r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 358212db02ecc7c1fa088906bd2dba14
091a0688da9de609d97349215ba9e452dfc346a4
7486e512e4de8172ac07f07f47da3a96dd3ac7cb054b335f3e4929261440e672
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7486E512E4DE8172AC07F07F47DA3A96DD3AC7CB054B335F3E4929261440E672"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8659
Expires: Wed, 14 Dec 2022 05:33:13 GMT
Date: Wed, 14 Dec 2022 03:08:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b642ec5702fb818c5d1c67168cc68fdb
015146489a8e7fcb4ba0ba74cfe757a072705f93
4846d047a23903856bd113d02639ce7e08a1e40030151d302295b2d12df98ffc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4846D047A23903856BD113D02639CE7E08A1E40030151D302295B2D12DF98FFC"
Last-Modified: Mon, 12 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3453
Expires: Wed, 14 Dec 2022 04:06:27 GMT
Date: Wed, 14 Dec 2022 03:08:54 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 14 Dec 2022 03:08:50 GMT
content-type: application/json
age: 4
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dbd022fec0a71226daaf29b7563a8896
c37d14dc7b3849a4bb815fa325fb5e70fae54039
22da5e6e3f9507688fc8cb02183d52cf38f4adf8b2c6c52eaf5f88182471efeb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22DA5E6E3F9507688FC8CB02183D52CF38F4ADF8B2C6C52EAF5F88182471EFEB"
Last-Modified: Sun, 11 Dec 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2663
Expires: Wed, 14 Dec 2022 03:53:17 GMT
Date: Wed, 14 Dec 2022 03:08:54 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Ico+qyppYQkXeDnT7+jSLrdsrBCxUq8N1rXlvk7IacF4wO3jMT7IJ7loTcYA2/bulhRimAAItGQ=
x-amz-request-id: GW8N0CTE8BD8RADM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 14 Dec 2022 02:50:19 GMT
age: 1115
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 14 Dec 2022 03:08:54 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Last-Modified, ETag, Cache-Control, Alert, Content-Length, Pragma, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 14 Dec 2022 02:33:19 GMT
age: 2135
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash de9e80c3bbe25e8623562110be8b8c9c
013f87db47c4ce3daf3380bc5e0ac3b1b496fe6f
792d587777c03d661a39a0593b71b3ec7611cb6e9d7a834bc79f28e6ace19692
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3974
Cache-Control: max-age=111851
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 03:08:55 GMT
Etag: "639840ac-1d7"
Expires: Thu, 15 Dec 2022 10:13:06 GMT
Last-Modified: Tue, 13 Dec 2022 09:06:52 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
44.236.232.139101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.236.232.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: A/I/R/Y5//TATZiD1YVRBg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: NUFsQj+bEBTNqf0RbSVH4xliRxQ=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 26c6025b12d33a0674edeef8c1491ff6
084f3e27246d3f10c36f8251034a32f71e4905be
a3b48719537321a85667771544ce54728ebdb8d3145a8db154997b6376dba12f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3B48719537321A85667771544CE54728EBDB8D3145A8DB154997B6376DBA12F"
Last-Modified: Mon, 12 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11353
Expires: Wed, 14 Dec 2022 06:18:08 GMT
Date: Wed, 14 Dec 2022 03:08:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 26c6025b12d33a0674edeef8c1491ff6
084f3e27246d3f10c36f8251034a32f71e4905be
a3b48719537321a85667771544ce54728ebdb8d3145a8db154997b6376dba12f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3B48719537321A85667771544CE54728EBDB8D3145A8DB154997B6376DBA12F"
Last-Modified: Mon, 12 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11353
Expires: Wed, 14 Dec 2022 06:18:08 GMT
Date: Wed, 14 Dec 2022 03:08:55 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F654e7722-a3eb-46c4-b652-ed202ea6f8d1.webp
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F654e7722-a3eb-46c4-b652-ed202ea6f8d1.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 25e5932a6449b859223367ce1e67e59c
5d2ea71d4f0d952d665586bdf32ed0e88c605af6
160021eb4b65b4720d90337bf46bfc3c5b317b2ec406ba377c9368a11c56f629
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F654e7722-a3eb-46c4-b652-ed202ea6f8d1.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12046
x-amzn-requestid: 53e890e7-eaa7-434d-bcde-4a1e60b5b6b4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dGqNWEhooAMFZxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6398f0bb-0282299f7b644bbd2b65c079;Sampled=0
x-amzn-remapped-date: Tue, 13 Dec 2022 21:38:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XJelUmwr6ECrVewxG3xTG9Zfvy0dUgxkP6FhPndIJ43i3iK6yrJZsw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Dec 2022 21:56:34 GMT
age: 18741
etag: "5d2ea71d4f0d952d665586bdf32ed0e88c605af6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bc4ff2a-b394-4d5e-b82e-4d1694be9750.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bc4ff2a-b394-4d5e-b82e-4d1694be9750.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 93cb79f5ffbade1f22774ed3f361e77b
f3363bd8a3584d0307943c4b6d2b97cf1f5560c7
568328e7d8c93e378e18c6d0cf6a2d2ea306815f0c07f75ea8042e918f3b9f81
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bc4ff2a-b394-4d5e-b82e-4d1694be9750.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9519
x-amzn-requestid: 1a47ee43-6b5e-4eda-a047-fd852b978248
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dGpKnGUgIAMFWmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6398ef10-4f7825ea052953e7264bf156;Sampled=0
x-amzn-remapped-date: Tue, 13 Dec 2022 21:30:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: w6g6AsstOQ6ZIPX-tUc6ktrson2-tuVogtvns2szLQDqNO6_Te8Feg==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Dec 2022 21:53:13 GMT
age: 18942
etag: "f3363bd8a3584d0307943c4b6d2b97cf1f5560c7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb91a48bd-4125-4a30-8a37-7ba4692b71f2.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb91a48bd-4125-4a30-8a37-7ba4692b71f2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3acfbf939eab432007f8315f2376f563
e14ad15ba9151accd71ea1c4b312d3d5c0a7f62c
d02ae4fa55f6ba4b1ca2186eb31a40018eada1e1491efdc4a95ffba4c35afa07
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb91a48bd-4125-4a30-8a37-7ba4692b71f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5108
x-amzn-requestid: cba619a3-ef9a-420b-b280-2b53608aad53
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dGpL0G93IAMF59Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6398ef18-7cc4f81a16016a8d63156bff;Sampled=0
x-amzn-remapped-date: Tue, 13 Dec 2022 21:31:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3JmSN0RECaKzxPmndCUHm_4YLojawf7kw8A43yj1h1IfuZQKsVl6eg==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Dec 2022 21:56:32 GMT
age: 18743
etag: "e14ad15ba9151accd71ea1c4b312d3d5c0a7f62c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa5ac05cf-7e4b-4370-90d7-5f74f4ea19eb.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa5ac05cf-7e4b-4370-90d7-5f74f4ea19eb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9490447f39b844fda99fe94641731a1d
2102208725565acc44c83b679307c5c760f966a4
6a4576b5b9e9813a1d30e0576f320d4a5f42fe24c8c617063b04a77f0c01a4f0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa5ac05cf-7e4b-4370-90d7-5f74f4ea19eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6356
x-amzn-requestid: 91e07aa7-0786-4711-82e1-7e0bfd865a58
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dGpbJFUOoAMFoGw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6398ef7a-52a1b7351db3947e4e781234;Sampled=0
