r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8190
Expires: Mon, 05 Dec 2022 22:38:40 GMT
Date: Mon, 05 Dec 2022 20:22:10 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ee088fab9b287e174cfd1f2c735a909f
25c3335b514a36ad1a24d00413d60c3d394f5161
494e96358ff12366213d7cc0f9197648c6c62ec14fa0d2c78732a683fa26b192
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1211
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 20:22:10 GMT
Last-Modified: Mon, 05 Dec 2022 20:01:59 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 05 Dec 2022 20:20:19 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 111
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7037
Expires: Mon, 05 Dec 2022 22:19:27 GMT
Date: Mon, 05 Dec 2022 20:22:10 GMT
Connection: keep-alive
oilterminal.ae/
162.241.226.25301 Moved Permanently 231 B IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8d07b40780138a1982ebe45e04829fcb
3400fc0b3c8ab15b402d8122608e6c02d39e3c9b
dab42f545e7db16349047931ddcd6ea59ceb98db56dba8fc58328fcab90d0e88
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 05 Dec 2022 20:22:10 GMT
Server: Apache
Location: https://oilterminal.ae/
Content-Length: 231
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: xr+JALK+yy7zwu1xRDxhCUr76y20PMUavGdOTL2S7qWdfPBND2HOcph9R3kPerxvdmjxR9xpitB7ZdI2aZPZDQ==
x-amz-request-id: C55EFEKQ201FSAHS
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 05 Dec 2022 19:48:38 GMT
age: 2012
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 20:22:10 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 05 Dec 2022 20:11:19 GMT
cache-control: public,max-age=3600
age: 651
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash e5d90ae8ac661e88fc34079f42da07e7
f9ca67258a44b888a87cde6c803092a6fa1a5859
bad0b0b4b65c39dd71b213e8435db3bb551d1623921b15457659c04031e2adbb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BAD0B0B4B65C39DD71B213E8435DB3BB551D1623921B15457659C04031E2ADBB"
Last-Modified: Sat, 03 Dec 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 06 Dec 2022 02:22:10 GMT
Date: Mon, 05 Dec 2022 20:22:10 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2b9d6a686aa3c4ea24568425e43a5221
d53bb4c9579bd1db78a0520619e888aec79f750f
c38734a8dbe51217d73896c0bf7f5c38c107fd79e0dee24b717f130377e9b5f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1200
Cache-Control: max-age=133482
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 20:22:10 GMT
Etag: "638db4ac-1d7"
Expires: Wed, 07 Dec 2022 09:26:52 GMT
Last-Modified: Mon, 05 Dec 2022 09:06:52 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
44.238.3.246101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.238.3.246:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 8t1wVaZ23Zcj4wWSZ/lSiw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 0BPkAESJgWVYNUktqpUHAd2OI7U=
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8787
Expires: Mon, 05 Dec 2022 22:48:39 GMT
Date: Mon, 05 Dec 2022 20:22:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8787
Expires: Mon, 05 Dec 2022 22:48:39 GMT
Date: Mon, 05 Dec 2022 20:22:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8787
Expires: Mon, 05 Dec 2022 22:48:39 GMT
Date: Mon, 05 Dec 2022 20:22:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8787
Expires: Mon, 05 Dec 2022 22:48:39 GMT
Date: Mon, 05 Dec 2022 20:22:12 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2f60a6490f38a772dcd50a1132e98e1b
ff254a1df087d2c157d88a6ef04e395dc49efe5e
653e40becd103cd76cc2f194a87e933e8c548d346f87520fefca3b16430fc4ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8469
x-amzn-requestid: c17eff92-da62-4f0f-9e75-2741012ec43a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_sqFSjoAMFQ6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d131d-61d61d2f0bb01ecb21b809ea;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:33 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kf_hcK2d2YFhladZn1S4cyGq7vLTSKdWgPUTNT0M9LwHXuOV-nlgGw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:52:07 GMT
age: 81005
etag: "ff254a1df087d2c157d88a6ef04e395dc49efe5e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3af2e495-85ff-410f-8418-e683c7f84bcd.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3af2e495-85ff-410f-8418-e683c7f84bcd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 027480c06cd67621f373c6765dafee4d
9f80bb7ca6f699d88eaec2248dec508c589fe994
f69a0d6bd6e79d8fa7f2f15df11237c0a8b04d45af3cd5870eeef86d18f553bf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3af2e495-85ff-410f-8418-e683c7f84bcd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7728
x-amzn-requestid: 9f37e7a6-1f00-4a81-9b14-962fd0b6cdf4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clsAMEJxoAMFchQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc067-4a4cce217327b44525ea1e98;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ztC4S0WeA3ft_9JafrL6fInXo4jwkb0cTWUx4Z8L2uz3EWQS-d6F5A==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 22:09:54 GMT
age: 79938
etag: "9f80bb7ca6f699d88eaec2248dec508c589fe994"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 43309032a892c486f9985ef520df696e
36f4682ca6a33ff80ee02129c77e6f27e996ede0
24225ff504f30405d9ec3feb2555c738fcca0d6b265f285aa9c73a64c78a496e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5681
x-amzn-requestid: 8f0d66b8-d532-48d9-9a29-74540cd6ab3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cltXnEotIAMFqkA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc296-27349a376ff819ab63b04a81;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:41:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Uz-wJTZjej3sjP-O68BQ4hB_kkAecG0o7GkeZUan90ZgV87g0Cg_ZA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:49:44 GMT
age: 81148
etag: "36f4682ca6a33ff80ee02129c77e6f27e996ede0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c01fe1cccdb3b672bbade6d98217ffe9
a9a529dc9894827f6243a1bf57f81caa4fe88fc2
c43da6212c79a08e22e78e04e99e8f5422e64b4b0a87f30b7907f1b4bc675c71
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4666
x-amzn-requestid: 850d341f-5ccb-453c-8adf-a8194f8fbdad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clr_-GiboAMFwww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc066-766293f2526e637235067aca;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kmki-SBINSx1kbiIkaSGebdCLrnDeHVhYeotAWzE__CevkNDdfzRGg==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:44:05 GMT
age: 81487
etag: "a9a529dc9894827f6243a1bf57f81caa4fe88fc2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash db1701b7b9d161a0c935bb6e10b17893
22a8c4bd58c729c1abcf794466e8f3231dfb034b
b495524a33e5b1d3ba34cfbe867ada0da956c061370b1fcde06b23a6194a9787
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8315
x-amzn-requestid: f1bcc33b-aad9-4d3b-b1f9-49282f2d4fb9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clsAMGVboAMFfxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc067-13472a097177d4751c8f7a8c;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JuY0xcLDiERwrVhq33d4PP64liDqFfk9bc9xX1H62o0tOwrt1ek7Pg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:42:39 GMT
age: 81573
etag: "22a8c4bd58c729c1abcf794466e8f3231dfb034b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60dcc231-abb7-48f1-8ec5-e25b31bd100b.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60dcc231-abb7-48f1-8ec5-e25b31bd100b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 24c69d7ef356b352956d6dcbc9f5df1d
2cc31dc1c5d2d2a8b3a378dce8a1240a79acfec9
94d068620c34652cb2d24ca8b3cf962febe9606e6d3a33d937fc9d99f176edef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60dcc231-abb7-48f1-8ec5-e25b31bd100b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10396
x-amzn-requestid: b879fd2e-b6cf-4373-b780-2d97481c45f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cioNbH5KoAMFUsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a8722-6add7f8e225878473b20c015;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 23:15:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ir97GJKaFoW6BNXCcmMqp0JSUd5JhCACyUvLh5G-0BWCDVJsqs7XhQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 11:06:22 GMT
age: 33350
etag: "2cc31dc1c5d2d2a8b3a378dce8a1240a79acfec9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 7dfb548d8f8a99d32050803775fad5d6
8b47999a01db7c2217d76a1cec576809a229cf1b
68dd2a1e5a0002f4d25d3b5884ab55bc6b5a91e38f6dc464c4261b19c6e5887e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 20:22:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 7dfb548d8f8a99d32050803775fad5d6
8b47999a01db7c2217d76a1cec576809a229cf1b
68dd2a1e5a0002f4d25d3b5884ab55bc6b5a91e38f6dc464c4261b19c6e5887e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 20:22:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.oilterminal.ae/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-public.css?ver=1.9.5
162.241.226.25200 OK 988 B URL HTTP/2 www.oilterminal.ae/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-public.css?ver=1.9.5
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 2cb5394cfc5d30eb7c8bc458c79c8c91
75d4c574037049397eb40250f312b73ca87923f5
73a405f70e2e37d2a3489b2623e2f11c7901a47fa399bc1166c85103328423f0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/cookie-law-info/public/css/cookie-law-info-public.css?ver=1.9.5 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:54:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 988
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/oilterminal-entries-management/public/css/oilterminal-entries-management-public.css?ver=1.0.0
162.241.226.25200 OK 106 B URL HTTP/2 www.oilterminal.ae/wp-content/plugins/oilterminal-entries-management/public/css/oilterminal-entries-management-public.css?ver=1.0.0
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 8af7d01cc8f7698605260aa25a37f45e
854439cb106afae13bace1acbdfd03e0ec2daee4
8b46abceed3ee90f0e9053977b5dcb569c09784270d0e5fff5aebf80256501e0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/oilterminal-entries-management/public/css/oilterminal-entries-management-public.css?ver=1.0.0 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Nov 2020 05:50:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 106
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.10.0
162.241.226.25200 OK 3.6 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.10.0
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (17030)
Hash 7d869ce172eda757790baf78f43d35a2
20b2f464cd128e0211e65c430a06a0754eda8afa
15df364776cdbef11f92e8f7836127bbcc6135a067553ad094a617b0e61b1710
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.10.0 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:53:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 3603
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.5.6
162.241.226.25200 OK 323 B URL HTTP/2 www.oilterminal.ae/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.5.6
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash b24c24b7da3ffeed6ae8ade102a4d317
c4445b3977ce704b927508108e100213eea67a3c
5421ad49b70f379553eaceec744d753e74d4b065966c08aa7c7dd949553ca9a8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.5.6 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:53:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 323
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-gdpr.css?ver=1.9.5
