firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 28 Sep 2022 18:15:39 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: HizDTxoFYEibrpD76yBWRHF48HBgf_lURFzMIT9F2kwTdVadkcyLAQ==
Age: 2683
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 28 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4vcTeNNA_HGy30VR8ORwK_nWXMkNrzpUuABP1Cbox-qXTvZcoSOdEg==
age: 48716
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 490c003436e215e91596f285fcba92f5
0c4c9a5802e7cdb699f4918c252dbdf8431c25ec
9fe6beb1cb3851018168765a243b6de69ec71d30770f8c2dcc57cae7d9978cc1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9FE6BEB1CB3851018168765A243B6DE69EC71D30770F8C2DCC57CAE7D9978CC1"
Last-Modified: Wed, 28 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4558
Expires: Wed, 28 Sep 2022 20:16:20 GMT
Date: Wed, 28 Sep 2022 19:00:22 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 19:00:23 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 28 Sep 2022 18:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Wed, 28 Sep 2022 19:25:37 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5JO5oGDw11DOfvJ9Fm4s4hjEAifulni9qb3ZTuSboaTzXhujnNIteA==
Age: 1850
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3526d5ce1381ba26cbc553db057e1915
fe01c920696448e8bf12e6fff877bce8281d34a2
09604aed7cbca7971bfcb5afcb53591600b944f28eff21aa65dc601e78cdda53
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4909
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 19:00:23 GMT
Last-Modified: Wed, 28 Sep 2022 17:38:34 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.164.56.167101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.164.56.167:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 4Tb+fpSwWS3WruhlFg/fXw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: zGyAqOAx8xg/ZJH9qjVmrMOQ5rQ=
gt-max.com.my/dolordolor/voluistiscontactum-906312
162.253.17.45301 Moved Permanently 0 B URL HTTP/1.1 gt-max.com.my/dolordolor/voluistiscontactum-906312
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /dolordolor/voluistiscontactum-906312 HTTP/1.1
Host: gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 301 Moved Permanently
Date: Wed, 28 Sep 2022 19:00:23 GMT
Server: Apache
Pragma: no-cache
Expires: Wed, 28 Sep 2022 20:00:24 GMT
Cache-Control: max-age=3600
Location: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4364fa358f76c1635458dab5d598f857
d15fc7359711b1651235fa1be66accc03fe26c1c
6449bf062dbb79683071f367ca142c175ef304485cb4d3711feb4763146e4fa7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2902
Expires: Wed, 28 Sep 2022 19:48:47 GMT
Date: Wed, 28 Sep 2022 19:00:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4364fa358f76c1635458dab5d598f857
d15fc7359711b1651235fa1be66accc03fe26c1c
6449bf062dbb79683071f367ca142c175ef304485cb4d3711feb4763146e4fa7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2902
Expires: Wed, 28 Sep 2022 19:48:47 GMT
Date: Wed, 28 Sep 2022 19:00:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4364fa358f76c1635458dab5d598f857
d15fc7359711b1651235fa1be66accc03fe26c1c
6449bf062dbb79683071f367ca142c175ef304485cb4d3711feb4763146e4fa7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2902
Expires: Wed, 28 Sep 2022 19:48:47 GMT
Date: Wed, 28 Sep 2022 19:00:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4364fa358f76c1635458dab5d598f857
d15fc7359711b1651235fa1be66accc03fe26c1c
6449bf062dbb79683071f367ca142c175ef304485cb4d3711feb4763146e4fa7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2902
Expires: Wed, 28 Sep 2022 19:48:47 GMT
Date: Wed, 28 Sep 2022 19:00:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4364fa358f76c1635458dab5d598f857
d15fc7359711b1651235fa1be66accc03fe26c1c
6449bf062dbb79683071f367ca142c175ef304485cb4d3711feb4763146e4fa7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2902
Expires: Wed, 28 Sep 2022 19:48:47 GMT
Date: Wed, 28 Sep 2022 19:00:25 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9a3b058-92c9-490e-9cbb-736f7e46510d.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9a3b058-92c9-490e-9cbb-736f7e46510d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ea3890e460356d6ecc3ba4e405ac2e9e
b383135e2ebc23fe80eb0d594b198cb8c89327a5
8fcff053ce6e5750136bf876bad5b2916935f13ea039912d977928b086f0a48b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9a3b058-92c9-490e-9cbb-736f7e46510d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7455
x-amzn-requestid: e99c9f33-b72a-4070-80cf-06fb4a87d1df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZG4S6EcAoAMFX1A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6332a0df-04122b4a345dbc3f3918af98;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 07:06:07 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Di1kDUlYEc1rv31fHM-OquU_W_LggEzDCTVME5iFJ5KffZcQyN6i2A==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 07:31:39 GMT
age: 41326
etag: "b383135e2ebc23fe80eb0d594b198cb8c89327a5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4b794c6812cb546de0295e087ebe66a7
a54803cca7d3c509c195f65961e1110c8ec56f55
6a207f75eb3951f3dea5252bc8d185cd604d3d657f15b838774e8087e91f37f5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12016
x-amzn-requestid: ec1b3715-5d0f-4045-aa5b-b70a55c81d72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3EtyIAMFdZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-201dd1ef1426a09965c68dab;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: y3DefdcXJyoDHpJXwz460gfWcv2JUboOFExNQmTFgy30B4mn54Xvuw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:44:30 GMT
age: 76555
etag: "a54803cca7d3c509c195f65961e1110c8ec56f55"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ad84ed0c5b2090df7996007514cf1984
651600f2ef18cecc2e38370069bbb5e1d86f68e0
a3d0729e1d43afeadd2dd8273c858b8839d9e476f773c8ec9d96b5969a9e0b4a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13299
x-amzn-requestid: 926df8b6-beec-470d-b0b3-33be326cd379
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3UPF8YIAMF3Nw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c1a-343e91e735af43d01fc83ddd;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: KmVkKXoPqZmnwFtpKhuox1kJNDoSxMEmYE39_zVPyaeoU4sPqq-_wA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:44:23 GMT
age: 76562
etag: "651600f2ef18cecc2e38370069bbb5e1d86f68e0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6139c878a7d2bd32c61fc8287996eb5b
9c4692ea64832895fbd107d91f879728b6a440c7
3839df92f0a10c1433d5b576df50c9f7953912ae4f425012262f08ee8a59ce2e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8500
