firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 30 Sep 2022 12:54:59 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: X0EjXddMm8g0t4ZaAdaxforLSsvIfgMPrhRyjsFLJzhPHB0tzAnufg==
Age: 2480
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 60e4edea7b5f4d19f3547a3bb2d5df57
3ee076bab4da3416c2c5808f730cb316c28baef7
763e2dadfdd286a51327cd2000ca335e30cd0b9b7267875d22ca33f7556ba200
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763E2DADFDD286A51327CD2000CA335E30CD0B9B7267875D22CA33F7556BA200"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15171
Expires: Fri, 30 Sep 2022 17:49:10 GMT
Date: Fri, 30 Sep 2022 13:36:19 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 30 Sep 2022 05:28:28 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: oEr8ZT02GvRXlA-9QSABwHflRQesfX4ZuZWGq-a_kqGFvlVGCzwVuw==
age: 29272
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 13:36:19 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Fri, 30 Sep 2022 13:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Fri, 30 Sep 2022 14:03:36 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: byxqosFe9UYPi0-Nk2sRM_duLheSYiW3Kf4ZiWgCgUvI_8kztA7g6w==
Age: 406
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d1be374a29f94481ff2c021e35f4eaa0
e05e92d94b5e434e9935e560fd8dc33bdc393aea
37a5132d2183f5c3bfaac5c89df691fea72cac4423110df88bdeb231f430deee
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6455
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 30 Sep 2022 13:36:19 GMT
Last-Modified: Fri, 30 Sep 2022 11:48:44 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
44.237.51.86101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.237.51.86:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: of43ZYeebJbJz3gNMJ7O/g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Xw/8CLFEIEDsckyI2DZadsHwa9o=
gt-max.com.my/dolordolor/voluistiscontactum-906312
162.253.17.45301 Moved Permanently 0 B URL HTTP/1.1 gt-max.com.my/dolordolor/voluistiscontactum-906312
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /dolordolor/voluistiscontactum-906312 HTTP/1.1
Host: gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 301 Moved Permanently
Date: Fri, 30 Sep 2022 13:36:19 GMT
Server: Apache
Pragma: no-cache
Expires: Fri, 30 Sep 2022 14:36:20 GMT
Cache-Control: max-age=3600
Location: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 47f245f9a098439e59436f81d4c03415
950b3eadfd6fc7f859130fa2c63934c6ccd49889
25f075effbd8acded8f38d69ea17f673de3e197b635274d4c52411ef577fe8e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11473
Expires: Fri, 30 Sep 2022 16:47:34 GMT
Date: Fri, 30 Sep 2022 13:36:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 47f245f9a098439e59436f81d4c03415
950b3eadfd6fc7f859130fa2c63934c6ccd49889
25f075effbd8acded8f38d69ea17f673de3e197b635274d4c52411ef577fe8e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11473
Expires: Fri, 30 Sep 2022 16:47:34 GMT
Date: Fri, 30 Sep 2022 13:36:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 47f245f9a098439e59436f81d4c03415
950b3eadfd6fc7f859130fa2c63934c6ccd49889
25f075effbd8acded8f38d69ea17f673de3e197b635274d4c52411ef577fe8e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11473
Expires: Fri, 30 Sep 2022 16:47:34 GMT
Date: Fri, 30 Sep 2022 13:36:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 47f245f9a098439e59436f81d4c03415
950b3eadfd6fc7f859130fa2c63934c6ccd49889
25f075effbd8acded8f38d69ea17f673de3e197b635274d4c52411ef577fe8e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11473
Expires: Fri, 30 Sep 2022 16:47:34 GMT
Date: Fri, 30 Sep 2022 13:36:21 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9789cead-4e6c-4a12-9b45-25d0efd38fc9.png
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9789cead-4e6c-4a12-9b45-25d0efd38fc9.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1389b1d624b44706c7a6f6b7eb769241
78b798f2cfa7db13a6b5ca2ca2783bece5e77d5d
c3c2526b98be06fc7e793e1150bacde2a7bd718e29a851a6e6992e8d84333790
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9789cead-4e6c-4a12-9b45-25d0efd38fc9.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16011
x-amzn-requestid: d58dfdcd-383a-45ac-8ae2-2b97f016b6a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZPdbjFy1IAMF84A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63360f7c-1ca9707a5e5087fd769d9ab6;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 21:34:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: f7RrSV82yxUNWPUohKYX-_PBShMw7Qk82bepr3WAGkzHTjLR-gIXBA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 22:53:34 GMT
age: 52967
etag: "78b798f2cfa7db13a6b5ca2ca2783bece5e77d5d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d906d66-cd90-4963-827e-8d0564c0f787.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d906d66-cd90-4963-827e-8d0564c0f787.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 13a12db696bc2bf6a6ea2f48f4c1428e
3481dce8ab711111fc8863d88bee1a887cfd43ac
6dae6c9e5de4146e1f528a36a1795225c9731385f13927fc001fb3f9842fe8f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d906d66-cd90-4963-827e-8d0564c0f787.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5106
x-amzn-requestid: a906507c-8820-489c-9978-7d0fd026c862
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZPd5PE0MIAMF3DA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6336103a-49eb3879088f17bc01d177c7;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 21:38:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: aeTAqh8D5whTHS3seyOUj7QCNaITUh2ekHG8vNWZlpSeAnqPuFzmcQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 21:46:34 GMT
age: 56987
etag: "3481dce8ab711111fc8863d88bee1a887cfd43ac"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59da9c68-5ffa-4dc1-adf8-645278cd60ca.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59da9c68-5ffa-4dc1-adf8-645278cd60ca.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 139a144f8cb04ac8aae65f4bad1473e7
265840b2d2fc6eb764cc6409b05deee8d77a19c2
6e0f01b6bdd5a92e92c7b29a6172a2900c68900afd2abba948940621252e0fd8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59da9c68-5ffa-4dc1-adf8-645278cd60ca.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10380
x-amzn-requestid: 35ee2a77-159c-4bb4-a825-98c638398586
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZPdZYHsTIAMFQNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63360f6f-4f68073432bcea371c7b8f03;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 21:34:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: IENB0e-e13ywHJKPgyLWn1bGPMMxFLUu3cIUcREjGhxDEMROEL1jBg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 22:24:00 GMT
age: 54741
etag: "265840b2d2fc6eb764cc6409b05deee8d77a19c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2449b320-e517-4241-b0f6-96786331ba6a.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2449b320-e517-4241-b0f6-96786331ba6a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 13d4e2dbae75f2029d80396e4c8117a3
c5846663f31f7fbced777f0499caac638cc3c28b
ac0fb122c4f6857e9268faeacb387fcb1b1fb87cdfedb163574d3df451cf0447
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2449b320-e517-4241-b0f6-96786331ba6a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11881
x-amzn-requestid: 4a49c2e9-a894-44df-b9a6-d02a9edc38a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZPd5QHvbIAMF5uw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6336103b-127426cc20c4d17713c2df6f;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 21:38:03 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: MTAjo2QX69HPqJoco4O5yhUsTyCQ7M29-TOAHaUdA4XykJJnyR62bQ==
via: 1.1 7256fedee68a59a508800e0dda035348.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 21:47:06 GMT
etag: "c5846663f31f7fbced777f0499caac638cc3c28b"
content-type: image/jpeg
age: 56955
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98c23448-09e3-4c05-86c5-dafbe6ca8a0e.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98c23448-09e3-4c05-86c5-dafbe6ca8a0e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d21d2bdcedbd619a80017054076319f9
86dd3bf133e9eddf8852f39e1ee695ee599ac886
fc5672d5a8e9c6a5ec531f7ba05b65c192af37edf6c3a48105df3685de44ec0d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98c23448-09e3-4c05-86c5-dafbe6ca8a0e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8059
x-amzn-requestid: f8bb9e4b-9f3c-47ba-8524-de16155e536d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZNepwHAVoAMFvNA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633544a4-5d884e29378635b60592b618;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 07:09:24 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: NMiKZSkokVXNTV76vsVJ7VEu6YFfT9MqL7tHtT8CwZq0BwTbXOpm6Q==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 04:58:47 GMT
age: 31054
etag: "86dd3bf133e9eddf8852f39e1ee695ee599ac886"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99f26bb4-2c5c-44ef-86d3-90fd05ec1ce0.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99f26bb4-2c5c-44ef-86d3-90fd05ec1ce0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 36ae9444071dd70dcf86802c370ffda9
44cc19b21912d07f82a88af5b2fa6d3e370459bf
99984d108bf31d733414f7f1352e17225ac21ac2dbfb4b1e7fa7ae80e5b6b822
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99f26bb4-2c5c-44ef-86d3-90fd05ec1ce0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9654
x-amzn-requestid: 7961f184-9476-43de-bf35-8ccb50ee1760
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGVYsHA6oAMFvRA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63326904-05f567f7606462ac44f89987;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 03:07:48 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: XaB4TwXv4xy0Sy3dncNYZWEPEnHY5BkEHR7fZDK59APYkzH9DPdT7A==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 03:46:05 GMT
age: 35416
etag: "44cc19b21912d07f82a88af5b2fa6d3e370459bf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.gt-max.com.my/dolordolor/voluistiscontactum-906312
162.253.17.45404 Not Found 38 kB URL HTTP/1.1 www.gt-max.com.my/dolordolor/voluistiscontactum-906312
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1327), with CRLF, LF line terminators
Hash efc7e978c50ccc41f0f2361806c1f733
6e03cd38df2ebb248edca3c8cbeaacd21a4ba485
21cc8b16f5aa4fc46f6cce36ebbe76ed26e8dbe7ca6826d2cb53f1aa21154bd7
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /dolordolor/voluistiscontactum-906312 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 404 Not Found
Date: Fri, 30 Sep 2022 13:36:21 GMT
Server: Apache
Link: <https://www.gt-max.com.my/wp-json/>; rel="https://api.w.org/"
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14; path=/
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 86e0fe14ac54b7b9131a460fd65d73fd
49ec80657f4183e2ad7e906583b94cbf48a94809
9f30a1437666225f096d72763cf89a4e5ae9e5f501ffed4becc51b08c515cf6f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 30 Sep 2022 13:36:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 86e0fe14ac54b7b9131a460fd65d73fd
49ec80657f4183e2ad7e906583b94cbf48a94809
9f30a1437666225f096d72763cf89a4e5ae9e5f501ffed4becc51b08c515cf6f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 30 Sep 2022 13:36:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 86e0fe14ac54b7b9131a460fd65d73fd
49ec80657f4183e2ad7e906583b94cbf48a94809
9f30a1437666225f096d72763cf89a4e5ae9e5f501ffed4becc51b08c515cf6f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 30 Sep 2022 13:36:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 6ac97060c75238244bfa94c6c6f63e40
9a640270fe62b82a8d971472f28a150e23f3a0c2
f7c0b8dc16c4a08e73772eadf8303a509768acf9d70f132c1c1db899534d4bab
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 30 Sep 2022 13:36:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-5KGXB5B
142.250.74.72200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-5KGXB5B
IP 142.250.74.72:0
File type ASCII text, with very long lines (2039)
Hash dff08a2b90410634b66d32325e84ea0d
110af927df71824f11cf02d1703135131be844e9
034a73c51f32bfe105098b23b0db554046408c4ed522126f07b70419defe0a5e
GET /gtm.js?id=GTM-5KGXB5B HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 30 Sep 2022 13:36:22 GMT
expires: Fri, 30 Sep 2022 13:36:22 GMT
cache-control: private, max-age=900
last-modified: Fri, 30 Sep 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43852
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gt-max.com.my/wp-content/plugins/loading-page/css/loading-page.css?ver=free-1.0.15
162.253.17.45200 OK 25 B URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/loading-page/css/loading-page.css?ver=free-1.0.15
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with no line terminators
Hash a01f4df5783f4e7c6ec80a6864560414
8a63fdd410a8cebd0f910446978c4b75dd135e33
3b10c2fb50a6b36c2ba9731f91bef31b6c2cea73b6d42415ca1fe51b31d4ab05
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/loading-page/css/loading-page.css?ver=free-1.0.15 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:22 GMT
Server: Apache
Last-Modified: Fri, 09 Sep 2016 04:07:58 GMT
Accept-Ranges: bytes
Content-Length: 25
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.gt-max.com.my/wp-content/themes/bridge/css/font-awesome/css/font-awesome.min.css?ver=4.4.28
162.253.17.45200 OK 28 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/css/font-awesome/css/font-awesome.min.css?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (27303)
Hash 4fbd15cb6047af93373f4f895639c8bf
12d6861075de8e293265ff6ff03b1f3adcb44c76
ddd92f10ad162c7449eff0acaf40598c05b1111739587edb75e5326b6697c5d5
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/css/font-awesome/css/font-awesome.min.css?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:22 GMT
Server: Apache
Last-Modified: Tue, 01 Mar 2016 03:35:22 GMT
Accept-Ranges: bytes
Content-Length: 27466
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.gt-max.com.my/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.5
162.253.17.45200 OK 1.1 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.5
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
Hash c056c27890e4d1fa87f12539d2af6111
ee45f6596ca7d4a126931519f771dc6f63f00e2e
82495902b9907f8f6d1c48a79547469486241260e6f466caeb068aaa0bed388b
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.5 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:22 GMT
Server: Apache
Last-Modified: Tue, 30 Aug 2016 08:45:38 GMT
Accept-Ranges: bytes
Content-Length: 1147
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.gt-max.com.my/wp-content/plugins/read-more-without-refresh/style.css?ver=4.4.28
162.253.17.45200 OK 336 B URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/read-more-without-refresh/style.css?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with CRLF line terminators
Hash 14413a1dd7e793d69b035a3e01f6f5ff
db50d56aca043f8ee0a57656e2dce8520dbc9e54
1e8c8447529ee22d2d727ea485cde5f5f857974baece84754b51433e03bb3602
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/read-more-without-refresh/style.css?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:22 GMT
Server: Apache
Last-Modified: Wed, 22 Nov 2017 09:04:50 GMT
Accept-Ranges: bytes
Content-Length: 336
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 86e0fe14ac54b7b9131a460fd65d73fd
49ec80657f4183e2ad7e906583b94cbf48a94809
9f30a1437666225f096d72763cf89a4e5ae9e5f501ffed4becc51b08c515cf6f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 30 Sep 2022 13:36:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gt-max.com.my/wp-content/themes/bridge/style.css?ver=4.4.28
162.253.17.45200 OK 530 B URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/style.css?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
Hash 8b39541af6798b127416690ac14cf1e4
288f69db1ea06e3cf21555af56fe95737a5aa1b2
beb19c0722672807884894da9b20ce9ec4f8c7ce37311481f6ba28be5bbb07d8
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/style.css?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:22 GMT
Server: Apache
Last-Modified: Mon, 27 Jul 2015 04:12:38 GMT
Accept-Ranges: bytes
Content-Length: 530
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 6ac97060c75238244bfa94c6c6f63e40
9a640270fe62b82a8d971472f28a150e23f3a0c2
f7c0b8dc16c4a08e73772eadf8303a509768acf9d70f132c1c1db899534d4bab
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 30 Sep 2022 13:36:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gt-max.com.my/wp-content/themes/bridge/css/elegant-icons/style.min.css?ver=4.4.28
162.253.17.45200 OK 22 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/css/elegant-icons/style.min.css?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (21769), with no line terminators
Hash c1be61e1bfe62ea4f8dabdf0247ef113
61c71aceb8cbff107ff2c9b882b0ce99e351f972
58405a25c52e36b20127a9e73f1f4656f908a82747636a4b187f30a817bedfb9
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/css/elegant-icons/style.min.css?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:22 GMT
Server: Apache
Last-Modified: Tue, 19 May 2015 05:00:36 GMT
Accept-Ranges: bytes
Content-Length: 21769
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.gt-max.com.my/wp-content/plugins/LayerSlider/static/css/layerslider.css?ver=5.6.5
162.253.17.45200 OK 16 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/LayerSlider/static/css/layerslider.css?ver=5.6.5
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
Hash 8fa51ca4b04b369d34d5a12c57cb9c03
cbe76ba934117f3c7d2dc779851b5787f02e6b0c
5e1c8334f722e390a1f1f45d896eb36668c5339478ce9c929dbfefb3ff1625db
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/LayerSlider/static/css/layerslider.css?ver=5.6.5 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:22 GMT
Server: Apache
Last-Modified: Mon, 08 Aug 2016 05:11:24 GMT
Accept-Ranges: bytes
Content-Length: 15708
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.gt-max.com.my/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.2.6
162.253.17.45200 OK 37 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.2.6
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type Unicode text, UTF-8 text, with very long lines (352), with CRLF line terminators
Hash c43284692a7fb5aa19eca02125ada4aa
417daed9bc7a45c59016d5c178028b129c6711e6
6c7ad6a03a369892ee71f103d074dc82b7dcfdbcbc69892b41d6b0f4170c6a75
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.2.6 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:22 GMT
Server: Apache
Last-Modified: Tue, 09 Aug 2016 10:13:42 GMT
Accept-Ranges: bytes
Content-Length: 36724
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.gt-max.com.my/wp-content/themes/bridge/css/print.css?ver=4.4.28
162.253.17.45200 OK 611 B URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/css/print.css?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
Hash 4fe1858c1704416657e621748bc941d7
6d0d5510be2b52e9d90a8e9127ed5dd4238fc4e0
1e8bd08c9d4eb7ca4342601a24788f8a0f6994ec3e60faef2045cb9094bc0ae7
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/css/print.css?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:22 GMT
Server: Apache
Last-Modified: Tue, 01 Mar 2016 03:35:24 GMT
Accept-Ranges: bytes
Content-Length: 611
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.gt-max.com.my/wp-content/themes/bridge/css/style_dynamic.css?ver=1484801134
162.253.17.45200 OK 20 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/css/style_dynamic.css?ver=1484801134
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
Hash fccb20f555e0cd4a8b42acfe2b37ac5c
583c23ed1ec3d2149408f8dd240987aba70cc725
29959a740c7e5da42fe336496477dd98cb59f4eeb1b57ecf1121c78f6734ee12
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/css/style_dynamic.css?ver=1484801134 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:23 GMT
Server: Apache
Last-Modified: Thu, 19 Jan 2017 04:45:34 GMT
Accept-Ranges: bytes
Content-Length: 19606
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
www.gt-max.com.my/wp-content/themes/bridge/css/style_dynamic_responsive.css?ver=1484801134
162.253.17.45200 OK 428 B URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/css/style_dynamic_responsive.css?ver=1484801134
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
Hash 9a37e5abcd34d0fc8aebe6a0b5e194a6
4c186efadd05ad0fb958eb19c59b2482b849112a
4815b71ce1c7bd4b02f3bc39bd2b0a4800604eb0ff172123687cb98d2b7fe4c5
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/css/style_dynamic_responsive.css?ver=1484801134 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:23 GMT
Server: Apache
Last-Modified: Thu, 19 Jan 2017 04:45:34 GMT
Accept-Ranges: bytes
Content-Length: 428
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.gt-max.com.my/wp-content/themes/bridge/css/custom_css.css?ver=1496224858
162.253.17.45200 OK 1.4 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/css/custom_css.css?ver=1496224858
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with CRLF line terminators
Hash e439db4c22a3d1ba1b7bf743efe4a43e
f26fceac25902c0f5d581942da3fb3060734d123
3f348962c6c4e33057f7ffbeecf9082c8a6112c88f4f1716546cac37f44d84f5
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/css/custom_css.css?ver=1496224858 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:23 GMT
Server: Apache
Last-Modified: Wed, 31 May 2017 10:00:58 GMT
Accept-Ranges: bytes
Content-Length: 1437
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
www.gt-max.com.my/wp-content/themes/bridge/css/linea-icons/style.css?ver=4.4.28
162.253.17.45200 OK 78 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/css/linea-icons/style.css?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (369)
Hash 18513056c4a412491127bc1cee55d372
e851a7961f873dac6eb973327db29c571bd2a571
b5cad6a450f4007b75ff83016582537871825a08c94ce709efb80947db45d40c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/css/linea-icons/style.css?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:22 GMT
Server: Apache
Last-Modified: Tue, 01 Mar 2016 03:35:24 GMT
Accept-Ranges: bytes
Content-Length: 78080
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.gt-max.com.my/wp-content/themes/bridge/css/responsive.min.css?ver=4.4.28
162.253.17.45200 OK 70 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/css/responsive.min.css?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (65536), with no line terminators
Hash d96ac638b82c00f887f18db0ea84e0de
7beb25a45161d7b03fb3c50de26f2ca61af7c22a
de3864ea05f4ab23350c664dfdfc7668b1d871e799f18be53ff09917e7aebd40
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/css/responsive.min.css?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:23 GMT
Server: Apache
Last-Modified: Fri, 18 Mar 2016 12:27:50 GMT
Accept-Ranges: bytes
Content-Length: 70296
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.gt-max.com.my/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=4.4.28
162.253.17.45200 OK 28 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (27639), with no line terminators
Hash 36ea4805809e6b690c2f5126a0808297
4531470deab3efd0b8499f29a323a1b45f0efced
4354449ab7a164ef5486d12020f3bc403b8ff104a8da73e9f9332106b86b061c
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:23 GMT
Server: Apache
Last-Modified: Thu, 11 Aug 2016 10:18:15 GMT
Accept-Ranges: bytes
Content-Length: 27639
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.gt-max.com.my/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1
162.253.17.45200 OK 7.2 kB URL HTTP/1.1 www.gt-max.com.my/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (7085), with CRLF line terminators
Hash 512b871a2830e44259bc3ce3343afcd0
875bce76a77590c3c438bbc6e014b39c23c8c88d
c4d24f6b27cc7ceea56fbec786bb1f486fdad9a1f998f760f76d1f44671e105c
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:23 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 03:37:05 GMT
Accept-Ranges: bytes
Content-Length: 7200
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/plugins/loading-page/loading-screens/bar/loading-bar.js?ver=free-1.0.15
162.253.17.45200 OK 4.3 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/loading-page/loading-screens/bar/loading-bar.js?ver=free-1.0.15
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (808), with CRLF line terminators
Hash cf3a8e1de3c52b822474f511461a7e7b
266430c93dc7121cec7bb3529f388300105c113b
534d9ab0fa7e932cd7e0f1fc7dd28da517754e37da613435fcac51121114959d
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/loading-page/loading-screens/bar/loading-bar.js?ver=free-1.0.15 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:23 GMT
Server: Apache
Last-Modified: Fri, 09 Sep 2016 04:07:58 GMT
Accept-Ranges: bytes
Content-Length: 4282
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-includes/js/jquery/jquery.js?ver=1.11.3
162.253.17.45200 OK 96 kB URL HTTP/1.1 www.gt-max.com.my/wp-includes/js/jquery/jquery.js?ver=1.11.3
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (32038)
Hash 207abeb83412721d556faeba36e00822
c06b7f0b1526037bcdc6639244c9692e2ef3ebdd
ca32702f36da9bdbaa5463f8e3db9b18d82f3ce8a630d18e8bde6b30a2582d20
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.js?ver=1.11.3 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:23 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 03:37:05 GMT
Accept-Ranges: bytes
Content-Length: 95977
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/plugins/loading-page/js/loading-page.js?ver=free-1.0.15
162.253.17.45200 OK 7.1 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/loading-page/js/loading-page.js?ver=free-1.0.15
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (800), with CRLF line terminators
Hash a202b7357bdbdeb28300a9ff0cd7e157
6d09f92d17f85704b7e0f2b6f0c4e27fcb0a366a
1b4f53c097b9d75772e7d0ac5c3aa00eb27bd8325e24005616de2e32e26f9062
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/loading-page/js/loading-page.js?ver=free-1.0.15 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:23 GMT
Server: Apache
Last-Modified: Fri, 09 Sep 2016 04:07:58 GMT
Accept-Ranges: bytes
Content-Length: 7073
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/plugins/mpc-massive/assets/css/mpc-styles.css?ver=4.4.28
162.253.17.45200 OK 242 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/mpc-massive/assets/css/mpc-styles.css?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (1218), with CRLF, LF line terminators
Size 242 kB (242131 bytes)
Hash f7e4e6f8be2a34d5f2930487edff91b6
cd0372fdfd282b99538a330ae7a7162c76cf4f64
a2e450e1281ddb8bc4ea74b5e03d928930a89289e4da678cc9f98bea1c0ff9d8
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/mpc-massive/assets/css/mpc-styles.css?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:23 GMT
Server: Apache
Last-Modified: Thu, 11 Aug 2016 10:09:38 GMT
Accept-Ranges: bytes
Content-Length: 242131
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
www.gt-max.com.my/wp-content/plugins/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js?ver=5.6.5
162.253.17.45200 OK 55 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js?ver=5.6.5
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (54828)
Hash 3d81841e1ed912e135c63c6861282783
c0db7a624c19697c74fd9ae8589b42a49de75345
83f9ea6b747fc693cca4fd07bd57b4509a71d918d0d896fe751032538a0d9e05
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js?ver=5.6.5 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:23 GMT
Server: Apache
Last-Modified: Fri, 20 May 2022 08:19:41 GMT
Accept-Ranges: bytes
Content-Length: 55008
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/plugins/LayerSlider/static/js/layerslider.transitions.js?ver=5.6.5
162.253.17.45200 OK 21 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/LayerSlider/static/js/layerslider.transitions.js?ver=5.6.5
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (20890)
Hash 25af1efa0acf7a0d70916c1f7a472d26
f07e4205c5466cc4f3d1dbeac9b89fc9d6992354
070c461a79b8c6433c8158d86f1eed1ff8d646cb413dd6c6c5a2cf5117af92b5
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/LayerSlider/static/js/layerslider.transitions.js?ver=5.6.5 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:23 GMT
Server: Apache
Last-Modified: Fri, 20 May 2022 08:19:41 GMT
Accept-Ranges: bytes
Content-Length: 21096
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/plugins/LayerSlider/static/js/greensock.js?ver=1.11.8
162.253.17.45200 OK 60 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/LayerSlider/static/js/greensock.js?ver=1.11.8
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (59249)
Hash de63b1ca579e71ff732f3e894df61474
d9ba5023ff6f5a1a92ec3d983232bd2b31e026b7
2c2d25a951c1a1019f0f1497414ba6d3aec9ce0d224e73edead357867105551a
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/LayerSlider/static/js/greensock.js?ver=1.11.8 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:23 GMT
Server: Apache
Last-Modified: Fri, 20 May 2022 08:19:42 GMT
Accept-Ranges: bytes
Content-Length: 59710
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/themes/bridge/css/stylesheet.min.css?ver=4.4.28
162.253.17.45200 OK 467 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/css/stylesheet.min.css?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (65536), with no line terminators
Size 467 kB (466747 bytes)
Hash 13f7e286358f15c4d9cce804a7cb8ef1
53f036c3f30b3bd2350d16a866c64c61b259572a
65d2376ec4ab4086106ade835bd336f1f723630f5365af2a33f313f3fe184b00
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/css/stylesheet.min.css?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:22 GMT
Server: Apache
Last-Modified: Tue, 28 Feb 2017 06:47:44 GMT
Accept-Ranges: bytes
Content-Length: 466747
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.gt-max.com.my/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.2.6
162.253.17.45200 OK 108 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.2.6
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (26857), with CRLF line terminators
Size 108 kB (107944 bytes)
Hash 73b407bf24c022b18133bd0859e00cf0
18b631a4a098ff7861e3bb029b458a298e65fc25
54045339476b08b0d1e3c3d419f49d76a5a3c2722fffec9936a48a53535a334f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.2.6 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:24 GMT
Server: Apache
Last-Modified: Tue, 09 Aug 2016 10:13:42 GMT
Accept-Ranges: bytes
Content-Length: 107944
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.2.6
162.253.17.45200 OK 57 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.2.6
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (32010), with CRLF line terminators
Hash f733324b68be07c1ea725ece8e057920
d4ec942b98a3e2d8725b66fae22c76a140338cdc
0dbea55942e08bb603d32036f7f0ca7c0a5e4210d7c2153c5245f45e7e004d74
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.2.6 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:24 GMT
Server: Apache
Last-Modified: Tue, 09 Aug 2016 10:13:42 GMT
Accept-Ranges: bytes
Content-Length: 57219
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20
162.253.17.45200 OK 15 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (14901)
Hash aebecb6cf308b95cb4eafdfb11ca0e8b
8c3145a001c774fcef0d34b7d543fb2e78d7614a
ba46104959f8f1af97df586a98066207f595c5d08de4da7d11cc3b721b844dfd
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:24 GMT
Server: Apache
Last-Modified: Fri, 20 May 2022 08:22:27 GMT
Accept-Ranges: bytes
Content-Length: 15249
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=4.11.2.1
162.253.17.45200 OK 728 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=4.11.2.1
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (65536), with no line terminators
Size 728 kB (728081 bytes)
Hash 75524a37b1fdfa976ca2a302619812ec
84631a5d9affdcdb4e57af64cc04f107e89bc02a
1eb8b0b461886b58a6d7a704ffc72912c4268363deecd5c963ed266c0fd709fd
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=4.11.2.1 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:23 GMT
Server: Apache
Last-Modified: Mon, 08 Aug 2016 05:11:24 GMT
Accept-Ranges: bytes
Content-Length: 728081
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.gt-max.com.my/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.5
162.253.17.45200 OK 12 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.5
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
Hash c22eca3acf8f551997cc7d62fdef3cb4
5b3924d28cc6303294b48d6b3df84ee6a5a3f53d
f1a0de00318eaab520336f7d1273a8c4a237680c7caaa7995b4dfc8a70ae6a74
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.5 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:24 GMT
Server: Apache
Last-Modified: Fri, 20 May 2022 08:22:27 GMT
Accept-Ranges: bytes
Content-Length: 12245
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/uploads/intense-cache/css/intense_e16956ea1ca0454cc75a2a657b829eecf70bac06.css?ver=2.6.2
162.253.17.45200 OK 104 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/uploads/intense-cache/css/intense_e16956ea1ca0454cc75a2a657b829eecf70bac06.css?ver=2.6.2
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (28732)
Size 104 kB (104512 bytes)
Hash 2890173fffad206ead8d2ce3811a729f
6cb5e50c616bbd80db84f8f9030bc16035e86d65
c920cab810305c9edb916ad2fd3e38da974d699fd4bf0ff40fd55b95b12fdbdd
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/intense-cache/css/intense_e16956ea1ca0454cc75a2a657b829eecf70bac06.css?ver=2.6.2 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:24 GMT
Server: Apache
Last-Modified: Tue, 14 Nov 2017 07:11:37 GMT
Accept-Ranges: bytes
Content-Length: 104512
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
www.gt-max.com.my/wp-content/themes/bridge/js/lemmon-slider.min.js?ver=4.4.28
162.253.17.45200 OK 6.9 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/js/lemmon-slider.min.js?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (6856), with no line terminators
Hash feed31de6e5113aeb1a38a7333c680a5
24807c5f8c30d30275eb9b5643277094131d4a23
24546fbd92e92a8812ebcdd1f1701996ab0d9a5d42d545dda72b99218bc0ee4c
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/lemmon-slider.min.js?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:24 GMT
Server: Apache
Last-Modified: Tue, 19 Apr 2016 05:56:18 GMT
Accept-Ranges: bytes
Content-Length: 6856
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/themes/bridge/js/jquery.carouFredSel-6.2.1.min.js?ver=4.4.28
162.253.17.45200 OK 63 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/js/jquery.carouFredSel-6.2.1.min.js?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (63430), with no line terminators
Hash db68aedb745e91b81d9fee6c188e7d2c
aba6056cd51c6ad56759bc7cc0c9589693877f68
7fe5cc7c8868ab139022873594dc83f5784415ab8125050d0c6fa4ab7feba4d4
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/jquery.carouFredSel-6.2.1.min.js?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:24 GMT
Server: Apache
Last-Modified: Tue, 19 Apr 2016 05:56:18 GMT
Accept-Ranges: bytes
Content-Length: 63430
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/themes/bridge/js/jquery.fullPage.min.js?ver=4.4.28
162.253.17.45200 OK 24 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/js/jquery.fullPage.min.js?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (1184)
Hash 95d944f9533e1075f40a3c13f225592a
67f925f90b49befc5daa025a245618b91331eba0
dfdc71d779c0e203a8b86dba6a508b341f3b4bf744a85ca3b567ee92cdabd767
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/js/jquery.fullPage.min.js?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:24 GMT
Server: Apache
Last-Modified: Tue, 19 Apr 2016 05:56:18 GMT
Accept-Ranges: bytes
Content-Length: 24476
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/themes/bridge/js/jquery.mousewheel.min.js?ver=4.4.28
162.253.17.45200 OK 2.2 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/js/jquery.mousewheel.min.js?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (1020)
Hash 8fbf1bdab2ff68a0db6ce07a0c782b8f
d4d17d9625f67ef7fa7dbf3c89c7834cb991af7e
23766e27975b78092e5b4cfb02a36179092c392c7b057f462ca622522a5628d0
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/jquery.mousewheel.min.js?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:24 GMT
Server: Apache
Last-Modified: Tue, 19 Apr 2016 05:56:18 GMT
Accept-Ranges: bytes
Content-Length: 2189
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8045f030f1424d43155236ac74193734
9f5d53209a1b442a342d7d59986e4817024e2fcd
211c2261b71490e21be41166efa63b59b01ed4188f80c7e095b748abf1f0ae68
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 30 Sep 2022 13:36:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8045f030f1424d43155236ac74193734
9f5d53209a1b442a342d7d59986e4817024e2fcd
211c2261b71490e21be41166efa63b59b01ed4188f80c7e095b748abf1f0ae68
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 30 Sep 2022 13:36:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
142.250.74.163200 OK 46 kB URL HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Hash c1fd378f54921c75e4ae1821e7b8fff6
2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826
GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gt-max.com.my
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Sep 2022 21:13:12 GMT
expires: Tue, 26 Sep 2023 21:13:12 GMT
cache-control: public, max-age=31536000
age: 318192
last-modified: Mon, 18 Jul 2022 19:58:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
142.250.74.163200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gt-max.com.my
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 29 Sep 2022 16:40:18 GMT
expires: Fri, 29 Sep 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 75366
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8045f030f1424d43155236ac74193734
9f5d53209a1b442a342d7d59986e4817024e2fcd
211c2261b71490e21be41166efa63b59b01ed4188f80c7e095b748abf1f0ae68
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 30 Sep 2022 13:36:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gt-max.com.my/wp-content/themes/bridge/js/jquery.touchSwipe.min.js?ver=4.4.28
162.253.17.45200 OK 13 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/js/jquery.touchSwipe.min.js?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (12214)
Hash 98e293d2448bff5e46f76ec0e37c6619
ee25c75d4e0d539d4c7610e79d65d6fad7d4f260
55be37cd1b8799b088da6dd7175184163c07aa32c068e57e4b9f2662f00c4637
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/jquery.touchSwipe.min.js?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:24 GMT
Server: Apache
Last-Modified: Tue, 19 Apr 2016 05:56:18 GMT
Accept-Ranges: bytes
Content-Length: 12602
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=4.11.2.1
162.253.17.45200 OK 36 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=4.11.2.1
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (32003)
Hash 15b4d846a287e24935e149305b58299c
956ec60dfe5de4b22893ae6ccaba14b0c72303c6
cf8977dd38385cbd274c67eec52fe71a122182ac041743182e75e7ff6ca05ea3
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=4.11.2.1 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:24 GMT
Server: Apache
Last-Modified: Mon, 08 Aug 2016 05:11:24 GMT
Accept-Ranges: bytes
Content-Length: 36421
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/themes/bridge/js/default_dynamic.js?ver=1484801134
162.253.17.45200 OK 2.4 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/js/default_dynamic.js?ver=1484801134
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (797)
Hash abf4593a78f0049c04d36677ae7414f7
dc0767ca070876ceb27251a9ea4bba7bcea0a88e
0ec48352b89d492f1e6a80973512bec1ec13f225c6a26d30e1cb99c5d622bfcc
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/default_dynamic.js?ver=1484801134 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:24 GMT
Server: Apache
Last-Modified: Thu, 19 Jan 2017 04:45:34 GMT
Accept-Ranges: bytes
Content-Length: 2403
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/themes/bridge/js/default.min.js?ver=4.4.28
162.253.17.45200 OK 192 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/js/default.min.js?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (65536), with no line terminators
Size 192 kB (192250 bytes)
Hash 59f45eda3e59ebdae3e4c99a15178548
8eefdc3269147a70778e88f42e827e19210b5c1c
c728a29ca3bf237f9a222f57ca924aba65ad97145850d27bb20ef15c393cca03
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/default.min.js?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:24 GMT
Server: Apache
Last-Modified: Tue, 19 Apr 2016 05:56:18 GMT
Accept-Ranges: bytes
Content-Length: 192250
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/themes/bridge/js/custom_js.js?ver=1484801134
162.253.17.45200 OK 882 B URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/js/custom_js.js?ver=1484801134
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (797)
Hash 8feea0c70ddfac8143cba0ce88753a7f
9b8a129553339eee8170ef89b2f80dbdd89a25d3
b9a3e155a0eec0039876a45a773eb994cec42c9776f44fe069732823c327058f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/custom_js.js?ver=1484801134 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:24 GMT
Server: Apache
Last-Modified: Thu, 19 Jan 2017 04:45:34 GMT
Accept-Ranges: bytes
Content-Length: 882
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/themes/bridge/js/plugins.js?ver=4.4.28
162.253.17.45200 OK 705 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/js/plugins.js?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type HTML document, ASCII text, with very long lines (45166)
Size 705 kB (705243 bytes)
Hash b02fe5e6c6fb0ffa67fce9f49e805bb5
ac01a2f72fdd408d87d9c50b215ecccac07dba2a
f473176763805693d163fbb8dd3f9bb39d3f21e4044004112b82738aba7a5027
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins.js?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:24 GMT
Server: Apache
Last-Modified: Tue, 19 Apr 2016 05:56:18 GMT
Accept-Ranges: bytes
Content-Length: 705243
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
gt-max.com.my/wp-content/uploads/2016/10/Untitled-1_03.png
162.253.17.45200 OK 16 kB URL HTTP/1.1 gt-max.com.my/wp-content/uploads/2016/10/Untitled-1_03.png
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type PNG image data, 305 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 9a8b62c631ae8d8f0e6535cf748d3ef5
8ee4d364e30df30e03a655c1e44781c301da8720
e902007f567edd5f2452113e9fdc085c323d4d4f877c6d2ba0122f4db28794cc
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2016/10/Untitled-1_03.png HTTP/1.1
Host: gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:24 GMT
Server: Apache
Last-Modified: Fri, 28 Oct 2016 07:50:37 GMT
Accept-Ranges: bytes
Content-Length: 15631
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
www.gt-max.com.my/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=4.11.2.1
162.253.17.45200 OK 20 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=4.11.2.1
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (19872), with no line terminators
Hash 2bfd6a82520596c36b6f06578f7b9490
3fae64b94fcb2f1b0fcec51956930b1e6ebf08e9
1c2f863ff5fed7ff92c027a939b56984565dc1ede472031ba6ee70cdcdf29d92
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=4.11.2.1 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:24 GMT
Server: Apache
Last-Modified: Mon, 08 Aug 2016 05:11:24 GMT
Accept-Ranges: bytes
Content-Length: 19872
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/plugins/vertical-center/js/vertical-center-public.js?ver=1.1.1
162.253.17.45200 OK 5.1 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/vertical-center/js/vertical-center-public.js?ver=1.1.1
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (797), with CRLF line terminators
Hash 602b8d0180f2aa435ecc78517d4a6536
94064e0986b17b017164dd92d211fa1da1f8e0a0
cfeed6d12ec2c71d5b4cd97c3283a1fd559df14a8e00639b6e3571ad6490429e
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/vertical-center/js/vertical-center-public.js?ver=1.1.1 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:24 GMT
Server: Apache
Last-Modified: Fri, 09 Sep 2016 01:22:52 GMT
Accept-Ranges: bytes
Content-Length: 5121
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-includes/js/wp-embed.min.js?ver=4.4.28
162.253.17.45200 OK 1.4 kB URL HTTP/1.1 www.gt-max.com.my/wp-includes/js/wp-embed.min.js?ver=4.4.28
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type ASCII text, with very long lines (1384), with no line terminators
Hash 2a9a2f64687bc94523f4c50c9335cc0f
33c874cafe5df3ea8c8756be8642f675f9cf5289
4114f99c5992bab27f43ae5e3c7c196ce63fac0b4b43915af913c1a30ca1f3da
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/wp-embed.min.js?ver=4.4.28 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:24 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 03:37:05 GMT
Accept-Ranges: bytes
Content-Length: 1384
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
www.gt-max.com.my/wp-content/plugins/intense/assets/js/modernizr.min.js?ver=2.6.2
162.253.17.45200 OK 9.4 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/intense/assets/js/modernizr.min.js?ver=2.6.2
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type HTML document text\012- HTML document, ASCII text, with very long lines (9109)
Hash 5b1afce9b64221dfd0e82c9878dd4250
79856efc7f1bc35d667d7a844f1daf5593b6e51b
98b82228257e1d7f79bff99a3d3d3144bfe1dcc1cbf693657af1f940869e21f9
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/intense/assets/js/modernizr.min.js?ver=2.6.2 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:24 GMT
Server: Apache
Last-Modified: Fri, 20 May 2022 08:25:24 GMT
Accept-Ranges: bytes
Content-Length: 9383
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
gt-max.com.my/wp-content/uploads/2016/11/linked-in.png
162.253.17.45200 OK 1.8 kB URL HTTP/1.1 gt-max.com.my/wp-content/uploads/2016/11/linked-in.png
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type PNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash cefbcfbc24376ddfa89546d053d76b6d
86eaa65e7c829a1ce27021a151743bc7dcd05073
23dc69226910bc243c7ce3e0137da2a5eab3bc27415422edced925d515475ca7
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2016/11/linked-in.png HTTP/1.1
Host: gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:24 GMT
Server: Apache
Last-Modified: Wed, 09 Nov 2016 09:29:31 GMT
Accept-Ranges: bytes
Content-Length: 1845
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
gt-max.com.my/wp-content/uploads/2016/11/twitter.png
162.253.17.45200 OK 2.1 kB URL HTTP/1.1 gt-max.com.my/wp-content/uploads/2016/11/twitter.png
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type PNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash e476a0c4f190f1870570a636a1b7f089
a2cb9c2acdffcfc360fecd24fea7a748c26818e3
9a9b8cdc6641b3106a71cedceb0bcd3cc8dcfd693e06b4bb8067ee13a1d80e6f
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2016/11/twitter.png HTTP/1.1
Host: gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:24 GMT
Server: Apache
Last-Modified: Wed, 09 Nov 2016 09:21:09 GMT
Accept-Ranges: bytes
Content-Length: 2068
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
gt-max.com.my/wp-content/uploads/2016/11/facebook.png
162.253.17.45200 OK 1.8 kB URL HTTP/1.1 gt-max.com.my/wp-content/uploads/2016/11/facebook.png
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type PNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash 07829585cbf1ed20bec2ff7516b59220
3e42ea195cdf3c57f359c68ea6d6abba180e4220
907694ed08d96cd75598810d4c6f4b7c8282f9e79fe0c715168e5c843b7545b7
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2016/11/facebook.png HTTP/1.1
Host: gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:24 GMT
Server: Apache
Last-Modified: Wed, 09 Nov 2016 09:21:11 GMT
Accept-Ranges: bytes
Content-Length: 1816
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
gt-max.com.my/wp-content/uploads/2016/11/alibaba.png
162.253.17.45200 OK 2.9 kB URL HTTP/1.1 gt-max.com.my/wp-content/uploads/2016/11/alibaba.png
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type PNG image data, 43 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash 0675b5e38dd9cd1687680255e0b052c9
e04f8409abfbaa9f2ca5c1833c1295fc742fbdd9
37188445f554d519807074cfb80468c0bd5d03d804f16821a1379096efc701cf
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2016/11/alibaba.png HTTP/1.1
Host: gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:24 GMT
Server: Apache
Last-Modified: Wed, 09 Nov 2016 09:21:10 GMT
Accept-Ranges: bytes
Content-Length: 2859
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
gt-max.com.my/wp-content/uploads/2016/12/social_youtube.png
162.253.17.45200 OK 1.6 kB URL HTTP/1.1 gt-max.com.my/wp-content/uploads/2016/12/social_youtube.png
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type PNG image data, 26 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash f47f1c7e24aa6662dd48a091e92aa94c
27211c6c2d15a9c22057b3174ea4f65b677e73f5
a3085f413533de78e93adbec3414625ebe8b6bf72f6889da535e69f0981c1c17
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2016/12/social_youtube.png HTTP/1.1
Host: gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:24 GMT
Server: Apache
Last-Modified: Thu, 15 Dec 2016 09:58:39 GMT
Accept-Ranges: bytes
Content-Length: 1596
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
www.gt-max.com.my/wp-content/themes/bridge/css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.5.0
162.253.17.45200 OK 67 kB URL HTTP/1.1 www.gt-max.com.my/wp-content/themes/bridge/css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.5.0
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
File type Web Open Font Format (Version 2), TrueType, length 66624, version 4.262\012- data
Hash db812d8a70a4e88e888744c1c9a27e89
638c652d623280a58144f93e7b552c66d1667a11
ff82aeed6b9bb6701696c84d1b223d2e682eb78c89117a438ce6cfea8c498995
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.5.0 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.gt-max.com.my/wp-content/themes/bridge/css/font-awesome/css/font-awesome.min.css?ver=4.4.28
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:24 GMT
Server: Apache
Last-Modified: Tue, 01 Mar 2016 03:35:24 GMT
Accept-Ranges: bytes
Content-Length: 66624
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: font/woff2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Fri, 30 Sep 2022 12:41:09 GMT
expires: Fri, 30 Sep 2022 14:41:09 GMT
cache-control: public, max-age=7200
age: 3316
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gt-max.com.my/favicon.ico
162.253.17.45200 OK 0 B URL HTTP/1.1 www.gt-max.com.my/favicon.ico
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:25 GMT
Server: Apache
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/vnd.microsoft.icon
fonts.googleapis.com/css?family=Raleway:100,200,300,400,500,600,700,800,900,300italic,400italic|Raleway:100,200,300,400,500,600,700,800,900,300italic,400italic|Montserrat:100,200,300,400,500,600,700,800,900,300italic,400italic|Poppins:100,200,300,400,500,600,700,800,900,300italic,400italic&subset=latin,latin-ext
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Raleway:100,200,300,400,500,600,700,800,900,300italic,400italic|Raleway:100,200,300,400,500,600,700,800,900,300italic,400italic|Montserrat:100,200,300,400,500,600,700,800,900,300italic,400italic|Poppins:100,200,300,400,500,600,700,800,900,300italic,400italic&subset=latin,latin-ext
IP 142.250.74.10:0
GET /css?family=Raleway:100,200,300,400,500,600,700,800,900,300italic,400italic|Raleway:100,200,300,400,500,600,700,800,900,300italic,400italic|Montserrat:100,200,300,400,500,600,700,800,900,300italic,400italic|Poppins:100,200,300,400,500,600,700,800,900,300italic,400italic&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 30 Sep 2022 13:36:22 GMT
date: Fri, 30 Sep 2022 13:36:22 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato:100,300,regular,700,900%7COpen+Sans:300%7CIndie+Flower:regular%7COswald:300,regular,700&subset=latin%2Clatin-ext
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lato:100,300,regular,700,900%7COpen+Sans:300%7CIndie+Flower:regular%7COswald:300,regular,700&subset=latin%2Clatin-ext
IP 142.250.74.10:0
GET /css?family=Lato:100,300,regular,700,900%7COpen+Sans:300%7CIndie+Flower:regular%7COswald:300,regular,700&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 30 Sep 2022 13:36:22 GMT
date: Fri, 30 Sep 2022 13:36:22 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gt-max.com.my/wp-content/plugins/mpc-massive/assets/js/mpc-vendor.min.js?ver=2.1
162.253.17.45200 OK 0 B URL HTTP/1.1 www.gt-max.com.my/wp-content/plugins/mpc-massive/assets/js/mpc-vendor.min.js?ver=2.1
IP 162.253.17.45:0
ASN #45352 IP ServerOne Solutions Sdn Bhd
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/mpc-massive/assets/js/mpc-vendor.min.js?ver=2.1 HTTP/1.1
Host: www.gt-max.com.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/dolordolor/voluistiscontactum-906312
Cookie: PHPSESSID=1ub11c59urj7p4v0ej9812so14
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 13:36:24 GMT
Server: Apache
Last-Modified: Thu, 11 Aug 2016 10:09:38 GMT
Accept-Ranges: bytes
Content-Length: 82653
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
fonts.googleapis.com/css?family=Roboto%3A300&ver=1.0.0
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A300&ver=1.0.0
IP 142.250.74.10:0
GET /css?family=Roboto%3A300&ver=1.0.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gt-max.com.my/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 30 Sep 2022 13:36:22 GMT
date: Fri, 30 Sep 2022 13:36:22 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2