162.241.226.25200 OK 8.4 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-gdpr.css?ver=1.9.5
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash cee4606c526d5d2264c27328af9296e1
2136cf0f09a512599afb94a40330a483368546bb
b72bb2aa4acd9c30ebde492bb00fb17f183204f04c6729dcb00cf9b2dc89249d
GET /wp-content/plugins/cookie-law-info/public/css/cookie-law-info-gdpr.css?ver=1.9.5 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:54:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 8406
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.1.1
162.241.226.25200 OK 3.0 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.1.1
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10019)
Hash c2b5af6052f630a96e450e5e2a3cea52
00ca76a8828a1bbec1534eb10786804fd36492f2
58f6cc2d4fa3e528622102975fb62949dc0170bd47b588a67318d18552a57d59
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.1.1 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:53:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 2997
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5
162.241.226.25200 OK 16 kB URL HTTP/2 www.oilterminal.ae/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (39791)
Hash f9ff11f74e8529779b6d0a398d76be89
e6369c832d137f60420b232d6b8662cd65a50496
4e1528494bebb5f06ecdcb19fe8163aa967b12ff04ce04ec3badcb957433a3c7
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.9.5 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 06 Apr 2022 05:24:49 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 16047
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5
162.241.226.25200 OK 5.2 kB URL HTTP/2 www.oilterminal.ae/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15224)
Hash 00af0ddf324f69fcb25f0d2e5d08910a
df0379ab0e1b2902957c8aba77f89d88e1239b59
f0a06ed3b8d3917b358def04d87668001cd1c6da31a5cb4bb452313feb64a2a7
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.9.5 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Mar 2022 11:41:49 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 5243
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/smart-phone-field-for-gravity-forms/frontend/css/spf_style.css?ver=1.2
162.241.226.25200 OK 277 B URL HTTP/2 www.oilterminal.ae/wp-content/plugins/smart-phone-field-for-gravity-forms/frontend/css/spf_style.css?ver=1.2
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 21fbe4d0ad690cbc07e293d68719cfcc
ae4f052b3499d7aafd970c4815f68c6b3428e3f9
4e9e78d2681c9c1c82cd66e724b10c8e77bc9e5643e0be4b3bcea6ee8043557b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/smart-phone-field-for-gravity-forms/frontend/css/spf_style.css?ver=1.2 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Mar 2022 07:48:49 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 277
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/um-profile.css?ver=2.1.15
162.241.226.25200 OK 2.9 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/um-profile.css?ver=2.1.15
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 255c4e51a37e482cd762003dfa561745
d4b0e0ea8890c7f2de58b563a1b86a0a38b5f9db
69ff0215dd07d473edda3506dfa5f9c62d955dc304c9614f43d2644ae3fd744f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-member/assets/css/um-profile.css?ver=2.1.15 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:55:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 2901
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato%3A400%7CUbuntu%3A400&display=fallback&ver=3.0.2
142.250.74.106200 OK 3.4 kB URL HTTP/2 fonts.googleapis.com/css?family=Lato%3A400%7CUbuntu%3A400&display=fallback&ver=3.0.2
IP 142.250.74.106:0
File type ASCII text, with very long lines (19157)
Hash 052089ee019703748a195336487124bc
32d6b4a8b71c07a7b021e7e4fdadeecaf957b2c3
709ccc669e206a494655eccccb9af196ba80de41aff028eab574bffd1b39f07d
GET /css?family=Lato%3A400%7CUbuntu%3A400&display=fallback&ver=3.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 05 Dec 2022 20:22:13 GMT
date: Mon, 05 Dec 2022 20:22:13 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/um-styles.css?ver=2.1.15
162.241.226.25200 OK 6.0 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/um-styles.css?ver=2.1.15
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type troff or preprocessor input, ASCII text, with CRLF line terminators
Hash 597757aca0d08660808bc02e2fc6aa51
a09f32e7dd2d3f822faa4d04ce5e2671e889537a
e092d0f9d3ff8f5e08acc2a776a86e88ea5be880da43112f51bcc537a13a740d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-member/assets/css/um-styles.css?ver=2.1.15 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:55:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 5984
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.5.6
162.241.226.25200 OK 12 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.5.6
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (1646)
Hash c6e9d77524605c7e3303d3915073913b
b331a445df00ccfdda50c9cbb0e3c7b44ed1120f
e47d964691f518d80b41b0afab8c1aa56b2f57f00abd89454c916a5557ebc2f0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.5.6 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:53:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 11537
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/um-crop.css?ver=2.1.15
162.241.226.25200 OK 1.1 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/um-crop.css?ver=2.1.15
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 0255ff6597e349dcbea28616023120f0
0edd58f3bcd3e4058d1b95ecbad5604a2e9a64ae
bd2aef76525cc429f185078bd0ae3b6d8a3db6db086063c6dab6381a5989daa1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-member/assets/css/um-crop.css?ver=2.1.15 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:55:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 1081
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/if-menu/assets/if-menu-site.css?ver=5.9.5
162.241.226.25200 OK 484 B URL HTTP/2 www.oilterminal.ae/wp-content/plugins/if-menu/assets/if-menu-site.css?ver=5.9.5
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash fd3d1e0df2e8147a3c6b4b581770ad18
b7c4798e187c3c3fd2d51dec5c5d6fdef25436e4
01a761e99476e93d8082bd681c2c49297c26ebfd1d0b6d8cb31e2b44b1dd4f8b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/if-menu/assets/if-menu-site.css?ver=5.9.5 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:54:25 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 484
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/um-fonticons-fa.css?ver=2.1.15
162.241.226.25200 OK 4.7 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/um-fonticons-fa.css?ver=2.1.15
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 31331fdcc95e3ad37849b1978aac34af
3329d186baab15fffb8e541425d73bcf97ca3e54
4fdc3f9a841cb22b20f7fabb7b6c61ffea332c0fc04a79f46277e5181c2d0a00
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-member/assets/css/um-fonticons-fa.css?ver=2.1.15 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:55:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 4710
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/um-fonticons-ii.css?ver=2.1.15
162.241.226.25200 OK 5.4 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/um-fonticons-ii.css?ver=2.1.15
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash dc974887535dda3016698c161990498a
fc1a8a45d64ee8ae8e90a5a8d1e8a4c19cde5e12
0b2ab9404bbaf6043d00061a9d33438755f5c9fc9c8673d3f0f534a9c1d0f33c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-member/assets/css/um-fonticons-ii.css?ver=2.1.15 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:55:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 5404
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=4.2.2
162.241.226.25200 OK 13 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=4.2.2
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (59158)
Hash 76ce564e380846e68aef544c866cfd17
8148b9861bfe9bfe667c9d8ca01f605fa63f8873
30529979bc56ece1d2e6a51ceaf2daca4e598123f48d482fceaf19cabc46e639
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=4.2.2 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:53:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 12862
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/um-modal.css?ver=2.1.15
162.241.226.25200 OK 1.2 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/um-modal.css?ver=2.1.15
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash aa081444ff4bc9d5cc37904b67e8327d
37932643abf630b1279d676584e0bdc40ab2e1e2
af4b63dd29cb1d174b6fef542dd2fa6f2ca1f3989dcc3e57c6c9ae873ae8334d
GET /wp-content/plugins/ultimate-member/assets/css/um-modal.css?ver=2.1.15 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:55:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 1153
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/um-fileupload.css?ver=2.1.15
162.241.226.25200 OK 1.1 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/um-fileupload.css?ver=2.1.15
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type troff or preprocessor input, ASCII text, with CRLF line terminators
Hash 921bbdb213882234cdcf2f351ae732d6
68f5abca9de66a06cf3b0523c9b34e4fcdd3248a
c6e7d16babc8bcc02374d63f132c149bdcd0729d47b1cc99a7271d4099fd25cc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-member/assets/css/um-fileupload.css?ver=2.1.15 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:55:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 1145
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/um-account.css?ver=2.1.15
162.241.226.25200 OK 1.3 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/um-account.css?ver=2.1.15
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 6f6945568966f581add6a10ad3600243
cbdf38f66fca0b123b91c85bdb5fe7c04033d7f2
90eea33f843339da21e03749cfd0fd8e62131d30c106c07b08ac21e73dc2b2c1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-member/assets/css/um-account.css?ver=2.1.15 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:55:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 1271
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/
162.241.226.25200 OK 38 kB IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (23838)
Hash c83e270879813c88546195dca7b35e3c
05a40f02b8b8b154338fff73963e4d40685c856a
8e67acff306d1fe81a2b24f01c1fe04dda5260619cf3675a19cc9d8ee17faa07
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 20:22:11 GMT
server: Apache
content-type: text/html; charset=UTF-8
link: <https://www.oilterminal.ae/wp-json/>; rel="https://api.w.org/", <https://www.oilterminal.ae/wp-json/wp/v2/pages/16>; rel="alternate"; type="application/json", <https://www.oilterminal.ae/>; rel=shortlink
content-encoding: gzip
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-server-cache: true
x-proxy-cache: EXPIRED
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/astra-addon/astra-addon-60291d5d01bcf7-33086384.css?ver=3.0.1
162.241.226.25200 OK 11 kB URL HTTP/2 www.oilterminal.ae/wp-content/uploads/astra-addon/astra-addon-60291d5d01bcf7-33086384.css?ver=3.0.1
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (63879), with no line terminators
Hash 6b731dc69f26b1996854088cbaf15998
56ccbd23316cad952730a779ee11485799f7ba0e
010bd19b06e518e23a70cb7c46fdad0b91352b47102bf614d0bb8590f756f2aa
GET /wp-content/uploads/astra-addon/astra-addon-60291d5d01bcf7-33086384.css?ver=3.0.1 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:53:49 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 11108