x-amzn-remapped-date: Tue, 13 Dec 2022 21:32:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vlnGktCU4Edk-xxKMIW7gXQ_iFrj_f5DgKTHO6G7ZIro3NoOqyFNpA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Dec 2022 21:48:27 GMT
age: 19228
etag: "2102208725565acc44c83b679307c5c760f966a4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75239c2b-388d-496a-beed-8bd1140a34de.webp
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75239c2b-388d-496a-beed-8bd1140a34de.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 577cee5a6996494cac7908537e16b192
c598173a2cf846c6cb572b19c754929230318cad
3d2cec49a818850f1a30e6087f8654dceea8b6f16221e2bb15fb9d7e90f6fe96
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75239c2b-388d-496a-beed-8bd1140a34de.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5106
x-amzn-requestid: eb043760-3b4b-4b84-b2b0-f0fd98d3e47d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dGpLoEP-oAMFddA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6398ef17-4b7553a0354fc9a021f0fa50;Sampled=0
x-amzn-remapped-date: Tue, 13 Dec 2022 21:31:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Ma2_pbWp6bdRX_FjDKvUK4GI2MbnqHDVWnGUc4xZESPpZjBBH_tQJw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Dec 2022 21:51:15 GMT
age: 19060
etag: "c598173a2cf846c6cb572b19c754929230318cad"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5d9c5ff-aaa2-4c2a-ab2b-661f84126bf7.jpeg
34.120.237.76200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5d9c5ff-aaa2-4c2a-ab2b-661f84126bf7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 86bce3d677c0dd541440ebf38920020d
f11e21b6ad97e07b1d7103ad40a2e158e06fda73
9e23bc16cd1402d9124ebb9e625a5580f677ca9e008d3e04dc95080072fd1df4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5d9c5ff-aaa2-4c2a-ab2b-661f84126bf7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7104
x-amzn-requestid: b1117224-be51-4e21-8b3b-01e5485f0af0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dAD2yH4loAMFuWQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63964cf8-1382e1a6710239ec629eedb8;Sampled=0
x-amzn-remapped-date: Sun, 11 Dec 2022 21:34:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Qd7ZLBasMl-7gVScLfJ4kxx2fbcyeL21COqu3913iENoLFvK8wkEvA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Dec 2022 22:16:33 GMT
age: 17542
etag: "f11e21b6ad97e07b1d7103ad40a2e158e06fda73"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mylivinghope.com.my/efax/login.php
103.6.198.170301 Moved Permanently 0 B URL HTTP/1.1 mylivinghope.com.my/efax/login.php
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /efax/login.php HTTP/1.1
Host: mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 14 Dec 2022 03:08:54 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://www.mylivinghope.com.my/efax/login.php
Keep-Alive: timeout=5, max=100
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
platform-api.sharethis.com/js/sharethis.js
143.204.55.6301 Moved Permanently 167 B URL HTTP/1.1 platform-api.sharethis.com/js/sharethis.js
IP 143.204.55.6:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /js/sharethis.js HTTP/1.1
Host: platform-api.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Wed, 14 Dec 2022 03:08:58 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://platform-api.sharethis.com/js/sharethis.js
X-Cache: Redirect from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: vYRzvzm0kIRcCsQhEn5QB7oiI6ZF_9Dr4RkvIByyLg7xS3-Ofj-onA==
www.mylivinghope.com.my/wp-content/plugins/easy-testimonials/blocks/single-testimonial/style.css?ver=1575424280
103.6.198.170200 OK 282 B URL HTTP/1.1 www.mylivinghope.com.my/wp-content/plugins/easy-testimonials/blocks/single-testimonial/style.css?ver=1575424280
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type ASCII text, with CRLF line terminators
Hash 09a99eea49a920a7b319e5b528b29411
bcb760580136821df9cc4ba046c500aad3345b68
a33b708b04114e6c56d811b09f6ffe246a4cfe830f58a8048ee5ca6832391252
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/easy-testimonials/blocks/single-testimonial/style.css?ver=1575424280 HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:08:58 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 04 Dec 2019 01:51:20 GMT
Accept-Ranges: bytes
Content-Length: 282
Keep-Alive: timeout=5, max=100
Content-Type: text/css
www.mylivinghope.com.my/wp-content/plugins/easy-testimonials/blocks/random-testimonial/style.css?ver=1575424280
103.6.198.170200 OK 282 B URL HTTP/1.1 www.mylivinghope.com.my/wp-content/plugins/easy-testimonials/blocks/random-testimonial/style.css?ver=1575424280
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type ASCII text, with CRLF line terminators
Hash d19d541624ff3fe807f7619a9f06d974
6cb60b685b8187ddbb3724cde552b8c62a3650a7
f25cc30b64ab8b73c0100c6148d38572a031e278ae458f08e4deb5e860307bdf
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/easy-testimonials/blocks/random-testimonial/style.css?ver=1575424280 HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:08:58 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 04 Dec 2019 01:51:20 GMT
Accept-Ranges: bytes
Content-Length: 282
Keep-Alive: timeout=5, max=100
Content-Type: text/css
www.mylivinghope.com.my/wp-content/plugins/easy-testimonials/blocks/testimonials-list/style.css?ver=1575424280
103.6.198.170200 OK 281 B URL HTTP/1.1 www.mylivinghope.com.my/wp-content/plugins/easy-testimonials/blocks/testimonials-list/style.css?ver=1575424280
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type ASCII text, with CRLF line terminators
Hash c21b091cb54b38f549dc83c0f03226b3
20496e0a8d1bef90701c73acd9a2e74416d4b56d
0dd078881653a47153ad67dc63125b425d54f891c4d38a4efd8c42e73a820c2f
GET /wp-content/plugins/easy-testimonials/blocks/testimonials-list/style.css?ver=1575424280 HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:08:58 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 04 Dec 2019 01:51:20 GMT
Accept-Ranges: bytes
Content-Length: 281
Keep-Alive: timeout=5, max=100
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b9649509b14db5a889641078ccb05066
92c2224c6a970bf397d23a2fd37de759f74dd46c
6e7d750905e29196f6246744bb30b0ab0c5baa4a3909db5fabad7809b58aa825
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 03:08:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b9649509b14db5a889641078ccb05066
92c2224c6a970bf397d23a2fd37de759f74dd46c
6e7d750905e29196f6246744bb30b0ab0c5baa4a3909db5fabad7809b58aa825
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 03:08:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
platform-api.sharethis.com/js/sharethis.js
143.204.55.6200 OK 44 kB URL HTTP/2 platform-api.sharethis.com/js/sharethis.js
IP 143.204.55.6:0
Hash 2f9a63b834c212378595716a3d239329
791c5a1304382c3328b9e8ab5277646c4cd4ed76
581c62f1d9e0c779ade6eac536ed21d16c5b6810ab47a0274af44c5d6481fe33
GET /js/sharethis.js HTTP/1.1
Host: platform-api.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.mylivinghope.com.my/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-encoding: gzip
edge-control: cache-maxage=60m,downstream-ttl=60m
x-frame-options: SAMEORIGIN
date: Wed, 14 Dec 2022 03:06:02 GMT
cache-control: max-age=600, public
etag: W/"30217-4R/x1mcbHYoN8J5L8eO1d9Nv/qY"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: WrrjOSHVqKHk7DDMZ0vDhrgkS5Mm6XSZO0gFv6gB7nwpLjYznbzpVA==
age: 176
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?hl=en&onload=nfRenderRecaptcha&render=explicit&ver=3.4.34.2
