Report - nicepro.com.my/wp-content/plugins/three-column-screen-layout/access/online/chase/dash.php

Report Overview

Submitted URL
nicepro.com.my/wp-content/plugins/three-column-screen-layout/access/online/chase/dash.php
IP
43.225.109.4
ASN
#132198 iCore Technology Sdn Bhd
Submitted
2023-01-24 01:56:52
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
nicepro.com.my	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	420 B	452 B	43.225.109.4
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	341 B	797 B	93.184.220.29
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	63 kB	34.120.237.76
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	491 B	746 B	142.250.74.106
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.33.119.27
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.83.112.49
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.1 kB	4.2 kB	142.250.74.131
www.nicepro.com.my	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6.2 kB	216 kB	43.225.109.4
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	499 B	28 kB	142.250.74.35

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-24	medium	nicepro.com.my/wp-content/plugins/three-column-screen-layout/access/online/chase/dash.php	Phishing
2023-01-24	medium	www.nicepro.com.my/wp-content/plugins/three-column-screen-layout/access/online/chase/dash.php	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (11)

	URL	Size	First Seen	Last Seen
	www.nicepro.com.my/wp-content/plugins/three-column-screen-layout/access/online/chase/dash.php	102 B	2023-03-07	2024-04-16
Pretty URL www.nicepro.com.my/wp-content/plugins/three-column-screen-layout/access/online/chase/dash.php IP 43.225.109.4 ASN #132198 iCore Technology Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:19 Last Seen2024-04-16 19:06:48 Times Seen6702 Hash 336b4b067dcb50351d5e2d7c92cf1631 9709109f27eaad0c5a1e50facc142f8f197a11b6 ef2f7f28db32250196ae2c8242611a7f7159c2a539dabd40b82071b1c07561c6 Loading...

	www.nicepro.com.my/wp-content/plugins/three-column-screen-layout/access/online/chase/dash.php	2.1 kB	2023-03-13	2023-03-13
Pretty URL www.nicepro.com.my/wp-content/plugins/three-column-screen-layout/access/online/chase/dash.php IP 43.225.109.4 ASN #132198 iCore Technology Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 06:29:46 Last Seen2023-03-13 06:29:46 Times Seen1 Hash f9e44211f6f11993a97f940ad45da71f e209f6c8267e2001222c05f66eb44d1e95e890e6 3e9452c90c930a1c64fa33f747530afb2ef5ecf11c2c2fe4c346e5c791f9ed6d Loading...

	www.nicepro.com.my/wp-content/themes/twentyseventeen/assets/js/global.js?ver=20190121	7.8 kB	2023-03-08	2023-12-02
Pretty URL www.nicepro.com.my/wp-content/themes/twentyseventeen/assets/js/global.js?ver=20190121 IP 43.225.109.4 ASN #132198 iCore Technology Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:10:00 Last Seen2023-12-02 17:20:06 Times Seen28 Hash 7d4a5dfc0120d1dc78864bf571a4ebde b9001d75cfc02f7951203ad8bb12b49420ae75b7 8847c3a0ed03ab5e084da676a82287873149dcaa19af9e5f6c7243de26786d3f Loading...

	www.nicepro.com.my/wp-includes/js/wp-emoji-release.min.js?ver=5.7.8	14 kB	2023-03-07	2024-04-16
Pretty URL www.nicepro.com.my/wp-includes/js/wp-emoji-release.min.js?ver=5.7.8 IP 43.225.109.4 ASN #132198 iCore Technology Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:17 Last Seen2024-04-16 15:28:55 Times Seen7884 Hash eaa8641bcda2371f4024a71fbb67de3b 0e46c39d3821683c856605a82254115f9a6a7792 0c5f584d1ea2c3313dc8c55824c2a572d3cf2eae87c5ca62a58e598aec9ddb5c Loading...

	www.nicepro.com.my/wp-includes/js/jquery/jquery.min.js?ver=3.5.1	90 kB	2023-03-07	2024-04-16
Pretty URL www.nicepro.com.my/wp-includes/js/jquery/jquery.min.js?ver=3.5.1 IP 43.225.109.4 ASN #132198 iCore Technology Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:17 Last Seen2024-04-16 15:28:56 Times Seen9408 Hash b6f7093369a0e8b83703914ce731b13c d1889f5c173c2a4b20288f1f84758599afd346ef 60240d5a27ede94fd35fea44bd110b88c7d8cfc08127f032d13b0c622b8be827 Loading...

	www.nicepro.com.my/wp-content/plugins/three-column-screen-layout/access/online/chase/dash.php	479 B	2023-03-07	2024-04-14
Pretty URL www.nicepro.com.my/wp-content/plugins/three-column-screen-layout/access/online/chase/dash.php IP 43.225.109.4 ASN #132198 iCore Technology Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:48 Last Seen2024-04-14 11:11:26 Times Seen241 Hash 70c6e5c1d9224a4c11e37375b72dfb11 c64842e0a15dee6315bc7bceaf578fef16d665fb 2627f2a3369233cf5d1585a83d465e6374b3dd2fede49ff41d8d6b16c231abaf Loading...