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/select2/select2.min.css?ver=2.1.15
162.241.226.25200 OK 3.4 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/select2/select2.min.css?ver=2.1.15
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (14965), with CRLF line terminators
Hash c2343b3cdd9e322774d5e34cfbdd2db2
704dcda7e4104393d391ce9112381fde58005fa5
58c95348e8d8220f6f2a05137b21900ec872aa26f2d89e5e5e1ac672d2dfdb4e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-member/assets/css/select2/select2.min.css?ver=2.1.15 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:55:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 3363
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/um-misc.css?ver=2.1.15
162.241.226.25200 OK 792 B URL HTTP/2 www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/um-misc.css?ver=2.1.15
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash b9fbf5506d729d7742e6087c9f852ef1
c3558c906adeb636f2c8e374af92103c2d626ea7
08aa0ad04914599b36cc6d5fd0d404e613a22c408a126abee48263edbaecfaaa
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-member/assets/css/um-misc.css?ver=2.1.15 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:55:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 792
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.1
162.241.226.25200 OK 308 B URL HTTP/2 www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.1
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (489)
Hash 3b6ace6afa17a2615db7e96ed5bccbbc
43382ed6741ca36e7479916d82c7e3f3f6a4af1f
84a12534a686c238982043c08f6c3fa2502b7a4c171dbaf0e464a3bc777f9263
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.1 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:53:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 308
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.1
162.241.226.25200 OK 309 B URL HTTP/2 www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.1
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (491)
Hash 4ac03792c06bc9fc64f6b43b4af1ffc5
fe915fdc0d8462afc4740f8cacc62ea85a0ad2e5
f1be68acb27e94f8925cb0d68f965c686fc9d320e814ec0a5747bab2cc251206
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.1 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:53:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 309
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=4.5.0
162.241.226.25200 OK 4.4 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=4.5.0
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (26516)
Hash a46b5e03a48f889196c3354741011be0
7c25efaa496eb1f2113bfdf2a2f27b58b72fa9e1
e850c766767667b180e9361d4c77f08a53d956fe87ebc68a87e9b4c639fb16af
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=4.5.0 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:53:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 4435
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/um-old-default.css?ver=2.1.15
162.241.226.25200 OK 1.3 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/um-old-default.css?ver=2.1.15
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type CSV text\012- troff or preprocessor input, ASCII text, with CRLF line terminators
Hash 55d0d4646b0e5f98bd0fc46244dbc777
015b9b0880c1fdcbc484ee1e03ea94ccc7a38769
97f8fbe64a43495a4fd2c1c8d981698df1d9d926b940b2779da73fb818fd2619
GET /wp-content/plugins/ultimate-member/assets/css/um-old-default.css?ver=2.1.15 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:55:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 1288
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/cookie-law-info/public/js/cookie-law-info-public.js?ver=1.9.5
162.241.226.25200 OK 11 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/cookie-law-info/public/js/cookie-law-info-public.js?ver=1.9.5
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash e63d8dd07cad2301f9e97205d99481a5
c8227a2c635803d7bdd5db2b4ba36f630b3b092d
786effa7eabd419bed0048a69d366e1ea5bf00d1367963184fcd5001d55e6af2
GET /wp-content/plugins/cookie-law-info/public/js/cookie-law-info-public.js?ver=1.9.5 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:54:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 11043
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.1
162.241.226.25200 OK 310 B URL HTTP/2 www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.1
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (483)
Hash 2787accb505c197c9bbff06a38d5c931
c7fa986bdb2f6972caa0d003705098aeb644b8f6
86ba4a954e110a614b9174dbe21466c45acebec05115e606d9fbfe3175624074
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.1 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:53:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 310
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/um-tipsy.css?ver=2.1.15
162.241.226.25200 OK 522 B URL HTTP/2 www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/um-tipsy.css?ver=2.1.15
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 730d7b8992aadba0c31837aadd278aaf
c3c9cb9d70ca86a522340f8e1838897124510405
b73e28192fd70b77a91253186c03227fcca7f36bed1eef74e8e76e4ce7fe2a50
GET /wp-content/plugins/ultimate-member/assets/css/um-tipsy.css?ver=2.1.15 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:55:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 522
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/gravityforms/js/jquery.json.min.js?ver=2.4.22
162.241.226.25200 OK 943 B URL HTTP/2 www.oilterminal.ae/wp-content/plugins/gravityforms/js/jquery.json.min.js?ver=2.4.22
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1848), with no line terminators
Hash f3891b7bb6a9be23f81ee1f893672614
9904d81de7affc05e218f6a17c8d090a4dd2a984
992506e4185a7fabf8f5de66a0f258ee86a6ca8c3b73ff328fa256411854dd08
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/gravityforms/js/jquery.json.min.js?ver=2.4.22 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:54:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 943
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/pickadate/default.css?ver=2.1.15
162.241.226.25200 OK 1.4 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/pickadate/default.css?ver=2.1.15
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type troff or preprocessor input, Unicode text, UTF-8 text, with CRLF line terminators
Hash f4a4e66364ccf285169c11e41e751f2a
81b5007c51c9e027f70f51b74978b4643f1f9b11
7bddb6d1731292912d8a8ba2ab03a2ba46a79062b16796bc054adacb42f4d740
GET /wp-content/plugins/ultimate-member/assets/css/pickadate/default.css?ver=2.1.15 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:55:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 1384
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=4.5.0
162.241.226.25200 OK 4.4 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=4.5.0
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (14869)
Hash 7bab7ad64ffbd7846dd6819250b93e2e
c924918d540389aff62220088b6761f38a5da272
045250efe67364c953a91f6a60cf407ebb5cfdb2da04e84c3d98e5bab5eca9ba
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=4.5.0 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:53:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 4359
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/um-responsive.css?ver=2.1.15
162.241.226.25200 OK 3.1 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/um-responsive.css?ver=2.1.15
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash d7cd95ee9651f8644b44781353171dbc
98c4717f86f13a09cc00a7a3358c4eab50a4915a
828438cf0b754bb50fa6f6e788826ae462b8c7274aefa44198883210d2eaa14c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-member/assets/css/um-responsive.css?ver=2.1.15 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:55:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 3114
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
162.241.226.25200 OK 4.6 kB URL HTTP/2 www.oilterminal.ae/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Mar 2022 11:41:49 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 4618
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.1
162.241.226.25200 OK 13 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.1
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (57726)
Hash 9e1402f4301abf62dead70303a02d64d
8d4b851d6fd7db716aae3640fac34fa53ecd5de3
15b535c20b222f5135a738e15f0487808fa0888ee6d37a8e2e9f42b963dd3a09
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.1 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:53:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 12576
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/simplebar.css?ver=2.1.15
162.241.226.25200 OK 1.2 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/simplebar.css?ver=2.1.15
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash df97bc5269c7cf86c133fa11dd8e2088
0cfe01439353f9488ace6ada9fe71df5a2991d36
a11e791893d733cb59a4904350629a43b788fd2fb4f41cd319d24f17e828f3ac
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-member/assets/css/simplebar.css?ver=2.1.15 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:55:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 1152
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/pickadate/default.time.css?ver=2.1.15
162.241.226.25200 OK 820 B URL HTTP/2 www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/pickadate/default.time.css?ver=2.1.15
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type troff or preprocessor input, ASCII text, with CRLF line terminators
Hash a3f09b37e2d1b9cdabcb8efc3f85d8e2
29f6ef91ef4e97b74d5ba842fb9db37f55337c92
93c327615c6a561922fc986e2d1a5e48a1ef3d6274f95d3f43bd7c9fc6bf141a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-member/assets/css/pickadate/default.time.css?ver=2.1.15 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:55:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 820
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/um-raty.css?ver=2.1.15
162.241.226.25200 OK 436 B URL HTTP/2 www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/um-raty.css?ver=2.1.15
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash ea101a1cb640b2f4990290c0bbd78f55
4425e74d5c55681c13abc32f6c13f23b057a7c6a
339f839ae5f61463a760d391d2e81a7afd99833628116ea35afda531d3c67cd8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-member/assets/css/um-raty.css?ver=2.1.15 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:55:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 436
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/pickadate/default.date.css?ver=2.1.15
162.241.226.25200 OK 1.5 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/css/pickadate/default.date.css?ver=2.1.15
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type troff or preprocessor input, ASCII text, with CRLF line terminators
Hash cacbe86e50f3a87622f8a6bf5095f95b
394becb76978371f642ddfce996f02f8c795c629
3f17d5ad1a74deb5324aa278331ac5549dee1d145b160857f4999ba32975b894
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-member/assets/css/pickadate/default.date.css?ver=2.1.15 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:55:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 1516
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/oilterminal-entries-management/public/js/oilterminal-entries-management-public.js?ver=1.0.0