142.250.74.132200 OK 573 B URL HTTP/2 www.google.com/recaptcha/api.js?hl=en&onload=nfRenderRecaptcha&render=explicit&ver=3.4.34.2
IP 142.250.74.132:0
File type ASCII text, with very long lines (912), with no line terminators
Hash 314471491ddbaad4dbbda76554a7c8fb
1cfa43d77a2886a247524be606893701195bf187
ceb549515fe955cee8ff58886588a02e7d9d394ca24828cb741244b5e265b1b1
GET /recaptcha/api.js?hl=en&onload=nfRenderRecaptcha&render=explicit&ver=3.4.34.2 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Wed, 14 Dec 2022 03:08:58 GMT
date: Wed, 14 Dec 2022 03:08:58 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 573
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.mylivinghope.com.my/efax/login.php
103.6.198.170404 Not Found 91 kB URL HTTP/1.1 www.mylivinghope.com.my/efax/login.php
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (31906), with CRLF, LF line terminators
Hash d05ea13e53ef3e103407555e1bd02c6e
4a3f968423772c9884aee0a559e5f6ffe2c2efd4
4f90d53246b5b5c3bc7b9cc25d30715094d76b46941428406f9b46c9572486a9
Analyzer Verdict Alert fortinet Malware
GET /efax/login.php HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 404 Not Found
Date: Wed, 14 Dec 2022 03:08:56 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://www.mylivinghope.com.my/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Keep-Alive: timeout=5, max=100
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2e5ee531cc0386adab9fe3d62f530231
16ec934be53e9ce97d40aedf906430551ad1b58a
0259d529060dc76765ae2bfb9bb5f513662c41e1b6608ec3a950d8b4b04ec056
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 03:08:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8bc1b4db769ee14aba872f3f93af10b1
f24c742805ff56d77d50924d60dabd2b6750c46e
35e6181045327df4b97bddff70ea1f9510e03d6896213b5f8473d8da771b15f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 03:08:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/charts/loader.js?key=AIzaSyCyFBVWZKyHFsv4Q8KCo2KCVm450JMlJ3k&ver=3.7
142.250.74.35200 OK 20 kB URL HTTP/2 www.gstatic.com/charts/loader.js?key=AIzaSyCyFBVWZKyHFsv4Q8KCo2KCVm450JMlJ3k&ver=3.7
IP 142.250.74.35:0
File type ASCII text, with very long lines (2134)
Hash f3341efa0432876b1697ccec98c33b01
55044e79afbe25d119b7b87dc7b5d1b3ec0c607a
6672904faeb4f203e0109279aa99d88f9e8690d2d696d80309ef50a974f88c77
GET /charts/loader.js?key=AIzaSyCyFBVWZKyHFsv4Q8KCo2KCVm450JMlJ3k&ver=3.7 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.mylivinghope.com.my/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-type: text/javascript
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 19937
date: Wed, 14 Dec 2022 03:08:58 GMT
expires: Wed, 14 Dec 2022 04:08:58 GMT
cache-control: public, max-age=3600
last-modified: Wed, 23 Jun 2021 18:41:30 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.mylivinghope.com.my/wp-content/themes/manhattan/style.css?ver=1.0
103.6.198.170200 OK 34 kB URL HTTP/1.1 www.mylivinghope.com.my/wp-content/themes/manhattan/style.css?ver=1.0
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type ASCII text, with CRLF line terminators
Hash 68812e90123874936ea00aa60a95beec
f9132d2c9683d8ddc8761c3b2608c585866b3967
cc9972cd1381a39cc401da87d820028403c2cd9f185538053d5e3c3efe8c9632
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manhattan/style.css?ver=1.0 HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:08:58 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 12 Aug 2016 02:26:32 GMT
Accept-Ranges: bytes
Content-Length: 33657
Keep-Alive: timeout=5, max=100
Content-Type: text/css
www.mylivinghope.com.my/wp-includes/css/dist/block-library/style.min.css?ver=5.3.14
103.6.198.170200 OK 41 kB URL HTTP/1.1 www.mylivinghope.com.my/wp-includes/css/dist/block-library/style.min.css?ver=5.3.14
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type ASCII text, with very long lines (41045), with no line terminators
Hash 612b7ab9f699e968f5b3206ca16ee834
12685fd0b83dabb9a2004dd4c74de4515fea3013
dfd6d929422d1f69a727fb6b525f610562eab183a333576516bec0b0503cb049
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.3.14 HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:08:58 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 11 Jun 2020 03:59:49 GMT
Accept-Ranges: bytes
Content-Length: 41045
Keep-Alive: timeout=5, max=100
Content-Type: text/css
www.mylivinghope.com.my/wp-content/plugins/easy-testimonials/blocks/testimonials-grid/style.css?ver=1575424280
103.6.198.170200 OK 281 B URL HTTP/1.1 www.mylivinghope.com.my/wp-content/plugins/easy-testimonials/blocks/testimonials-grid/style.css?ver=1575424280
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type ASCII text, with CRLF line terminators
Hash 1b313e7c13c23968eb856c7790dc6a70
03356ad5fb24acace5c4ecf9685d0b792665c2c9
af006987a8b1b960fdfc5f18dc4d1ae6f214d0b9f1ea0b6788f9de17bc636e11
GET /wp-content/plugins/easy-testimonials/blocks/testimonials-grid/style.css?ver=1575424280 HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:08:59 GMT
Server: Apache
Last-Modified: Wed, 04 Dec 2019 01:51:20 GMT
Accept-Ranges: bytes
Content-Length: 281
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.mylivinghope.com.my/wp-content/plugins/easy-testimonials/blocks/testimonials-cycle/style.css?ver=1575424280
103.6.198.170200 OK 282 B URL HTTP/1.1 www.mylivinghope.com.my/wp-content/plugins/easy-testimonials/blocks/testimonials-cycle/style.css?ver=1575424280
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type ASCII text, with CRLF line terminators
Hash 5a07a6be4a6799421430b573ed13368c
ab5adbb427775976d70a26cfdc8248b3e9646c40
9e6e7c9b81707b03f37359836f4e2ec19f971ef03aacf3799c1247276f3db93b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/easy-testimonials/blocks/testimonials-cycle/style.css?ver=1575424280 HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:08:59 GMT
Server: Apache
Last-Modified: Wed, 04 Dec 2019 01:51:20 GMT
Accept-Ranges: bytes
Content-Length: 282
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2e5ee531cc0386adab9fe3d62f530231
16ec934be53e9ce97d40aedf906430551ad1b58a
0259d529060dc76765ae2bfb9bb5f513662c41e1b6608ec3a950d8b4b04ec056
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 03:08:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Alegreya+Sans:400,300,300italic,400italic,500,500italic,700,700italic,800,800italic
142.250.74.106200 OK 1.0 kB URL HTTP/1.1 fonts.googleapis.com/css?family=Alegreya+Sans:400,300,300italic,400italic,500,500italic,700,700italic,800,800italic
IP 142.250.74.106:0
Hash 076225140ec9d3009188407726558865
ba1e5a70f8996a3477a61a73ce20e645d8b9c55f
fe9b6ad615c449262d44e954126a41f9b7f6930d6b2c54b149ff8eb2383d77f1
GET /css?family=Alegreya+Sans:400,300,300italic,400italic,500,500italic,700,700italic,800,800italic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Wed, 14 Dec 2022 03:08:58 GMT
Date: Wed, 14 Dec 2022 03:08:58 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
www.mylivinghope.com.my/wp-content/plugins/easy-fancybox/css/jquery.fancybox.min.css?ver=1.3.24
103.6.198.170200 OK 4.1 kB URL HTTP/1.1 www.mylivinghope.com.my/wp-content/plugins/easy-fancybox/css/jquery.fancybox.min.css?ver=1.3.24
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type ASCII text, with very long lines (4058), with no line terminators
Hash bc588054d45f910494ceba6455ac77f2
59c47f34f56e8a5ff2434ff6e339a5b4e0badebd
f34bb7d9c8f2db0e78e5d7b226bc169182f8c22e7cd1a3e7b5767519b709c1bc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/easy-fancybox/css/jquery.fancybox.min.css?ver=1.3.24 HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:08:59 GMT