	www.nicepro.com.my/wp-content/themes/twentyseventeen/assets/js/skip-link-focus-fix.js?ver=20161114	683 B	2023-03-07	2024-04-16
Pretty URL www.nicepro.com.my/wp-content/themes/twentyseventeen/assets/js/skip-link-focus-fix.js?ver=20161114 IP 43.225.109.4 ASN #132198 iCore Technology Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:28 Last Seen2024-04-16 08:32:45 Times Seen3265 Hash 75abd4cd8807b312f9f7faeb77ee774b e7b7a7ed06d0123ab8667a1d1eeb23de9f2bece7 ca424c0181141900220a19f998ffa7660380bc99ab99557ad458a083251f7034 Loading...

	www.nicepro.com.my/wp-content/themes/twentyseventeen/assets/js/navigation.js?ver=20161203	3.8 kB	2023-03-07	2024-04-14
Pretty URL www.nicepro.com.my/wp-content/themes/twentyseventeen/assets/js/navigation.js?ver=20161203 IP 43.225.109.4 ASN #132198 iCore Technology Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:28 Last Seen2024-04-14 11:11:27 Times Seen508 Hash 7528d405618574126935b33521c7b857 f125d71427c61fe576cbc90588b9d9d6327b8b59 1c98a8d8813ac4e8d1d79e5b5981c41ecce80bfdb7e55b70430e429690a0dbfe Loading...

	www.nicepro.com.my/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-16
Pretty URL www.nicepro.com.my/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 43.225.109.4 ASN #132198 iCore Technology Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-16 18:22:04 Times Seen68435 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	www.nicepro.com.my/wp-content/themes/twentyseventeen/assets/js/jquery.scrollTo.js?ver=2.1.2	5.8 kB	2023-03-07	2024-04-16
Pretty URL www.nicepro.com.my/wp-content/themes/twentyseventeen/assets/js/jquery.scrollTo.js?ver=2.1.2 IP 43.225.109.4 ASN #132198 iCore Technology Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:28 Last Seen2024-04-16 08:32:45 Times Seen1057 Hash 16fb1664ddebf663a909c51d40ad7914 2308baa783d4f9ba97f18ace350b7033dcc3c2d3 d6a2ec240f8adc5052cb9df96a33199c65de4c58457de2aca485120f70e53c89 Loading...

	www.nicepro.com.my/wp-includes/js/wp-embed.min.js?ver=5.7.8	1.4 kB	2023-03-07	2024-04-16
Pretty URL www.nicepro.com.my/wp-includes/js/wp-embed.min.js?ver=5.7.8 IP 43.225.109.4 ASN #132198 iCore Technology Sdn Bhd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:18 Last Seen2024-04-16 10:51:58 Times Seen6851 Hash 905225d5711b559d3092387d5ffbedbd 6f6c39075263bafb9e8c10f1b34a1a0f7ee03c9d 5be614bce53f767993a5f5f14a6badd6aae6bf3af7cbdbf4d31520de49e27991 Loading...

HTTP Transactions (42)

URL IP Response Size

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f416977a8d6dfaafb2dbfd0e68b871f8
dfa97bd829b03162de91c80133f2fde69b58a8d2
2c4d0fd1b7a6d398026a4817267adce203429acdd3defa44a879f0d945f392d5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2C4D0FD1B7A6D398026A4817267ADCE203429ACDD3DEFA44A879F0D945F392D5"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12994
Expires: Tue, 24 Jan 2023 05:33:15 GMT
Date: Tue, 24 Jan 2023 01:56:41 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
04512fea22644dc0d22c3f3a665f6645
0e213646abfc6d9560ba562362fd9e9115be8354
124d9534f75506b8e8c7535ee7295ac4e6cf5a8249a0edac6940839e56043181

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "124D9534F75506B8E8C7535EE7295AC4E6CF5A8249A0EDAC6940839E56043181"
Last-Modified: Mon, 23 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11912
Expires: Tue, 24 Jan 2023 05:15:13 GMT
Date: Tue, 24 Jan 2023 01:56:41 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 24 Jan 2023 01:42:40 GMT
content-type: application/json
age: 841
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
31c8743c2b5202ce0228bac5aad7229b
4b5eee8e1ecbfc992505003be58e265ff3a0ee0a
8b3b47ea29fc02b8a08ee2a340a05ab23e391f0eb3b8d6beb17516706bb2e94d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B3B47EA29FC02B8A08EE2A340A05AB23E391F0EB3B8D6BEB17516706BB2E94D"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12778
Expires: Tue, 24 Jan 2023 05:29:39 GMT
Date: Tue, 24 Jan 2023 01:56:41 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: j2H6ZkL2Zn6JeSP0RFqu2YRkT77kGsPRwMTgVEIBpV8FuFcxVeiTFTPQh7aFr3DHr/j598C1dDs=
x-amz-request-id: 9VDVCJCR4H6B3P46
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 24 Jan 2023 01:47:57 GMT
age: 524
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

nicepro.com.my/wp-content/plugins/three-column-screen-layout/access/online/chase/dash.php

43.225.109.4

301 Moved Permanently

0 B

URL HTTP/1.1
nicepro.com.my/wp-content/plugins/three-column-screen-layout/access/online/chase/dash.php
IP
43.225.109.4:0
ASN
#132198 iCore Technology Sdn Bhd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/access/online/chase/dash.php HTTP/1.1
Host: nicepro.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
x-redirect-by: WordPress
location: http://www.nicepro.com.my/wp-content/plugins/three-column-screen-layout/access/online/chase/dash.php
content-length: 0
date: Tue, 24 Jan 2023 01:56:41 GMT
server: LiteSpeed
vary: User-Agent

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 24 Jan 2023 01:56:41 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 24 Jan 2023 01:17:30 GMT
age: 2351
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
bb280016d8f12fa0a6ae86792ba89e67
53188091dab8e35ba20d2e341624777c2fb1536a
c28ed8dc9af97c7096f60030048432a41fb853e81ea91208e91493784d382bb9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4287
Cache-Control: max-age=116493
Content-Type: application/ocsp-response
Date: Tue, 24 Jan 2023 01:56:42 GMT
Etag: "63ce4e28-1d7"
Expires: Wed, 25 Jan 2023 10:18:15 GMT
Last-Modified: Mon, 23 Jan 2023 09:06:48 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

35.83.112.49

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.83.112.49:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: UvpIujfYj3vCmh/sHGz+SA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: /D2LatzJdL1JQR27ubJ1CAxuX4g=

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
831949834fce41f3fa8f544c99730c25
e98b70a86255cacf4cca405c7fd4bb05bf427bad
94cb9cfe8593a576362e5707670dfc3a46bda5cdc5d9b15d69b8b32b0c99cbe9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 24 Jan 2023 01:56:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.nicepro.com.my/wp-content/plugins/three-column-screen-layout/access/online/chase/dash.php

43.225.109.4

404 Not Found

21 kB

URL HTTP/1.1
www.nicepro.com.my/wp-content/plugins/three-column-screen-layout/access/online/chase/dash.php
IP
43.225.109.4:0
ASN
#132198 iCore Technology Sdn Bhd

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2562)
Size
21 kB (20857 bytes)
Hash
1d4ecf167ed2b24af50a3245a018be60
8bd753199bfb3abab5bb0ddc66bea0d5cfa0645f
040359c6f6645f6a4eea7194a4105ed34d881419b92116c25ce80bf8555ecdbc

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/access/online/chase/dash.php HTTP/1.1
Host: www.nicepro.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 404 Not Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <http://www.nicepro.com.my/index.php/wp-json/>; rel="https://api.w.org/"
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Tue, 24 Jan 2023 01:56:42 GMT
server: LiteSpeed

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
831949834fce41f3fa8f544c99730c25
e98b70a86255cacf4cca405c7fd4bb05bf427bad
94cb9cfe8593a576362e5707670dfc3a46bda5cdc5d9b15d69b8b32b0c99cbe9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 24 Jan 2023 01:56:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.nicepro.com.my/wp-content/themes/twentyseventeen/assets/js/skip-link-focus-fix.js?ver=20161114

43.225.109.4

200 OK

415 B

URL HTTP/1.1
www.nicepro.com.my/wp-content/themes/twentyseventeen/assets/js/skip-link-focus-fix.js?ver=20161114
IP
43.225.109.4:0
ASN
#132198 iCore Technology Sdn Bhd

File type
ASCII text
Size
415 B (415 bytes)
Hash
9aeb129f6eb95dc16628d680ecbeccdd
beb8f68dfe5bae6e200ca0093e25c2afc7a4d5e0
0b7e3bc19799d36e1e3b197f8a34e1140fdec33bde2e84300a61359b963d6130

HTTP Headers

GET /wp-content/themes/twentyseventeen/assets/js/skip-link-focus-fix.js?ver=20161114 HTTP/1.1
Host: www.nicepro.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.nicepro.com.my/wp-content/plugins/three-column-screen-layout/access/online/chase/dash.php

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 31 Jan 2023 01:56:42 GMT
content-type: application/javascript
last-modified: Thu, 06 May 2021 06:43:46 GMT
etag: "2ab-60939022-d276fb9ca1596472;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 415
date: Tue, 24 Jan 2023 01:56:42 GMT
server: LiteSpeed

www.nicepro.com.my/wp-content/themes/twentyseventeen/assets/js/navigation.js?ver=20161203

43.225.109.4

200 OK

1.2 kB

URL HTTP/1.1
www.nicepro.com.my/wp-content/themes/twentyseventeen/assets/js/navigation.js?ver=20161203
IP
43.225.109.4:0
ASN
#132198 iCore Technology Sdn Bhd

File type
assembler source, ASCII text
Size
1.2 kB (1162 bytes)
Hash
db594d3846af992ae87464413881e285
1f5b4ec1c982dff768418562f870e0eba90fee43
19ea6d2d285538ee738bbd39e687d0a04acc169638617612d77dd80b7952d2de

HTTP Headers

GET /wp-content/themes/twentyseventeen/assets/js/navigation.js?ver=20161203 HTTP/1.1
Host: www.nicepro.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.nicepro.com.my/wp-content/plugins/three-column-screen-layout/access/online/chase/dash.php

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 31 Jan 2023 01:56:42 GMT
content-type: application/javascript
last-modified: Thu, 06 May 2021 06:43:46 GMT
etag: "eb0-60939022-b4f5cddcf36623fc;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 1162
date: Tue, 24 Jan 2023 01:56:42 GMT
server: LiteSpeed

www.nicepro.com.my/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

43.225.109.4

200 OK

4.2 kB

URL HTTP/1.1
www.nicepro.com.my/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
43.225.109.4:0
ASN
#132198 iCore Technology Sdn Bhd

File type
ASCII text, with very long lines (11126)
Size
4.2 kB (4168 bytes)
Hash
c41f3a82e911de81a1817131069bc7d2
1e883290a0b794916cead41e5f0705716fd77b89
e9791f24770f098ea30bb4d25e2e10bdedb97132d0bbf7d2bd79eedac22efa27

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.nicepro.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.nicepro.com.my/wp-content/plugins/three-column-screen-layout/access/online/chase/dash.php

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 31 Jan 2023 01:56:42 GMT
content-type: application/javascript
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
etag: "2bd8-5fb4e3fe-cc9ba874b6d3040;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 4168
date: Tue, 24 Jan 2023 01:56:42 GMT
server: LiteSpeed

www.nicepro.com.my/wp-content/themes/twentyseventeen/assets/js/jquery.scrollTo.js?ver=2.1.2

43.225.109.4

200 OK

2.4 kB

URL HTTP/1.1
www.nicepro.com.my/wp-content/themes/twentyseventeen/assets/js/jquery.scrollTo.js?ver=2.1.2
IP
43.225.109.4:0
ASN
#132198 iCore Technology Sdn Bhd

File type
ASCII text
Size
2.4 kB (2411 bytes)
Hash
5d5f8597efe4e566211bba2ef9e273eb
eb51b3bfb2d75fb73fab68224980840cf06fd55a
08c2070ed9d1c7756f58c961b257ce5ea00b01256e8f23252581101bcb2362f4

HTTP Headers

GET /wp-content/themes/twentyseventeen/assets/js/jquery.scrollTo.js?ver=2.1.2 HTTP/1.1
Host: www.nicepro.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.nicepro.com.my/wp-content/plugins/three-column-screen-layout/access/online/chase/dash.php

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 31 Jan 2023 01:56:42 GMT
content-type: application/javascript
last-modified: Thu, 06 May 2021 06:43:46 GMT
etag: "16cc-60939022-5ab31ce7df9e9838;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 2411
date: Tue, 24 Jan 2023 01:56:42 GMT
server: LiteSpeed

www.nicepro.com.my/wp-content/themes/twentyseventeen/assets/js/global.js?ver=20190121

43.225.109.4

200 OK

2.6 kB

URL HTTP/1.1
www.nicepro.com.my/wp-content/themes/twentyseventeen/assets/js/global.js?ver=20190121
IP
43.225.109.4:0
ASN
#132198 iCore Technology Sdn Bhd

File type
ASCII text
Size
2.6 kB (2597 bytes)
Hash
d9b19a5433b71d8d25f6db1305bd62ba
70d90ea42a66d7774b5119bfac529278e73eecea
9998db4cffae38d509fbac4c00a6eb3f008adf05946c2865b13316d7586241ed

HTTP Headers

GET /wp-content/themes/twentyseventeen/assets/js/global.js?ver=20190121 HTTP/1.1
Host: www.nicepro.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.nicepro.com.my/wp-content/plugins/three-column-screen-layout/access/online/chase/dash.php

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 31 Jan 2023 01:56:42 GMT
content-type: application/javascript
last-modified: Thu, 06 May 2021 06:43:46 GMT
etag: "1e62-60939022-2078f140bcf1c480;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 2597
date: Tue, 24 Jan 2023 01:56:42 GMT
server: LiteSpeed

www.nicepro.com.my/wp-includes/js/wp-embed.min.js?ver=5.7.8

43.225.109.4

200 OK

769 B

URL HTTP/1.1
www.nicepro.com.my/wp-includes/js/wp-embed.min.js?ver=5.7.8
IP
43.225.109.4:0
ASN
#132198 iCore Technology Sdn Bhd