162.241.226.25200 OK 479 B URL HTTP/2 www.oilterminal.ae/wp-content/plugins/oilterminal-entries-management/public/js/oilterminal-entries-management-public.js?ver=1.0.0
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 5850a4d6be478b5a5c29526a957840c4
1854bff2c967f028cf8c1f53b3c7878fb605e329
654a9a69300dd841ea2bc14d36c346377cee298b126463cc844fb26929260843
GET /wp-content/plugins/oilterminal-entries-management/public/js/oilterminal-entries-management-public.js?ver=1.0.0 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Nov 2020 05:50:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 479
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/gravityforms/js/gravityforms.min.js?ver=2.4.22
162.241.226.25200 OK 14 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/gravityforms/js/gravityforms.min.js?ver=2.4.22
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (35142), with no line terminators
Hash b519c6c8237249a1c5b8bf165b44edc3
e0893fc6657e0474086db3ac83240f081223f13e
d40009c81bcdcbc6f95b8fd27871c48e8fd7e4a57c1858b398201c3987143f11
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/gravityforms/js/gravityforms.min.js?ver=2.4.22 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:54:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 13598
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/js/um-gdpr.min.js?ver=2.1.15
162.241.226.25200 OK 181 B URL HTTP/2 www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/js/um-gdpr.min.js?ver=2.1.15
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with no line terminators
Hash 47b19f2a754758a178105c67405b41dd
6204579d7fdd494d8fdb213c27ea35628d9ee91a
5e4959a1ef0628bc5296540a0d372791ca7064f22d81139e0b43973ceb46743f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-member/assets/js/um-gdpr.min.js?ver=2.1.15 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:55:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 181
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/smart-phone-field-for-gravity-forms/frontend/js/spf_main.js?ver=1.2
162.241.226.25200 OK 1.0 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/smart-phone-field-for-gravity-forms/frontend/js/spf_main.js?ver=1.2
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash b298709fa0ec61b686e4689d29c70e2a
f276b81bf66512cb70d1cb231f3bcad70b7e50ec
c736818cb866487ee145f18e856f81e10ecc203038419354ea5f1154fa996035
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/smart-phone-field-for-gravity-forms/frontend/js/spf_main.js?ver=1.2 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Mar 2022 07:48:49 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 1000
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/smart-phone-field-for-gravity-forms/frontend/js/intlTelInput-jquery.min.js?ver=1.2
162.241.226.25200 OK 13 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/smart-phone-field-for-gravity-forms/frontend/js/intlTelInput-jquery.min.js?ver=1.2
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (27010)
Hash 9cc56dc29ff84c192976ee96e9c849b8
931357538334988681054bd748b229312102e884
1204a4e6ed186f69c27a2922940e56e1b248fa2b9571e707fafa07377c558459
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/smart-phone-field-for-gravity-forms/frontend/js/intlTelInput-jquery.min.js?ver=1.2 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Mar 2022 07:48:49 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 12976
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/themes/astra/assets/css/minified/compatibility/gravity-forms.min.css?ver=3.0.2
162.241.226.25200 OK 315 B URL HTTP/2 www.oilterminal.ae/wp-content/themes/astra/assets/css/minified/compatibility/gravity-forms.min.css?ver=3.0.2
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (598), with no line terminators
Hash 2dd6866b1fa6db2df49dac42313fa922
bf39cf87bec93d9c4ce1fc8f1d248f4babcfdf94
d44f7a6032a43f3b27f3e83270a8b3b5ec0a842eeaf7eab461f757ac90caaa97
GET /wp-content/themes/astra/assets/css/minified/compatibility/gravity-forms.min.css?ver=3.0.2 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 08 Feb 2021 18:18:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 315
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-includes/js/wp-util.min.js?ver=5.9.5
162.241.226.25200 OK 709 B URL HTTP/2 www.oilterminal.ae/wp-includes/js/wp-util.min.js?ver=5.9.5
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1305)
Hash e9edb7bac979409cf7dbc48d7ab8aca7
ed3f941a8fe41e3994a3ca5e620219328628f532
2a0742cad9937c742b2f51c1ea2ae48359ce8d88d8b56f6d8910c0a267d631b5
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-util.min.js?ver=5.9.5 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Mar 2022 11:41:49 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 709
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/js/um-modal.min.js?ver=2.1.15
162.241.226.25200 OK 1.5 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/js/um-modal.min.js?ver=2.1.15
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5278), with no line terminators
Hash a839461f95c33a76418ed0933cb379c5
408d7a0c7985881f1deef558b331821ebb5c47f8
3a84886e588065fa5439e6f9a9684b61023cdc6e863eb8c9654ebc8890c95020
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-member/assets/js/um-modal.min.js?ver=2.1.15 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:55:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 1470
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/astra-addon/astra-addon-60291d5d021464-09986787.js?ver=3.0.1
162.241.226.25200 OK 10 kB URL HTTP/2 www.oilterminal.ae/wp-content/uploads/astra-addon/astra-addon-60291d5d021464-09986787.js?ver=3.0.1
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (33474), with no line terminators
Hash ba995bd43695897370ea54735dd2b0bf
7ce729e804f486f60ec8a11ac215656026989804
47123bb4db26074123efc7ba2e2e99736b05702405abc38942c5b281b36c94ea
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/astra-addon/astra-addon-60291d5d021464-09986787.js?ver=3.0.1 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:53:49 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 10115
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/js/um-tipsy.min.js?ver=2.1.15
162.241.226.25200 OK 1.7 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/js/um-tipsy.min.js?ver=2.1.15
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4405), with no line terminators
Hash 368a19b79fb2a7291211280feb7e0f9f
3e621362d07605c81edf831e9f1bec33a93f249f
ce35771a48bf4d3e675e1add7a773b1c8c3016186c23b5d1ea561b906013b78e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-member/assets/js/um-tipsy.min.js?ver=2.1.15 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:55:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 1733
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-includes/js/dist/hooks.min.js?ver=1e58c8c5a32b2e97491080c5b10dc71c
162.241.226.25200 OK 1.9 kB URL HTTP/2 www.oilterminal.ae/wp-includes/js/dist/hooks.min.js?ver=1e58c8c5a32b2e97491080c5b10dc71c
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5655)
Hash 712e34745f18053157b266ddd75eea10
160454bda7a71d01e14b6d97e91a83a73ac6dddc
ab2451b93c953293ac86b45aa4c04ad5fdde6b729dca3e6613876a16b5e589f2
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/hooks.min.js?ver=1e58c8c5a32b2e97491080c5b10dc71c HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Mar 2022 11:41:49 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 1924
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/2020/10/Gp_global.png
162.241.226.25200 OK 10 kB URL HTTP/2 www.oilterminal.ae/wp-content/uploads/2020/10/Gp_global.png
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 283 x 193, 8-bit/color RGBA, non-interlaced\012- data
Hash e5e4d1495521412ae785571de7f8dac7
137fdf0d44931164536c4184fe9d2d4f7b4f1dc2
468cf0df533e0bd0bac0227ce0b2364d8c64d6d2ee9c02473e5cfde6947c655f
GET /wp-content/uploads/2020/10/Gp_global.png HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Oct 2020 08:28:24 GMT
accept-ranges: bytes
content-length: 10403
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
162.241.226.25200 OK 2.7 kB URL HTTP/2 www.oilterminal.ae/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6494), with no line terminators
Hash cd63a2ec76032f1905e3f81427904e37
f6a0b8e5ffd10d4ddb89aa76e46365b306f44035
e0bbd4a2856953ed25b2ec89d7778a67865b4cbc8784ada41faa6026007054bd
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Mar 2022 11:41:49 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 2658
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/themes/astra/assets/js/minified/style.min.js?ver=3.0.2
162.241.226.25200 OK 3.6 kB URL HTTP/2 www.oilterminal.ae/wp-content/themes/astra/assets/js/minified/style.min.js?ver=3.0.2
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10594), with no line terminators
Hash 5c244ddd3d5b81f943cc06bb3d39eae0
937bc56733f05985e8b6bad6e6ccd11e106c59eb
7f4883c7ab2bb307c921ae27ce4821017e907b8361b421883f61495c40cf9965
GET /wp-content/themes/astra/assets/js/minified/style.min.js?ver=3.0.2 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 08 Feb 2021 18:18:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 3642
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/js/um-fileupload.min.js?ver=2.1.15
162.241.226.25200 OK 3.7 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/js/um-fileupload.min.js?ver=2.1.15
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (9072), with no line terminators
Hash 57256ccadd616c89392f4e3f39cecdf5
ba662afe1f4952c3f64ce6c8f26c7f1636232f7d
ac049457b47703d0f8c593075ba2147696763f02215aff9487c325ce0a3c89b3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-member/assets/js/um-fileupload.min.js?ver=2.1.15 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:55:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 3657
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/js/um-raty.min.js?ver=2.1.15
162.241.226.25200 OK 3.5 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/js/um-raty.min.js?ver=2.1.15
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (9186), with no line terminators
Hash 42d855c7f6538131d293d09170ff15bf
0c134104b064ac97680e9380a27aa6023442ab6f
90138628a896db93330c633d48d204aad515cd9952cb19f42129d12493aded6e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-member/assets/js/um-raty.min.js?ver=2.1.15 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:55:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 3503
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-includes/js/dist/i18n.min.js?ver=30fcecb428a0e8383d3776bcdd3a7834
162.241.226.25200 OK 4.3 kB URL HTTP/2 www.oilterminal.ae/wp-includes/js/dist/i18n.min.js?ver=30fcecb428a0e8383d3776bcdd3a7834
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 83ea396410e6b9eda4af59ca31c2fd96
187a69fb46a5c984db74529e3c6d2401c07f6493
25c4f162e862de6d5b77739c17c15a3cb4b6b0a1d82e4c627abf5237fed9ea7b
GET /wp-includes/js/dist/i18n.min.js?ver=30fcecb428a0e8383d3776bcdd3a7834 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Mar 2022 11:41:49 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 4302
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-includes/js/imagesloaded.min.js?ver=4.1.4
162.241.226.25200 OK 2.1 kB URL HTTP/2 www.oilterminal.ae/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5477)
Hash f0bd7ad12acdee26cbb2701c1ba3610b
53c5d15129860868b60b74cb010b2c6050a64f69