Server: Apache
Last-Modified: Mon, 25 Nov 2019 01:32:33 GMT
Accept-Ranges: bytes
Content-Length: 4058
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.mylivinghope.com.my/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
103.6.198.170200 OK 10 kB URL HTTP/1.1 www.mylivinghope.com.my/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type ASCII text, with very long lines (9959)
Hash 7121994eec5320fbe6586463bf9651c2
90532aff6d4121954254cdf04994d834f7ec169b
48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:08:59 GMT
Server: Apache
Last-Modified: Thu, 24 Aug 2017 06:32:12 GMT
Accept-Ranges: bytes
Content-Length: 10056
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.mylivinghope.com.my/wp-content/plugins/easy-testimonials/include/assets/js/easy-testimonials-reveal.js?ver=5.3.14
103.6.198.170200 OK 1.6 kB URL HTTP/1.1 www.mylivinghope.com.my/wp-content/plugins/easy-testimonials/include/assets/js/easy-testimonials-reveal.js?ver=5.3.14
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type HTML document, ASCII text, with CRLF line terminators
Hash 7b2fc872cebad11ccb67dbed3e8fe442
3305c7a1ba51f83d6dbe3dd6ba73dbf9404f9605
317a5d62af17081b211dda69337048ffc7a1a43103c00d6715fa9bd5b8118bd7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/easy-testimonials/include/assets/js/easy-testimonials-reveal.js?ver=5.3.14 HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:08:59 GMT
Server: Apache
Last-Modified: Wed, 04 Dec 2019 01:51:21 GMT
Accept-Ranges: bytes
Content-Length: 1596
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.mylivinghope.com.my/wp-includes/js/wp-emoji-release.min.js?ver=5.3.14
103.6.198.170200 OK 14 kB URL HTTP/1.1 www.mylivinghope.com.my/wp-includes/js/wp-emoji-release.min.js?ver=5.3.14
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type ASCII text, with very long lines (10927)
Hash d6aeffd9e0126160ff89d369c05a5fbe
8480b15ad38e8e1d67960e72b513fa4f463e2cc1
95309410230b1d3148e52211dcee018bfa011a2d69e9d7d6f81164035e8518a0
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.3.14 HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:08:59 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 09:57:49 GMT
Accept-Ranges: bytes
Content-Length: 13849
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.mylivinghope.com.my/wp-content/plugins/leaflet-maps-marker/leaflet-dist/leaflet.css?ver=3.12.3
103.6.198.170200 OK 14 kB URL HTTP/1.1 www.mylivinghope.com.my/wp-content/plugins/leaflet-maps-marker/leaflet-dist/leaflet.css?ver=3.12.3
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type ASCII text, with CRLF line terminators
Hash 692227961c7909e4bbf67552519b8ad2
f365f6d1cfa500b7a77fb8b9a9e6de178f17667c
8e4965bb8f670bcbd0cd85e348a79c9689f731a5a1b09e5764ccb0adfeee2f21
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/leaflet-maps-marker/leaflet-dist/leaflet.css?ver=3.12.3 HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:08:59 GMT
Server: Apache
Last-Modified: Wed, 22 Jan 2020 08:28:11 GMT
Accept-Ranges: bytes
Content-Length: 13523
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.mylivinghope.com.my/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
103.6.198.170200 OK 97 kB URL HTTP/1.1 www.mylivinghope.com.my/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type ASCII text, with very long lines (31997)
Hash 49edccea2e7ba985cadc9ba0531cbed1
f8747f8ee704d9af31d0950015e01d3f9635b070
1db21d816296e6939ba1f42962496e4134ae2b0081e26970864c40c6d02bb1df
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:08:59 GMT
Server: Apache
Last-Modified: Thu, 13 Jun 2019 04:46:15 GMT
Accept-Ranges: bytes
Content-Length: 96873
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.mylivinghope.com.my/wp-includes/css/dashicons.min.css?ver=5.3.14
103.6.198.170200 OK 48 kB URL HTTP/1.1 www.mylivinghope.com.my/wp-includes/css/dashicons.min.css?ver=5.3.14
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type ASCII text, with very long lines (47529)
Hash d54a4192cc3e4d54677c8091c1dae73b
7e3e8e30c66c5751bb5477b4e9939969f4e2aa5e
de7bdcb93f2804e963f238713752a30a22a3a3afef6070fb78d206e6199cd353
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dashicons.min.css?ver=5.3.14 HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:08:59 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 09:57:38 GMT
Accept-Ranges: bytes
Content-Length: 47564
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.mylivinghope.com.my/wp-includes/js/hoverIntent.min.js?ver=1.8.1
103.6.198.170200 OK 1.1 kB URL HTTP/1.1 www.mylivinghope.com.my/wp-includes/js/hoverIntent.min.js?ver=1.8.1
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type ASCII text, with very long lines (1087), with no line terminators
Hash 3dc5811cb7bb6e67b9054c8c39f9f4c9
ced11144eb84a14db2b3b0ab92998128c5e88204
124f0860b7201dc2fa46889b30ac0e4269e84ac2e71c33dc025ed14ed15bd8f0
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/hoverIntent.min.js?ver=1.8.1 HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:08:59 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 09:57:49 GMT
Accept-Ranges: bytes
Content-Length: 1087
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.mylivinghope.com.my/wp-content/themes/genesis/lib/js/menu/superfish.min.js?ver=1.7.10
103.6.198.170200 OK 4.5 kB URL HTTP/1.1 www.mylivinghope.com.my/wp-content/themes/genesis/lib/js/menu/superfish.min.js?ver=1.7.10
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type ASCII text, with very long lines (4270)
Hash af42109dbc91e0d99fd0041dd9c3395a
7266b5e6ef8e7fc633511d669af04220f1569fbb
ece565a1f66a32347dfed83562c428ff7736648de72b0027dd8f0e0f27e0c327
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/genesis/lib/js/menu/superfish.min.js?ver=1.7.10 HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:08:59 GMT
Server: Apache
Last-Modified: Thu, 13 Jun 2019 04:43:29 GMT
Accept-Ranges: bytes
Content-Length: 4499
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.mylivinghope.com.my/wp-content/themes/genesis/lib/js/menu/superfish.args.min.js?ver=2.10.1
103.6.198.170200 OK 132 B URL HTTP/1.1 www.mylivinghope.com.my/wp-content/themes/genesis/lib/js/menu/superfish.args.min.js?ver=2.10.1
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type ASCII text, with no line terminators
Hash c94b7aeed7521dc95699cd74f9609b19
7b19e24f0d95007f896156fe38283b39f32b9988
20550f7bcb2a817ac9a5879e04260da8268e971c0b8031a6b7a2f48a55ee60d5
GET /wp-content/themes/genesis/lib/js/menu/superfish.args.min.js?ver=2.10.1 HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:08:59 GMT
Server: Apache
Last-Modified: Thu, 13 Jun 2019 04:43:29 GMT
Accept-Ranges: bytes
Content-Length: 132
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.mylivinghope.com.my/wp-content/plugins/ninja-forms/assets/css/display-structure.css?ver=5.3.14
103.6.198.170200 OK 17 kB URL HTTP/1.1 www.mylivinghope.com.my/wp-content/plugins/ninja-forms/assets/css/display-structure.css?ver=5.3.14
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type ASCII text, with very long lines (17012)
Hash 75af6c3404cdbcf91c6ee3cb810ffa36
f20a76ba3115ff87615634354e1bb264541e910c
aac55540abec3f7c1bb8a98aeafe2197e5a9241a2bedf86896659da69c6419ea
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ninja-forms/assets/css/display-structure.css?ver=5.3.14 HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:08:59 GMT
Server: Apache
Last-Modified: Sat, 18 Jun 2022 08:36:15 GMT
Accept-Ranges: bytes
Content-Length: 17063
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.mylivinghope.com.my/wp-content/themes/genesis/lib/js/menu/superfish.compat.min.js?ver=2.10.1
103.6.198.170200 OK 109 B URL HTTP/1.1 www.mylivinghope.com.my/wp-content/themes/genesis/lib/js/menu/superfish.compat.min.js?ver=2.10.1
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type ASCII text, with no line terminators
Hash 1367d614c93ea697e2c5b9bdf7a87d54
ae74603fc40885ae2184ba57cc0ebe80eb38ebb5
6aad03dd3214113034d4d498ce288551aea85b38bd9b0e0dcda9d0b02230dbdd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/genesis/lib/js/menu/superfish.compat.min.js?ver=2.10.1 HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:08:59 GMT
Server: Apache
Last-Modified: Thu, 13 Jun 2019 04:43:29 GMT
Accept-Ranges: bytes
Content-Length: 109
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.mylivinghope.com.my/wp-content/plugins/easy-fancybox/js/jquery.fancybox.min.js?ver=1.3.24
103.6.198.170200 OK 20 kB URL HTTP/1.1 www.mylivinghope.com.my/wp-content/plugins/easy-fancybox/js/jquery.fancybox.min.js?ver=1.3.24
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type HTML document, ASCII text, with very long lines (19791), with no line terminators
Hash 31022b7ea75250e0e9fb3117253fcb2f
f721d770eecb3a8fa48eeeed9f52faf4512d5493
948f0c154ad97428bc1d1dee456f2e20ec4e0e302b0d3189e08a4573cb63cdb3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/easy-fancybox/js/jquery.fancybox.min.js?ver=1.3.24 HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:08:59 GMT
Server: Apache
Last-Modified: Mon, 25 Nov 2019 01:32:33 GMT
Accept-Ranges: bytes
Content-Length: 19791
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.mylivinghope.com.my/wp-content/plugins/easy-testimonials/include/assets/css/style.css?ver=5.3.14
103.6.198.170200 OK 167 kB URL HTTP/1.1 www.mylivinghope.com.my/wp-content/plugins/easy-testimonials/include/assets/css/style.css?ver=5.3.14
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type ASCII text, with very long lines (33055), with CRLF line terminators
Size 167 kB (167198 bytes)
Hash 7987d05d256d999cabf11abf48f097d3
075e6f84abeb7b37b6b06d4b2de9b7b17497549f
7c978f675eeb590ab5dc1c0a943ef451af4be7dbbba890832ce0dcd927e7a782
GET /wp-content/plugins/easy-testimonials/include/assets/css/style.css?ver=5.3.14 HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:08:59 GMT
Server: Apache
Last-Modified: Wed, 04 Dec 2019 01:51:20 GMT
Accept-Ranges: bytes
Content-Length: 167198
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.mylivinghope.com.my/wp-content/plugins/easy-fancybox/js/jquery.easing.min.js?ver=1.4.1
103.6.198.170200 OK 2.3 kB URL HTTP/1.1 www.mylivinghope.com.my/wp-content/plugins/easy-fancybox/js/jquery.easing.min.js?ver=1.4.1
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type ASCII text, with very long lines (2301)
Hash adf739cca147aff5e39fd65e6e64f420
ce3bb19811c619220dd2329165eb8a8166094fec
0ec98adf593ebcc01bec60b1f494dacd47522abfef9038a714101d83f45e165d
GET /wp-content/plugins/easy-fancybox/js/jquery.easing.min.js?ver=1.4.1 HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:08:59 GMT
Server: Apache
Last-Modified: Mon, 25 Nov 2019 01:32:33 GMT
Accept-Ranges: bytes
Content-Length: 2302
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/alegreyasans/v24/5aUz9_-1phKLFgshYDvh6Vwt7VptvQ.woff2
216.58.207.227200 OK 22 kB URL HTTP/1.1 fonts.gstatic.com/s/alegreyasans/v24/5aUz9_-1phKLFgshYDvh6Vwt7VptvQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 21820, version 1.0\012- data
Hash d9eb1619ec469775fc634c44ed34e7d9
4ea252177e86b3f8390512caf26ab112b8b11f03
358b77e66f715be7f5676feec15e05ec8292a165f99ea95b345cf87adc075ede
GET /s/alegreyasans/v24/5aUz9_-1phKLFgshYDvh6Vwt7VptvQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.mylivinghope.com.my
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 21820
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 08 Dec 2022 01:05:50 GMT
Expires: Fri, 08 Dec 2023 01:05:50 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 07 Dec 2022 17:51:09 GMT
Content-Type: font/woff2
Age: 525789
fonts.gstatic.com/s/alegreyasans/v24/5aUu9_-1phKLFgshYDvh6Vwt5eFIqEp2iw.woff2
216.58.207.227200 OK 22 kB URL HTTP/1.1 fonts.gstatic.com/s/alegreyasans/v24/5aUu9_-1phKLFgshYDvh6Vwt5eFIqEp2iw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 21904, version 1.0\012- data
Hash f9e9240e2c6a14e481f2aad7194edb93
38a45eb7e0102bf57f2f993140b6b2279c5e7a58
839b1145547ce6dcba32c1aeb4f578ed46847751fe8f5c7d2e427be44b9e03c2
GET /s/alegreyasans/v24/5aUu9_-1phKLFgshYDvh6Vwt5eFIqEp2iw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.mylivinghope.com.my
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 21904
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 08 Dec 2022 01:05:51 GMT
Expires: Fri, 08 Dec 2023 01:05:51 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 07 Dec 2022 17:51:00 GMT
Content-Type: font/woff2
Age: 525788
fonts.gstatic.com/s/alegreyasans/v24/5aUt9_-1phKLFgshYDvh6Vwt7V9dv21T.woff2
216.58.207.227200 OK 22 kB URL HTTP/1.1 fonts.gstatic.com/s/alegreyasans/v24/5aUt9_-1phKLFgshYDvh6Vwt7V9dv21T.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 22404, version 1.0\012- data
Hash eded078156f1437b04fdff58fc1bc9fc
7623a93583add5e71039e436659600a0d513f145
e47ef21c70a3d03dc1bb7a44a728e7aa0e7c767c2d44a69c7baa52366effd113
GET /s/alegreyasans/v24/5aUt9_-1phKLFgshYDvh6Vwt7V9dv21T.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.mylivinghope.com.my
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 22404
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 09 Dec 2022 21:09:16 GMT
Expires: Sat, 09 Dec 2023 21:09:16 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 07 Dec 2022 18:04:03 GMT
Content-Type: font/woff2
Age: 367183
www.mylivinghope.com.my/wp-content/plugins/easy-fancybox/js/jquery.mousewheel.min.js?ver=3.1.13
103.6.198.170200 OK 2.6 kB URL HTTP/1.1 www.mylivinghope.com.my/wp-content/plugins/easy-fancybox/js/jquery.mousewheel.min.js?ver=3.1.13
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type ASCII text, with very long lines (2608)
Hash 963b3f6599b02889ea79808c5c8189d0
c2b5156772ddbaf09d18f00c31cddfb86bc1f1f1
dd9bfe5f04d4e393463f42b4f503763c36693306dffef16d481e0c071b61ae64
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/easy-fancybox/js/jquery.mousewheel.min.js?ver=3.1.13 HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:08:59 GMT
Server: Apache
Last-Modified: Mon, 25 Nov 2019 01:32:33 GMT
Accept-Ranges: bytes
Content-Length: 2609
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.mylivinghope.com.my/wp-content/plugins/easy-testimonials/include/assets/js/jquery.cycle2.min.js?ver=5.3.14
103.6.198.170200 OK 23 kB URL HTTP/1.1 www.mylivinghope.com.my/wp-content/plugins/easy-testimonials/include/assets/js/jquery.cycle2.min.js?ver=5.3.14
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type ASCII text, with very long lines (10340), with CRLF line terminators
Hash f846946e85f4131f27c61bbd9a24729b
44f013999fa53ebd07dbe48c465f57b613113d31
9236ca2b7292d8a8dabefbe16bff6ea007f4170ae61922716251cf3ab4ce9e57
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/easy-testimonials/include/assets/js/jquery.cycle2.min.js?ver=5.3.14 HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:08:59 GMT
Server: Apache
Last-Modified: Wed, 04 Dec 2019 01:51:21 GMT
Accept-Ranges: bytes
Content-Length: 23058
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.mylivinghope.com.my/wp-content/plugins/wp-cycle/jquery.cycle.all.min.js?ver=2.9999.5
103.6.198.170200 OK 34 kB URL HTTP/1.1 www.mylivinghope.com.my/wp-content/plugins/wp-cycle/jquery.cycle.all.min.js?ver=2.9999.5
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type ASCII text, with very long lines (33607), with no line terminators
Hash 1bdc3cffa31258ee3ff6fa510857b4ab
a61b182f0a01457e333343e57843615b01562a3c
66f53d3e0d15e087815571adcc72097bc59739265573885b1849670ad1408b60
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-cycle/jquery.cycle.all.min.js?ver=2.9999.5 HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:08:59 GMT
Server: Apache
Last-Modified: Thu, 09 Oct 2014 06:37:21 GMT
Accept-Ranges: bytes
Content-Length: 33607
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.mylivinghope.com.my/wp-includes/js/wp-embed.min.js?ver=5.3.14
103.6.198.170200 OK 1.4 kB URL HTTP/1.1 www.mylivinghope.com.my/wp-includes/js/wp-embed.min.js?ver=5.3.14
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type ASCII text, with very long lines (1391), with no line terminators
Hash 570ae0f3c201604926ea599d3d1f6c04
2c29243a73660964d4712b969d2a15e27777bc14
5138d39633dc69fcd0ed7f33a5e38dc339123f682fa7f5242066879c2bbc8c9b
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-embed.min.js?ver=5.3.14 HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:08:59 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 09:57:49 GMT
Accept-Ranges: bytes
Content-Length: 1391
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.mylivinghope.com.my/wp-content/plugins/leaflet-maps-marker/leaflet-dist/leaflet.js?ver=3.12.3
103.6.198.170200 OK 132 kB URL HTTP/1.1 www.mylivinghope.com.my/wp-content/plugins/leaflet-maps-marker/leaflet-dist/leaflet.js?ver=3.12.3
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type ASCII text, with very long lines (32022), with CRLF line terminators
Size 132 kB (132071 bytes)
Hash b98f8c201c0ec226dd2a2eb24912b673
d94dc68816c49b50515f1d83440a2662cc02b31c
0f24147d202cab2e2720b12870d858e1f6840f466744e151459f1ebe181d15e1
GET /wp-content/plugins/leaflet-maps-marker/leaflet-dist/leaflet.js?ver=3.12.3 HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:08:59 GMT
Server: Apache
Last-Modified: Wed, 22 Jan 2020 08:28:11 GMT
Accept-Ranges: bytes
Content-Length: 132071
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.mylivinghope.com.my/wp-content/plugins/leaflet-maps-marker/inc/js/show_map.js?ver=3.12.3
103.6.198.170200 OK 15 B URL HTTP/1.1 www.mylivinghope.com.my/wp-content/plugins/leaflet-maps-marker/inc/js/show_map.js?ver=3.12.3
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type ASCII text, with no line terminators
Hash 9eb8afd2bb7a5544f632e55d5256adad
c7b5e9e3e7fec2e2eeb4f65050eaa5a2694a3b93
d3f6372d0bd605e201b6ce5ba984d7304db91e88e2db22ec5a33c806cb4f6968
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/leaflet-maps-marker/inc/js/show_map.js?ver=3.12.3 HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:08:59 GMT
Server: Apache
Last-Modified: Wed, 22 Jan 2020 08:28:05 GMT
Accept-Ranges: bytes
Content-Length: 15
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.mylivinghope.com.my/wp-includes/js/underscore.min.js?ver=1.8.3
103.6.198.170200 OK 16 kB URL HTTP/1.1 www.mylivinghope.com.my/wp-includes/js/underscore.min.js?ver=1.8.3
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type ASCII text, with very long lines (16010), with no line terminators
Hash 531c690707d18f60906bdf12d2ade193
0bddd39d059105bec8a13d3594b95e19146ee13d
e5f5736867880dc34e00e9d915d49094d5aa572c73771e87a082bd721b5a4f7c
GET /wp-includes/js/underscore.min.js?ver=1.8.3 HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:08:59 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 09:57:49 GMT
Accept-Ranges: bytes
Content-Length: 16010
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.mylivinghope.com.my/wp-includes/js/backbone.min.js?ver=1.4.0
103.6.198.170200 OK 24 kB URL HTTP/1.1 www.mylivinghope.com.my/wp-includes/js/backbone.min.js?ver=1.4.0
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type ASCII text, with very long lines (23783), with no line terminators
Hash defeba887b7ee18c9c5c80204378cbad
664ea6a0d1e5bf1c63d9a63a0d08cb5a0314ac24
27098fe24589566498663e943214e8054e70f1b4cfffd1a5c6bf9b96e73836ea
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/backbone.min.js?ver=1.4.0 HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:08:59 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 09:57:49 GMT
Accept-Ranges: bytes
Content-Length: 23783
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.mylivinghope.com.my/wp-content/plugins/ninja-forms/assets/js/min/front-end-deps.js?ver=3.4.34.2
103.6.198.170200 OK 62 kB URL HTTP/1.1 www.mylivinghope.com.my/wp-content/plugins/ninja-forms/assets/js/min/front-end-deps.js?ver=3.4.34.2
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type ASCII text, with very long lines (32153)
Hash d961bbe9a27bb2b0e114e5b6086a2607
184b9a39a4db3622d9511a6051b0044fcf8281a6
862649f67b306369ac0ea7a5c32c5f3961ecfd402a7717185e20f7f8e5ee4936
GET /wp-content/plugins/ninja-forms/assets/js/min/front-end-deps.js?ver=3.4.34.2 HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:08:59 GMT
Server: Apache
Last-Modified: Sat, 18 Jun 2022 08:36:19 GMT
Accept-Ranges: bytes
Content-Length: 61699
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4cfff21eb23d58996d9e27a376974cb5
79c2ffbc0f6594a69eaa643edee1757760fb848e
7916a7a170a38e6b445dadcf83d3fac44305960c6c15f756e0cde0a6a6e90970
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 03:08:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.googleapis.com/maps/api/js?jsapiRedirect=true&key=AIzaSyCyFBVWZKyHFsv4Q8KCo2KCVm450JMlJ3k&base_domain=maps.google.com
216.58.211.10200 OK 54 kB URL HTTP/2 maps.googleapis.com/maps/api/js?jsapiRedirect=true&key=AIzaSyCyFBVWZKyHFsv4Q8KCo2KCVm450JMlJ3k&base_domain=maps.google.com
IP 216.58.211.10:0
File type ASCII text, with very long lines (2453)
Hash 0d5f3bf25b67b216a2b53e5306ffee35
3a8154bb3888b539984103ad2b9a44c441b6a964
ed8570861870eec5e8672e84e6083c4dd4df932bdeb3f03f0db80537e29d71e8
GET /maps/api/js?jsapiRedirect=true&key=AIzaSyCyFBVWZKyHFsv4Q8KCo2KCVm450JMlJ3k&base_domain=maps.google.com HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Wed, 14 Dec 2022 03:08:59 GMT
expires: Wed, 14 Dec 2022 03:38:59 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 53499
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=21
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.mylivinghope.com.my/wp-content/themes/manhattan/images/bg.png
103.6.198.170200 OK 843 B URL HTTP/1.1 www.mylivinghope.com.my/wp-content/themes/manhattan/images/bg.png
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type PNG image data, 50 x 16, 8-bit/color RGB, non-interlaced\012- data
Hash 01fcf172f9a4ff380c228eda3f47e8a7
244d47c848cfd0449380de35408d076665926ecf
3c535dbcabfa36fccfd3651ac636ac75af1eb3e97ff786da7f69a529511532d0
GET /wp-content/themes/manhattan/images/bg.png HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/wp-content/themes/manhattan/style.css?ver=1.0
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:09:00 GMT
Server: Apache
Last-Modified: Thu, 09 Oct 2014 06:58:07 GMT
Accept-Ranges: bytes
Content-Length: 843
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4cfff21eb23d58996d9e27a376974cb5
79c2ffbc0f6594a69eaa643edee1757760fb848e
7916a7a170a38e6b445dadcf83d3fac44305960c6c15f756e0cde0a6a6e90970
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 03:09:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.mylivinghope.com.my/wp-content/themes/manhattan/images/logo.png
103.6.198.170200 OK 29 kB URL HTTP/1.1 www.mylivinghope.com.my/wp-content/themes/manhattan/images/logo.png
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type PNG image data, 960 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 710739fc02a294a98ca795c5f85e2ccb
ee857dea640351cd7573987a2e8a3bce796d5522
970ac448605cd89e327d62617ac3b54842e23729d3c7f715aee192998e7de37a
GET /wp-content/themes/manhattan/images/logo.png HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/wp-content/themes/manhattan/style.css?ver=1.0
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:09:00 GMT
Server: Apache
Last-Modified: Thu, 09 Oct 2014 07:28:45 GMT
Accept-Ranges: bytes
Content-Length: 29216
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
www.mylivinghope.com.my/wp-content/themes/manhattan/images/header-right.png
103.6.198.170200 OK 4.5 kB URL HTTP/1.1 www.mylivinghope.com.my/wp-content/themes/manhattan/images/header-right.png
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 968393c5327ad89afb1b75d0d1556b21
952b69cd96134b5d78cf36460d32bc4cf31246da
33a89bf63731ce4aa4504f40b9ee7704a350581556d402abde0b22533d0c6a1e
GET /wp-content/themes/manhattan/images/header-right.png HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/wp-content/themes/manhattan/style.css?ver=1.0
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:09:00 GMT
Server: Apache
Last-Modified: Fri, 10 Oct 2014 02:25:32 GMT
Accept-Ranges: bytes
Content-Length: 4520
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
www.mylivinghope.com.my/wp-content/themes/manhattan/images/navline.png
103.6.198.170200 OK 118 B URL HTTP/1.1 www.mylivinghope.com.my/wp-content/themes/manhattan/images/navline.png
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type PNG image data, 2 x 14, 8-bit/color RGB, non-interlaced\012- data
Hash 045fb3108c0c9e574fefc3b94016623f
332298eaf8b6f34992a91948b527a5782130fcf7
bb208491d159500cfbe2408ad17fa3b1d8150ed46c77707dada9cd07063b0e26
GET /wp-content/themes/manhattan/images/navline.png HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/wp-content/themes/manhattan/style.css?ver=1.0
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:09:00 GMT
Server: Apache
Last-Modified: Thu, 09 Oct 2014 06:33:51 GMT
Accept-Ranges: bytes
Content-Length: 118
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
www.mylivinghope.com.my/wp-content/themes/manhattan/images/search.png
103.6.198.170200 OK 497 B URL HTTP/1.1 www.mylivinghope.com.my/wp-content/themes/manhattan/images/search.png
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type PNG image data, 32 x 28, 8-bit/color RGB, non-interlaced\012- data
Hash f914a21dbced2b20bcbcdf609bbbfcde
6ee106c3c1608277a2c00f08f6f6b0e4d7b50942
03852dfc1aa1347a86c9798a66f81daed21c8f445bac5c2dad0f1b7b5d901cfb
GET /wp-content/themes/manhattan/images/search.png HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/wp-content/themes/manhattan/style.css?ver=1.0
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:09:00 GMT
Server: Apache
Last-Modified: Thu, 09 Oct 2014 06:33:52 GMT
Accept-Ranges: bytes
Content-Length: 497
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
www.mylivinghope.com.my/wp-content/themes/manhattan/images/list.png
103.6.198.170200 OK 255 B URL HTTP/1.1 www.mylivinghope.com.my/wp-content/themes/manhattan/images/list.png
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type PNG image data, 13 x 22, 8-bit/color RGBA, non-interlaced\012- data
Hash 66b2ae2c1d1e9833962a6f3249967928
679cfcc83c62d756396f6c5a54dd7eb7989c6cf4
48cf7c2444bd895e95da9f873191700b1c51b5c980832ea77226140971240c2d
GET /wp-content/themes/manhattan/images/list.png HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/wp-content/themes/manhattan/style.css?ver=1.0
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:09:00 GMT
Server: Apache
Last-Modified: Thu, 09 Oct 2014 06:33:51 GMT
Accept-Ranges: bytes
Content-Length: 255
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
www.mylivinghope.com.my/wp-content/uploads/leaflet-maps-marker-icons/hostel_0star.png
103.6.198.170200 OK 561 B URL HTTP/1.1 www.mylivinghope.com.my/wp-content/uploads/leaflet-maps-marker-icons/hostel_0star.png
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type PNG image data, 32 x 37, 8-bit/color RGBA, non-interlaced\012- data
Hash b9924a0ea918e9e759f10dc5aa0a08b4
acd3cef30e9774d322161be86c9153c15cb6546e
73350a9bb5c867fff7c11627b873866b96dcd2493b0136d13e04e58e72d4d015
GET /wp-content/uploads/leaflet-maps-marker-icons/hostel_0star.png HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:09:00 GMT
Server: Apache
Last-Modified: Thu, 09 Oct 2014 06:14:13 GMT
Accept-Ranges: bytes
Content-Length: 561
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
www.mylivinghope.com.my/wp-content/plugins/leaflet-maps-marker/leaflet-dist/images/marker-shadow.png
103.6.198.170200 OK 1.6 kB URL HTTP/1.1 www.mylivinghope.com.my/wp-content/plugins/leaflet-maps-marker/leaflet-dist/images/marker-shadow.png
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type PNG image data, 51 x 37, 8-bit/color RGBA, non-interlaced\012- data
Hash 068bc9a5bfadc9d1d61a0fd1f6d0e19b
0313f1f868ef969d628a32fd2330697ca8723383
90a4689ec744325f419642e397f96083218c0b33c592aaf76b4ea09e7e4a77bc
GET /wp-content/plugins/leaflet-maps-marker/leaflet-dist/images/marker-shadow.png HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:09:00 GMT
Server: Apache
Last-Modified: Wed, 22 Jan 2020 08:28:11 GMT
Accept-Ranges: bytes
Content-Length: 1621
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
www.mylivinghope.com.my/wp-content/plugins/ninja-forms/assets/js/min/front-end.js?ver=3.4.34.2
103.6.198.170200 OK 199 kB URL HTTP/1.1 www.mylivinghope.com.my/wp-content/plugins/ninja-forms/assets/js/min/front-end.js?ver=3.4.34.2
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
Size 199 kB (199431 bytes)
Hash 9ffb2666a22b12647aee661fcac229ad
fc3de7a3beb1c59bdb42f98bb5dc547673e28033
1512d2ce8aa9ac1207222b630fc1f2424a8bc3697b6f54e132d0276defda7476
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ninja-forms/assets/js/min/front-end.js?ver=3.4.34.2 HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:08:59 GMT
Server: Apache
Last-Modified: Sat, 18 Jun 2022 08:36:19 GMT
Accept-Ranges: bytes
Content-Length: 199431
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.mylivinghope.com.my/wp-content/plugins/wp-content-copy-protector/images/warning.png
103.6.198.170200 OK 483 B URL HTTP/1.1 www.mylivinghope.com.my/wp-content/plugins/wp-content-copy-protector/images/warning.png
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash dc5512924fdd1df2b9158f11d6c07a05
eec0f42e817e235c12588a85f9145af0437b9b17
b0a8bd74d2a1ff5ccd5a18c2d054a74b9b260258861a358b5faddc4f8a62f703
GET /wp-content/plugins/wp-content-copy-protector/images/warning.png HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:09:00 GMT
Server: Apache
Last-Modified: Wed, 04 Dec 2019 01:52:19 GMT
Accept-Ranges: bytes
Content-Length: 483
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
www.mylivinghope.com.my/wp-content/uploads/2014/10/photo.jpg
103.6.198.170200 OK 15 kB URL HTTP/1.1 www.mylivinghope.com.my/wp-content/uploads/2014/10/photo.jpg
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 298x140, components 3\012- data
Hash f0be38c62e210086ae1667b80577a882
38f685573c266cc74a18271df74265e719ab3b33
680381d94bc191abbb012f10cbdc70d297e548578a2a2e2fc147defd8583f3a5
GET /wp-content/uploads/2014/10/photo.jpg HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:09:00 GMT
Server: Apache
Last-Modified: Fri, 10 Oct 2014 02:36:58 GMT
Accept-Ranges: bytes
Content-Length: 15113
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 12344cba8ea372638fb94d54bce4f53a
6d740d3888e44adcd15ed15d54be6eb366850fdf
f4506299f2f74657f7c63df8f9aec4a4bae870e008e3b81a30334f5428bd5efb
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=142934
Date: Wed, 14 Dec 2022 03:09:00 GMT
Etag: "6398c0b3-1d7"
Expires: Thu, 15 Dec 2022 18:51:14 GMT
Last-Modified: Tue, 13 Dec 2022 18:13:07 GMT
Server: ECS (nyb/1D07)
X-Cache: Miss from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: jNkQM6pgEXj9GEHemrykM1dqKOC_k9CX5RfVyoSY4CP4ErOjFcmLug==
Age: 2287
www.mylivinghope.com.my/wp-content/plugins/genesis-favicon-uploader/favicons/favicon.ico
103.6.198.170200 OK 1.4 kB URL HTTP/1.1 www.mylivinghope.com.my/wp-content/plugins/genesis-favicon-uploader/favicons/favicon.ico
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type MS Windows icon resource - 1 icon, 16x16, 8 bits/pixel\012- data
Hash bcdb8b0ab78c334487ab7c3452efd395
0b5d760a71f4b15e06518defab643ab81c0a7ce6
73450dcb4d52432846ff7d44459690a5c6bfb03047866aabaf1553176ed36d72
GET /wp-content/plugins/genesis-favicon-uploader/favicons/favicon.ico HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:09:00 GMT
Server: Apache
Last-Modified: Fri, 10 Oct 2014 04:00:55 GMT
Accept-Ranges: bytes
Content-Length: 1406
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/x-icon
l.sharethis.com/pview?event=pview&hostname=www.mylivinghope.com.my&location=%2Fefax%2Flogin.php&product=ga&url=http%3A%2F%2Fwww.mylivinghope.com.my%2Fefax%2Flogin.php&source=sharethis.js&fcmp=false&fcmpv2=false&has_segmentio=false&title=Page%20not%20found%20%E2%80%93%20My%20Living%20Hope%20(MM2H)%20Sdn%20Bhd&cms=unknown&publisher=anonymous&sop=true&version=st_sop.js&lang=en
35.158.40.17204 No Content 0 B URL HTTP/1.1 l.sharethis.com/pview?event=pview&hostname=www.mylivinghope.com.my&location=%2Fefax%2Flogin.php&product=ga&url=http%3A%2F%2Fwww.mylivinghope.com.my%2Fefax%2Flogin.php&source=sharethis.js&fcmp=false&fcmpv2=false&has_segmentio=false&title=Page%20not%20found%20%E2%80%93%20My%20Living%20Hope%20(MM2H)%20Sdn%20Bhd&cms=unknown&publisher=anonymous&sop=true&version=st_sop.js&lang=en
IP 35.158.40.17:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pview?event=pview&hostname=www.mylivinghope.com.my&location=%2Fefax%2Flogin.php&product=ga&url=http%3A%2F%2Fwww.mylivinghope.com.my%2Fefax%2Flogin.php&source=sharethis.js&fcmp=false&fcmpv2=false&has_segmentio=false&title=Page%20not%20found%20%E2%80%93%20My%20Living%20Hope%20(MM2H)%20Sdn%20Bhd&cms=unknown&publisher=anonymous&sop=true&version=st_sop.js&lang=en HTTP/1.1
Host: l.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.mylivinghope.com.my
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Origin: http://www.mylivinghope.com.my
Access-Control-Expose-Headers: stid
Access-Control-Max-Age: 1728000
Cache-Control: no-cache, no-store, must-revalidate
Date: Wed, 14 Dec 2022 03:09:00 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains;
Connection: keep-alive
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Dec 2022 21:48:03 GMT
expires: Fri, 08 Dec 2023 21:48:03 GMT
cache-control: public, max-age=31536000
age: 451258
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.mylivinghope.com.my/?ga_action=googleanalytics_get_script
103.6.198.170200 OK 493 B URL HTTP/1.1 www.mylivinghope.com.my/?ga_action=googleanalytics_get_script
IP 103.6.198.170:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type ASCII text, with CRLF line terminators
Hash cebb704270470cc0058bbf0b6fc7b812
2c40cf07c3e1dc3ddd41b19e736a358557f45041
8cb7542c602527fe2530273eea80e8e260a4ce9fa0c7d82a61a13ccda4e28108
Analyzer Verdict Alert fortinet Malware
POST /?ga_action=googleanalytics_get_script HTTP/1.1
Host: www.mylivinghope.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 33
Origin: http://www.mylivinghope.com.my
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/efax/login.php
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 03:09:00 GMT
Server: Apache
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0ee0c469970516bf6d255dafb0bd1225
884a347c2db0f220ce35dae3a64b1525ddbc3fa4
ff8285413954679ea64613c021380586779d139c7e0ccb6595f9efe3f1ae7e1a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 03:09:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0ee0c469970516bf6d255dafb0bd1225
884a347c2db0f220ce35dae3a64b1525ddbc3fa4
ff8285413954679ea64613c021380586779d139c7e0ccb6595f9efe3f1ae7e1a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 03:09:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/j/collect?v=1&_v=j98&a=1441816549&t=pageview&_s=1&dl=http%3A%2F%2Fwww.mylivinghope.com.my%2Fefax%2Flogin.php&ul=en-us&de=UTF-8&dt=Page%20not%20found%20%E2%80%93%20My%20Living%20Hope%20(MM2H)%20Sdn%20Bhd&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=607545785&gjid=44475101&cid=2100353951.1670987340&tid=UA-2099520-49&_gid=131664852.1670987340&_r=1&_slc=1&z=1305587067
142.250.74.110200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=1441816549&t=pageview&_s=1&dl=http%3A%2F%2Fwww.mylivinghope.com.my%2Fefax%2Flogin.php&ul=en-us&de=UTF-8&dt=Page%20not%20found%20%E2%80%93%20My%20Living%20Hope%20(MM2H)%20Sdn%20Bhd&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=607545785&gjid=44475101&cid=2100353951.1670987340&tid=UA-2099520-49&_gid=131664852.1670987340&_r=1&_slc=1&z=1305587067
IP 142.250.74.110:0
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j98&a=1441816549&t=pageview&_s=1&dl=http%3A%2F%2Fwww.mylivinghope.com.my%2Fefax%2Flogin.php&ul=en-us&de=UTF-8&dt=Page%20not%20found%20%E2%80%93%20My%20Living%20Hope%20(MM2H)%20Sdn%20Bhd&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=607545785&gjid=44475101&cid=2100353951.1670987340&tid=UA-2099520-49&_gid=131664852.1670987340&_r=1&_slc=1&z=1305587067 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://www.mylivinghope.com.my
Connection: keep-alive
Referer: http://www.mylivinghope.com.my/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://www.mylivinghope.com.my
date: Wed, 14 Dec 2022 03:09:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0ca3741-7de7-489c-9d32-963748da31ce.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0ca3741-7de7-489c-9d32-963748da31ce.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8a1cf68fc0b78db85fd7e6f08cb74233
7374f9065239670ef563fee52f973cc23dd19833
e4493b517b402d9ea4f239d2913cbd9f316ae3f1e0c5e79c62c457c060f18b27
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0ca3741-7de7-489c-9d32-963748da31ce.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7250
x-amzn-requestid: 8211d14a-d8fa-4f4c-a14f-60e830199a47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dGpKqHw7IAMFiwg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6398ef10-392d8f374cafe054471d1ff6;Sampled=0
x-amzn-remapped-date: Tue, 13 Dec 2022 21:30:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: rkKcDnbranYxXDZ2cN8ABILj8WH1q_6HHVRWrYRMsLh5WbkbXamKNw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Dec 2022 21:53:16 GMT
age: 18946
etag: "7374f9065239670ef563fee52f973cc23dd19833"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2