File type
ASCII text, with very long lines (1391)
Size
769 B (769 bytes)
Hash
82e67f050afdb38c20ac6eb305f97c17
df1349df76d66a9cf64377cf335c67c337d85470
5f6c33116e2106cd0f2f28c16062f1d584e74b8539a14ed45e17957634d71b7e

HTTP Headers

GET /wp-includes/js/wp-embed.min.js?ver=5.7.8 HTTP/1.1
Host: www.nicepro.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.nicepro.com.my/wp-content/plugins/three-column-screen-layout/access/online/chase/dash.php

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 31 Jan 2023 01:56:42 GMT
content-type: application/javascript
last-modified: Wed, 06 Jan 2021 15:29:24 GMT
etag: "592-5ff5d754-d5cf1e201fd08a64;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 769
date: Tue, 24 Jan 2023 01:56:42 GMT
server: LiteSpeed

www.nicepro.com.my/wp-includes/js/wp-emoji-release.min.js?ver=5.7.8

43.225.109.4

200 OK

4.7 kB

URL HTTP/1.1
www.nicepro.com.my/wp-includes/js/wp-emoji-release.min.js?ver=5.7.8
IP
43.225.109.4:0
ASN
#132198 iCore Technology Sdn Bhd

File type
ASCII text, with very long lines (11272)
Size
4.7 kB (4675 bytes)
Hash
7906f2ab533ff3db12c205828933a6e0
056ddd71154f5d35cb146b15198964d309d937d6
578faae5b8afee4694297209bef0f8d8485887e01d1dd25cfd2c40b0b0453826

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=5.7.8 HTTP/1.1
Host: www.nicepro.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.nicepro.com.my/wp-content/plugins/three-column-screen-layout/access/online/chase/dash.php

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 31 Jan 2023 01:56:42 GMT
content-type: application/javascript
last-modified: Wed, 06 Jan 2021 15:29:24 GMT
etag: "3795-5ff5d754-c201aa797e9050f8;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 4675
date: Tue, 24 Jan 2023 01:56:42 GMT
server: LiteSpeed

www.nicepro.com.my/wp-includes/css/dist/block-library/style.min.css?ver=5.7.8

43.225.109.4

200 OK

8.7 kB

URL HTTP/1.1
www.nicepro.com.my/wp-includes/css/dist/block-library/style.min.css?ver=5.7.8
IP
43.225.109.4:0
ASN
#132198 iCore Technology Sdn Bhd

File type
Unicode text, UTF-8 text, with very long lines (29677)
Size
8.7 kB (8661 bytes)
Hash
2e7b6fa0180e4d567428dd30c960eebc
1bd35052b9e1d854bad6d32948dff9195645cd32
d9f853e1f3f24d5adbda82207f517f16595440691ecb79b649159e839801627a

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=5.7.8 HTTP/1.1
Host: www.nicepro.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.nicepro.com.my/wp-content/plugins/three-column-screen-layout/access/online/chase/dash.php

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 31 Jan 2023 01:56:42 GMT
content-type: text/css
last-modified: Tue, 06 Apr 2021 23:50:28 GMT
etag: "e33b-606cf3c4-d1f3785fcd9d3094;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 8661
date: Tue, 24 Jan 2023 01:56:42 GMT
server: LiteSpeed

www.nicepro.com.my/wp-includes/css/dist/block-library/theme.min.css?ver=5.7.8

43.225.109.4

200 OK

743 B

URL HTTP/1.1
www.nicepro.com.my/wp-includes/css/dist/block-library/theme.min.css?ver=5.7.8
IP
43.225.109.4:0
ASN
#132198 iCore Technology Sdn Bhd

File type
ASCII text, with very long lines (2714), with no line terminators
Size
743 B (743 bytes)
Hash
40ba39c764d152410602fc10d1ce5fee
3fd5efc6f3833a009ce18baf1cc79ea91757c04a
cc937f61c6d9d3f5b47bebafba5b751158200426fca1dd802f19fdab7a26093a

HTTP Headers

GET /wp-includes/css/dist/block-library/theme.min.css?ver=5.7.8 HTTP/1.1
Host: www.nicepro.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.nicepro.com.my/wp-content/plugins/three-column-screen-layout/access/online/chase/dash.php

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 31 Jan 2023 01:56:42 GMT
content-type: text/css
last-modified: Tue, 02 Feb 2021 05:17:13 GMT
etag: "a9a-6018e059-84f6deed489e2323;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 743
date: Tue, 24 Jan 2023 01:56:42 GMT
server: LiteSpeed

www.nicepro.com.my/wp-content/themes/twentyseventeen/assets/css/blocks.css?ver=20190105

43.225.109.4

200 OK

1.9 kB

URL HTTP/1.1
www.nicepro.com.my/wp-content/themes/twentyseventeen/assets/css/blocks.css?ver=20190105
IP
43.225.109.4:0
ASN
#132198 iCore Technology Sdn Bhd

File type
ASCII text
Size
1.9 kB (1856 bytes)
Hash
71c7a1bf558b95022efaff778bcf44ed
274abcfad70b13a7c79f8365286ee13b39c5176a
da5cb602f2731ca86af0975bf7059968d2666ba0bd7dc2c9e4105c4bcdb323a5

HTTP Headers

GET /wp-content/themes/twentyseventeen/assets/css/blocks.css?ver=20190105 HTTP/1.1
Host: www.nicepro.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.nicepro.com.my/wp-content/plugins/three-column-screen-layout/access/online/chase/dash.php

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 31 Jan 2023 01:56:42 GMT
content-type: text/css
last-modified: Thu, 06 May 2021 06:43:46 GMT
etag: "280d-60939022-fd34ea7070131892;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 1856
date: Tue, 24 Jan 2023 01:56:42 GMT
server: LiteSpeed

www.nicepro.com.my/wp-content/themes/twentyseventeen/style.css?ver=20201208

43.225.109.4

200 OK

16 kB

URL HTTP/1.1
www.nicepro.com.my/wp-content/themes/twentyseventeen/style.css?ver=20201208
IP
43.225.109.4:0
ASN
#132198 iCore Technology Sdn Bhd

File type
Unicode text, UTF-8 text, with very long lines (463)
Size
16 kB (15855 bytes)
Hash
fb490feb68d8e1cde195883d49eddf66
1faf6661366f6f4ba9fbd295dd36f751ac1731d4
a7d9608e7efe633a2424361c862dbffc96cce4832cd7e3727819f810600f0722

HTTP Headers

GET /wp-content/themes/twentyseventeen/style.css?ver=20201208 HTTP/1.1
Host: www.nicepro.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.nicepro.com.my/wp-content/plugins/three-column-screen-layout/access/online/chase/dash.php

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 31 Jan 2023 01:56:42 GMT
content-type: text/css
last-modified: Thu, 06 May 2021 06:43:46 GMT
etag: "14821-60939022-4c64e4887e5862c0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 15855
date: Tue, 24 Jan 2023 01:56:42 GMT
server: LiteSpeed

www.nicepro.com.my/wp-includes/js/jquery/jquery.min.js?ver=3.5.1

43.225.109.4

200 OK

31 kB

URL HTTP/1.1
www.nicepro.com.my/wp-includes/js/jquery/jquery.min.js?ver=3.5.1
IP
43.225.109.4:0
ASN
#132198 iCore Technology Sdn Bhd

File type
ASCII text, with very long lines (65451)
Size
31 kB (30976 bytes)
Hash
04c6a3a52d7abe96844c0c40fb5c0eeb
253e27b112609e7a54af8fa7699b69d478a9b804
d684ec8a6f2bb53e785055572e415a0d206519fb7eb11968b39faa0ab8ecbf8c

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.5.1 HTTP/1.1
Host: www.nicepro.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.nicepro.com.my/wp-content/plugins/three-column-screen-layout/access/online/chase/dash.php

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 31 Jan 2023 01:56:42 GMT
content-type: application/javascript
last-modified: Wed, 07 Oct 2020 16:33:25 GMT
etag: "15d98-5f7dedd5-5e357222363227d6;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 30976
date: Tue, 24 Jan 2023 01:56:42 GMT
server: LiteSpeed

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
dd676ffc078f2b075fdc6d7606dc55b3
f57644c4be9f9521b2c45df5ee6eee87489819e1
b0ecd59482b2bc369555e2b94287c0de6eb874c9f52c15d2ecda112b8f3d2dba

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 24 Jan 2023 01:56:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
dd676ffc078f2b075fdc6d7606dc55b3
f57644c4be9f9521b2c45df5ee6eee87489819e1
b0ecd59482b2bc369555e2b94287c0de6eb874c9f52c15d2ecda112b8f3d2dba

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 24 Jan 2023 01:56:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
dd676ffc078f2b075fdc6d7606dc55b3
f57644c4be9f9521b2c45df5ee6eee87489819e1
b0ecd59482b2bc369555e2b94287c0de6eb874c9f52c15d2ecda112b8f3d2dba

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 24 Jan 2023 01:56:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/librefranklin/v13/jizDREVItHgc8qDIbSTKq4XkRiUf2zc.woff2

142.250.74.35

200 OK

27 kB

URL HTTP/2
fonts.gstatic.com/s/librefranklin/v13/jizDREVItHgc8qDIbSTKq4XkRiUf2zc.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 27268, version 1.0\012- data
Size
27 kB (27268 bytes)
Hash
cd83836443d658985c464d7021aa3e83
83a2915021f30c4ed54752b02e0c999e3c56798c
0c5b68b3ae23054815d89c5a2230ad7edf2d4b68732b4463d6be74cacb974055

HTTP Headers

GET /s/librefranklin/v13/jizDREVItHgc8qDIbSTKq4XkRiUf2zc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.nicepro.com.my
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27268
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 17 Jan 2023 18:04:41 GMT
expires: Wed, 17 Jan 2024 18:04:41 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:56:23 GMT
content-type: font/woff2
age: 546722
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
dd676ffc078f2b075fdc6d7606dc55b3
f57644c4be9f9521b2c45df5ee6eee87489819e1
b0ecd59482b2bc369555e2b94287c0de6eb874c9f52c15d2ecda112b8f3d2dba

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 24 Jan 2023 01:56:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d5528af26e629a9bfbf0c421146b921f
1e4f99245d551384bedfe9b59b5f9905127d87bf
989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12481
Expires: Tue, 24 Jan 2023 05:24:44 GMT
Date: Tue, 24 Jan 2023 01:56:43 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d5528af26e629a9bfbf0c421146b921f
1e4f99245d551384bedfe9b59b5f9905127d87bf
989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12481
Expires: Tue, 24 Jan 2023 05:24:44 GMT
Date: Tue, 24 Jan 2023 01:56:43 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d5528af26e629a9bfbf0c421146b921f
1e4f99245d551384bedfe9b59b5f9905127d87bf
989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12481
Expires: Tue, 24 Jan 2023 05:24:44 GMT
Date: Tue, 24 Jan 2023 01:56:43 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5a0f24f-7a25-4324-960c-9137142e8f70.jpeg

34.120.237.76

200 OK

7.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5a0f24f-7a25-4324-960c-9137142e8f70.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.8 kB (7757 bytes)
Hash
32dd7620701c91aba60f9602444a044d
326af548de3711b3af0e3271eae6409461520604
56d8f0647de678252f5a3b186e06e7d4668fd03e77e9c38ce3b3b4e476a5f5ca

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5a0f24f-7a25-4324-960c-9137142e8f70.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7757
x-amzn-requestid: e4c0d6ab-0eee-46b7-acde-3d0f9e743379
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fLzVbEXvIAMFfcA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ce3288-5f5a78bf26b1d94428b3b092;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 07:08:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 1r-d4VCpWW-lCTIPKfQQQA2SPkiBaCcFPegs0W0LBh_9tHJNq7zPQQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Mon, 23 Jan 2023 08:03:15 GMT
age: 64408
etag: "326af548de3711b3af0e3271eae6409461520604"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22e89ac2-c17b-48fc-854a-20b3464821b0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.5 kB (9498 bytes)
Hash
ff16db4df786db9d342f85c9f2c22150
aa5f8f439f86983a1abeb2d00f8186f6119989f2
c2c4bdbbbb56277f9929d21df9d3d8065112cd0e10e3086e58ad4e82cd872c8f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22e89ac2-c17b-48fc-854a-20b3464821b0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9498
x-amzn-requestid: d2eba35c-9dde-4cd1-b591-c7903e25d511
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fNzFTGHbIAMFtPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cefeee-2734aa4e2e32ad311984ec3b;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 21:41:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Xdm-3NhMlUf49o1YTuIF5ozyzizgnUOWjbd9PWEqVw0IuHRuaJWc8g==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 23 Jan 2023 22:18:27 GMT
age: 13096
etag: "aa5f8f439f86983a1abeb2d00f8186f6119989f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11918 bytes)
Hash
4cb7be12333fa7ea3353901b4b3215af
4b758cc432874384f330568177eef5a328d7e69a
d6f86c0ddbabd5c4fd7cee72ce4da62ccddd9d29139c9ab033bb1ab8425bae22

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11918
x-amzn-requestid: ff47dd24-004f-4cc7-acfb-283b2e751f23
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fEqxwEyWoAMF3gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb580b-1e95f74b0846080f75a757f6;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 03:12:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ntW_cYMwX6UWInGOxxPlwnV1AJh46X-hiLvwggRz9oa1Yno6jyE51g==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 23 Jan 2023 03:59:27 GMT
age: 79036
etag: "4b758cc432874384f330568177eef5a328d7e69a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2dc5df8f-c8d7-421e-9680-93a71ea7fda1.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7530 bytes)
Hash
a4921f814afc918b8f3d9923401a79b3
869ed812add4031aa4ef5334be86adc8d2bfef0a
aab1dc97717a519d593a0ec203f144a25cf3205f35a98e27af7fbae137fb4fdc

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2dc5df8f-c8d7-421e-9680-93a71ea7fda1.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7530
x-amzn-requestid: 0502461c-f5bf-40b9-b8cc-9288b9ed064e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fNz4SEapoAMFmkQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf0034-2b7bad604dbee1bf32c7d402;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 21:46:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EYSzvqd0HaWv468J26jaFiWbeKNLx1-CiBKu87cVbgXeVOn0blhShg==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 23 Jan 2023 22:19:21 GMT
age: 13042
etag: "869ed812add4031aa4ef5334be86adc8d2bfef0a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fff12ddfb-4fe7-4d85-ad39-db59b83fae4f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.9 kB (7893 bytes)
Hash
85887b23d54abef1d0e3dfb041ce193c
662bb7b736898c2890fbdcc27fc6a063bd4b19e1
0482829a2e6ae11fd3e358b48f51295d5d288bb4f814443200d39cc5b97063b7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fff12ddfb-4fe7-4d85-ad39-db59b83fae4f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7893
x-amzn-requestid: 0ef203a0-063e-4f2c-8da1-45a42b9b22c0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fNyxYECvoAMFxTg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cefe6f-30bf90df29dfd3b201106aeb;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 21:38:55 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: M6YzU8UKpvKLWfvrB18DuHaXcDor_ViNohwjcnIfwXlMBt2BWB1LEw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 23 Jan 2023 22:19:21 GMT
etag: "662bb7b736898c2890fbdcc27fc6a063bd4b19e1"
content-type: image/jpeg
age: 13042
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F987410c8-c934-4399-b586-efb1a5111e3b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12102 bytes)
Hash
c29ea116f715297b757c81dab8d1b5f3
6aae9d763dec58740cdfbfe46f6c69986b81414d
09afde8ec60dd1471e0ce33ed11ae4542b6813ad02e2abf037629a8ae5cfe240

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F987410c8-c934-4399-b586-efb1a5111e3b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12102
x-amzn-requestid: 54ba881d-c54b-49fa-a5b3-20b8d80f2a35
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fNyrNG1AIAMFxTg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cefe47-1acbf1c34a4dbfdd506d3383;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 21:38:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Ies4Oa0AiQaj9sEkpSZ-WZHMiRVYMV6IeLWDWq_G69cwBYi-RuKLGQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Mon, 23 Jan 2023 22:08:04 GMT
age: 13719
etag: "6aae9d763dec58740cdfbfe46f6c69986b81414d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.nicepro.com.my/favicon.ico

43.225.109.4

404 Not Found

244 B

URL HTTP/1.1
www.nicepro.com.my/favicon.ico
IP
43.225.109.4:0
ASN
#132198 iCore Technology Sdn Bhd

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
244 B (244 bytes)
Hash
498c9d3f7cc9bebb3f6d7ce9388a8716
a87443b789330f17c411b958318381beb3960aa2
6037f2a4cd3892ae8912bb881114efa8d60c35a6881fb2183581a9f049d4959a

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.nicepro.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.nicepro.com.my/wp-content/plugins/three-column-screen-layout/access/online/chase/dash.php

HTTP/1.1 404 Not Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 244
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Tue, 24 Jan 2023 01:56:43 GMT
server: LiteSpeed

www.nicepro.com.my/wp-content/themes/twentyseventeen/assets/images/header.jpg

43.225.109.4

200 OK

115 kB

URL HTTP/1.1
www.nicepro.com.my/wp-content/themes/twentyseventeen/assets/images/header.jpg
IP
43.225.109.4:0
ASN
#132198 iCore Technology Sdn Bhd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 2000x1200, components 3\012- data
Size
115 kB (114854 bytes)
Hash
8030438c0c9b454bad3e94357cc28b51
c185138e7304e999ad9c49bbd3818b686077bac3
4503af815b99a57b1d22ddd6a5dc893bef6af00baab04ff2b5bce2288e97320e

HTTP Headers

GET /wp-content/themes/twentyseventeen/assets/images/header.jpg HTTP/1.1
Host: www.nicepro.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.nicepro.com.my/wp-content/plugins/three-column-screen-layout/access/online/chase/dash.php

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 31 Jan 2023 01:56:43 GMT
content-type: image/jpeg
last-modified: Thu, 06 May 2021 06:43:46 GMT
etag: "1c0a6-60939022-919d32b15d62359b;;;"
accept-ranges: bytes
content-length: 114854
date: Tue, 24 Jan 2023 01:56:43 GMT
server: LiteSpeed
vary: User-Agent

fonts.googleapis.com/css?family=Libre+Franklin%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C800%2C800i&subset=latin%2Clatin-ext&display=fallback

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Libre+Franklin%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C800%2C800i&subset=latin%2Clatin-ext&display=fallback
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Libre+Franklin%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C800%2C800i&subset=latin%2Clatin-ext&display=fallback HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.nicepro.com.my/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 24 Jan 2023 01:56:42 GMT
date: Tue, 24 Jan 2023 01:56:42 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (11)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML