Report - gt-max.com.my/dolordolor/voluistiscontactum-906312

Report Overview

Submitted URL
gt-max.com.my/dolordolor/voluistiscontactum-906312
IP
162.253.17.45
ASN
#45352 IP ServerOne Solutions Sdn Bhd
Submitted
2022-09-28 19:00:33
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
180

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
gt-max.com.my	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.9 kB	28 kB	162.253.17.45
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	362 B	20 kB	142.250.74.174
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	2.2 kB	142.250.74.10
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.27
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.25
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	75 kB	34.120.237.76
www.gt-max.com.my	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	25 kB	3.6 MB	162.253.17.45
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	951 B	79 kB	142.250.74.163
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.76.226
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	35.164.56.167
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.0 kB	6.3 kB	142.250.74.3
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	371 B	45 kB	142.250.74.72

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-28	medium	gt-max.com.my/dolordolor/voluistiscontactum-906312	Malware
2022-09-28	medium	www.gt-max.com.my/dolordolor/voluistiscontactum-906312	Malware
2022-09-28	medium	www.gt-max.com.my/wp-content/plugins/loading-page/css/loading-page.css?ver=free-1.0.15	Malware
2022-09-28	medium	www.gt-max.com.my/wp-content/themes/bridge/css/font-awesome/css/font-awesome.min.css?ver=4.4.28	Malware
2022-09-28	medium	www.gt-max.com.my/wp-content/plugins/read-more-without-refresh/style.css?ver=4.4.28	Malware
2022-09-28	medium	www.gt-max.com.my/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.5	Malware
2022-09-28	medium	www.gt-max.com.my/wp-content/themes/bridge/style.css?ver=4.4.28	Malware
2022-09-28	medium	www.gt-max.com.my/wp-content/plugins/LayerSlider/static/css/layerslider.css?ver=5.6.5	Malware
2022-09-28	medium	www.gt-max.com.my/wp-content/themes/bridge/css/style_dynamic.css?ver=1484801134	Malware
2022-09-28	medium	www.gt-max.com.my/wp-content/themes/bridge/css/style_dynamic_responsive.css?ver=1484801134	Malware
2022-09-28	medium	www.gt-max.com.my/wp-content/themes/bridge/css/custom_css.css?ver=1496224858	Malware
2022-09-28	medium	www.gt-max.com.my/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=4.4.28	Malware
2022-09-28	medium	www.gt-max.com.my/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1	Malware
2022-09-28	medium	www.gt-max.com.my/wp-content/plugins/loading-page/loading-screens/bar/loading-bar.js?ver=free-1.0.15	Malware
2022-09-28	medium	www.gt-max.com.my/wp-includes/js/jquery/jquery.js?ver=1.11.3	Malware
2022-09-28	medium	www.gt-max.com.my/wp-content/plugins/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js?ver=5.6.5	Malware
2022-09-28	medium	www.gt-max.com.my/wp-content/plugins/LayerSlider/static/js/layerslider.transitions.js?ver=5.6.5	Malware
2022-09-28	medium	www.gt-max.com.my/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.2.6	Malware
2022-09-28	medium	www.gt-max.com.my/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.2.6	Malware
2022-09-28	medium	www.gt-max.com.my/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=4.11.2.1	Malware
2022-09-28	medium	www.gt-max.com.my/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20	Malware
2022-09-28	medium	www.gt-max.com.my/wp-content/themes/bridge/js/jquery.carouFredSel-6.2.1.min.js?ver=4.4.28	Malware
2022-09-28	medium	www.gt-max.com.my/wp-content/themes/bridge/js/lemmon-slider.min.js?ver=4.4.28	Malware
2022-09-28	medium	www.gt-max.com.my/wp-content/themes/bridge/js/jquery.mousewheel.min.js?ver=4.4.28	Malware
2022-09-28	medium	www.gt-max.com.my/wp-content/themes/bridge/js/jquery.touchSwipe.min.js?ver=4.4.28	Malware
2022-09-28	medium	www.gt-max.com.my/wp-content/themes/bridge/js/default_dynamic.js?ver=1484801134	Malware
2022-09-28	medium	www.gt-max.com.my/wp-content/themes/bridge/js/custom_js.js?ver=1484801134	Malware
2022-09-28	medium	www.gt-max.com.my/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=4.11.2.1	Malware
2022-09-28	medium	www.gt-max.com.my/wp-content/plugins/vertical-center/js/vertical-center-public.js?ver=1.1.1	Malware
2022-09-28	medium	www.gt-max.com.my/wp-content/themes/bridge/js/default.min.js?ver=4.4.28	Malware
2022-09-28	medium	www.gt-max.com.my/wp-includes/js/wp-embed.min.js?ver=4.4.28	Malware
2022-09-28	medium	www.gt-max.com.my/wp-content/themes/bridge/css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.5.0	Malware
2022-09-28	medium	www.gt-max.com.my/wp-content/plugins/mpc-massive/assets/js/mpc-vendor.min.js?ver=2.1	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed
2022-09-28	medium	gt-max.com.my	Sinkholed

JavaScript (43)

	URL	Size	First Seen	Last Seen
	www.gt-max.com.my/wp-content/plugins/LayerSlider/static/js/layerslider.transitions.js?ver=5.6.5	21 kB	2023-03-07	2024-01-10
Pretty URL www.gt-max.com.my/wp-content/plugins/LayerSlider/static/js/layerslider.transitions.js?ver=5.6.5 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2024-01-10 08:43:21 Times Seen9 Hash 25af1efa0acf7a0d70916c1f7a472d26 f07e4205c5466cc4f3d1dbeac9b89fc9d6992354 070c461a79b8c6433c8158d86f1eed1ff8d646cb413dd6c6c5a2cf5117af92b5 Loading...

	www.gt-max.com.my/wp-content/themes/bridge/js/jquery.touchSwipe.min.js?ver=4.4.28	13 kB	2023-03-07	2023-03-17
Pretty URL www.gt-max.com.my/wp-content/themes/bridge/js/jquery.touchSwipe.min.js?ver=4.4.28 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2023-03-17 12:55:06 Times Seen1 Hash 98e293d2448bff5e46f76ec0e37c6619 ee25c75d4e0d539d4c7610e79d65d6fad7d4f260 55be37cd1b8799b088da6dd7175184163c07aa32c068e57e4b9f2662f00c4637 Loading...

	www.gt-max.com.my/dolordolor/voluistiscontactum-906312	111 B	2023-03-07	2023-03-17
Pretty URL www.gt-max.com.my/dolordolor/voluistiscontactum-906312 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2023-03-17 12:55:06 Times Seen1 Hash 4e57ce5330cfc4ecd2336fa5713bc7c8 944fc214cccff51650b55e3b28d34317c5dc660a 27a40c7b8815bba68ef955e81debd76809c0d57aa4bc4b4764ed86c2688c10d7 Loading...

	www.gt-max.com.my/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=4.11.2.1	20 kB	2023-03-07	2023-03-17
Pretty URL www.gt-max.com.my/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=4.11.2.1 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2023-03-17 12:55:06 Times Seen1 Hash 2bfd6a82520596c36b6f06578f7b9490 3fae64b94fcb2f1b0fcec51956930b1e6ebf08e9 1c2f863ff5fed7ff92c027a939b56984565dc1ede472031ba6ee70cdcdf29d92 Loading...

	www.gt-max.com.my/wp-content/themes/bridge/js/plugins.js?ver=4.4.28	705 kB	2023-03-07	2023-03-17
Pretty URL www.gt-max.com.my/wp-content/themes/bridge/js/plugins.js?ver=4.4.28 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2023-03-17 10:27:45 Times Seen1 Hash b02fe5e6c6fb0ffa67fce9f49e805bb5 ac01a2f72fdd408d87d9c50b215ecccac07dba2a f473176763805693d163fbb8dd3f9bb39d3f21e4044004112b82738aba7a5027 Loading...

	www.gt-max.com.my/wp-includes/js/jquery/jquery.js?ver=1.11.3	96 kB	2023-03-07	2024-04-21
Pretty URL www.gt-max.com.my/wp-includes/js/jquery/jquery.js?ver=1.11.3 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2024-04-21 12:25:10 Times Seen1064 Hash 207abeb83412721d556faeba36e00822 c06b7f0b1526037bcdc6639244c9692e2ef3ebdd ca32702f36da9bdbaa5463f8e3db9b18d82f3ce8a630d18e8bde6b30a2582d20 Loading...

	www.gt-max.com.my/wp-content/plugins/LayerSlider/static/js/greensock.js?ver=1.11.8	60 kB	2023-03-07	2023-11-25
Pretty URL www.gt-max.com.my/wp-content/plugins/LayerSlider/static/js/greensock.js?ver=1.11.8 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2023-11-25 17:39:04 Times Seen7 Hash de63b1ca579e71ff732f3e894df61474 d9ba5023ff6f5a1a92ec3d983232bd2b31e026b7 2c2d25a951c1a1019f0f1497414ba6d3aec9ce0d224e73edead357867105551a Loading...

	www.gt-max.com.my/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.2.6	108 kB	2023-03-07	2023-03-17
Pretty URL www.gt-max.com.my/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.2.6 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2023-03-17 12:55:06 Times Seen1 Hash 73b407bf24c022b18133bd0859e00cf0 18b631a4a098ff7861e3bb029b458a298e65fc25 54045339476b08b0d1e3c3d419f49d76a5a3c2722fffec9936a48a53535a334f Loading...

	www.gt-max.com.my/wp-content/themes/bridge/js/jquery.fullPage.min.js?ver=4.4.28	24 kB	2023-03-07	2023-03-17
Pretty URL www.gt-max.com.my/wp-content/themes/bridge/js/jquery.fullPage.min.js?ver=4.4.28 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2023-03-17 12:55:06 Times Seen1 Hash 95d944f9533e1075f40a3c13f225592a 67f925f90b49befc5daa025a245618b91331eba0 dfdc71d779c0e203a8b86dba6a508b341f3b4bf744a85ca3b567ee92cdabd767 Loading...

	www.gt-max.com.my/dolordolor/voluistiscontactum-906312	261 B	2023-03-07	2023-03-17
Pretty URL www.gt-max.com.my/dolordolor/voluistiscontactum-906312 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2023-03-17 12:55:06 Times Seen1 Hash acf6889994c5a4703ed8b29e821e847b a8e17bfe76ed7dc1ffb573ed1c681e41ca1ef475 fcf71788fc07ebad1e1859b8201211429b434bcb94bea5bdfdd3eb51f0ec5028 Loading...

	www.gt-max.com.my/wp-content/themes/bridge/js/custom_js.js?ver=1484801134	882 B	2023-03-07	2023-03-17
Pretty URL www.gt-max.com.my/wp-content/themes/bridge/js/custom_js.js?ver=1484801134 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2023-03-17 12:55:06 Times Seen1 Hash 8feea0c70ddfac8143cba0ce88753a7f 9b8a129553339eee8170ef89b2f80dbdd89a25d3 b9a3e155a0eec0039876a45a773eb994cec42c9776f44fe069732823c327058f Loading...

	www.gt-max.com.my/dolordolor/voluistiscontactum-906312	119 B	2023-03-07	2023-03-17
Pretty URL www.gt-max.com.my/dolordolor/voluistiscontactum-906312 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2023-03-17 12:55:06 Times Seen1 Hash c9fd891cd5e624371320c9822a63c055 d909a3c7acf00462d1ac3d0f2f2017f009778343 d846412619f384f149834557215fa96251bf968c281e815e24aa4a092d457ba8 Loading...

	www.gt-max.com.my/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1	7.2 kB	2023-03-07	2024-04-21
Pretty URL www.gt-max.com.my/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:34 Last Seen2024-04-21 12:25:09 Times Seen3955 Hash 512b871a2830e44259bc3ce3343afcd0 875bce76a77590c3c438bbc6e014b39c23c8c88d c4d24f6b27cc7ceea56fbec786bb1f486fdad9a1f998f760f76d1f44671e105c Loading...

	www.gt-max.com.my/wp-content/plugins/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js?ver=5.6.5	55 kB	2023-03-07	2023-03-17
Pretty URL www.gt-max.com.my/wp-content/plugins/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js?ver=5.6.5 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2023-03-17 12:55:06 Times Seen1 Hash 3d81841e1ed912e135c63c6861282783 c0db7a624c19697c74fd9ae8589b42a49de75345 83f9ea6b747fc693cca4fd07bd57b4509a71d918d0d896fe751032538a0d9e05 Loading...

	www.gt-max.com.my/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20	15 kB	2023-03-07	2024-02-27
Pretty URL www.gt-max.com.my/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2024-02-27 20:06:46 Times Seen11 Hash aebecb6cf308b95cb4eafdfb11ca0e8b 8c3145a001c774fcef0d34b7d543fb2e78d7614a ba46104959f8f1af97df586a98066207f595c5d08de4da7d11cc3b721b844dfd Loading...

	www.gt-max.com.my/dolordolor/voluistiscontactum-906312	302 B	2023-03-07	2024-04-18
Pretty URL www.gt-max.com.my/dolordolor/voluistiscontactum-906312 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2024-04-18 08:17:48 Times Seen149 Hash 2551ab5f2cbfaf6403d2b3818246b6da ad1c5ced81810ba226e7a5809382a24cfc5e26a6 6605ebdee15631e8721333330ea0278e66ca113fa1ac111c47ce5b13418cc193 Loading...

	www.gt-max.com.my/dolordolor/voluistiscontactum-906312	341 B	2023-03-07	2023-03-17
Pretty URL www.gt-max.com.my/dolordolor/voluistiscontactum-906312 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2023-03-17 12:55:06 Times Seen1 Hash e7ca291ffa3b3a5475397049991afb86 24d619358df93ad05906ccac15837f6fd473c398 074bbe0d94eb4cc8a33ffa591bb1e55c95915df2c1557d7d31879150e96cd117 Loading...

	www.gt-max.com.my/wp-content/themes/bridge/js/qode-like.min.js?ver=4.4.28	1.4 kB	2023-03-07	2023-03-17
Pretty URL www.gt-max.com.my/wp-content/themes/bridge/js/qode-like.min.js?ver=4.4.28 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2023-03-17 12:55:06 Times Seen1 Hash 715f79bb91f21a148c6fe17ee5d60e01 325d7b0709aca7d96ecfae0ee99a5900579db804 f26d699b707e8a616feeac2969ea3c0b94717753d47220394f114a7f9da8d8e6 Loading...

	www.gt-max.com.my/wp-content/themes/bridge/js/default_dynamic.js?ver=1484801134	2.4 kB	2023-03-07	2023-03-17
Pretty URL www.gt-max.com.my/wp-content/themes/bridge/js/default_dynamic.js?ver=1484801134 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2023-03-17 12:55:06 Times Seen1 Hash abf4593a78f0049c04d36677ae7414f7 dc0767ca070876ceb27251a9ea4bba7bcea0a88e 0ec48352b89d492f1e6a80973512bec1ec13f225c6a26d30e1cb99c5d622bfcc Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-07	2024-01-06
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:05:31 Last Seen2024-01-06 17:39:53 Times Seen66 Hash 99ba52a15d2da967b023016d1af58cbd 5c2246049c43834d17113877b4731bd4f9803d55 9e25469f734732205f33dd80ff8ca12080406c18d2fa99a1f368103e51f7999f Loading...

	www.gt-max.com.my/dolordolor/voluistiscontactum-906312	56 B	2023-03-07	2023-12-27
Pretty URL www.gt-max.com.my/dolordolor/voluistiscontactum-906312 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2023-12-27 11:30:25 Times Seen25 Hash e5809a2ee8ae49ff51a73e28c47a29b2 bf50cc2ec42c04470e00494aacb2d58b7abf348d f9b2fe844c470eb6dd7d0e63b998d912fc91ec04dbcb5cd7748beb3a537086dc Loading...

	www.gt-max.com.my/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=4.11.2.1	36 kB	2023-03-07	2023-03-17
Pretty URL www.gt-max.com.my/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=4.11.2.1 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2023-03-17 12:55:06 Times Seen1 Hash 15b4d846a287e24935e149305b58299c 956ec60dfe5de4b22893ae6ccaba14b0c72303c6 cf8977dd38385cbd274c67eec52fe71a122182ac041743182e75e7ff6ca05ea3 Loading...

	www.gt-max.com.my/dolordolor/voluistiscontactum-906312	156 B	2023-03-07	2023-03-17
Pretty URL www.gt-max.com.my/dolordolor/voluistiscontactum-906312 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2023-03-17 12:55:06 Times Seen1 Hash c3cc98214d0eeb4c70fe83a04a42a0d4 cca5acf76d7857d031045e0274fa24a33815a500 81d7cb80834ac0c3650299e85672a06c806ee4ec5570cacec956c7586172e45c Loading...

	www.gt-max.com.my/wp-content/plugins/intense/assets/js/modernizr.min.js?ver=2.6.2	9.4 kB	2023-03-07	2023-03-17
Pretty URL www.gt-max.com.my/wp-content/plugins/intense/assets/js/modernizr.min.js?ver=2.6.2 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2023-03-17 12:55:06 Times Seen1 Hash 5b1afce9b64221dfd0e82c9878dd4250 79856efc7f1bc35d667d7a844f1daf5593b6e51b 98b82228257e1d7f79bff99a3d3d3144bfe1dcc1cbf693657af1f940869e21f9 Loading...

	www.gt-max.com.my/wp-content/plugins/loading-page/js/loading-page.js?ver=free-1.0.15	7.1 kB	2023-03-07	2023-03-17
Pretty URL www.gt-max.com.my/wp-content/plugins/loading-page/js/loading-page.js?ver=free-1.0.15 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2023-03-17 12:55:06 Times Seen1 Hash a202b7357bdbdeb28300a9ff0cd7e157 6d09f92d17f85704b7e0f2b6f0c4e27fcb0a366a 1b4f53c097b9d75772e7d0ac5c3aa00eb27bd8325e24005616de2e32e26f9062 Loading...

	www.gt-max.com.my/wp-content/themes/bridge/js/jquery.carouFredSel-6.2.1.min.js?ver=4.4.28	63 kB	2023-03-07	2023-03-17
Pretty URL www.gt-max.com.my/wp-content/themes/bridge/js/jquery.carouFredSel-6.2.1.min.js?ver=4.4.28 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2023-03-17 12:55:06 Times Seen1 Hash db68aedb745e91b81d9fee6c188e7d2c aba6056cd51c6ad56759bc7cc0c9589693877f68 7fe5cc7c8868ab139022873594dc83f5784415ab8125050d0c6fa4ab7feba4d4 Loading...

	www.gt-max.com.my/wp-content/themes/bridge/js/lemmon-slider.min.js?ver=4.4.28	6.9 kB	2023-03-07	2023-03-17
Pretty URL www.gt-max.com.my/wp-content/themes/bridge/js/lemmon-slider.min.js?ver=4.4.28 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2023-03-17 12:55:06 Times Seen1 Hash feed31de6e5113aeb1a38a7333c680a5 24807c5f8c30d30275eb9b5643277094131d4a23 24546fbd92e92a8812ebcdd1f1701996ab0d9a5d42d545dda72b99218bc0ee4c Loading...

	www.gt-max.com.my/wp-content/plugins/vertical-center/js/vertical-center-public.js?ver=1.1.1	5.1 kB	2023-03-07	2023-03-17
Pretty URL www.gt-max.com.my/wp-content/plugins/vertical-center/js/vertical-center-public.js?ver=1.1.1 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2023-03-17 12:55:06 Times Seen1 Hash 602b8d0180f2aa435ecc78517d4a6536 94064e0986b17b017164dd92d211fa1da1f8e0a0 cfeed6d12ec2c71d5b4cd97c3283a1fd559df14a8e00639b6e3571ad6490429e Loading...

	www.gt-max.com.my/wp-content/themes/bridge/js/jquery.mousewheel.min.js?ver=4.4.28	2.2 kB	2023-03-07	2023-03-17
Pretty URL www.gt-max.com.my/wp-content/themes/bridge/js/jquery.mousewheel.min.js?ver=4.4.28 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2023-03-17 12:55:06 Times Seen1 Hash 8fbf1bdab2ff68a0db6ce07a0c782b8f d4d17d9625f67ef7fa7dbf3c89c7834cb991af7e 23766e27975b78092e5b4cfb02a36179092c392c7b057f462ca622522a5628d0 Loading...

	www.gt-max.com.my/wp-includes/js/wp-embed.min.js?ver=4.4.28	1.4 kB	2023-03-07	2024-02-27
Pretty URL www.gt-max.com.my/wp-includes/js/wp-embed.min.js?ver=4.4.28 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2024-02-27 20:06:46 Times Seen393 Hash 2a9a2f64687bc94523f4c50c9335cc0f 33c874cafe5df3ea8c8756be8642f675f9cf5289 4114f99c5992bab27f43ae5e3c7c196ce63fac0b4b43915af913c1a30ca1f3da Loading...

	www.googletagmanager.com/gtm.js?id=GTM-5KGXB5B	113 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-5KGXB5B IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:11:10 Last Seen2023-03-08 03:11:10 Times Seen1 Hash 2a1f401cd068396a7ddac15ff985b704 674d1abe7b66c50afc3ceb15387a9ccdf62f082b 3f6abb20b4d52aeb3848979870d27cd835567893b713edacfd3fbfb99ba83d8d Loading...

	www.gt-max.com.my/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.5	12 kB	2023-03-07	2023-03-17
Pretty URL www.gt-max.com.my/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.5 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2023-03-17 12:55:06 Times Seen1 Hash c22eca3acf8f551997cc7d62fdef3cb4 5b3924d28cc6303294b48d6b3df84ee6a5a3f53d f1a0de00318eaab520336f7d1273a8c4a237680c7caaa7995b4dfc8a70ae6a74 Loading...

	www.gt-max.com.my/dolordolor/voluistiscontactum-906312	108 B	2023-03-07	2024-04-17
Pretty URL www.gt-max.com.my/dolordolor/voluistiscontactum-906312 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:03 Last Seen2024-04-17 10:30:46 Times Seen1415 Hash 2231d6e8d067a5cd22231e45e01e55de c9853ded0a5ac22d145c255b7e82f4c68e551a88 a96d6ca55569b0fb36fb7b9bfc2378f8c0cb651f41ea58af668175d44756fc50 Loading...

	www.gt-max.com.my/wp-content/plugins/loading-page/loading-screens/bar/loading-bar.js?ver=free-1.0.15	4.3 kB	2023-03-07	2023-03-17
Pretty URL www.gt-max.com.my/wp-content/plugins/loading-page/loading-screens/bar/loading-bar.js?ver=free-1.0.15 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2023-03-17 12:55:06 Times Seen1 Hash cf3a8e1de3c52b822474f511461a7e7b 266430c93dc7121cec7bb3529f388300105c113b 534d9ab0fa7e932cd7e0f1fc7dd28da517754e37da613435fcac51121114959d Loading...

	www.gt-max.com.my/wp-content/plugins/mpc-massive/assets/js/mpc-scripts.min.js?ver=2.1	97 kB	2023-03-07	2023-03-17
Pretty URL www.gt-max.com.my/wp-content/plugins/mpc-massive/assets/js/mpc-scripts.min.js?ver=2.1 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2023-03-17 12:55:06 Times Seen1 Hash e88a64d23ba9d502884c775076c6fded 9fdf256ea2a86e5559bba048a1424173c07eae0b afb3be7b87c77c4014666f4caf6b06eb86f8ac77af45bfd57572fb89c51926e6 Loading...

	www.gt-max.com.my/dolordolor/voluistiscontactum-906312	1.5 kB	2023-03-07	2023-03-17
Pretty URL www.gt-max.com.my/dolordolor/voluistiscontactum-906312 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:30:06 Last Seen2023-03-17 12:55:06 Times Seen1 Hash b42c72fea6ccd8d6a668f31b4d423ce4 47d1d97ce8d60948157b4dc44062aeb01610b334 3d02bb6eaca0b2e924ad8f1d27eb5391328aadac8f08c631ea9ac87bf5144566 Loading...

	www.gt-max.com.my/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.2.6	57 kB	2023-03-07	2023-03-17
Pretty URL www.gt-max.com.my/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.2.6 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2023-03-17 12:55:06 Times Seen1 Hash f733324b68be07c1ea725ece8e057920 d4ec942b98a3e2d8725b66fae22c76a140338cdc 0dbea55942e08bb603d32036f7f0ca7c0a5e4210d7c2153c5245f45e7e004d74 Loading...

	www.gt-max.com.my/dolordolor/voluistiscontactum-906312	276 B	2023-03-07	2023-03-17
Pretty URL www.gt-max.com.my/dolordolor/voluistiscontactum-906312 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2023-03-17 12:55:06 Times Seen1 Hash ea2e81b3f12bd47aafbd3c4c7d602494 433c9655ba8b9e82bdf721c4fb876aa10f5bf360 03cb04ae82465eb66783c44ae860a062348607877619eb9a3a5f56b7f4e1e985 Loading...

	unknown	0 B	2023-03-07	2024-04-23
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-23 18:05:57 Times Seen37023363 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.gt-max.com.my/wp-content/plugins/mpc-massive/assets/js/mpc-vendor.min.js?ver=2.1	83 kB	2023-03-07	2023-03-17
Pretty URL www.gt-max.com.my/wp-content/plugins/mpc-massive/assets/js/mpc-vendor.min.js?ver=2.1 IP 162.253.17.45 ASN #45352 IP ServerOne Solutions Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2023-03-17 12:55:06 Times Seen1 Hash 773fb0820c949489475c07e3b0473f7d 1d6a5001b8c7937241eaf6a0dfed1a911f3cec68 07c09257d3d3778dbde54fc816f046f8677c08609daa738d98bf6126f299b0d4 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 30149b5870aba19ce712ea45f905e4ee	80 kB	2023-03-07	2024-02-15
Pretty Observations First Seen2023-03-07 01:16:41 Last Seen2024-02-15 12:42:33 Times Seen29 Hash 30149b5870aba19ce712ea45f905e4ee 6d8b282743d1dd31639a0118e204013ea4eeec68 9623e89eecf74644d03679428f60aba80a5fafcb4432dee873a5e163133079cf Loading...

	#2 Eval - 9bce5cb198aa57573b0ed2a69dcf8982	79 kB	2023-03-07	2024-04-08
Pretty Observations First Seen2023-03-07 01:16:41 Last Seen2024-04-08 17:17:44 Times Seen463 Hash 9bce5cb198aa57573b0ed2a69dcf8982 35b94a98f38854ae0302ca877317c93f3c18a93a dafb3c695c6da2fdce4f40af5520413c9a67242b0d533bdf1f57ca4d3f3cda06 Loading...

	#3 Eval - fe9927c9fe0e7712a78f3a265e171f59	50 kB	2023-03-07	2024-04-21
Pretty Observations First Seen2023-03-07 01:03:32 Last Seen2024-04-21 09:15:02 Times Seen991 Hash fe9927c9fe0e7712a78f3a265e171f59 f035e76d78dc68701d2af62386a866e08cd10e8f 9794de1edf2a49e65673ad2f34f1d410b2570313514b270465df3ad3fbe2ca71 Loading...

HTTP Transactions (91)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.27

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 28 Sep 2022 18:15:39 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: HizDTxoFYEibrpD76yBWRHF48HBgf_lURFzMIT9F2kwTdVadkcyLAQ==
Age: 2683

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

143.204.55.25

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
143.204.55.25:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 28 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4vcTeNNA_HGy30VR8ORwK_nWXMkNrzpUuABP1Cbox-qXTvZcoSOdEg==
age: 48716
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
490c003436e215e91596f285fcba92f5
0c4c9a5802e7cdb699f4918c252dbdf8431c25ec
9fe6beb1cb3851018168765a243b6de69ec71d30770f8c2dcc57cae7d9978cc1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9FE6BEB1CB3851018168765A243B6DE69EC71D30770F8C2DCC57CAE7D9978CC1"
Last-Modified: Wed, 28 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4558
Expires: Wed, 28 Sep 2022 20:16:20 GMT
Date: Wed, 28 Sep 2022 19:00:22 GMT
Connection: keep-alive

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 19:00:23 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.27

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 28 Sep 2022 18:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Wed, 28 Sep 2022 19:25:37 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5JO5oGDw11DOfvJ9Fm4s4hjEAifulni9qb3ZTuSboaTzXhujnNIteA==
Age: 1850

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
3526d5ce1381ba26cbc553db057e1915
fe01c920696448e8bf12e6fff877bce8281d34a2
09604aed7cbca7971bfcb5afcb53591600b944f28eff21aa65dc601e78cdda53

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4909
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 19:00:23 GMT
Last-Modified: Wed, 28 Sep 2022 17:38:34 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

35.164.56.167

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.164.56.167:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 4Tb+fpSwWS3WruhlFg/fXw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: zGyAqOAx8xg/ZJH9qjVmrMOQ5rQ=

gt-max.com.my/dolordolor/voluistiscontactum-906312

162.253.17.45

301 Moved Permanently

0 B

URL HTTP/1.1
gt-max.com.my/dolordolor/voluistiscontactum-906312
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /dolordolor/voluistiscontactum-906312 HTTP/1.1
Host: gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 301 Moved Permanently
Date: Wed, 28 Sep 2022 19:00:23 GMT
Server: Apache
Pragma: no-cache
Expires: Wed, 28 Sep 2022 20:00:24 GMT
Cache-Control: max-age=3600
Location: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4364fa358f76c1635458dab5d598f857
d15fc7359711b1651235fa1be66accc03fe26c1c
6449bf062dbb79683071f367ca142c175ef304485cb4d3711feb4763146e4fa7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2902
Expires: Wed, 28 Sep 2022 19:48:47 GMT
Date: Wed, 28 Sep 2022 19:00:25 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4364fa358f76c1635458dab5d598f857
d15fc7359711b1651235fa1be66accc03fe26c1c
6449bf062dbb79683071f367ca142c175ef304485cb4d3711feb4763146e4fa7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2902
Expires: Wed, 28 Sep 2022 19:48:47 GMT
Date: Wed, 28 Sep 2022 19:00:25 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4364fa358f76c1635458dab5d598f857
d15fc7359711b1651235fa1be66accc03fe26c1c
6449bf062dbb79683071f367ca142c175ef304485cb4d3711feb4763146e4fa7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2902
Expires: Wed, 28 Sep 2022 19:48:47 GMT
Date: Wed, 28 Sep 2022 19:00:25 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4364fa358f76c1635458dab5d598f857
d15fc7359711b1651235fa1be66accc03fe26c1c
6449bf062dbb79683071f367ca142c175ef304485cb4d3711feb4763146e4fa7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2902
Expires: Wed, 28 Sep 2022 19:48:47 GMT
Date: Wed, 28 Sep 2022 19:00:25 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4364fa358f76c1635458dab5d598f857
d15fc7359711b1651235fa1be66accc03fe26c1c
6449bf062dbb79683071f367ca142c175ef304485cb4d3711feb4763146e4fa7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2902
Expires: Wed, 28 Sep 2022 19:48:47 GMT
Date: Wed, 28 Sep 2022 19:00:25 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9a3b058-92c9-490e-9cbb-736f7e46510d.jpeg

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9a3b058-92c9-490e-9cbb-736f7e46510d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7455 bytes)
Hash
ea3890e460356d6ecc3ba4e405ac2e9e
b383135e2ebc23fe80eb0d594b198cb8c89327a5
8fcff053ce6e5750136bf876bad5b2916935f13ea039912d977928b086f0a48b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9a3b058-92c9-490e-9cbb-736f7e46510d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7455
x-amzn-requestid: e99c9f33-b72a-4070-80cf-06fb4a87d1df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZG4S6EcAoAMFX1A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6332a0df-04122b4a345dbc3f3918af98;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 07:06:07 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Di1kDUlYEc1rv31fHM-OquU_W_LggEzDCTVME5iFJ5KffZcQyN6i2A==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 07:31:39 GMT
age: 41326
etag: "b383135e2ebc23fe80eb0d594b198cb8c89327a5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12016 bytes)
Hash
4b794c6812cb546de0295e087ebe66a7
a54803cca7d3c509c195f65961e1110c8ec56f55
6a207f75eb3951f3dea5252bc8d185cd604d3d657f15b838774e8087e91f37f5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12016
x-amzn-requestid: ec1b3715-5d0f-4045-aa5b-b70a55c81d72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3EtyIAMFdZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-201dd1ef1426a09965c68dab;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: y3DefdcXJyoDHpJXwz460gfWcv2JUboOFExNQmTFgy30B4mn54Xvuw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:44:30 GMT
age: 76555
etag: "a54803cca7d3c509c195f65961e1110c8ec56f55"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13299 bytes)
Hash
ad84ed0c5b2090df7996007514cf1984
651600f2ef18cecc2e38370069bbb5e1d86f68e0
a3d0729e1d43afeadd2dd8273c858b8839d9e476f773c8ec9d96b5969a9e0b4a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13299
x-amzn-requestid: 926df8b6-beec-470d-b0b3-33be326cd379
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3UPF8YIAMF3Nw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c1a-343e91e735af43d01fc83ddd;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: KmVkKXoPqZmnwFtpKhuox1kJNDoSxMEmYE39_zVPyaeoU4sPqq-_wA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:44:23 GMT
age: 76562
etag: "651600f2ef18cecc2e38370069bbb5e1d86f68e0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8500 bytes)
Hash
6139c878a7d2bd32c61fc8287996eb5b
9c4692ea64832895fbd107d91f879728b6a440c7
3839df92f0a10c1433d5b576df50c9f7953912ae4f425012262f08ee8a59ce2e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8500
x-amzn-requestid: af82c8d6-950c-4933-87e3-7bbb15cb1ac8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3HOaoAMFoPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-77e0ecc522de575e40f429b3;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: rD5LsVDLQkaomG1nCGZGihbdlWKMCjUYNC2kRyAjJesJEOEBSj8Q3A==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:47:03 GMT
age: 76402
etag: "9c4692ea64832895fbd107d91f879728b6a440c7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13213 bytes)
Hash
62e68c3cd08dd94d910507512a67e85f
3d4fa8701f17e8818c25584ef5f04bfbee8440cd
058d798963f83f5fb88ab728185f755c5353fa981d93e1b6ff869089f501586b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13213
x-amzn-requestid: fe9ec409-2757-4910-8443-5b4d3be7efd3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlATEp8oAMFd9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b9b-3230e97a4fe34413285eb578;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:37:31 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rV80hKsopWPf_A8hKw0kwTOjVN4Bq-5f8oXDP2wluyGwof5yXFe2Bw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:42:47 GMT
age: 76658
etag: "3d4fa8701f17e8818c25584ef5f04bfbee8440cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0369629e-f44d-439f-a279-b5ae6ecc0cf1.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (14464 bytes)
Hash
aa5cad224dbddd71881bd07255beb4da
bc214d60be395d4cf753216ff8f9691c33d25e75
82935e52aa59929a448d17a5a2d58fda86bb5c25bf6628a05bd904f82517dada

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0369629e-f44d-439f-a279-b5ae6ecc0cf1.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 14464
x-amzn-requestid: 6627e07e-034b-432e-ab9e-afe035fa0b9a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e9HgIoAMFxUA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5f-7f34c3f6454379724a7ac413;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: J27vcANRhkMUuGwTZjXkO0EF0-UjN-MODVQRKgsc7hJI2S-UPF8Ctw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:40:53 GMT
age: 76772
etag: "bc214d60be395d4cf753216ff8f9691c33d25e75"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.gt-max.com.my/dolordolor/voluistiscontactum-906312

162.253.17.45

404 Not Found

38 kB

URL HTTP/1.1
www.gt-max.com.my/dolordolor/voluistiscontactum-906312
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1327), with CRLF, LF line terminators
Size
38 kB (37854 bytes)
Hash
a18138ee10adb604ffedb5f156315c29
8091dbac63b9c49045b96122426bfdbabbfcc557
2020de976f691d569737b848e1f8018d8c4194d218a7eedb4edd37e680226497

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /dolordolor/voluistiscontactum-906312 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 19:00:25 GMT
Server: Apache
Link: <https://www.gt-max.com.my/wp-json/>; rel="https://api.w.org/"
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=e625shfv7o7iunof67iusln944; path=/
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e2875a9e06f892f0d4fa46c0f98a1c49
9c0e332f55a592367b602494642ee2127699b543
74692ca89ddc427d0c55f56aedb738b107a9761c44ed5201f932f54950a6f406

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 19:00:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e2875a9e06f892f0d4fa46c0f98a1c49
9c0e332f55a592367b602494642ee2127699b543
74692ca89ddc427d0c55f56aedb738b107a9761c44ed5201f932f54950a6f406

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 19:00:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e2875a9e06f892f0d4fa46c0f98a1c49
9c0e332f55a592367b602494642ee2127699b543
74692ca89ddc427d0c55f56aedb738b107a9761c44ed5201f932f54950a6f406

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 19:00:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
75eebff373cf84ae810a9e326f9e3d03
a5b22b0eee98dda385cb4e90d119205bc5f3a25f
f2089c63c7c2b3024972aba8cbc12dfcffc79dfc1ef9f7be801c79e7737b0d71

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 19:00:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtm.js?id=GTM-5KGXB5B

142.250.74.72

200 OK

44 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-5KGXB5B
IP
142.250.74.72:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2039)
Size
44 kB (43860 bytes)
Hash
cdbc8f25138ce029daaf77cf195f57f4
e9e27124365a5ff0dea794ad8db6dfa782f31cc0
cab156f13387d120f7605b2d377392357b2bc896ff39797a0eaf80637b0dba30

HTTP Headers

GET /gtm.js?id=GTM-5KGXB5B HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 28 Sep 2022 19:00:26 GMT
expires: Wed, 28 Sep 2022 19:00:26 GMT
cache-control: private, max-age=900
last-modified: Wed, 28 Sep 2022 18:17:25 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43860
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.gt-max.com.my/wp-content/plugins/loading-page/css/loading-page.css?ver=free-1.0.15

162.253.17.45

200 OK

25 B

URL HTTP/1.1
www.gt-max.com.my/wp-content/plugins/loading-page/css/loading-page.css?ver=free-1.0.15
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text, with no line terminators
Size
25 B (25 bytes)
Hash
a01f4df5783f4e7c6ec80a6864560414
8a63fdd410a8cebd0f910446978c4b75dd135e33
3b10c2fb50a6b36c2ba9731f91bef31b6c2cea73b6d42415ca1fe51b31d4ab05

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/loading-page/css/loading-page.css?ver=free-1.0.15 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:26 GMT
Server: Apache
Last-Modified: Fri, 09 Sep 2016 04:07:58 GMT
Accept-Ranges: bytes
Content-Length: 25
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.gt-max.com.my/wp-content/themes/bridge/css/font-awesome/css/font-awesome.min.css?ver=4.4.28

162.253.17.45

200 OK

28 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/themes/bridge/css/font-awesome/css/font-awesome.min.css?ver=4.4.28
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text, with very long lines (27303)
Size
28 kB (27466 bytes)
Hash
4fbd15cb6047af93373f4f895639c8bf
12d6861075de8e293265ff6ff03b1f3adcb44c76
ddd92f10ad162c7449eff0acaf40598c05b1111739587edb75e5326b6697c5d5

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bridge/css/font-awesome/css/font-awesome.min.css?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:26 GMT
Server: Apache
Last-Modified: Tue, 01 Mar 2016 03:35:22 GMT
Accept-Ranges: bytes
Content-Length: 27466
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

www.gt-max.com.my/wp-content/plugins/read-more-without-refresh/style.css?ver=4.4.28

162.253.17.45

200 OK

336 B

URL HTTP/1.1
www.gt-max.com.my/wp-content/plugins/read-more-without-refresh/style.css?ver=4.4.28
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text, with CRLF line terminators
Size
336 B (336 bytes)
Hash
14413a1dd7e793d69b035a3e01f6f5ff
db50d56aca043f8ee0a57656e2dce8520dbc9e54
1e8c8447529ee22d2d727ea485cde5f5f857974baece84754b51433e03bb3602

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/read-more-without-refresh/style.css?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:26 GMT
Server: Apache
Last-Modified: Wed, 22 Nov 2017 09:04:50 GMT
Accept-Ranges: bytes
Content-Length: 336
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.gt-max.com.my/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.5

162.253.17.45

200 OK

1.1 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.5
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text
Size
1.1 kB (1147 bytes)
Hash
c056c27890e4d1fa87f12539d2af6111
ee45f6596ca7d4a126931519f771dc6f63f00e2e
82495902b9907f8f6d1c48a79547469486241260e6f466caeb068aaa0bed388b

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.5 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:26 GMT
Server: Apache
Last-Modified: Tue, 30 Aug 2016 08:45:38 GMT
Accept-Ranges: bytes
Content-Length: 1147
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e2875a9e06f892f0d4fa46c0f98a1c49
9c0e332f55a592367b602494642ee2127699b543
74692ca89ddc427d0c55f56aedb738b107a9761c44ed5201f932f54950a6f406

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 19:00:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gt-max.com.my/wp-content/themes/bridge/style.css?ver=4.4.28

162.253.17.45

200 OK

530 B

URL HTTP/1.1
www.gt-max.com.my/wp-content/themes/bridge/style.css?ver=4.4.28
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text
Size
530 B (530 bytes)
Hash
8b39541af6798b127416690ac14cf1e4
288f69db1ea06e3cf21555af56fe95737a5aa1b2
beb19c0722672807884894da9b20ce9ec4f8c7ce37311481f6ba28be5bbb07d8

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bridge/style.css?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:26 GMT
Server: Apache
Last-Modified: Mon, 27 Jul 2015 04:12:38 GMT
Accept-Ranges: bytes
Content-Length: 530
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2f76d47ed4f3c90f557522303bb760bc
f34542cabea7a4517debf64c298b59fc009ea56c
5ce5c216b7cb6a4425f12453e447ad364bcc1cd7d23a9d2468a8a40adfc2cb10

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 19:00:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gt-max.com.my/wp-content/themes/bridge/css/elegant-icons/style.min.css?ver=4.4.28

162.253.17.45

200 OK

22 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/themes/bridge/css/elegant-icons/style.min.css?ver=4.4.28
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text, with very long lines (21769), with no line terminators
Size
22 kB (21769 bytes)
Hash
c1be61e1bfe62ea4f8dabdf0247ef113
61c71aceb8cbff107ff2c9b882b0ce99e351f972
58405a25c52e36b20127a9e73f1f4656f908a82747636a4b187f30a817bedfb9

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bridge/css/elegant-icons/style.min.css?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:26 GMT
Server: Apache
Last-Modified: Tue, 19 May 2015 05:00:36 GMT
Accept-Ranges: bytes
Content-Length: 21769
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

www.gt-max.com.my/wp-content/plugins/LayerSlider/static/css/layerslider.css?ver=5.6.5

162.253.17.45

200 OK

16 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/plugins/LayerSlider/static/css/layerslider.css?ver=5.6.5
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text
Size
16 kB (15708 bytes)
Hash
8fa51ca4b04b369d34d5a12c57cb9c03
cbe76ba934117f3c7d2dc779851b5787f02e6b0c
5e1c8334f722e390a1f1f45d896eb36668c5339478ce9c929dbfefb3ff1625db

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/LayerSlider/static/css/layerslider.css?ver=5.6.5 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:26 GMT
Server: Apache
Last-Modified: Mon, 08 Aug 2016 05:11:24 GMT
Accept-Ranges: bytes
Content-Length: 15708
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.gt-max.com.my/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.2.6

162.253.17.45

200 OK

37 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.2.6
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
Unicode text, UTF-8 text, with very long lines (352), with CRLF line terminators
Size
37 kB (36724 bytes)
Hash
c43284692a7fb5aa19eca02125ada4aa
417daed9bc7a45c59016d5c178028b129c6711e6
6c7ad6a03a369892ee71f103d074dc82b7dcfdbcbc69892b41d6b0f4170c6a75

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.2.6 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:26 GMT
Server: Apache
Last-Modified: Tue, 09 Aug 2016 10:13:42 GMT
Accept-Ranges: bytes
Content-Length: 36724
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.gt-max.com.my/wp-content/themes/bridge/css/print.css?ver=4.4.28

162.253.17.45

200 OK

611 B

URL HTTP/1.1
www.gt-max.com.my/wp-content/themes/bridge/css/print.css?ver=4.4.28
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text
Size
611 B (611 bytes)
Hash
4fe1858c1704416657e621748bc941d7
6d0d5510be2b52e9d90a8e9127ed5dd4238fc4e0
1e8bd08c9d4eb7ca4342601a24788f8a0f6994ec3e60faef2045cb9094bc0ae7

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bridge/css/print.css?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:26 GMT
Server: Apache
Last-Modified: Tue, 01 Mar 2016 03:35:24 GMT
Accept-Ranges: bytes
Content-Length: 611
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.gt-max.com.my/wp-content/themes/bridge/css/style_dynamic.css?ver=1484801134

162.253.17.45

200 OK

20 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/themes/bridge/css/style_dynamic.css?ver=1484801134
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text
Size
20 kB (19606 bytes)
Hash
fccb20f555e0cd4a8b42acfe2b37ac5c
583c23ed1ec3d2149408f8dd240987aba70cc725
29959a740c7e5da42fe336496477dd98cb59f4eeb1b57ecf1121c78f6734ee12

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bridge/css/style_dynamic.css?ver=1484801134 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:26 GMT
Server: Apache
Last-Modified: Thu, 19 Jan 2017 04:45:34 GMT
Accept-Ranges: bytes
Content-Length: 19606
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css

www.gt-max.com.my/wp-content/themes/bridge/css/style_dynamic_responsive.css?ver=1484801134

162.253.17.45

200 OK

428 B

URL HTTP/1.1
www.gt-max.com.my/wp-content/themes/bridge/css/style_dynamic_responsive.css?ver=1484801134
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text
Size
428 B (428 bytes)
Hash
9a37e5abcd34d0fc8aebe6a0b5e194a6
4c186efadd05ad0fb958eb19c59b2482b849112a
4815b71ce1c7bd4b02f3bc39bd2b0a4800604eb0ff172123687cb98d2b7fe4c5

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bridge/css/style_dynamic_responsive.css?ver=1484801134 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:26 GMT
Server: Apache
Last-Modified: Thu, 19 Jan 2017 04:45:34 GMT
Accept-Ranges: bytes
Content-Length: 428
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.gt-max.com.my/wp-content/themes/bridge/css/custom_css.css?ver=1496224858

162.253.17.45

200 OK

1.4 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/themes/bridge/css/custom_css.css?ver=1496224858
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text, with CRLF line terminators
Size
1.4 kB (1437 bytes)
Hash
e439db4c22a3d1ba1b7bf743efe4a43e
f26fceac25902c0f5d581942da3fb3060734d123
3f348962c6c4e33057f7ffbeecf9082c8a6112c88f4f1716546cac37f44d84f5

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bridge/css/custom_css.css?ver=1496224858 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:27 GMT
Server: Apache
Last-Modified: Wed, 31 May 2017 10:00:58 GMT
Accept-Ranges: bytes
Content-Length: 1437
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css

www.gt-max.com.my/wp-content/themes/bridge/css/responsive.min.css?ver=4.4.28

162.253.17.45

200 OK

70 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/themes/bridge/css/responsive.min.css?ver=4.4.28
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text, with very long lines (65536), with no line terminators
Size
70 kB (70296 bytes)
Hash
d96ac638b82c00f887f18db0ea84e0de
7beb25a45161d7b03fb3c50de26f2ca61af7c22a
de3864ea05f4ab23350c664dfdfc7668b1d871e799f18be53ff09917e7aebd40

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bridge/css/responsive.min.css?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:26 GMT
Server: Apache
Last-Modified: Fri, 18 Mar 2016 12:27:50 GMT
Accept-Ranges: bytes
Content-Length: 70296
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.gt-max.com.my/wp-content/themes/bridge/css/linea-icons/style.css?ver=4.4.28

162.253.17.45

200 OK

78 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/themes/bridge/css/linea-icons/style.css?ver=4.4.28
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text, with very long lines (369)
Size
78 kB (78080 bytes)
Hash
18513056c4a412491127bc1cee55d372
e851a7961f873dac6eb973327db29c571bd2a571
b5cad6a450f4007b75ff83016582537871825a08c94ce709efb80947db45d40c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bridge/css/linea-icons/style.css?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:26 GMT
Server: Apache
Last-Modified: Tue, 01 Mar 2016 03:35:24 GMT
Accept-Ranges: bytes
Content-Length: 78080
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.gt-max.com.my/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=4.4.28

162.253.17.45

200 OK

28 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=4.4.28
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text, with very long lines (27639), with no line terminators
Size
28 kB (27639 bytes)
Hash
36ea4805809e6b690c2f5126a0808297
4531470deab3efd0b8499f29a323a1b45f0efced
4354449ab7a164ef5486d12020f3bc403b8ff104a8da73e9f9332106b86b061c

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:27 GMT
Server: Apache
Last-Modified: Thu, 11 Aug 2016 10:18:15 GMT
Accept-Ranges: bytes
Content-Length: 27639
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

www.gt-max.com.my/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1

162.253.17.45

200 OK

7.2 kB

URL HTTP/1.1
www.gt-max.com.my/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text, with very long lines (7085), with CRLF line terminators
Size
7.2 kB (7200 bytes)
Hash
512b871a2830e44259bc3ce3343afcd0
875bce76a77590c3c438bbc6e014b39c23c8c88d
c4d24f6b27cc7ceea56fbec786bb1f486fdad9a1f998f760f76d1f44671e105c

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:27 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 03:37:05 GMT
Accept-Ranges: bytes
Content-Length: 7200
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

www.gt-max.com.my/wp-content/plugins/loading-page/loading-screens/bar/loading-bar.js?ver=free-1.0.15

162.253.17.45

200 OK

4.3 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/plugins/loading-page/loading-screens/bar/loading-bar.js?ver=free-1.0.15
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text, with very long lines (808), with CRLF line terminators
Size
4.3 kB (4282 bytes)
Hash
cf3a8e1de3c52b822474f511461a7e7b
266430c93dc7121cec7bb3529f388300105c113b
534d9ab0fa7e932cd7e0f1fc7dd28da517754e37da613435fcac51121114959d

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/loading-page/loading-screens/bar/loading-bar.js?ver=free-1.0.15 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:27 GMT
Server: Apache
Last-Modified: Fri, 09 Sep 2016 04:07:58 GMT
Accept-Ranges: bytes
Content-Length: 4282
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

www.gt-max.com.my/wp-includes/js/jquery/jquery.js?ver=1.11.3

162.253.17.45

200 OK

96 kB

URL HTTP/1.1
www.gt-max.com.my/wp-includes/js/jquery/jquery.js?ver=1.11.3
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text, with very long lines (32038)
Size
96 kB (95977 bytes)
Hash
207abeb83412721d556faeba36e00822
c06b7f0b1526037bcdc6639244c9692e2ef3ebdd
ca32702f36da9bdbaa5463f8e3db9b18d82f3ce8a630d18e8bde6b30a2582d20

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery.js?ver=1.11.3 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:27 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 03:37:05 GMT
Accept-Ranges: bytes
Content-Length: 95977
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

www.gt-max.com.my/wp-content/plugins/loading-page/js/loading-page.js?ver=free-1.0.15

162.253.17.45

200 OK

7.1 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/plugins/loading-page/js/loading-page.js?ver=free-1.0.15
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text, with very long lines (800), with CRLF line terminators
Size
7.1 kB (7073 bytes)
Hash
a202b7357bdbdeb28300a9ff0cd7e157
6d09f92d17f85704b7e0f2b6f0c4e27fcb0a366a
1b4f53c097b9d75772e7d0ac5c3aa00eb27bd8325e24005616de2e32e26f9062

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/loading-page/js/loading-page.js?ver=free-1.0.15 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:27 GMT
Server: Apache
Last-Modified: Fri, 09 Sep 2016 04:07:58 GMT
Accept-Ranges: bytes
Content-Length: 7073
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

www.gt-max.com.my/wp-content/plugins/mpc-massive/assets/css/mpc-styles.css?ver=4.4.28

162.253.17.45

200 OK

242 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/plugins/mpc-massive/assets/css/mpc-styles.css?ver=4.4.28
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text, with very long lines (1218), with CRLF, LF line terminators
Size
242 kB (242131 bytes)
Hash
f7e4e6f8be2a34d5f2930487edff91b6
cd0372fdfd282b99538a330ae7a7162c76cf4f64
a2e450e1281ddb8bc4ea74b5e03d928930a89289e4da678cc9f98bea1c0ff9d8

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/mpc-massive/assets/css/mpc-styles.css?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:27 GMT
Server: Apache
Last-Modified: Thu, 11 Aug 2016 10:09:38 GMT
Accept-Ranges: bytes
Content-Length: 242131
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css

www.gt-max.com.my/wp-content/plugins/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js?ver=5.6.5

162.253.17.45

200 OK

55 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/plugins/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js?ver=5.6.5
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text, with very long lines (54828)
Size
55 kB (55008 bytes)
Hash
3d81841e1ed912e135c63c6861282783
c0db7a624c19697c74fd9ae8589b42a49de75345
83f9ea6b747fc693cca4fd07bd57b4509a71d918d0d896fe751032538a0d9e05

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js?ver=5.6.5 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:27 GMT
Server: Apache
Last-Modified: Fri, 20 May 2022 08:19:41 GMT
Accept-Ranges: bytes
Content-Length: 55008
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

www.gt-max.com.my/wp-content/themes/bridge/css/stylesheet.min.css?ver=4.4.28

162.253.17.45

200 OK

467 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/themes/bridge/css/stylesheet.min.css?ver=4.4.28
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text, with very long lines (65536), with no line terminators
Size
467 kB (466747 bytes)
Hash
13f7e286358f15c4d9cce804a7cb8ef1
53f036c3f30b3bd2350d16a866c64c61b259572a
65d2376ec4ab4086106ade835bd336f1f723630f5365af2a33f313f3fe184b00

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bridge/css/stylesheet.min.css?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:26 GMT
Server: Apache
Last-Modified: Tue, 28 Feb 2017 06:47:44 GMT
Accept-Ranges: bytes
Content-Length: 466747
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.gt-max.com.my/wp-content/plugins/LayerSlider/static/js/layerslider.transitions.js?ver=5.6.5

162.253.17.45

200 OK

21 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/plugins/LayerSlider/static/js/layerslider.transitions.js?ver=5.6.5
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text, with very long lines (20890)
Size
21 kB (21096 bytes)
Hash
25af1efa0acf7a0d70916c1f7a472d26
f07e4205c5466cc4f3d1dbeac9b89fc9d6992354
070c461a79b8c6433c8158d86f1eed1ff8d646cb413dd6c6c5a2cf5117af92b5

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/LayerSlider/static/js/layerslider.transitions.js?ver=5.6.5 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:27 GMT
Server: Apache
Last-Modified: Fri, 20 May 2022 08:19:41 GMT
Accept-Ranges: bytes
Content-Length: 21096
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

www.gt-max.com.my/wp-content/plugins/LayerSlider/static/js/greensock.js?ver=1.11.8

162.253.17.45

200 OK

60 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/plugins/LayerSlider/static/js/greensock.js?ver=1.11.8
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text, with very long lines (59249)
Size
60 kB (59710 bytes)
Hash
de63b1ca579e71ff732f3e894df61474
d9ba5023ff6f5a1a92ec3d983232bd2b31e026b7
2c2d25a951c1a1019f0f1497414ba6d3aec9ce0d224e73edead357867105551a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/LayerSlider/static/js/greensock.js?ver=1.11.8 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:27 GMT
Server: Apache
Last-Modified: Fri, 20 May 2022 08:19:42 GMT
Accept-Ranges: bytes
Content-Length: 59710
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

www.gt-max.com.my/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.2.6

162.253.17.45

200 OK

108 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.2.6
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text, with very long lines (26857), with CRLF line terminators
Size
108 kB (107944 bytes)
Hash
73b407bf24c022b18133bd0859e00cf0
18b631a4a098ff7861e3bb029b458a298e65fc25
54045339476b08b0d1e3c3d419f49d76a5a3c2722fffec9936a48a53535a334f

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.2.6 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:27 GMT
Server: Apache
Last-Modified: Tue, 09 Aug 2016 10:13:42 GMT
Accept-Ranges: bytes
Content-Length: 107944
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript

www.gt-max.com.my/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.2.6

162.253.17.45

200 OK

57 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.2.6
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text, with very long lines (32010), with CRLF line terminators
Size
57 kB (57219 bytes)
Hash
f733324b68be07c1ea725ece8e057920
d4ec942b98a3e2d8725b66fae22c76a140338cdc
0dbea55942e08bb603d32036f7f0ca7c0a5e4210d7c2153c5245f45e7e004d74

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.2.6 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:27 GMT
Server: Apache
Last-Modified: Tue, 09 Aug 2016 10:13:42 GMT
Accept-Ranges: bytes
Content-Length: 57219
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

www.gt-max.com.my/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=4.11.2.1

162.253.17.45

200 OK

728 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=4.11.2.1
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text, with very long lines (65536), with no line terminators
Size
728 kB (728081 bytes)
Hash
75524a37b1fdfa976ca2a302619812ec
84631a5d9affdcdb4e57af64cc04f107e89bc02a
1eb8b0b461886b58a6d7a704ffc72912c4268363deecd5c963ed266c0fd709fd

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=4.11.2.1 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:26 GMT
Server: Apache
Last-Modified: Mon, 08 Aug 2016 05:11:24 GMT
Accept-Ranges: bytes
Content-Length: 728081
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

www.gt-max.com.my/wp-content/uploads/intense-cache/css/intense_e16956ea1ca0454cc75a2a657b829eecf70bac06.css?ver=2.6.2

162.253.17.45

200 OK

104 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/uploads/intense-cache/css/intense_e16956ea1ca0454cc75a2a657b829eecf70bac06.css?ver=2.6.2
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text, with very long lines (28732)
Size
104 kB (104512 bytes)
Hash
2890173fffad206ead8d2ce3811a729f
6cb5e50c616bbd80db84f8f9030bc16035e86d65
c920cab810305c9edb916ad2fd3e38da974d699fd4bf0ff40fd55b95b12fdbdd

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/intense-cache/css/intense_e16956ea1ca0454cc75a2a657b829eecf70bac06.css?ver=2.6.2 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:27 GMT
Server: Apache
Last-Modified: Tue, 14 Nov 2017 07:11:37 GMT
Accept-Ranges: bytes
Content-Length: 104512
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

www.gt-max.com.my/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20

162.253.17.45

200 OK

15 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text, with very long lines (14901)
Size
15 kB (15249 bytes)
Hash
aebecb6cf308b95cb4eafdfb11ca0e8b
8c3145a001c774fcef0d34b7d543fb2e78d7614a
ba46104959f8f1af97df586a98066207f595c5d08de4da7d11cc3b721b844dfd

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:27 GMT
Server: Apache
Last-Modified: Fri, 20 May 2022 08:22:27 GMT
Accept-Ranges: bytes
Content-Length: 15249
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

www.gt-max.com.my/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.5

162.253.17.45

200 OK

12 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.5
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text
Size
12 kB (12245 bytes)
Hash
c22eca3acf8f551997cc7d62fdef3cb4
5b3924d28cc6303294b48d6b3df84ee6a5a3f53d
f1a0de00318eaab520336f7d1273a8c4a237680c7caaa7995b4dfc8a70ae6a74

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.5 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:27 GMT
Server: Apache
Last-Modified: Fri, 20 May 2022 08:22:27 GMT
Accept-Ranges: bytes
Content-Length: 12245
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

www.gt-max.com.my/wp-content/themes/bridge/js/qode-like.min.js?ver=4.4.28

162.253.17.45

200 OK

1.4 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/themes/bridge/js/qode-like.min.js?ver=4.4.28
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text, with very long lines (1389), with no line terminators
Size
1.4 kB (1389 bytes)
Hash
715f79bb91f21a148c6fe17ee5d60e01
325d7b0709aca7d96ecfae0ee99a5900579db804
f26d699b707e8a616feeac2969ea3c0b94717753d47220394f114a7f9da8d8e6

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bridge/js/qode-like.min.js?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Tue, 19 Apr 2016 05:56:18 GMT
Accept-Ranges: bytes
Content-Length: 1389
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript

www.gt-max.com.my/wp-content/themes/bridge/js/jquery.carouFredSel-6.2.1.min.js?ver=4.4.28

162.253.17.45

200 OK

63 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/themes/bridge/js/jquery.carouFredSel-6.2.1.min.js?ver=4.4.28
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text, with very long lines (63430), with no line terminators
Size
63 kB (63430 bytes)
Hash
db68aedb745e91b81d9fee6c188e7d2c
aba6056cd51c6ad56759bc7cc0c9589693877f68
7fe5cc7c8868ab139022873594dc83f5784415ab8125050d0c6fa4ab7feba4d4

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bridge/js/jquery.carouFredSel-6.2.1.min.js?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Tue, 19 Apr 2016 05:56:18 GMT
Accept-Ranges: bytes
Content-Length: 63430
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

www.gt-max.com.my/wp-content/themes/bridge/js/lemmon-slider.min.js?ver=4.4.28

162.253.17.45

200 OK

6.9 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/themes/bridge/js/lemmon-slider.min.js?ver=4.4.28
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text, with very long lines (6856), with no line terminators
Size
6.9 kB (6856 bytes)
Hash
feed31de6e5113aeb1a38a7333c680a5
24807c5f8c30d30275eb9b5643277094131d4a23
24546fbd92e92a8812ebcdd1f1701996ab0d9a5d42d545dda72b99218bc0ee4c

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bridge/js/lemmon-slider.min.js?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Tue, 19 Apr 2016 05:56:18 GMT
Accept-Ranges: bytes
Content-Length: 6856
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

www.gt-max.com.my/wp-content/themes/bridge/js/jquery.fullPage.min.js?ver=4.4.28

162.253.17.45

200 OK

24 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/themes/bridge/js/jquery.fullPage.min.js?ver=4.4.28
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text, with very long lines (1184)
Size
24 kB (24476 bytes)
Hash
95d944f9533e1075f40a3c13f225592a
67f925f90b49befc5daa025a245618b91331eba0
dfdc71d779c0e203a8b86dba6a508b341f3b4bf744a85ca3b567ee92cdabd767

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bridge/js/jquery.fullPage.min.js?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Tue, 19 Apr 2016 05:56:18 GMT
Accept-Ranges: bytes
Content-Length: 24476
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript

www.gt-max.com.my/wp-content/themes/bridge/js/jquery.mousewheel.min.js?ver=4.4.28

162.253.17.45

200 OK

2.2 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/themes/bridge/js/jquery.mousewheel.min.js?ver=4.4.28
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text, with very long lines (1020)
Size
2.2 kB (2189 bytes)
Hash
8fbf1bdab2ff68a0db6ce07a0c782b8f
d4d17d9625f67ef7fa7dbf3c89c7834cb991af7e
23766e27975b78092e5b4cfb02a36179092c392c7b057f462ca622522a5628d0

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bridge/js/jquery.mousewheel.min.js?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Tue, 19 Apr 2016 05:56:18 GMT
Accept-Ranges: bytes
Content-Length: 2189
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
fc82211401f793132f7d43c2fd253af5
605d8371709b5d2a41967fd390c34fa649f89ea3
b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 19:00:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
fc82211401f793132f7d43c2fd253af5
605d8371709b5d2a41967fd390c34fa649f89ea3
b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 19:00:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gt-max.com.my/wp-content/themes/bridge/js/jquery.touchSwipe.min.js?ver=4.4.28

162.253.17.45

200 OK

13 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/themes/bridge/js/jquery.touchSwipe.min.js?ver=4.4.28
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text, with very long lines (12214)
Size
13 kB (12602 bytes)
Hash
98e293d2448bff5e46f76ec0e37c6619
ee25c75d4e0d539d4c7610e79d65d6fad7d4f260
55be37cd1b8799b088da6dd7175184163c07aa32c068e57e4b9f2662f00c4637

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bridge/js/jquery.touchSwipe.min.js?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Tue, 19 Apr 2016 05:56:18 GMT
Accept-Ranges: bytes
Content-Length: 12602
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript

fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

142.250.74.163

200 OK

31 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size
31 kB (30928 bytes)
Hash
ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780

HTTP Headers

GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gt-max.com.my
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 16:40:18 GMT
expires: Fri, 22 Sep 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 526810
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2

142.250.74.163

200 OK

46 kB

URL HTTP/2
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Size
46 kB (46524 bytes)
Hash
c1fd378f54921c75e4ae1821e7b8fff6
2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826

HTTP Headers

GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gt-max.com.my
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Sep 2022 21:13:12 GMT
expires: Tue, 26 Sep 2023 21:13:12 GMT
cache-control: public, max-age=31536000
age: 164836
last-modified: Mon, 18 Jul 2022 19:58:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
fc82211401f793132f7d43c2fd253af5
605d8371709b5d2a41967fd390c34fa649f89ea3
b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 19:00:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gt-max.com.my/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=4.11.2.1

162.253.17.45

200 OK

36 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=4.11.2.1
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text, with very long lines (32003)
Size
36 kB (36421 bytes)
Hash
15b4d846a287e24935e149305b58299c
956ec60dfe5de4b22893ae6ccaba14b0c72303c6
cf8977dd38385cbd274c67eec52fe71a122182ac041743182e75e7ff6ca05ea3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=4.11.2.1 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Mon, 08 Aug 2016 05:11:24 GMT
Accept-Ranges: bytes
Content-Length: 36421
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

gt-max.com.my/wp-content/uploads/2016/10/Untitled-1_03.png

162.253.17.45

200 OK

16 kB

URL HTTP/1.1
gt-max.com.my/wp-content/uploads/2016/10/Untitled-1_03.png
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
PNG image data, 305 x 90, 8-bit/color RGBA, non-interlaced\012- data
Size
16 kB (15631 bytes)
Hash
9a8b62c631ae8d8f0e6535cf748d3ef5
8ee4d364e30df30e03a655c1e44781c301da8720
e902007f567edd5f2452113e9fdc085c323d4d4f877c6d2ba0122f4db28794cc

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2016/10/Untitled-1_03.png HTTP/1.1
Host: gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Fri, 28 Oct 2016 07:50:37 GMT
Accept-Ranges: bytes
Content-Length: 15631
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

www.gt-max.com.my/wp-content/themes/bridge/js/default_dynamic.js?ver=1484801134

162.253.17.45

200 OK

2.4 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/themes/bridge/js/default_dynamic.js?ver=1484801134
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text, with very long lines (797)
Size
2.4 kB (2403 bytes)
Hash
abf4593a78f0049c04d36677ae7414f7
dc0767ca070876ceb27251a9ea4bba7bcea0a88e
0ec48352b89d492f1e6a80973512bec1ec13f225c6a26d30e1cb99c5d622bfcc

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bridge/js/default_dynamic.js?ver=1484801134 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Thu, 19 Jan 2017 04:45:34 GMT
Accept-Ranges: bytes
Content-Length: 2403
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

www.gt-max.com.my/wp-content/themes/bridge/js/custom_js.js?ver=1484801134

162.253.17.45

200 OK

882 B

URL HTTP/1.1
www.gt-max.com.my/wp-content/themes/bridge/js/custom_js.js?ver=1484801134
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text, with very long lines (797)
Size
882 B (882 bytes)
Hash
8feea0c70ddfac8143cba0ce88753a7f
9b8a129553339eee8170ef89b2f80dbdd89a25d3
b9a3e155a0eec0039876a45a773eb994cec42c9776f44fe069732823c327058f

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bridge/js/custom_js.js?ver=1484801134 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Thu, 19 Jan 2017 04:45:34 GMT
Accept-Ranges: bytes
Content-Length: 882
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript

www.gt-max.com.my/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=4.11.2.1

162.253.17.45

200 OK

20 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=4.11.2.1
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text, with very long lines (19872), with no line terminators
Size
20 kB (19872 bytes)
Hash
2bfd6a82520596c36b6f06578f7b9490
3fae64b94fcb2f1b0fcec51956930b1e6ebf08e9
1c2f863ff5fed7ff92c027a939b56984565dc1ede472031ba6ee70cdcdf29d92

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=4.11.2.1 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Mon, 08 Aug 2016 05:11:24 GMT
Accept-Ranges: bytes
Content-Length: 19872
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript

www.gt-max.com.my/wp-content/themes/bridge/js/plugins.js?ver=4.4.28

162.253.17.45

200 OK

705 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/themes/bridge/js/plugins.js?ver=4.4.28
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
HTML document, ASCII text, with very long lines (45166)
Size
705 kB (705243 bytes)
Hash
b02fe5e6c6fb0ffa67fce9f49e805bb5
ac01a2f72fdd408d87d9c50b215ecccac07dba2a
f473176763805693d163fbb8dd3f9bb39d3f21e4044004112b82738aba7a5027

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bridge/js/plugins.js?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Tue, 19 Apr 2016 05:56:18 GMT
Accept-Ranges: bytes
Content-Length: 705243
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

www.gt-max.com.my/wp-content/plugins/vertical-center/js/vertical-center-public.js?ver=1.1.1

162.253.17.45

200 OK

5.1 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/plugins/vertical-center/js/vertical-center-public.js?ver=1.1.1
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text, with very long lines (797), with CRLF line terminators
Size
5.1 kB (5121 bytes)
Hash
602b8d0180f2aa435ecc78517d4a6536
94064e0986b17b017164dd92d211fa1da1f8e0a0
cfeed6d12ec2c71d5b4cd97c3283a1fd559df14a8e00639b6e3571ad6490429e

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/vertical-center/js/vertical-center-public.js?ver=1.1.1 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Fri, 09 Sep 2016 01:22:52 GMT
Accept-Ranges: bytes
Content-Length: 5121
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

www.gt-max.com.my/wp-content/themes/bridge/js/default.min.js?ver=4.4.28

162.253.17.45

200 OK

192 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/themes/bridge/js/default.min.js?ver=4.4.28
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text, with very long lines (65536), with no line terminators
Size
192 kB (192250 bytes)
Hash
59f45eda3e59ebdae3e4c99a15178548
8eefdc3269147a70778e88f42e827e19210b5c1c
c728a29ca3bf237f9a222f57ca924aba65ad97145850d27bb20ef15c393cca03

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bridge/js/default.min.js?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Tue, 19 Apr 2016 05:56:18 GMT
Accept-Ranges: bytes
Content-Length: 192250
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript

www.gt-max.com.my/wp-content/plugins/mpc-massive/assets/js/mpc-scripts.min.js?ver=2.1

162.253.17.45

200 OK

97 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/plugins/mpc-massive/assets/js/mpc-scripts.min.js?ver=2.1
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
Unicode text, UTF-8 text, with very long lines (32083)
Size
97 kB (96726 bytes)
Hash
e88a64d23ba9d502884c775076c6fded
9fdf256ea2a86e5559bba048a1424173c07eae0b
afb3be7b87c77c4014666f4caf6b06eb86f8ac77af45bfd57572fb89c51926e6

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/mpc-massive/assets/js/mpc-scripts.min.js?ver=2.1 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Thu, 11 Aug 2016 10:09:38 GMT
Accept-Ranges: bytes
Content-Length: 96726
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript

gt-max.com.my/wp-content/uploads/2016/12/social_youtube.png

162.253.17.45

200 OK

1.6 kB

URL HTTP/1.1
gt-max.com.my/wp-content/uploads/2016/12/social_youtube.png
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
PNG image data, 26 x 26, 8-bit/color RGBA, non-interlaced\012- data
Size
1.6 kB (1596 bytes)
Hash
f47f1c7e24aa6662dd48a091e92aa94c
27211c6c2d15a9c22057b3174ea4f65b677e73f5
a3085f413533de78e93adbec3414625ebe8b6bf72f6889da535e69f0981c1c17

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2016/12/social_youtube.png HTTP/1.1
Host: gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Thu, 15 Dec 2016 09:58:39 GMT
Accept-Ranges: bytes
Content-Length: 1596
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png

gt-max.com.my/wp-content/uploads/2016/11/linked-in.png

162.253.17.45

200 OK

1.8 kB

URL HTTP/1.1
gt-max.com.my/wp-content/uploads/2016/11/linked-in.png
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
PNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1845 bytes)
Hash
cefbcfbc24376ddfa89546d053d76b6d
86eaa65e7c829a1ce27021a151743bc7dcd05073
23dc69226910bc243c7ce3e0137da2a5eab3bc27415422edced925d515475ca7

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2016/11/linked-in.png HTTP/1.1
Host: gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Wed, 09 Nov 2016 09:29:31 GMT
Accept-Ranges: bytes
Content-Length: 1845
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png

gt-max.com.my/wp-content/uploads/2016/11/facebook.png

162.253.17.45

200 OK

1.8 kB

URL HTTP/1.1
gt-max.com.my/wp-content/uploads/2016/11/facebook.png
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
PNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1816 bytes)
Hash
07829585cbf1ed20bec2ff7516b59220
3e42ea195cdf3c57f359c68ea6d6abba180e4220
907694ed08d96cd75598810d4c6f4b7c8282f9e79fe0c715168e5c843b7545b7

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2016/11/facebook.png HTTP/1.1
Host: gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Wed, 09 Nov 2016 09:21:11 GMT
Accept-Ranges: bytes
Content-Length: 1816
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png

gt-max.com.my/wp-content/uploads/2016/11/twitter.png

162.253.17.45

200 OK

2.1 kB

URL HTTP/1.1
gt-max.com.my/wp-content/uploads/2016/11/twitter.png
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
PNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced\012- data
Size
2.1 kB (2068 bytes)
Hash
e476a0c4f190f1870570a636a1b7f089
a2cb9c2acdffcfc360fecd24fea7a748c26818e3
9a9b8cdc6641b3106a71cedceb0bcd3cc8dcfd693e06b4bb8067ee13a1d80e6f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2016/11/twitter.png HTTP/1.1
Host: gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Wed, 09 Nov 2016 09:21:09 GMT
Accept-Ranges: bytes
Content-Length: 2068
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png

gt-max.com.my/wp-content/uploads/2016/11/alibaba.png

162.253.17.45

200 OK

2.9 kB

URL HTTP/1.1
gt-max.com.my/wp-content/uploads/2016/11/alibaba.png
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
PNG image data, 43 x 28, 8-bit/color RGBA, non-interlaced\012- data
Size
2.9 kB (2859 bytes)
Hash
0675b5e38dd9cd1687680255e0b052c9
e04f8409abfbaa9f2ca5c1833c1295fc742fbdd9
37188445f554d519807074cfb80468c0bd5d03d804f16821a1379096efc701cf

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2016/11/alibaba.png HTTP/1.1
Host: gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Wed, 09 Nov 2016 09:21:10 GMT
Accept-Ranges: bytes
Content-Length: 2859
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png

www.gt-max.com.my/wp-includes/js/wp-embed.min.js?ver=4.4.28

162.253.17.45

200 OK

1.4 kB

URL HTTP/1.1
www.gt-max.com.my/wp-includes/js/wp-embed.min.js?ver=4.4.28
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
ASCII text, with very long lines (1384), with no line terminators
Size
1.4 kB (1384 bytes)
Hash
2a9a2f64687bc94523f4c50c9335cc0f
33c874cafe5df3ea8c8756be8642f675f9cf5289
4114f99c5992bab27f43ae5e3c7c196ce63fac0b4b43915af913c1a30ca1f3da

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/wp-embed.min.js?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 03:37:05 GMT
Accept-Ranges: bytes
Content-Length: 1384
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript

www.gt-max.com.my/wp-content/plugins/intense/assets/js/modernizr.min.js?ver=2.6.2

162.253.17.45

200 OK

9.4 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/plugins/intense/assets/js/modernizr.min.js?ver=2.6.2
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
HTML document text\012- HTML document, ASCII text, with very long lines (9109)
Size
9.4 kB (9383 bytes)
Hash
5b1afce9b64221dfd0e82c9878dd4250
79856efc7f1bc35d667d7a844f1daf5593b6e51b
98b82228257e1d7f79bff99a3d3d3144bfe1dcc1cbf693657af1f940869e21f9

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/intense/assets/js/modernizr.min.js?ver=2.6.2 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Fri, 20 May 2022 08:25:24 GMT
Accept-Ranges: bytes
Content-Length: 9383
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript

www.gt-max.com.my/wp-content/themes/bridge/css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.5.0

162.253.17.45

200 OK

67 kB

URL HTTP/1.1
www.gt-max.com.my/wp-content/themes/bridge/css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.5.0
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type
Web Open Font Format (Version 2), TrueType, length 66624, version 4.262\012- data
Size
67 kB (66624 bytes)
Hash
db812d8a70a4e88e888744c1c9a27e89
638c652d623280a58144f93e7b552c66d1667a11
ff82aeed6b9bb6701696c84d1b223d2e682eb78c89117a438ce6cfea8c498995

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bridge/css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.5.0 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.gt-max.com.my/wp-content/themes/bridge/css/font-awesome/css/font-awesome.min.css?ver=4.4.28
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Tue, 01 Mar 2016 03:35:24 GMT
Accept-Ranges: bytes
Content-Length: 66624
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: font/woff2

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (19826 bytes)
Hash
cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Wed, 28 Sep 2022 18:41:09 GMT
expires: Wed, 28 Sep 2022 20:41:09 GMT
cache-control: public, max-age=7200
age: 1160
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.gt-max.com.my/favicon.ico

162.253.17.45

200 OK

0 B

URL HTTP/1.1
www.gt-max.com.my/favicon.ico
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:29 GMT
Server: Apache
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/vnd.microsoft.icon

fonts.googleapis.com/css?family=Raleway:100,200,300,400,500,600,700,800,900,300italic,400italic|Raleway:100,200,300,400,500,600,700,800,900,300italic,400italic|Montserrat:100,200,300,400,500,600,700,800,900,300italic,400italic|Poppins:100,200,300,400,500,600,700,800,900,300italic,400italic&subset=latin,latin-ext

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Raleway:100,200,300,400,500,600,700,800,900,300italic,400italic|Raleway:100,200,300,400,500,600,700,800,900,300italic,400italic|Montserrat:100,200,300,400,500,600,700,800,900,300italic,400italic|Poppins:100,200,300,400,500,600,700,800,900,300italic,400italic&subset=latin,latin-ext
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Raleway:100,200,300,400,500,600,700,800,900,300italic,400italic|Raleway:100,200,300,400,500,600,700,800,900,300italic,400italic|Montserrat:100,200,300,400,500,600,700,800,900,300italic,400italic|Poppins:100,200,300,400,500,600,700,800,900,300italic,400italic&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 28 Sep 2022 19:00:26 GMT
date: Wed, 28 Sep 2022 19:00:26 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto%3A300&ver=1.0.0

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto%3A300&ver=1.0.0
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto%3A300&ver=1.0.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 28 Sep 2022 19:00:26 GMT
date: Wed, 28 Sep 2022 19:00:26 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Lato:100,300,regular,700,900%7COpen+Sans:300%7CIndie+Flower:regular%7COswald:300,regular,700&subset=latin%2Clatin-ext

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Lato:100,300,regular,700,900%7COpen+Sans:300%7CIndie+Flower:regular%7COswald:300,regular,700&subset=latin%2Clatin-ext
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Lato:100,300,regular,700,900%7COpen+Sans:300%7CIndie+Flower:regular%7COswald:300,regular,700&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 28 Sep 2022 19:00:26 GMT
date: Wed, 28 Sep 2022 19:00:26 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.gt-max.com.my/wp-content/plugins/mpc-massive/assets/js/mpc-vendor.min.js?ver=2.1

162.253.17.45

200 OK

0 B

URL HTTP/1.1
www.gt-max.com.my/wp-content/plugins/mpc-massive/assets/js/mpc-vendor.min.js?ver=2.1
IP
162.253.17.45:0
ASN
#45352 IP ServerOne Solutions Sdn Bhd

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/mpc-massive/assets/js/mpc-vendor.min.js?ver=2.1 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Thu, 11 Aug 2016 10:09:38 GMT
Accept-Ranges: bytes
Content-Length: 82653
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (43)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations