r\nx-77-cache: HIT\r\nx-77-age: 14\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: CDN77-Turbo\r\nx-77-pop: stockholmSE\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"CDN77","description":"CDN77 is a content delivery network (CDN).","website":"https://www.cdn77.com","common_platform_enumeration":"","icon":"CDN77.png","categories":["CDN"]}],"data":{"size":18052,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (17979)","md5":"a4d5607cdbc76688d37ad6311610a058","sha1":"534adf5ac8c28e88b13d1549add0d84a57a52c61","sha256":"7c209ce50b76600257f47c0a47333504478e9c89793713cc7d113bbb688c3eda","sha512":"3ee08aedbe06d4a8181f362bcf9694d164f36309b70f048d42079989f139915e340515f56a6f84e3bb24d4e027cceee7c2c32a710f58ddbaaa5a5a662ccd3300","ssdeep":"384:wBWbE0rIcvqSI/aQ/UpIxN5BWbEgl/ET/xzy2A3wBV+:wAxka0/scT/xzy2A3wBV+","tlshash":"f682b6cc7691b16543ab61b4843f620ff1376929740d8821b965eae13c78d8ed037fb8","first_seen":"2026-01-16T11:03:53.240781Z","last_seen":"2026-04-19T18:18:50.439045Z","times_seen":4264,"resource_available":true,"data":null}},"time_used":130,"timings":{"blocked":60,"dns":33,"connect":7,"send":0,"wait":9,"receive":0,"ssl":18},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maxglobal.pro/myaccount/assets/loader.css","fqdn":"maxglobal.pro","domain":"maxglobal.pro","tld":"pro"},"ip":{"addr":"176.123.0.55","port":443,"asn":200019,"as":"Alexhost Srl","country":"Moldova","country_code":"MD"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://maxglobal.pro/","date":"2026-01-28T20:18:21.352Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.maxglobal.pro","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 10 Dec 2025 17:51:15 GMT","end":"Tue, 10 Mar 2026 17:51:14 GMT"},"fingerprint":{"sha1":"23:12:E1:E5:B2:95:87:5E:69:13:36:54:0D:54:E5:D7:74:E2:F7:43","sha256":"3C:39:C4:6F:9A:4E:5F:70:86:FA:DE:D7:1F:55:DA:89:CD:53:7E:90:54:16:FF:20:16:E2:E3:5D:70:DA:D6:46"}}},"request":{"raw":"GET /myaccount/assets/loader.css HTTP/1.1\r\nHost: maxglobal.pro\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://maxglobal.pro/\r\nCookie: PHPSESSID=krm1anei5pij142njfv9vmf2pt\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 28 Jan 2026 20:18:20 GMT\r\ncontent-type: text/css\r\nvary: Accept-Encoding\r\nlast-modified: Thu, 11 May 2023 18:14:16 GMT\r\nstrict-transport-security: max-age=16070400;\r\nexpires: Fri, 27 Feb 2026 20:18:20 GMT\r\ncache-control: max-age=2592000\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nx-nginx-upstream-cache-status: STALE\r\nx-server-powered-by: Engintron\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Engintron","description":"Engintron is a plugin that integrates Nginx to cPanel/WHM server.","website":"https://github.com/engintron/engintron","common_platform_enumeration":"","icon":"engintron.png","categories":["Web server extensions"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3617,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"5dc86e51fff310ec87ff42bc1ab4bb8e","sha1":"be619a03082ea8771c27cc8c0a00f30d6aad2eb6","sha256":"86ef9caf2b9c6edfe487f2e021b24c09f9f0ab896db889a7bf4f69a2da6f152d","sha512":"3af5304bcfce6c7390ae3fe8f4b977a8f8ad343beeff75dd607590dda76240ebd8af103f7d117ed5094508d975c38598e9815affc5a6df043518e216564fd9ac","ssdeep":"","tlshash":"9a7113a65e424089f732061de3f59e24dd7cdf1354060eafb210289e93796e41ae2b77","first_seen":"2023-05-28T20:04:51Z","last_seen":"2026-06-06T22:35:25.71274Z","times_seen":184,"resource_available":false,"data":null}},"time_used":214,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":214,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-28","alert":"Sinkholed","trigger":"maxglobal.pro","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-28","alert":"Sinkholed","trigger":"maxglobal.pro","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}