e6d0cb19e56d22e8e511c23ca2bd233bedb40e3c7cf4ff38fe6f059bc7e0c64f
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Mar 2022 11:41:49 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 2103
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/js/um-jquery-form.min.js?ver=2.1.15
162.241.226.25200 OK 6.4 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/js/um-jquery-form.min.js?ver=2.1.15
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (14799), with no line terminators
Hash de63c49d6bc6cc0fb980ab812377b863
84fabd613b4aa9bb9d7cf110fc86db0e59d97471
c05396264288aaff599effe94d6b9a964c06733c63b12be31d609c2311b7e7ff
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-member/assets/js/um-jquery-form.min.js?ver=2.1.15 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:55:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 6405
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
162.241.226.25200 OK 8.2 kB URL HTTP/2 www.oilterminal.ae/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (19111)
Hash 078687fca5ae929d917cfd43d2b35c46
c32584206d214f6383107c41681ad0bacbd5c201
60f13132d65e3816c8f96dc42c35a04276c6d0636fcf75d13f9736651d2f1e32
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Mar 2022 11:41:49 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 8198
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 5f16a534222e5749ef240d413826c2f6
11683d84d420dd6f919425094edb8961278f7fed
691ebf7feb1f7d6ae7e5e7efd678626c62042dda520506f262c7d9a67a48e3ed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 20:22:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/js/pickadate/picker.time.js?ver=2.1.15
162.241.226.25200 OK 10 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/js/pickadate/picker.time.js?ver=2.1.15
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 764b7a0bc40547e2ac7ba6359407ea09
ae7ef0ff239a7f13f426da74f12187b102fb8576
ff9a6c1a9c618d9ec51ffa2de4ef4b1bcdb1ce1f4cb6bccc112d558a74655a16
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-member/assets/js/pickadate/picker.time.js?ver=2.1.15 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:55:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 10203
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-NF5N8WF
142.250.74.168200 OK 46 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-NF5N8WF
IP 142.250.74.168:0
File type ASCII text, with very long lines (7216)
Hash 6153520c2f1027591bd79fdb09e7c127
ee8f8e3d06dc0594f1f311f03731f9a5cd233634
f8a158031cf0c0707497fbcf01880447f481ab232013f67935bddcf80bab93f7
GET /gtm.js?id=GTM-NF5N8WF HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 05 Dec 2022 20:22:14 GMT
expires: Mon, 05 Dec 2022 20:22:14 GMT
cache-control: private, max-age=900
last-modified: Mon, 05 Dec 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 45713
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 79c225db327a78b782f5a9512b07eaf0
398a1be3a70264d959146d6670d2ca54cdf4e91a
8539ea44d81775448ae8c6179d54d8a397c559b112291fa78abcf6ac6c480815
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 20:22:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/js/pickadate/picker.js?ver=2.1.15
162.241.226.25200 OK 12 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/js/pickadate/picker.js?ver=2.1.15
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 21216e4bb5808837bcca9e64e6d2a5f2
bb0cdf9269b729ceca5c867e5a7504f26074e340
55a83ddf2663a068bd4fe48573f5ca3fa00e58dcab69a4deb70a3d6a803cacae
GET /wp-content/plugins/ultimate-member/assets/js/pickadate/picker.js?ver=2.1.15 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:55:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 12467
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/js/pickadate/picker.date.js?ver=2.1.15
162.241.226.25200 OK 14 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/js/pickadate/picker.date.js?ver=2.1.15
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 8edaee8714cf3fbb1e4329d192710489
5e25149d97bf25643508ce8ed12f189dd1870291
b59badc758ffd35a22aa627393bcc0a1f020f4873af6771c07d1668a4a93c5e9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-member/assets/js/pickadate/picker.date.js?ver=2.1.15 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:55:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 14318
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/2020/10/Horizon_png.png
162.241.226.25200 OK 16 kB URL HTTP/2 www.oilterminal.ae/wp-content/uploads/2020/10/Horizon_png.png
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 283 x 193, 8-bit/color RGBA, non-interlaced\012- data
Hash c3e74926400534eb0d61e4524f9e6327
e14a0f6b74c6a85e8a7f60e265fda369f8b9fdcc
97090ea7416c787ec98cdfc1eb0fb8957a8578aba2adc3c8427f0ef47705153e
GET /wp-content/uploads/2020/10/Horizon_png.png HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Oct 2020 09:06:17 GMT
accept-ranges: bytes
content-length: 15796
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/2020/10/Emarat-1.png
162.241.226.25200 OK 16 kB URL HTTP/2 www.oilterminal.ae/wp-content/uploads/2020/10/Emarat-1.png
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 283 x 193, 8-bit/color RGBA, non-interlaced\012- data
Hash d3ffcf6bdf897ffeca526b772d047d12
31c239265b3d15d336f14b630435fb3c0224f575
c810e77e083f7c605ad340b22a06dadacc9660b2d71e4db68b0c873f729349cb
GET /wp-content/uploads/2020/10/Emarat-1.png HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Oct 2020 08:53:29 GMT
accept-ranges: bytes
content-length: 16475
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 79c225db327a78b782f5a9512b07eaf0
398a1be3a70264d959146d6670d2ca54cdf4e91a
8539ea44d81775448ae8c6179d54d8a397c559b112291fa78abcf6ac6c480815
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 20:22:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2
216.58.207.227200 OK 35 kB URL HTTP/2 fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 34852, version 1.0\012- data
Hash 0e8eefb4549a2edf26c560cb9845952e
8d0b1718aacad934fd0043c87cbc54aa091396bf
7f653b3ce9d3277457fc6da4edb246ae2f6c913f088c42dcb8cd2e96267aa21a
GET /s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.oilterminal.ae
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34852
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 12:29:21 GMT
expires: Fri, 01 Dec 2023 12:29:21 GMT
cache-control: public, max-age=31536000
age: 373973
last-modified: Wed, 27 Apr 2022 16:31:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/2020/10/Gulf_energy_limited-1.png
162.241.226.25200 OK 16 kB URL HTTP/2 www.oilterminal.ae/wp-content/uploads/2020/10/Gulf_energy_limited-1.png
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 283 x 193, 8-bit/color RGBA, non-interlaced\012- data
Hash 49d47e6683b07ef0ffa632e4044b9fbd
e626d855a0a2fe1481c0c81b410f873daa1390aa
453524d15627a79ebed622cea696e2f0655907e024f69c4b35a85e50db06d9fc
GET /wp-content/uploads/2020/10/Gulf_energy_limited-1.png HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Oct 2020 09:03:17 GMT
accept-ranges: bytes
content-length: 16250
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/js/select2/select2.full.min.js?ver=2.1.15
162.241.226.25200 OK 29 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/js/select2/select2.full.min.js?ver=2.1.15
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 49caa2be3c100f9e6d1174edb3f0cb7f
ea28ee5c13bc1e5aae3c9b2456354776cbff4993
d949780a5b970f24f3d173d3f8b096ac925ee7dc32cd1d40ccd4feebc24f83f2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-member/assets/js/select2/select2.full.min.js?ver=2.1.15 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:55:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/2020/10/enoc.png
162.241.226.25200 OK 24 kB URL HTTP/2 www.oilterminal.ae/wp-content/uploads/2020/10/enoc.png
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 283 x 193, 8-bit/color RGBA, non-interlaced\012- data
Hash e179dfeb2423cbf0152cd204fdb25fd6
5f536f53e6ec65dde0b21d6743b7f3473afa9965
2530db9d21e2147167ad63641cf24d7ebe4e81fc865455b8055de42f4638e7bc
GET /wp-content/uploads/2020/10/enoc.png HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Oct 2020 09:10:05 GMT
accept-ranges: bytes
content-length: 24055
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 79c225db327a78b782f5a9512b07eaf0
398a1be3a70264d959146d6670d2ca54cdf4e91a
8539ea44d81775448ae8c6179d54d8a397c559b112291fa78abcf6ac6c480815
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 20:22:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.oilterminal.ae/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b
162.241.226.25200 OK 724 B URL HTTP/2 www.oilterminal.ae/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1626)
Hash e1b8f48388e00a715d3fe1f64ea15476
3ea75fd181dd3630bd8765a2b67f23d6da39edbf
87f4466dda6ad8e1c9aa26ef27e28b3b74ac40327d8daf4a7cf994e5b7893718
GET /wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Mar 2022 11:41:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 724
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-includes/js/masonry.min.js?ver=4.2.2
162.241.226.25200 OK 9.2 kB URL HTTP/2 www.oilterminal.ae/wp-includes/js/masonry.min.js?ver=4.2.2
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (23966)
Hash 2a730dafa34e6ff81513d31e486cdbdb
1fce17d256f67ae086d74092a03006997d9b0add
7a5fd36a453a3a7471fa93b8169579f9a98e2df7a262c44d28d3de41a0f7ae1c
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/masonry.min.js?ver=4.2.2 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Mar 2022 11:41:49 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 9216
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/js/um-functions.min.js?ver=2.1.15
162.241.226.25200 OK 4.6 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/js/um-functions.min.js?ver=2.1.15
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (14716), with no line terminators
Hash 92c725eedfeff6847271b3168ac2195a
51f4d9b07f8ca27e39bc19fe560e6bb01095df43
533132d8c90444cbd516a61bd39734d27fd67067af9e70a8bd66be8155358ee2
GET /wp-content/plugins/ultimate-member/assets/js/um-functions.min.js?ver=2.1.15 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:55:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 4598
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/js/um-responsive.min.js?ver=2.1.15
162.241.226.25200 OK 140 B URL HTTP/2 www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/js/um-responsive.min.js?ver=2.1.15
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with no line terminators
Hash fe35280d3ae8e7d181a74e3a707ba08e
1d1ac9adae0b0a1d7a1467d6388ebc53bc2ef334
5bb723cf4c05607e03ce15570127a1e19c58e675756471b925dd9f6f41609b87
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-member/assets/js/um-responsive.min.js?ver=2.1.15 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:55:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 140
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/js/um-conditional.min.js?ver=2.1.15
162.241.226.25200 OK 2.9 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/js/um-conditional.min.js?ver=2.1.15
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (9801), with no line terminators
Hash c89611545e0f7dc5c1a1e0741bf553b6
7647249d4549426ef5193948fe4e82341709b72a
f0898779250f37c40426cb8e83905d035908e1705c83b68e5c7b0e1179fac789
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-member/assets/js/um-conditional.min.js?ver=2.1.15 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:55:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 2911
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/js/um-profile.min.js?ver=2.1.15
162.241.226.25200 OK 969 B URL HTTP/2 www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/js/um-profile.min.js?ver=2.1.15
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with very long lines (2740), with no line terminators
Hash b099da372caf8898258d50f5447a3fc3
0a97d50fefb22203cb9477238357b090afb17bc7
6755e195727a87c65cb6c35729f40fba95fbc5b112ab34c62dd1706c3f9b30fb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-member/assets/js/um-profile.min.js?ver=2.1.15 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:55:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 969
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/jquery-numerator/jquery-numerator.min.js?ver=0.2.1
162.241.226.25200 OK 736 B URL HTTP/2 www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/jquery-numerator/jquery-numerator.min.js?ver=0.2.1
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1801), with no line terminators
Hash ae098a17e8889ff188a7a1ca4545c729
250400844f4e830503e2e9b8642fb00bc337eb62
0f5aecfe5c23d3149b592488ac69726074ee450de920b0e7ecf3071c1acd0771
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/jquery-numerator/jquery-numerator.min.js?ver=0.2.1 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:53:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 736
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/js/um-account.min.js?ver=2.1.15
162.241.226.25200 OK 1.0 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/js/um-account.min.js?ver=2.1.15
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2771), with no line terminators
Hash 4e3ee38227f0c369846ae8297af2f594
1f564b1a2555ca02a715db368b150817975c1846
9f876790d599e084c82f8a4e0a3ccddafccc1e58a0ae684e445906282b6f3811
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-member/assets/js/um-account.min.js?ver=2.1.15 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:55:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 1004
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.5.6
162.241.226.25200 OK 5.4 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.5.6
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 0c7bbaa5c8592b6e2b8b5ca9379c22ef
3387c3a7724dcd81d6da548c1e9660590efc3641
e1bbe89c3ed606b728dab15ed4895de76b8cde33e41a5d1222d86a44c573b9ce
GET /wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.5.6 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:53:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 5418
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/js/um-scripts.min.js?ver=2.1.15
162.241.226.25200 OK 3.8 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/js/um-scripts.min.js?ver=2.1.15
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11725), with no line terminators
Hash 8ee252575ca3ca12c801a66b3d7477ab
86a57cdb18f1b23b9e9d2e3878614dd04526d9be
34a70d0c728ffe6285af33805161cd065cc5d048dd0b4bdc0296cc64f3cfd65d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-member/assets/js/um-scripts.min.js?ver=2.1.15 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:55:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 3807
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.1.1
162.241.226.25200 OK 2.1 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.1.1
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4587)
Hash 9c7730b765a3a0e60eff70883dcd241b
7a1c755b8ba258760a1ceafb88e69d6dfb2fae77
857967c35c9ab1e0fd694e2afe30150d4eed39486fe80ab2c73ccf862c3d361f
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.1.1 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:53:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 2112
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=5.9.5
142.250.74.106200 OK 18 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=5.9.5
IP 142.250.74.106:0
File type Unicode text, UTF-8 text, with very long lines (22236)
Hash de818ef130e7155a750ec803680b1d41
82e8ce087f7d248d78c61e04277a695b1412822b
926e4b25d62f76798d0910111ed16e62293108f591949a2ea3d8998a62acb30d
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=5.9.5 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 05 Dec 2022 20:22:13 GMT
date: Mon, 05 Dec 2022 20:22:13 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/2020/07/cropped-hh-1.png
162.241.226.25200 OK 50 kB URL HTTP/2 www.oilterminal.ae/wp-content/uploads/2020/07/cropped-hh-1.png
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1116 x 237, 8-bit/color RGBA, non-interlaced\012- data
Hash 3c42a5e7eb041859ab9b7fd9e958361c
43e8f0c3b894c5a3bae198589eb2e64d003fa0da
af42d0b32cb7be542eef704be98fc507add86f477b7685436e78462190141663
GET /wp-content/uploads/2020/07/cropped-hh-1.png HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 21 Jul 2020 20:41:38 GMT
accept-ranges: bytes
content-length: 50121
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1
162.241.226.25200 OK 4.3 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10725)
Hash 253da788125c58bc387c3db6cc404bad
6b90ddf84c234155eae1487d2f950ea079c2382c
12055a1176f887f9be83e2637de50ca41173101397cd42431d7c8df3e2757d6d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:53:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 4275
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
162.241.226.25200 OK 8.1 kB URL HTTP/2 www.oilterminal.ae/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 4cdacddd7ddb8e34cdc428be2f12ee99
dccf8409d825f49557c40a467c0d3052f4c14923
bd13cfedef2490fbfdcecac80b24ad0f13fd9741bff3ebeb20a49b87d947a141
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Mar 2022 11:41:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 8137
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
162.241.226.25200 OK 3.7 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (12198), with no line terminators
Hash e2a8decccf4d0a6b925af707a36077a9
26a0febc9c3d91e75410f74b9ec62099ba1cbe90
09e0e638a6f53c0fdcfeeb8ae91f3a404bef47b471324e335e29be14a2aa87f7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:53:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 3747
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.1.1
162.241.226.25200 OK 1.2 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.1.1
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2577)
Hash 159281ac01a46f042b38d0d44cf3eb7a
54677be6b1cf85899d2ab1a6fada531ca5613d29
0738d3f931e8df2b67f3be1ec216b103560266c56cc38fdafae055bcb807ffea
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.1.1 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:53:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 1151
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.0.10
162.241.226.25200 OK 2.2 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.0.10
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6595), with no line terminators
Hash 2aa47e22e033b1a04cf09550d521033e
a0cf9de580a0eae9481906f97c1d6b38a0f8cf36
bda46e0dfe6c4c18bc8a9f9562a6e18e4261844d2d39ddcdb8b4c0160d267be7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.0.10 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:54:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 2153
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:14 GMT
server: Apache
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-YM8MGME17P>m=2oebu0&_p=258571867&_gaz=1&cid=1263496062.1670271732&ul=en-us&sr=1280x1024&_s=1&sid=1670271732&sct=1&seg=0&dl=https%3A%2F%2Fwww.oilterminal.ae%2F&dt=Oil%20Terminal%20%E2%80%93%20Oil%20Terminals&en=page_view&_fv=2&_nsi=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-YM8MGME17P>m=2oebu0&_p=258571867&_gaz=1&cid=1263496062.1670271732&ul=en-us&sr=1280x1024&_s=1&sid=1670271732&sct=1&seg=0&dl=https%3A%2F%2Fwww.oilterminal.ae%2F&dt=Oil%20Terminal%20%E2%80%93%20Oil%20Terminals&en=page_view&_fv=2&_nsi=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-YM8MGME17P>m=2oebu0&_p=258571867&_gaz=1&cid=1263496062.1670271732&ul=en-us&sr=1280x1024&_s=1&sid=1670271732&sct=1&seg=0&dl=https%3A%2F%2Fwww.oilterminal.ae%2F&dt=Oil%20Terminal%20%E2%80%93%20Oil%20Terminals&en=page_view&_fv=2&_nsi=1&_ss=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.oilterminal.ae
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.oilterminal.ae
date: Mon, 05 Dec 2022 20:22:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 5670c32d73c3d5771a2d9396774a7eb9
3fb62916ff54f22a011e11730ba87fea48e5d239
062531ed89864b713048421c9639d4a6249e92f33ef4177206f1deb5d85a8757
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 20:22:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/g/collect?v=2&tid=G-YM8MGME17P&cid=1263496062.1670271732>m=2oebu0&aip=1
64.233.165.155204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-YM8MGME17P&cid=1263496062.1670271732>m=2oebu0&aip=1
IP 64.233.165.155:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-YM8MGME17P&cid=1263496062.1670271732>m=2oebu0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.oilterminal.ae
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.oilterminal.ae
date: Mon, 05 Dec 2022 20:22:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 5670c32d73c3d5771a2d9396774a7eb9
3fb62916ff54f22a011e11730ba87fea48e5d239
062531ed89864b713048421c9639d4a6249e92f33ef4177206f1deb5d85a8757
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 20:22:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
162.241.226.25200 OK 14 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 13548, version 331.-31392\012- data
Hash 4a74738e7728e93c4394b8604081da62
fb9648469530a05fa9aac80e47d4d6960472a242
ce20ed8a323117c8a718ff1ddc6dabb997373b575a8e896f2bf02b846c082c9d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:53:54 GMT
accept-ranges: bytes
content-length: 13548
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: font/woff2
date: Mon, 05 Dec 2022 20:22:14 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/8zRofmzdPas
216.58.211.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/8zRofmzdPas
IP 216.58.211.3:0
Hash 3b0d6959b5450f26eed775cd533c73df
897400d97903dbb16c15339521d7a9314800b6b9
3bc1d36a35416b11fae56b1f0a3e71e1a7134f7a27ed23b02916b77221fe476c
POST /s/gts1d4/8zRofmzdPas HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 20:22:15 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/8zRofmzdPas
216.58.211.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/8zRofmzdPas
IP 216.58.211.3:0
Hash 3b0d6959b5450f26eed775cd533c73df
897400d97903dbb16c15339521d7a9314800b6b9
3bc1d36a35416b11fae56b1f0a3e71e1a7134f7a27ed23b02916b77221fe476c
POST /s/gts1d4/8zRofmzdPas HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 20:22:16 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
162.241.226.25200 OK 80 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 80300, version 331.-31392\012- data
Hash 8e1ed89b6ccb8ce41faf5cb672677105
9b592048b9062b00f0b2dd782d70a95b7dc69b83
6b555920e358f8a25a422988b448615c33bcccb4f932e8331cebfc8e2a737fc7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:53:54 GMT
accept-ranges: bytes
content-length: 80300
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: font/woff2
date: Mon, 05 Dec 2022 20:22:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
162.241.226.25200 OK 78 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 78460, version 331.-31392\012- data
Hash f075c50f89795e4cdb4d45b51f1a6800
f726c4275bb494a045fde059175f072de06c01df
71b3ce72680f4183d28db86b184542051fd533bb1146933233e4f6a20cf98cba
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:53:54 GMT
accept-ranges: bytes
content-length: 78460
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: font/woff2
date: Mon, 05 Dec 2022 20:22:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.10.0
162.241.226.25200 OK 84 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.10.0
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 84508, version 1.0\012- data
Hash 53820ed72e47259e4da471321b703876
8e195a9780c786c0a44b77798578908079bae4e0
02571d9d533a23c1b743c04f0248a0e5f40e86c1da19b229123f50773e4d03cd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.10.0 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.oilterminal.ae/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.10.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:53:54 GMT
accept-ranges: bytes
content-length: 84508
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: font/woff2
date: Mon, 05 Dec 2022 20:22:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/2020/07/Oil-Tank-1024x586.jpeg
162.241.226.25200 OK 53 kB URL HTTP/2 www.oilterminal.ae/wp-content/uploads/2020/07/Oil-Tank-1024x586.jpeg
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1024x586, components 3\012- data
Hash 7ca04ce7bac0a9056d4cfd04852b1326
675c6768e32cdc46b75ea357852df39d3c725c10
1ffd3203d6b9b978837b582ed1e8f764ac5950ce0499a5219ebaa9605754bb0d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2020/07/Oil-Tank-1024x586.jpeg HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 20:22:15 GMT
server: Apache
content-type: image/jpeg
content-length: 53103
last-modified: Sun, 01 Nov 2020 12:45:48 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-server-cache: true
x-proxy-cache: EXPIRED
accept-ranges: bytes
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/elementor/assets/js/tabs.ad5db6c2e7715f4a853c.bundle.min.js
162.241.226.25200 OK 2.6 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/elementor/assets/js/tabs.ad5db6c2e7715f4a853c.bundle.min.js
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6430)
Hash 37d40700fd114c815668ac0802b34b5e
bf99407bb596e6a1aebd3d2419e1c8915b4a1e75
93c3268a2e7048574aa8314ca1e73f4bc6d651a9d1051386d088355bc59d8183
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/tabs.ad5db6c2e7715f4a853c.bundle.min.js HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Cookie: _ga_YM8MGME17P=GS1.1.1670271732.1.0.1670271732.60.0.0; _ga=GA1.1.1263496062.1670271732; cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-non-necessary=yes
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:53:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 2628
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:16 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/elementor/assets/js/text-editor.aed713532404e88b2deb.bundle.min.js
162.241.226.25200 OK 1.8 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/elementor/assets/js/text-editor.aed713532404e88b2deb.bundle.min.js
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3862)
Hash c4c822aca2dbaf8b68c9333d1bcdb5bf
57b56494eabee1f0d53bb9f0df928d5d8832bb90
bd8a50b3d585e0c0ebeec585de3171eb03e99e4150e81f265808dc8563f59f32
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/text-editor.aed713532404e88b2deb.bundle.min.js HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Cookie: _ga_YM8MGME17P=GS1.1.1670271732.1.0.1670271732.60.0.0; _ga=GA1.1.1263496062.1670271732; cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-non-necessary=yes
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:53:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 1812
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:16 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/elementor/assets/js/counter.99f87b466b69ef909f39.bundle.min.js
162.241.226.25200 OK 1.1 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/elementor/assets/js/counter.99f87b466b69ef909f39.bundle.min.js
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2179)
Hash 18982faf49bff621cb229aaeb0419e06
d78be92f57b4a50b74090b0a1c22242cea192bfe
972146ebe0737935fab8389e8ca02fc07a5bd199a01d1764fc0836f5f4520100
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/counter.99f87b466b69ef909f39.bundle.min.js HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Cookie: _ga_YM8MGME17P=GS1.1.1670271732.1.0.1670271732.60.0.0; _ga=GA1.1.1263496062.1670271732; cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-non-necessary=yes
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:53:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 1101
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:16 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/elementor/assets/js/image-carousel.b8262c12a4b2954dac64.bundle.min.js
162.241.226.25200 OK 7.6 kB URL HTTP/2 www.oilterminal.ae/wp-content/plugins/elementor/assets/js/image-carousel.b8262c12a4b2954dac64.bundle.min.js
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (18378)
Hash 907f7d9ae2db79a9377b24348ce80f44
2b51a0bf53cfa1c243112eff378fb04b18d61442
0dbc83fa4fdd0396f075c210b7e0897d9043fb556ff1332d6e19b103cc3aa228
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/image-carousel.b8262c12a4b2954dac64.bundle.min.js HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Cookie: _ga_YM8MGME17P=GS1.1.1670271732.1.0.1670271732.60.0.0; _ga=GA1.1.1263496062.1670271732; cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-non-necessary=yes
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:53:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 7629
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:16 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/2020/10/VTTI-1.png
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/uploads/2020/10/VTTI-1.png
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/uploads/2020/10/VTTI-1.png HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Oct 2020 08:28:01 GMT
accept-ranges: bytes
content-length: 221483
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/2020/10/brooge_energy.png
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/uploads/2020/10/brooge_energy.png
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/uploads/2020/10/brooge_energy.png HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Oct 2020 08:28:12 GMT
accept-ranges: bytes
content-length: 221483
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/2020/10/DANA_logo.png
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/uploads/2020/10/DANA_logo.png
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/uploads/2020/10/DANA_logo.png HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Oct 2020 08:28:16 GMT
accept-ranges: bytes
content-length: 221483
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.1.1
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.1.1
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.1.1 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:53:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/2020/10/petro_cost.png
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/uploads/2020/10/petro_cost.png
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/uploads/2020/10/petro_cost.png HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Oct 2020 08:27:24 GMT
accept-ranges: bytes
content-length: 221483
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/2020/10/Tecton.png
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/uploads/2020/10/Tecton.png
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/uploads/2020/10/Tecton.png HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Oct 2020 08:27:49 GMT
accept-ranges: bytes
content-length: 221483
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/2020/10/Petrafos.png
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/uploads/2020/10/Petrafos.png
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/uploads/2020/10/Petrafos.png HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Oct 2020 08:27:19 GMT
accept-ranges: bytes
content-length: 221483
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/2020/10/total_logo.png
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/uploads/2020/10/total_logo.png
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/uploads/2020/10/total_logo.png HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Oct 2020 08:27:52 GMT
accept-ranges: bytes
content-length: 221483
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/smart-phone-field-for-gravity-forms/frontend/js/utils.js?ver=1.2
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/plugins/smart-phone-field-for-gravity-forms/frontend/js/utils.js?ver=1.2
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/smart-phone-field-for-gravity-forms/frontend/js/utils.js?ver=1.2 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Mar 2022 07:48:49 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/2020/10/napco.png
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/uploads/2020/10/napco.png
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/uploads/2020/10/napco.png HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Oct 2020 08:27:10 GMT
accept-ranges: bytes
content-length: 221483
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/2020/10/Tanks-Leasing.jpg
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/uploads/2020/10/Tanks-Leasing.jpg
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/uploads/2020/10/Tanks-Leasing.jpg HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Oct 2020 06:01:52 GMT
accept-ranges: bytes
content-length: 343128
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/jpeg
date: Mon, 05 Dec 2022 20:22:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/2020/10/Sharlu.png
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/uploads/2020/10/Sharlu.png
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/uploads/2020/10/Sharlu.png HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Oct 2020 08:27:32 GMT
accept-ranges: bytes
content-length: 221483
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/2020/10/GTI_logo.png
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/uploads/2020/10/GTI_logo.png
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/uploads/2020/10/GTI_logo.png HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Oct 2020 08:28:29 GMT
accept-ranges: bytes
content-length: 221483
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/2020/10/Gps_checm_oil.png
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/uploads/2020/10/Gps_checm_oil.png
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/uploads/2020/10/Gps_checm_oil.png HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Oct 2020 08:28:26 GMT
accept-ranges: bytes
content-length: 221483
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/2020/10/puma_png.png
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/uploads/2020/10/puma_png.png
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/uploads/2020/10/puma_png.png HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Oct 2020 08:27:26 GMT
accept-ranges: bytes
content-length: 221483
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/2020/10/Coral_energy.png
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/uploads/2020/10/Coral_energy.png
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/uploads/2020/10/Coral_energy.png HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Oct 2020 08:28:14 GMT
accept-ranges: bytes
content-length: 221483
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
ipinfo.io/?callback=jQuery36007149145043387739_1670271731357&_=1670271731358
34.117.59.81200 OK 0 B URL HTTP/2 ipinfo.io/?callback=jQuery36007149145043387739_1670271731357&_=1670271731358
IP 34.117.59.81:0
GET /?callback=jQuery36007149145043387739_1670271731357&_=1670271731358 HTTP/1.1
Host: ipinfo.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-type: text/javascript; charset=utf-8
date: Mon, 05 Dec 2022 20:22:16 GMT
x-envoy-upstream-service-time: 1
strict-transport-security: max-age=2592000; includeSubDomains
vary: Accept-Encoding
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-includes/js/underscore.min.js?ver=1.13.1
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-includes/js/underscore.min.js?ver=1.13.1
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/underscore.min.js?ver=1.13.1 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Mar 2022 11:41:49 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 8326
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/2020/10/Dow.png
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/uploads/2020/10/Dow.png
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/uploads/2020/10/Dow.png HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Oct 2020 08:28:17 GMT
accept-ranges: bytes
content-length: 221483
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/gfstylespro/styles/gfstylespro.min.css?ver=2.6
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/plugins/gfstylespro/styles/gfstylespro.min.css?ver=2.6
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/gfstylespro/styles/gfstylespro.min.css?ver=2.6 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 01 Sep 2020 10:05:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/2020/10/UOSC.png
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/uploads/2020/10/UOSC.png
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/uploads/2020/10/UOSC.png HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Oct 2020 08:27:57 GMT
accept-ranges: bytes
content-length: 221483
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/themes/astra/assets/css/minified/style.min.css?ver=3.0.2
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/themes/astra/assets/css/minified/style.min.css?ver=3.0.2
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/astra/assets/css/minified/style.min.css?ver=3.0.2 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 08 Feb 2021 18:18:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/smart-phone-field-for-gravity-forms/frontend/img/flags.png
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/plugins/smart-phone-field-for-gravity-forms/frontend/img/flags.png
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/plugins/smart-phone-field-for-gravity-forms/frontend/img/flags.png HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/wp-content/plugins/smart-phone-field-for-gravity-forms/frontend/css/intlTelInput.min.css?ver=1.2
Cookie: _ga_YM8MGME17P=GS1.1.1670271732.1.0.1670271732.60.0.0; _ga=GA1.1.1263496062.1670271732; cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-non-necessary=yes
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Mar 2022 07:48:49 GMT
accept-ranges: bytes
content-length: 70857
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Mon, 05 Dec 2022 20:22:16 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Mar 2022 11:41:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/2020/10/iptf.png
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/uploads/2020/10/iptf.png
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/uploads/2020/10/iptf.png HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Oct 2020 08:28:33 GMT
accept-ranges: bytes
content-length: 221483
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/js/um-crop.min.js?ver=2.1.15
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/plugins/ultimate-member/assets/js/um-crop.min.js?ver=2.1.15
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-member/assets/js/um-crop.min.js?ver=2.1.15 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:55:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 6437
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/2020/10/petro_chem.png
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/uploads/2020/10/petro_chem.png
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/uploads/2020/10/petro_chem.png HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Oct 2020 08:27:21 GMT
accept-ranges: bytes
content-length: 221483
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/2020/10/unilube.png
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/uploads/2020/10/unilube.png
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/uploads/2020/10/unilube.png HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Oct 2020 08:27:54 GMT
accept-ranges: bytes
content-length: 221483
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
oilterminal.ae/wp-content/uploads/2020/10/abstract-mock-up-wallpaper-3291293.jpg
162.241.226.25200 OK 0 B URL HTTP/2 oilterminal.ae/wp-content/uploads/2020/10/abstract-mock-up-wallpaper-3291293.jpg
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/uploads/2020/10/abstract-mock-up-wallpaper-3291293.jpg HTTP/1.1
Host: oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 17 Oct 2020 10:55:41 GMT
accept-ranges: bytes
content-length: 131517
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/jpeg
date: Mon, 05 Dec 2022 20:22:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.1.1
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.1.1
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.1.1 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:53:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/2020/10/Sharafco_png.png
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/uploads/2020/10/Sharafco_png.png
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/uploads/2020/10/Sharafco_png.png HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Oct 2020 08:27:30 GMT
accept-ranges: bytes
content-length: 221483
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
oilterminal.ae/
162.241.226.25301 Moved Permanently 0 B IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Mon, 05 Dec 2022 20:22:10 GMT
server: Apache
content-type: text/html; charset=UTF-8
x-redirect-by: WordPress
content-encoding: gzip
vary: Accept-Encoding
location: https://www.oilterminal.ae/
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-server-cache: true
x-proxy-cache: EXPIRED
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/2020/10/adnoc_logo.png
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/uploads/2020/10/adnoc_logo.png
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/uploads/2020/10/adnoc_logo.png HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Oct 2020 08:28:03 GMT
accept-ranges: bytes
content-length: 221483
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/2020/10/FOT.png
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/uploads/2020/10/FOT.png
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/uploads/2020/10/FOT.png HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Oct 2020 08:28:23 GMT
accept-ranges: bytes
content-length: 221483
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.0.10
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.0.10
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.0.10 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:54:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/2020/10/Snoc_logo.png
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/uploads/2020/10/Snoc_logo.png
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/uploads/2020/10/Snoc_logo.png HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Oct 2020 08:27:41 GMT
accept-ranges: bytes
content-length: 221483
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family
142.250.74.106400 Bad Request 0 B URL HTTP/2 fonts.googleapis.com/css?family
IP 142.250.74.106:0
GET /css?family HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 400 Bad Request
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 05 Dec 2022 20:22:13 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/2020/10/orient_logo.png
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/uploads/2020/10/orient_logo.png
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/uploads/2020/10/orient_logo.png HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Oct 2020 08:27:17 GMT
accept-ranges: bytes
content-length: 221483
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/2020/10/Shell_logo.png
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/uploads/2020/10/Shell_logo.png
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/uploads/2020/10/Shell_logo.png HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Oct 2020 08:27:34 GMT
accept-ranges: bytes
content-length: 221483
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/2020/10/vopak.png
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/uploads/2020/10/vopak.png
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/uploads/2020/10/vopak.png HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Oct 2020 08:27:59 GMT
accept-ranges: bytes
content-length: 221483
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.1.1
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.1.1
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.1.1 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:53:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: application/javascript
date: Mon, 05 Dec 2022 20:22:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/2020/10/Siddco_png.png
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/uploads/2020/10/Siddco_png.png
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/uploads/2020/10/Siddco_png.png HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Oct 2020 08:27:38 GMT
accept-ranges: bytes
content-length: 221483
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.0.10
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.0.10
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.0.10 HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Feb 2021 12:54:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: text/css
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.oilterminal.ae/wp-content/uploads/2020/10/Star_energy.png
162.241.226.25200 OK 0 B URL HTTP/2 www.oilterminal.ae/wp-content/uploads/2020/10/Star_energy.png
IP 162.241.226.25:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/uploads/2020/10/Star_energy.png HTTP/1.1
Host: www.oilterminal.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oilterminal.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Oct 2020 08:27:43 GMT
accept-ranges: bytes
content-length: 221483
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Mon, 05 Dec 2022 20:22:13 GMT
server: Apache
X-Firefox-Spdy: h2