x-amzn-requestid: af82c8d6-950c-4933-87e3-7bbb15cb1ac8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3HOaoAMFoPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-77e0ecc522de575e40f429b3;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: rD5LsVDLQkaomG1nCGZGihbdlWKMCjUYNC2kRyAjJesJEOEBSj8Q3A==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:47:03 GMT
age: 76402
etag: "9c4692ea64832895fbd107d91f879728b6a440c7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 62e68c3cd08dd94d910507512a67e85f
3d4fa8701f17e8818c25584ef5f04bfbee8440cd
058d798963f83f5fb88ab728185f755c5353fa981d93e1b6ff869089f501586b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13213
x-amzn-requestid: fe9ec409-2757-4910-8443-5b4d3be7efd3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlATEp8oAMFd9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b9b-3230e97a4fe34413285eb578;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:37:31 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rV80hKsopWPf_A8hKw0kwTOjVN4Bq-5f8oXDP2wluyGwof5yXFe2Bw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:42:47 GMT
age: 76658
etag: "3d4fa8701f17e8818c25584ef5f04bfbee8440cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0369629e-f44d-439f-a279-b5ae6ecc0cf1.png
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0369629e-f44d-439f-a279-b5ae6ecc0cf1.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aa5cad224dbddd71881bd07255beb4da
bc214d60be395d4cf753216ff8f9691c33d25e75
82935e52aa59929a448d17a5a2d58fda86bb5c25bf6628a05bd904f82517dada
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0369629e-f44d-439f-a279-b5ae6ecc0cf1.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14464
x-amzn-requestid: 6627e07e-034b-432e-ab9e-afe035fa0b9a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e9HgIoAMFxUA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5f-7f34c3f6454379724a7ac413;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: J27vcANRhkMUuGwTZjXkO0EF0-UjN-MODVQRKgsc7hJI2S-UPF8Ctw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:40:53 GMT
age: 76772
etag: "bc214d60be395d4cf753216ff8f9691c33d25e75"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.gt-max.com.my/dolordolor/voluistiscontactum-906312
162.253.17.45404 Not Found 38 kB URL HTTP/1.1 www.gt-max.com.my/dolordolor/voluistiscontactum-906312
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1327), with CRLF, LF line terminators
Hash a18138ee10adb604ffedb5f156315c29
8091dbac63b9c49045b96122426bfdbabbfcc557
2020de976f691d569737b848e1f8018d8c4194d218a7eedb4edd37e680226497
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /dolordolor/voluistiscontactum-906312 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 19:00:25 GMT
Server: Apache
Link: <https://www.gt-max.com.my/wp-json/>; rel="https://api.w.org/"
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=e625shfv7o7iunof67iusln944; path=/
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash e2875a9e06f892f0d4fa46c0f98a1c49
9c0e332f55a592367b602494642ee2127699b543
74692ca89ddc427d0c55f56aedb738b107a9761c44ed5201f932f54950a6f406
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 19:00:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash e2875a9e06f892f0d4fa46c0f98a1c49
9c0e332f55a592367b602494642ee2127699b543
74692ca89ddc427d0c55f56aedb738b107a9761c44ed5201f932f54950a6f406
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 19:00:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash e2875a9e06f892f0d4fa46c0f98a1c49
9c0e332f55a592367b602494642ee2127699b543
74692ca89ddc427d0c55f56aedb738b107a9761c44ed5201f932f54950a6f406
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 19:00:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 75eebff373cf84ae810a9e326f9e3d03
a5b22b0eee98dda385cb4e90d119205bc5f3a25f
f2089c63c7c2b3024972aba8cbc12dfcffc79dfc1ef9f7be801c79e7737b0d71
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 19:00:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-5KGXB5B
142.250.74.72200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-5KGXB5B
IP 142.250.74.72:0
File type ASCII text, with very long lines (2039)
Hash cdbc8f25138ce029daaf77cf195f57f4
e9e27124365a5ff0dea794ad8db6dfa782f31cc0
cab156f13387d120f7605b2d377392357b2bc896ff39797a0eaf80637b0dba30
GET /gtm.js?id=GTM-5KGXB5B HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 28 Sep 2022 19:00:26 GMT
expires: Wed, 28 Sep 2022 19:00:26 GMT
cache-control: private, max-age=900
last-modified: Wed, 28 Sep 2022 18:17:25 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43860
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gt-max.com.my/wp-content/plugins/loading-page/css/loading-page.css?ver=free-1.0.15
162.253.17.45200 OK 25 B URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/loading-page/css/loading-page.css?ver=free-1.0.15
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with no line terminators
Hash a01f4df5783f4e7c6ec80a6864560414
8a63fdd410a8cebd0f910446978c4b75dd135e33
3b10c2fb50a6b36c2ba9731f91bef31b6c2cea73b6d42415ca1fe51b31d4ab05
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/loading-page/css/loading-page.css?ver=free-1.0.15 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:26 GMT
Server: Apache
Last-Modified: Fri, 09 Sep 2016 04:07:58 GMT
Accept-Ranges: bytes
Content-Length: 25
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.gt-max.com.my/wp-content/themes/bridge/css/font-awesome/css/font-awesome.min.css?ver=4.4.28
162.253.17.45200 OK 28 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/css/font-awesome/css/font-awesome.min.css?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (27303)
Hash 4fbd15cb6047af93373f4f895639c8bf
12d6861075de8e293265ff6ff03b1f3adcb44c76
ddd92f10ad162c7449eff0acaf40598c05b1111739587edb75e5326b6697c5d5
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/css/font-awesome/css/font-awesome.min.css?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:26 GMT
Server: Apache
Last-Modified: Tue, 01 Mar 2016 03:35:22 GMT
Accept-Ranges: bytes
Content-Length: 27466
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.gt-max.com.my/wp-content/plugins/read-more-without-refresh/style.css?ver=4.4.28
162.253.17.45200 OK 336 B URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/read-more-without-refresh/style.css?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with CRLF line terminators
Hash 14413a1dd7e793d69b035a3e01f6f5ff
db50d56aca043f8ee0a57656e2dce8520dbc9e54
1e8c8447529ee22d2d727ea485cde5f5f857974baece84754b51433e03bb3602
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/read-more-without-refresh/style.css?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:26 GMT
Server: Apache
Last-Modified: Wed, 22 Nov 2017 09:04:50 GMT
Accept-Ranges: bytes
Content-Length: 336
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.gt-max.com.my/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.5
162.253.17.45200 OK 1.1 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.5
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
Hash c056c27890e4d1fa87f12539d2af6111
ee45f6596ca7d4a126931519f771dc6f63f00e2e
82495902b9907f8f6d1c48a79547469486241260e6f466caeb068aaa0bed388b
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.5 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:26 GMT
Server: Apache
Last-Modified: Tue, 30 Aug 2016 08:45:38 GMT
Accept-Ranges: bytes
Content-Length: 1147
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash e2875a9e06f892f0d4fa46c0f98a1c49
9c0e332f55a592367b602494642ee2127699b543
74692ca89ddc427d0c55f56aedb738b107a9761c44ed5201f932f54950a6f406
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 19:00:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gt-max.com.my/wp-content/themes/bridge/style.css?ver=4.4.28
162.253.17.45200 OK 530 B URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/style.css?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
Hash 8b39541af6798b127416690ac14cf1e4
288f69db1ea06e3cf21555af56fe95737a5aa1b2
beb19c0722672807884894da9b20ce9ec4f8c7ce37311481f6ba28be5bbb07d8
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/style.css?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:26 GMT
Server: Apache
Last-Modified: Mon, 27 Jul 2015 04:12:38 GMT
Accept-Ranges: bytes
Content-Length: 530
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 2f76d47ed4f3c90f557522303bb760bc
f34542cabea7a4517debf64c298b59fc009ea56c
5ce5c216b7cb6a4425f12453e447ad364bcc1cd7d23a9d2468a8a40adfc2cb10
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 19:00:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gt-max.com.my/wp-content/themes/bridge/css/elegant-icons/style.min.css?ver=4.4.28
162.253.17.45200 OK 22 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/css/elegant-icons/style.min.css?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (21769), with no line terminators
Hash c1be61e1bfe62ea4f8dabdf0247ef113
61c71aceb8cbff107ff2c9b882b0ce99e351f972
58405a25c52e36b20127a9e73f1f4656f908a82747636a4b187f30a817bedfb9
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/css/elegant-icons/style.min.css?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:26 GMT
Server: Apache
Last-Modified: Tue, 19 May 2015 05:00:36 GMT
Accept-Ranges: bytes
Content-Length: 21769
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.gt-max.com.my/wp-content/plugins/LayerSlider/static/css/layerslider.css?ver=5.6.5
162.253.17.45200 OK 16 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/LayerSlider/static/css/layerslider.css?ver=5.6.5
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
Hash 8fa51ca4b04b369d34d5a12c57cb9c03
cbe76ba934117f3c7d2dc779851b5787f02e6b0c
5e1c8334f722e390a1f1f45d896eb36668c5339478ce9c929dbfefb3ff1625db
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/LayerSlider/static/css/layerslider.css?ver=5.6.5 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:26 GMT
Server: Apache
Last-Modified: Mon, 08 Aug 2016 05:11:24 GMT
Accept-Ranges: bytes
Content-Length: 15708
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.gt-max.com.my/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.2.6
162.253.17.45200 OK 37 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.2.6
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type Unicode text, UTF-8 text, with very long lines (352), with CRLF line terminators
Hash c43284692a7fb5aa19eca02125ada4aa
417daed9bc7a45c59016d5c178028b129c6711e6
6c7ad6a03a369892ee71f103d074dc82b7dcfdbcbc69892b41d6b0f4170c6a75
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.2.6 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:26 GMT
Server: Apache
Last-Modified: Tue, 09 Aug 2016 10:13:42 GMT
Accept-Ranges: bytes
Content-Length: 36724
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.gt-max.com.my/wp-content/themes/bridge/css/print.css?ver=4.4.28
162.253.17.45200 OK 611 B URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/css/print.css?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
Hash 4fe1858c1704416657e621748bc941d7
6d0d5510be2b52e9d90a8e9127ed5dd4238fc4e0
1e8bd08c9d4eb7ca4342601a24788f8a0f6994ec3e60faef2045cb9094bc0ae7
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/css/print.css?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:26 GMT
Server: Apache
Last-Modified: Tue, 01 Mar 2016 03:35:24 GMT
Accept-Ranges: bytes
Content-Length: 611
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.gt-max.com.my/wp-content/themes/bridge/css/style_dynamic.css?ver=1484801134
162.253.17.45200 OK 20 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/css/style_dynamic.css?ver=1484801134
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
Hash fccb20f555e0cd4a8b42acfe2b37ac5c
583c23ed1ec3d2149408f8dd240987aba70cc725
29959a740c7e5da42fe336496477dd98cb59f4eeb1b57ecf1121c78f6734ee12
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/css/style_dynamic.css?ver=1484801134 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:26 GMT
Server: Apache
Last-Modified: Thu, 19 Jan 2017 04:45:34 GMT
Accept-Ranges: bytes
Content-Length: 19606
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
www.gt-max.com.my/wp-content/themes/bridge/css/style_dynamic_responsive.css?ver=1484801134
162.253.17.45200 OK 428 B URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/css/style_dynamic_responsive.css?ver=1484801134
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
Hash 9a37e5abcd34d0fc8aebe6a0b5e194a6
4c186efadd05ad0fb958eb19c59b2482b849112a
4815b71ce1c7bd4b02f3bc39bd2b0a4800604eb0ff172123687cb98d2b7fe4c5
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/css/style_dynamic_responsive.css?ver=1484801134 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:26 GMT
Server: Apache
Last-Modified: Thu, 19 Jan 2017 04:45:34 GMT
Accept-Ranges: bytes
Content-Length: 428
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.gt-max.com.my/wp-content/themes/bridge/css/custom_css.css?ver=1496224858
162.253.17.45200 OK 1.4 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/css/custom_css.css?ver=1496224858
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with CRLF line terminators
Hash e439db4c22a3d1ba1b7bf743efe4a43e
f26fceac25902c0f5d581942da3fb3060734d123
3f348962c6c4e33057f7ffbeecf9082c8a6112c88f4f1716546cac37f44d84f5
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/css/custom_css.css?ver=1496224858 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:27 GMT
Server: Apache
Last-Modified: Wed, 31 May 2017 10:00:58 GMT
Accept-Ranges: bytes
Content-Length: 1437
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
www.gt-max.com.my/wp-content/themes/bridge/css/responsive.min.css?ver=4.4.28
162.253.17.45200 OK 70 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/css/responsive.min.css?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (65536), with no line terminators
Hash d96ac638b82c00f887f18db0ea84e0de
7beb25a45161d7b03fb3c50de26f2ca61af7c22a
de3864ea05f4ab23350c664dfdfc7668b1d871e799f18be53ff09917e7aebd40
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/css/responsive.min.css?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:26 GMT
Server: Apache
Last-Modified: Fri, 18 Mar 2016 12:27:50 GMT
Accept-Ranges: bytes
Content-Length: 70296
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.gt-max.com.my/wp-content/themes/bridge/css/linea-icons/style.css?ver=4.4.28
162.253.17.45200 OK 78 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/css/linea-icons/style.css?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (369)
Hash 18513056c4a412491127bc1cee55d372
e851a7961f873dac6eb973327db29c571bd2a571
b5cad6a450f4007b75ff83016582537871825a08c94ce709efb80947db45d40c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/css/linea-icons/style.css?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:26 GMT
Server: Apache
Last-Modified: Tue, 01 Mar 2016 03:35:24 GMT
Accept-Ranges: bytes
Content-Length: 78080
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.gt-max.com.my/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=4.4.28
162.253.17.45200 OK 28 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (27639), with no line terminators
Hash 36ea4805809e6b690c2f5126a0808297
4531470deab3efd0b8499f29a323a1b45f0efced
4354449ab7a164ef5486d12020f3bc403b8ff104a8da73e9f9332106b86b061c
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:27 GMT
Server: Apache
Last-Modified: Thu, 11 Aug 2016 10:18:15 GMT
Accept-Ranges: bytes
Content-Length: 27639
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.gt-max.com.my/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1
162.253.17.45200 OK 7.2 kB URL HTTP/1.1 www.gt-max.com.my/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (7085), with CRLF line terminators
Hash 512b871a2830e44259bc3ce3343afcd0
875bce76a77590c3c438bbc6e014b39c23c8c88d
c4d24f6b27cc7ceea56fbec786bb1f486fdad9a1f998f760f76d1f44671e105c
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:27 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 03:37:05 GMT
Accept-Ranges: bytes
Content-Length: 7200
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/plugins/loading-page/loading-screens/bar/loading-bar.js?ver=free-1.0.15
162.253.17.45200 OK 4.3 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/loading-page/loading-screens/bar/loading-bar.js?ver=free-1.0.15
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (808), with CRLF line terminators
Hash cf3a8e1de3c52b822474f511461a7e7b
266430c93dc7121cec7bb3529f388300105c113b
534d9ab0fa7e932cd7e0f1fc7dd28da517754e37da613435fcac51121114959d
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/loading-page/loading-screens/bar/loading-bar.js?ver=free-1.0.15 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:27 GMT
Server: Apache
Last-Modified: Fri, 09 Sep 2016 04:07:58 GMT
Accept-Ranges: bytes
Content-Length: 4282
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-includes/js/jquery/jquery.js?ver=1.11.3
162.253.17.45200 OK 96 kB URL HTTP/1.1 www.gt-max.com.my/wp-includes/js/jquery/jquery.js?ver=1.11.3
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (32038)
Hash 207abeb83412721d556faeba36e00822
c06b7f0b1526037bcdc6639244c9692e2ef3ebdd
ca32702f36da9bdbaa5463f8e3db9b18d82f3ce8a630d18e8bde6b30a2582d20
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.js?ver=1.11.3 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:27 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 03:37:05 GMT
Accept-Ranges: bytes
Content-Length: 95977
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/plugins/loading-page/js/loading-page.js?ver=free-1.0.15
162.253.17.45200 OK 7.1 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/loading-page/js/loading-page.js?ver=free-1.0.15
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (800), with CRLF line terminators
Hash a202b7357bdbdeb28300a9ff0cd7e157
6d09f92d17f85704b7e0f2b6f0c4e27fcb0a366a
1b4f53c097b9d75772e7d0ac5c3aa00eb27bd8325e24005616de2e32e26f9062
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/loading-page/js/loading-page.js?ver=free-1.0.15 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:27 GMT
Server: Apache
Last-Modified: Fri, 09 Sep 2016 04:07:58 GMT
Accept-Ranges: bytes
Content-Length: 7073
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/plugins/mpc-massive/assets/css/mpc-styles.css?ver=4.4.28
162.253.17.45200 OK 242 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/mpc-massive/assets/css/mpc-styles.css?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (1218), with CRLF, LF line terminators
Size 242 kB (242131 bytes)
Hash f7e4e6f8be2a34d5f2930487edff91b6
cd0372fdfd282b99538a330ae7a7162c76cf4f64
a2e450e1281ddb8bc4ea74b5e03d928930a89289e4da678cc9f98bea1c0ff9d8
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/mpc-massive/assets/css/mpc-styles.css?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:27 GMT
Server: Apache
Last-Modified: Thu, 11 Aug 2016 10:09:38 GMT
Accept-Ranges: bytes
Content-Length: 242131
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
www.gt-max.com.my/wp-content/plugins/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js?ver=5.6.5
162.253.17.45200 OK 55 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js?ver=5.6.5
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (54828)
Hash 3d81841e1ed912e135c63c6861282783
c0db7a624c19697c74fd9ae8589b42a49de75345
83f9ea6b747fc693cca4fd07bd57b4509a71d918d0d896fe751032538a0d9e05
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js?ver=5.6.5 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:27 GMT
Server: Apache
Last-Modified: Fri, 20 May 2022 08:19:41 GMT
Accept-Ranges: bytes
Content-Length: 55008
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/themes/bridge/css/stylesheet.min.css?ver=4.4.28
162.253.17.45200 OK 467 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/css/stylesheet.min.css?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (65536), with no line terminators
Size 467 kB (466747 bytes)
Hash 13f7e286358f15c4d9cce804a7cb8ef1
53f036c3f30b3bd2350d16a866c64c61b259572a
65d2376ec4ab4086106ade835bd336f1f723630f5365af2a33f313f3fe184b00
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/css/stylesheet.min.css?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:26 GMT
Server: Apache
Last-Modified: Tue, 28 Feb 2017 06:47:44 GMT
Accept-Ranges: bytes
Content-Length: 466747
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.gt-max.com.my/wp-content/plugins/LayerSlider/static/js/layerslider.transitions.js?ver=5.6.5
162.253.17.45200 OK 21 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/LayerSlider/static/js/layerslider.transitions.js?ver=5.6.5
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (20890)
Hash 25af1efa0acf7a0d70916c1f7a472d26
f07e4205c5466cc4f3d1dbeac9b89fc9d6992354
070c461a79b8c6433c8158d86f1eed1ff8d646cb413dd6c6c5a2cf5117af92b5
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/LayerSlider/static/js/layerslider.transitions.js?ver=5.6.5 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:27 GMT
Server: Apache
Last-Modified: Fri, 20 May 2022 08:19:41 GMT
Accept-Ranges: bytes
Content-Length: 21096
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/plugins/LayerSlider/static/js/greensock.js?ver=1.11.8
162.253.17.45200 OK 60 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/LayerSlider/static/js/greensock.js?ver=1.11.8
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (59249)
Hash de63b1ca579e71ff732f3e894df61474
d9ba5023ff6f5a1a92ec3d983232bd2b31e026b7
2c2d25a951c1a1019f0f1497414ba6d3aec9ce0d224e73edead357867105551a
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/LayerSlider/static/js/greensock.js?ver=1.11.8 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:27 GMT
Server: Apache
Last-Modified: Fri, 20 May 2022 08:19:42 GMT
Accept-Ranges: bytes
Content-Length: 59710
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.2.6
162.253.17.45200 OK 108 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.2.6
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (26857), with CRLF line terminators
Size 108 kB (107944 bytes)
Hash 73b407bf24c022b18133bd0859e00cf0
18b631a4a098ff7861e3bb029b458a298e65fc25
54045339476b08b0d1e3c3d419f49d76a5a3c2722fffec9936a48a53535a334f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.2.6 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:27 GMT
Server: Apache
Last-Modified: Tue, 09 Aug 2016 10:13:42 GMT
Accept-Ranges: bytes
Content-Length: 107944
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.2.6
162.253.17.45200 OK 57 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.2.6
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (32010), with CRLF line terminators
Hash f733324b68be07c1ea725ece8e057920
d4ec942b98a3e2d8725b66fae22c76a140338cdc
0dbea55942e08bb603d32036f7f0ca7c0a5e4210d7c2153c5245f45e7e004d74
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.2.6 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:27 GMT
Server: Apache
Last-Modified: Tue, 09 Aug 2016 10:13:42 GMT
Accept-Ranges: bytes
Content-Length: 57219
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=4.11.2.1
162.253.17.45200 OK 728 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=4.11.2.1
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (65536), with no line terminators
Size 728 kB (728081 bytes)
Hash 75524a37b1fdfa976ca2a302619812ec
84631a5d9affdcdb4e57af64cc04f107e89bc02a
1eb8b0b461886b58a6d7a704ffc72912c4268363deecd5c963ed266c0fd709fd
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=4.11.2.1 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:26 GMT
Server: Apache
Last-Modified: Mon, 08 Aug 2016 05:11:24 GMT
Accept-Ranges: bytes
Content-Length: 728081
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.gt-max.com.my/wp-content/uploads/intense-cache/css/intense_e16956ea1ca0454cc75a2a657b829eecf70bac06.css?ver=2.6.2
162.253.17.45200 OK 104 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/uploads/intense-cache/css/intense_e16956ea1ca0454cc75a2a657b829eecf70bac06.css?ver=2.6.2
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (28732)
Size 104 kB (104512 bytes)
Hash 2890173fffad206ead8d2ce3811a729f
6cb5e50c616bbd80db84f8f9030bc16035e86d65
c920cab810305c9edb916ad2fd3e38da974d699fd4bf0ff40fd55b95b12fdbdd
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/intense-cache/css/intense_e16956ea1ca0454cc75a2a657b829eecf70bac06.css?ver=2.6.2 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:27 GMT
Server: Apache
Last-Modified: Tue, 14 Nov 2017 07:11:37 GMT
Accept-Ranges: bytes
Content-Length: 104512
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.gt-max.com.my/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20
162.253.17.45200 OK 15 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (14901)
Hash aebecb6cf308b95cb4eafdfb11ca0e8b
8c3145a001c774fcef0d34b7d543fb2e78d7614a
ba46104959f8f1af97df586a98066207f595c5d08de4da7d11cc3b721b844dfd
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:27 GMT
Server: Apache
Last-Modified: Fri, 20 May 2022 08:22:27 GMT
Accept-Ranges: bytes
Content-Length: 15249
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.5
162.253.17.45200 OK 12 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.5
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
Hash c22eca3acf8f551997cc7d62fdef3cb4
5b3924d28cc6303294b48d6b3df84ee6a5a3f53d
f1a0de00318eaab520336f7d1273a8c4a237680c7caaa7995b4dfc8a70ae6a74
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.5 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:27 GMT
Server: Apache
Last-Modified: Fri, 20 May 2022 08:22:27 GMT
Accept-Ranges: bytes
Content-Length: 12245
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/themes/bridge/js/qode-like.min.js?ver=4.4.28
162.253.17.45200 OK 1.4 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/js/qode-like.min.js?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (1389), with no line terminators
Hash 715f79bb91f21a148c6fe17ee5d60e01
325d7b0709aca7d96ecfae0ee99a5900579db804
f26d699b707e8a616feeac2969ea3c0b94717753d47220394f114a7f9da8d8e6
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/js/qode-like.min.js?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Tue, 19 Apr 2016 05:56:18 GMT
Accept-Ranges: bytes
Content-Length: 1389
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/themes/bridge/js/jquery.carouFredSel-6.2.1.min.js?ver=4.4.28
162.253.17.45200 OK 63 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/js/jquery.carouFredSel-6.2.1.min.js?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (63430), with no line terminators
Hash db68aedb745e91b81d9fee6c188e7d2c
aba6056cd51c6ad56759bc7cc0c9589693877f68
7fe5cc7c8868ab139022873594dc83f5784415ab8125050d0c6fa4ab7feba4d4
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/jquery.carouFredSel-6.2.1.min.js?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Tue, 19 Apr 2016 05:56:18 GMT
Accept-Ranges: bytes
Content-Length: 63430
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/themes/bridge/js/lemmon-slider.min.js?ver=4.4.28
162.253.17.45200 OK 6.9 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/js/lemmon-slider.min.js?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (6856), with no line terminators
Hash feed31de6e5113aeb1a38a7333c680a5
24807c5f8c30d30275eb9b5643277094131d4a23
24546fbd92e92a8812ebcdd1f1701996ab0d9a5d42d545dda72b99218bc0ee4c
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/lemmon-slider.min.js?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Tue, 19 Apr 2016 05:56:18 GMT
Accept-Ranges: bytes
Content-Length: 6856
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/themes/bridge/js/jquery.fullPage.min.js?ver=4.4.28
162.253.17.45200 OK 24 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/js/jquery.fullPage.min.js?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (1184)
Hash 95d944f9533e1075f40a3c13f225592a
67f925f90b49befc5daa025a245618b91331eba0
dfdc71d779c0e203a8b86dba6a508b341f3b4bf744a85ca3b567ee92cdabd767
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/js/jquery.fullPage.min.js?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Tue, 19 Apr 2016 05:56:18 GMT
Accept-Ranges: bytes
Content-Length: 24476
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/themes/bridge/js/jquery.mousewheel.min.js?ver=4.4.28
162.253.17.45200 OK 2.2 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/js/jquery.mousewheel.min.js?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (1020)
Hash 8fbf1bdab2ff68a0db6ce07a0c782b8f
d4d17d9625f67ef7fa7dbf3c89c7834cb991af7e
23766e27975b78092e5b4cfb02a36179092c392c7b057f462ca622522a5628d0
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/jquery.mousewheel.min.js?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Tue, 19 Apr 2016 05:56:18 GMT
Accept-Ranges: bytes
Content-Length: 2189
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fc82211401f793132f7d43c2fd253af5
605d8371709b5d2a41967fd390c34fa649f89ea3
b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 19:00:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fc82211401f793132f7d43c2fd253af5
605d8371709b5d2a41967fd390c34fa649f89ea3
b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 19:00:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gt-max.com.my/wp-content/themes/bridge/js/jquery.touchSwipe.min.js?ver=4.4.28
162.253.17.45200 OK 13 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/js/jquery.touchSwipe.min.js?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (12214)
Hash 98e293d2448bff5e46f76ec0e37c6619
ee25c75d4e0d539d4c7610e79d65d6fad7d4f260
55be37cd1b8799b088da6dd7175184163c07aa32c068e57e4b9f2662f00c4637
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/jquery.touchSwipe.min.js?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Tue, 19 Apr 2016 05:56:18 GMT
Accept-Ranges: bytes
Content-Length: 12602
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
142.250.74.163200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gt-max.com.my
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 16:40:18 GMT
expires: Fri, 22 Sep 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 526810
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
142.250.74.163200 OK 46 kB URL HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Hash c1fd378f54921c75e4ae1821e7b8fff6
2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826
GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gt-max.com.my
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Sep 2022 21:13:12 GMT
expires: Tue, 26 Sep 2023 21:13:12 GMT
cache-control: public, max-age=31536000
age: 164836
last-modified: Mon, 18 Jul 2022 19:58:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fc82211401f793132f7d43c2fd253af5
605d8371709b5d2a41967fd390c34fa649f89ea3
b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 19:00:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gt-max.com.my/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=4.11.2.1
162.253.17.45200 OK 36 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=4.11.2.1
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (32003)
Hash 15b4d846a287e24935e149305b58299c
956ec60dfe5de4b22893ae6ccaba14b0c72303c6
cf8977dd38385cbd274c67eec52fe71a122182ac041743182e75e7ff6ca05ea3
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=4.11.2.1 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Mon, 08 Aug 2016 05:11:24 GMT
Accept-Ranges: bytes
Content-Length: 36421
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
gt-max.com.my/wp-content/uploads/2016/10/Untitled-1_03.png
162.253.17.45200 OK 16 kB URL HTTP/1.1 gt-max.com.my/wp-content/uploads/2016/10/Untitled-1_03.png
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type PNG image data, 305 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 9a8b62c631ae8d8f0e6535cf748d3ef5
8ee4d364e30df30e03a655c1e44781c301da8720
e902007f567edd5f2452113e9fdc085c323d4d4f877c6d2ba0122f4db28794cc
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2016/10/Untitled-1_03.png HTTP/1.1
Host: gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Fri, 28 Oct 2016 07:50:37 GMT
Accept-Ranges: bytes
Content-Length: 15631
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
www.gt-max.com.my/wp-content/themes/bridge/js/default_dynamic.js?ver=1484801134
162.253.17.45200 OK 2.4 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/js/default_dynamic.js?ver=1484801134
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (797)
Hash abf4593a78f0049c04d36677ae7414f7
dc0767ca070876ceb27251a9ea4bba7bcea0a88e
0ec48352b89d492f1e6a80973512bec1ec13f225c6a26d30e1cb99c5d622bfcc
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/default_dynamic.js?ver=1484801134 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Thu, 19 Jan 2017 04:45:34 GMT
Accept-Ranges: bytes
Content-Length: 2403
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/themes/bridge/js/custom_js.js?ver=1484801134
162.253.17.45200 OK 882 B URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/js/custom_js.js?ver=1484801134
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (797)
Hash 8feea0c70ddfac8143cba0ce88753a7f
9b8a129553339eee8170ef89b2f80dbdd89a25d3
b9a3e155a0eec0039876a45a773eb994cec42c9776f44fe069732823c327058f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/custom_js.js?ver=1484801134 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Thu, 19 Jan 2017 04:45:34 GMT
Accept-Ranges: bytes
Content-Length: 882
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=4.11.2.1
162.253.17.45200 OK 20 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=4.11.2.1
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (19872), with no line terminators
Hash 2bfd6a82520596c36b6f06578f7b9490
3fae64b94fcb2f1b0fcec51956930b1e6ebf08e9
1c2f863ff5fed7ff92c027a939b56984565dc1ede472031ba6ee70cdcdf29d92
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=4.11.2.1 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Mon, 08 Aug 2016 05:11:24 GMT
Accept-Ranges: bytes
Content-Length: 19872
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/themes/bridge/js/plugins.js?ver=4.4.28
162.253.17.45200 OK 705 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/js/plugins.js?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type HTML document, ASCII text, with very long lines (45166)
Size 705 kB (705243 bytes)
Hash b02fe5e6c6fb0ffa67fce9f49e805bb5
ac01a2f72fdd408d87d9c50b215ecccac07dba2a
f473176763805693d163fbb8dd3f9bb39d3f21e4044004112b82738aba7a5027
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins.js?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Tue, 19 Apr 2016 05:56:18 GMT
Accept-Ranges: bytes
Content-Length: 705243
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/plugins/vertical-center/js/vertical-center-public.js?ver=1.1.1
162.253.17.45200 OK 5.1 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/vertical-center/js/vertical-center-public.js?ver=1.1.1
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (797), with CRLF line terminators
Hash 602b8d0180f2aa435ecc78517d4a6536
94064e0986b17b017164dd92d211fa1da1f8e0a0
cfeed6d12ec2c71d5b4cd97c3283a1fd559df14a8e00639b6e3571ad6490429e
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/vertical-center/js/vertical-center-public.js?ver=1.1.1 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Fri, 09 Sep 2016 01:22:52 GMT
Accept-Ranges: bytes
Content-Length: 5121
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/themes/bridge/js/default.min.js?ver=4.4.28
162.253.17.45200 OK 192 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/js/default.min.js?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (65536), with no line terminators
Size 192 kB (192250 bytes)
Hash 59f45eda3e59ebdae3e4c99a15178548
8eefdc3269147a70778e88f42e827e19210b5c1c
c728a29ca3bf237f9a222f57ca924aba65ad97145850d27bb20ef15c393cca03
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/default.min.js?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Tue, 19 Apr 2016 05:56:18 GMT
Accept-Ranges: bytes
Content-Length: 192250
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/plugins/mpc-massive/assets/js/mpc-scripts.min.js?ver=2.1
162.253.17.45200 OK 97 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/mpc-massive/assets/js/mpc-scripts.min.js?ver=2.1
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type Unicode text, UTF-8 text, with very long lines (32083)
Hash e88a64d23ba9d502884c775076c6fded
9fdf256ea2a86e5559bba048a1424173c07eae0b
afb3be7b87c77c4014666f4caf6b06eb86f8ac77af45bfd57572fb89c51926e6
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/mpc-massive/assets/js/mpc-scripts.min.js?ver=2.1 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Thu, 11 Aug 2016 10:09:38 GMT
Accept-Ranges: bytes
Content-Length: 96726
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
gt-max.com.my/wp-content/uploads/2016/12/social_youtube.png
162.253.17.45200 OK 1.6 kB URL HTTP/1.1 gt-max.com.my/wp-content/uploads/2016/12/social_youtube.png
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type PNG image data, 26 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash f47f1c7e24aa6662dd48a091e92aa94c
27211c6c2d15a9c22057b3174ea4f65b677e73f5
a3085f413533de78e93adbec3414625ebe8b6bf72f6889da535e69f0981c1c17
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2016/12/social_youtube.png HTTP/1.1
Host: gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Thu, 15 Dec 2016 09:58:39 GMT
Accept-Ranges: bytes
Content-Length: 1596
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
gt-max.com.my/wp-content/uploads/2016/11/linked-in.png
162.253.17.45200 OK 1.8 kB URL HTTP/1.1 gt-max.com.my/wp-content/uploads/2016/11/linked-in.png
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type PNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash cefbcfbc24376ddfa89546d053d76b6d
86eaa65e7c829a1ce27021a151743bc7dcd05073
23dc69226910bc243c7ce3e0137da2a5eab3bc27415422edced925d515475ca7
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2016/11/linked-in.png HTTP/1.1
Host: gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Wed, 09 Nov 2016 09:29:31 GMT
Accept-Ranges: bytes
Content-Length: 1845
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
gt-max.com.my/wp-content/uploads/2016/11/facebook.png
162.253.17.45200 OK 1.8 kB URL HTTP/1.1 gt-max.com.my/wp-content/uploads/2016/11/facebook.png
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type PNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash 07829585cbf1ed20bec2ff7516b59220
3e42ea195cdf3c57f359c68ea6d6abba180e4220
907694ed08d96cd75598810d4c6f4b7c8282f9e79fe0c715168e5c843b7545b7
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2016/11/facebook.png HTTP/1.1
Host: gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Wed, 09 Nov 2016 09:21:11 GMT
Accept-Ranges: bytes
Content-Length: 1816
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
gt-max.com.my/wp-content/uploads/2016/11/twitter.png
162.253.17.45200 OK 2.1 kB URL HTTP/1.1 gt-max.com.my/wp-content/uploads/2016/11/twitter.png
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type PNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash e476a0c4f190f1870570a636a1b7f089
a2cb9c2acdffcfc360fecd24fea7a748c26818e3
9a9b8cdc6641b3106a71cedceb0bcd3cc8dcfd693e06b4bb8067ee13a1d80e6f
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2016/11/twitter.png HTTP/1.1
Host: gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Wed, 09 Nov 2016 09:21:09 GMT
Accept-Ranges: bytes
Content-Length: 2068
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
gt-max.com.my/wp-content/uploads/2016/11/alibaba.png
162.253.17.45200 OK 2.9 kB URL HTTP/1.1 gt-max.com.my/wp-content/uploads/2016/11/alibaba.png
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type PNG image data, 43 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash 0675b5e38dd9cd1687680255e0b052c9
e04f8409abfbaa9f2ca5c1833c1295fc742fbdd9
37188445f554d519807074cfb80468c0bd5d03d804f16821a1379096efc701cf
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2016/11/alibaba.png HTTP/1.1
Host: gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Wed, 09 Nov 2016 09:21:10 GMT
Accept-Ranges: bytes
Content-Length: 2859
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
www.gt-max.com.my/wp-includes/js/wp-embed.min.js?ver=4.4.28
162.253.17.45200 OK 1.4 kB URL HTTP/1.1 www.gt-max.com.my/wp-includes/js/wp-embed.min.js?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (1384), with no line terminators
Hash 2a9a2f64687bc94523f4c50c9335cc0f
33c874cafe5df3ea8c8756be8642f675f9cf5289
4114f99c5992bab27f43ae5e3c7c196ce63fac0b4b43915af913c1a30ca1f3da
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/wp-embed.min.js?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 03:37:05 GMT
Accept-Ranges: bytes
Content-Length: 1384
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/plugins/intense/assets/js/modernizr.min.js?ver=2.6.2
162.253.17.45200 OK 9.4 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/intense/assets/js/modernizr.min.js?ver=2.6.2
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type HTML document text\012- HTML document, ASCII text, with very long lines (9109)
Hash 5b1afce9b64221dfd0e82c9878dd4250
79856efc7f1bc35d667d7a844f1daf5593b6e51b
98b82228257e1d7f79bff99a3d3d3144bfe1dcc1cbf693657af1f940869e21f9
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/intense/assets/js/modernizr.min.js?ver=2.6.2 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Fri, 20 May 2022 08:25:24 GMT
Accept-Ranges: bytes
Content-Length: 9383
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/themes/bridge/css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.5.0
162.253.17.45200 OK 67 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.5.0
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type Web Open Font Format (Version 2), TrueType, length 66624, version 4.262\012- data
Hash db812d8a70a4e88e888744c1c9a27e89
638c652d623280a58144f93e7b552c66d1667a11
ff82aeed6b9bb6701696c84d1b223d2e682eb78c89117a438ce6cfea8c498995
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.5.0 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.gt-max.com.my/wp-content/themes/bridge/css/font-awesome/css/font-awesome.min.css?ver=4.4.28
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Tue, 01 Mar 2016 03:35:24 GMT
Accept-Ranges: bytes
Content-Length: 66624
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: font/woff2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Wed, 28 Sep 2022 18:41:09 GMT
expires: Wed, 28 Sep 2022 20:41:09 GMT
cache-control: public, max-age=7200
age: 1160
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gt-max.com.my/favicon.ico
162.253.17.45200 OK 0 B URL HTTP/1.1 www.gt-max.com.my/favicon.ico
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:29 GMT
Server: Apache
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/vnd.microsoft.icon
fonts.googleapis.com/css?family=Raleway:100,200,300,400,500,600,700,800,900,300italic,400italic|Raleway:100,200,300,400,500,600,700,800,900,300italic,400italic|Montserrat:100,200,300,400,500,600,700,800,900,300italic,400italic|Poppins:100,200,300,400,500,600,700,800,900,300italic,400italic&subset=latin,latin-ext
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Raleway:100,200,300,400,500,600,700,800,900,300italic,400italic|Raleway:100,200,300,400,500,600,700,800,900,300italic,400italic|Montserrat:100,200,300,400,500,600,700,800,900,300italic,400italic|Poppins:100,200,300,400,500,600,700,800,900,300italic,400italic&subset=latin,latin-ext
IP 142.250.74.10:0
GET /css?family=Raleway:100,200,300,400,500,600,700,800,900,300italic,400italic|Raleway:100,200,300,400,500,600,700,800,900,300italic,400italic|Montserrat:100,200,300,400,500,600,700,800,900,300italic,400italic|Poppins:100,200,300,400,500,600,700,800,900,300italic,400italic&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 28 Sep 2022 19:00:26 GMT
date: Wed, 28 Sep 2022 19:00:26 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A300&ver=1.0.0
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A300&ver=1.0.0
IP 142.250.74.10:0
GET /css?family=Roboto%3A300&ver=1.0.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 28 Sep 2022 19:00:26 GMT
date: Wed, 28 Sep 2022 19:00:26 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato:100,300,regular,700,900%7COpen+Sans:300%7CIndie+Flower:regular%7COswald:300,regular,700&subset=latin%2Clatin-ext
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lato:100,300,regular,700,900%7COpen+Sans:300%7CIndie+Flower:regular%7COswald:300,regular,700&subset=latin%2Clatin-ext
IP 142.250.74.10:0
GET /css?family=Lato:100,300,regular,700,900%7COpen+Sans:300%7CIndie+Flower:regular%7COswald:300,regular,700&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 28 Sep 2022 19:00:26 GMT
date: Wed, 28 Sep 2022 19:00:26 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gt-max.com.my/wp-content/plugins/mpc-massive/assets/js/mpc-vendor.min.js?ver=2.1
162.253.17.45200 OK 0 B URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/mpc-massive/assets/js/mpc-vendor.min.js?ver=2.1
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/mpc-massive/assets/js/mpc-vendor.min.js?ver=2.1 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=e625shfv7o7iunof67iusln944
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 19:00:28 GMT
Server: Apache
Last-Modified: Thu, 11 Aug 2016 10:09:38 GMT
Accept-Ranges: bytes
Content-Length: 82653
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript