| | 195.216.243.155 | 302 Found | 230 B |
URL User Request GET HTTP/1.1IP195.216.243.155:443
CertificateIssuerGoGetSSL Subjectu.to Fingerprint5F:34:9B:CA:9B:9B:07:E0:65:E5:80:E3:F9:98:A2:66:0C:E3:59:A8 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 24 Oct 2024 23:59:59 GMT
File typeHTML document, ASCII text Hashe5b73782349f76514ea4d4925a57f4f6 bfba32ffb1cebdaccd14a5ee19e892daea0c28f2 41160407a7d19ef70cbf0c18606690092e39f2852e46fd42c4b7d67d7fe71e10
Analyzer | Verdict | Alert | OpenPhish | phishing | AT&T | PhishTank | phishing | Other |
GET /1jFBIA HTTP/1.1
Host: u.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.8.0
Date: Sat, 20 Apr 2024 16:19:49 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Set-Cookie: lng=en; path=/; expires=Sun, 20-Apr-2025 16:19:49 GMT; domain=.u.to;
Location: https://dzcqalqx.elementor.cloud/_/?preview_id=562
|
|
| dzcqalqx.elementor.cloud/wp-content/uploads/2023/12/att_hz_lg_lkp_rgb_pos-1024x504.jpg | 162.159.137.9 | 200 OK | 26 kB |
URL GET HTTP/3dzcqalqx.elementor.cloud/wp-content/uploads/2023/12/att_hz_lg_lkp_rgb_pos-1024x504.jpg IP162.159.137.9:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], progressive, precision 8, 1024x504, components 3 Hashb936323bdb2b4526ada2864637e01084 6c3130f3d264a5655f75da8777cc35df499c79d4 eb0249bb04590e2ebda75f8bf42d82dbe9aeb3c7d8cc8877e55f1e37e503b8bb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/12/att_hz_lg_lkp_rgb_pos-1024x504.jpg HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: image/jpeg
content-length: 26349
cf-ray: 8776755dfee0b4fa-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=315360000
etag: "656f381e-934d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 05 Dec 2023 14:47:58 GMT
vary: Accept-Encoding
cf-bgj: imgq:100,h2pri
cf-polished: origSize=37709
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=A_tzEO2mC0jNAPItYD0BwEHqvRq1Jd20cNnzfrk5ZoQ-1713629992-1.0.1.1-RlGud1OVAkKBXZVs9.cP_DkX1hlUf.93_LNkKsENGH65bnTDOoelewAA1Z1co5TMwKrsg6CV2CqPoX0UgQgMZA; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=bIoSewUAuNd911EqamiV_XogbL4kqDefETy5lh1B51Y-1713629992713-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
alt-svc: h3=":443"; ma=86400
|
|
| dzcqalqx.elementor.cloud/cdn-cgi/challenge-platform/scripts/jsd/main.js | 162.159.137.9 | 302 Found | 0 B |
URL GET HTTP/3dzcqalqx.elementor.cloud/cdn-cgi/challenge-platform/scripts/jsd/main.js IP162.159.137.9:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Sat, 20 Apr 2024 16:19:52 GMT
content-length: 0
access-control-allow-origin: *
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js
cache-control: max-age=300, public
set-cookie: __cf_bm=6gQmbcmdbGDUP_ru2LZjoyzTteT8X1MADBECYCT0tak-1713629992-1.0.1.1-NzCMcxcNqci24GE6GD9Fnj62ofVBE8OAAwXlEiPjU0VRRuLcIenq53Fufdfnt0T.OlviNFZo6uGY_kwCVDgvVw; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
x-powered-by: Elementor Cloud
server: cloudflare
cf-ray: 8776756018cfb4fa-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 | 216.58.207.227 | 200 OK | 24 kB |
URL GET HTTP/2fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 IP216.58.207.227:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 23580, version 1.0 Hashe1b3b5908c9cf23dfb2b9c52b9a023ab fcd4136085f2a03481d9958cc6793a5ed98e714c 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dzcqalqx.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:21:46 GMT
expires: Fri, 18 Apr 2025 17:21:46 GMT
cache-control: public, max-age=31536000
age: 169087
last-modified: Tue, 02 May 2023 15:17:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| dzcqalqx.elementor.cloud/cdn-cgi/challenge-platform/h/b/jsd/r/87767559ec307128 | 162.159.137.9 | 200 OK | 0 B |
URL POST HTTP/3dzcqalqx.elementor.cloud/cdn-cgi/challenge-platform/h/b/jsd/r/87767559ec307128 IP162.159.137.9:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /cdn-cgi/challenge-platform/h/b/jsd/r/87767559ec307128 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12197
Origin: https://dzcqalqx.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:53 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=9DP_OgnSAnGaV3CUnIzrM3o30Y4qOtkO8SU3eIgchAw-1713629993-1.0.1.1-4hg3.uPu0L2xOURVcD72mD85HmJwC0WWmBUx8QlvlORO61OE72sjpdq1a2bmp.WAsutYsR74a9yZXVwJUMoeBA; path=/; expires=Sun, 20-Apr-25 16:19:53 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
__cf_bm=2I7XOR4TaFw6p0wG05OGekxD7jHaYLICXWkFnpn7MBk-1713629993-1.0.1.1-LPjtmCO3ELKou4ov8txtSSglxO8x8DstFProJKwnigtkL7xHfnjUuH51YcvJ5NbBh5tK5WfLs1S6DwycSyb20A; path=/; expires=Sat, 20-Apr-24 16:49:53 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
x-powered-by: Elementor Cloud
server: cloudflare
cf-ray: 877675615a02b4fa-OSL
alt-svc: h3=":443"; ma=86400
|
|
| dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/form.10bf1a6475f0741920ff.bundle.min.js | 162.159.137.9 | 200 OK | 5.2 kB |
URL GET HTTP/3dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/form.10bf1a6475f0741920ff.bundle.min.js IP162.159.137.9:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeJavaScript source, ASCII text, with very long lines (19185) Hash2eea76460b3f83cf379a0fceab653c50 2d6caf7f87c844b16c5137515593f0659f976857 ed92168d93e157dba1e9febdd23d814dd17468ffad0d706c3ce3f6db0f50e876
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor-pro/assets/js/form.10bf1a6475f0741920ff.bundle.min.js HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:53 GMT
content-type: application/javascript
cf-ray: 877675615a07b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"66166d50-4b1d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:28 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=RaKQyfPoSdFZxr6bKN0QScCBo8K79P14SWXtKxf.lGo-1713629993-1.0.1.1-bL3m9y261ei4kBH7i6i7c5REXz1a1_cjY.PKQkLCMnQ1q2IDuDm6tGA8L8rK24oHmIihcdOKV1EiJiZ_2_musQ; path=/; expires=Sat, 20-Apr-24 16:49:53 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=3FXm0glzKJqwax.rlFo1k4iGjeAoGL0BTfvkBNGIIXo-1713629993217-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dzcqalqx.elementor.cloud/wp-content/uploads/elementor/css/post-6.css?ver=1712784082 | 162.159.137.9 | 200 OK | 1.3 kB |
URL GET HTTP/3dzcqalqx.elementor.cloud/wp-content/uploads/elementor/css/post-6.css?ver=1712784082 IP162.159.137.9:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeASCII text, with very long lines (3812), with no line terminators Hash193ca7e1d095bc53668e7f6822324a29 fc985e17fd8c59d079c9c5b9849e08d0c815885f 56dba0012cb2d3bedaa717a1d6c4b8ff5885a878f850922e2fdcae3b8d9c842a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/elementor/css/post-6.css?ver=1712784082 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: text/css
cf-ray: 8776755dfed4b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"661702d2-f01"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 21:21:22 GMT
vary: Accept-Encoding
cf-bgj: minify
cf-polished: origSize=3841
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=gjo34KzUxWMr7.C2PePjroYrduSJ5AdVeI9wodxitIo-1713629992-1.0.1.1-skloNbin7m.rKkS_kLbjlpw0ZatColkBD9zBAMkJYW38LfHMyrvwYVC2Zc9YCJZZbiQbL3XOxCUXf7Q0uXWN1w; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=3V_F5FNZC.u2vUJiyghC6pAV.dGv7foaSszapeyhVfw-1713629992684-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dzcqalqx.elementor.cloud/wp-content/uploads/elementor/css/post-562.css?ver=1712784082 | 162.159.137.9 | 200 OK | 1.1 kB |
URL GET HTTP/3dzcqalqx.elementor.cloud/wp-content/uploads/elementor/css/post-562.css?ver=1712784082 IP162.159.137.9:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeASCII text, with very long lines (3374), with no line terminators Hashacd31995d88aed0c9547cdb21a560ea6 10946b0ae8a28f9299ebe2559bc54711308eb5e7 233cbb26dc89b6e4e2b45079d45a9bff47ead1b3f75fc0efc28df2bd63a06e65
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/elementor/css/post-562.css?ver=1712784082 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: text/css
cf-ray: 8776755dfeddb4fa-OSL
cf-cache-status: MISS
cache-control: max-age=315360000
etag: W/"661702d2-d2e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 21:21:22 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=1bxbopbs4khgsboGgG1g1C17IaeFWqURUyn4mnq87ws-1713629992-1.0.1.1-EWiv4stod9UpDi_mkqrpTBAc5i8d0QBZLm98WQenSTcA_XibNt8NlT2LGT._G1mFLbIR5YGzHmp9teNGao5sjw; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=6Sn5Kh508pOwQ0VddR77HuDKitIDRkGue.lj_C3vOig-1713629992746-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dzcqalqx.elementor.cloud/wp-content/themes/hello-elementor/header-footer.min.css?ver=3.0.1 | 162.159.137.9 | 200 OK | 6.1 kB |
URL GET HTTP/3dzcqalqx.elementor.cloud/wp-content/themes/hello-elementor/header-footer.min.css?ver=3.0.1 IP162.159.137.9:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeUnicode text, UTF-8 text, with very long lines (7323), with no line terminators Hash4f6608672aae4899d264369dd0c580d9 c4b0007b7f9377cd9d7c6b8106dffedaa03d1610 97a09cb2af7d4406f6163874dad15c607d571749611d00890d47143495a0a617
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/hello-elementor/header-footer.min.css?ver=3.0.1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: text/css
cf-ray: 8776755deed2b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"65b17d1b-1c9d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 24 Jan 2024 21:11:55 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=2c6_t4YkKs7BxcVXVdf5K1UZgPN6BmF8dE.YJVLeNQE-1713629992-1.0.1.1-CqSj0ZxBzNTSjeXtNK2w8HYyACPLMSlz5QD47XKGKMC3Qc8Mja4GmFwWl65xTDACa0Sv.ZSg7NN7PsdpevJaXw; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=T_GsDcMsWRi5pNqPZGOj5xJTH62YQcTT5gpNwebhpYc-1713629992682-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.22.0-cloud1 | 162.159.137.9 | 200 OK | 21 kB |
URL GET HTTP/3dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.22.0-cloud1 IP162.159.137.9:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeASCII text, with very long lines (65496) Hash7f89faa927aa1d8a090d9bf39e323cea db552f998a08815c40945750323a2b0221707d2a e7da4c57810a97ff8331dd1371f6db4db3d23983dbc6a313e52298a0985e4153
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.22.0-cloud1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: text/css
cf-ray: 8776755dfed3b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"66166d37-1d078"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:03 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=HD317O6gcEkoswOjYLhxqDf3.b8slJey.AH08Iujp4Q-1713629992-1.0.1.1-nJsirU3WXxdckdKXX8.lgo5ASEA2U9wcBUdlqqBlfD20rvM.v77Wm7.Y.BgafYRtJ65Ge31QgOa9BSgh64EXLw; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=wqVzFL5hH8t.YMeNFK5Q2codYsmNBgDlYXB_BhADE90-1713629992692-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dzcqalqx.elementor.cloud/_/?preview_id=562 | 162.159.137.9 | 200 OK | 16 kB |
URL User Request GET HTTP/2dzcqalqx.elementor.cloud/_/?preview_id=562 IP162.159.137.9:443
CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeHTML document, ASCII text, with very long lines (9462) Hash185965b080a72b0f41c8ee8aa3b5987d 591ee1971f3c6c9bfab0332d02dac8a24fa17948 23ebb14cf8ea4fd3873b97bf20157dc5f7d88fbb8aa3d3be6348e6d198fab10a
Analyzer | Verdict | Alert | OpenPhish | phishing | AT&T | Quad9 DNS | malicious | Sinkholed |
GET /_/?preview_id=562 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: text/html; charset=UTF-8
cf-ray: 87767559ec307128-OSL
cf-cache-status: DYNAMIC
cache-control: public, max-age=604800
link: <https://dzcqalqx.elementor.cloud/wp-json/>; rel="https://api.w.org/", <https://dzcqalqx.elementor.cloud/wp-json/wp/v2/pages/562>; rel="alternate"; type="application/json", <https://dzcqalqx.elementor.cloud/?p=562>; rel=shortlink
ec-cdn-cache-control: public, max-age=604800
ec-cdn-status: miss
ec-cdn-supported: 1
ec-coldstart:
ec-source: dynamic
vary: Accept-Encoding
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=vAhh.uIhRgKiODEdiOtVrUUBTKW7hUHldb.Ho_P6LQA-1713629992-1.0.1.1-CPkIKg.JfSpQHezGRSFkCB6MhAhEUZq2tw1ojfUcGWxla9jf8VqT8Av9w9qJBTVW5_WdgQKIQVB0sR_aJjHlAw; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=jebHWRSCHQyf6OPxq7KjTu5T1nKO5YAqOOdQ4WobRZQ-1713629992309-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| dzcqalqx.elementor.cloud/wp-content/uploads/elementor/css/global.css?ver=1712784082 | 162.159.137.9 | 200 OK | 10 kB |
URL GET HTTP/3dzcqalqx.elementor.cloud/wp-content/uploads/elementor/css/global.css?ver=1712784082 IP162.159.137.9:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash3b170027b0a3e7a5a00ebb8bbab0f7a2 fd083ec348d9a621d6aea233d9da56ad23d131d8 b8a4055c8e7fce6cdce5cabe110d20bc133f1853d68f399cdeb4625aadd4f54f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/elementor/css/global.css?ver=1712784082 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: text/css
cf-ray: 8776755dfedbb4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"661702d2-2c1fb"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 21:21:22 GMT
vary: Accept-Encoding
cf-bgj: minify
cf-polished: origSize=180731
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=S3BS3JMBEYx6vw0f3jAg_yBTpm.oL.LtbGuPeAhAlvQ-1713629992-1.0.1.1-DB0.WXZmf7vKEoFhW6aEx_3eklqpPFycd3.ogAP_aOJ4rxZx3ZvVbth9fS.Nd2srUoRxVwxDhGlJJoVp.QMRPA; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=0G0SMyi2isKuJiLB0tCZkETosl2Npq8L5uHDRtI.jX4-1713629992681-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml | 35.244.181.201 | | 444 B |
URL aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml IP35.244.181.201:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeXML 1.0 document, ASCII text, with very long lines (332) Hash3b324dec137a87ef7e24a30a65b13dd0 c0faa95b2f1018e264b3a14aaf50d1003e6c27b3 6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463
GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-06-09-11-51-10.chain; p384ecdsa=2MeGS3pk_1T9hauAFt968jKnp7zESNMwIpwPQZM-Rr8SeidR0Vg4kr0uf1Tq7TelGF6vmXx2Kmfoj7zdGCxAav3NzWnuoE2GrqXuUvvgrSwR16tVsgPDcU8Ui7Q_qeb_
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
date: Sat, 20 Apr 2024 16:20:08 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 2
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| dzcqalqx.elementor.cloud/cdn-cgi/rum? | 162.159.137.9 | 204 No Content | 0 B |
URL POST HTTP/3dzcqalqx.elementor.cloud/cdn-cgi/rum? IP162.159.137.9:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /cdn-cgi/rum? HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 472
Origin: https://dzcqalqx.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/3 204 No Content
date: Sat, 20 Apr 2024 16:20:14 GMT
access-control-allow-origin: https://dzcqalqx.elementor.cloud
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 877675e9182cb4fa-OSL
x-frame-options: DENY
x-content-type-options: nosniff
|
|
| dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 | 162.159.137.9 | 200 OK | 12 kB |
URL GET HTTP/3dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP162.159.137.9:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeJavaScript source, ASCII text, with very long lines (12198), with no line terminators Hash3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: application/javascript
cf-ray: 8776755e2f0bb4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"66166d3b-2fa6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:07 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=JLHrmZkVrQBi9SIIkKPf3F7LbfDAtfhjrpuclSTbWbo-1713629992-1.0.1.1-5UZ4vO4A5.TzlnAxP281IQZ_UIeri1aBB7tzuMk1_UF9kgdO4WYynhhY7UHy_y0DkrdwA9Sx5nxdR1TAzMIIxQ; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=nyWo0d4NNmVUaULhMPO5kH45S5WODXAR6.g0HdVvkJ4-1713629992715-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| static.cloudflareinsights.com/beacon.min.js/v55bfa2fee65d44688e90c00735ed189a1713218998793 | 104.16.80.73 | 200 OK | 19 kB |
URL GET HTTP/2static.cloudflareinsights.com/beacon.min.js/v55bfa2fee65d44688e90c00735ed189a1713218998793 IP104.16.80.73:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerGoogle Trust Services LLC Subjectcloudflareinsights.com Fingerprint73:92:5A:16:97:55:FC:A5:32:7C:F3:9D:0C:84:EF:F3:2F:AA:B5:00 ValiditySun, 10 Mar 2024 02:33:42 GMT - Sat, 08 Jun 2024 02:33:41 GMT
File typeJavaScript source, ASCII text, with very long lines (19261), with no line terminators Hash3be93fd15d2f7dee2fc0c8981c6fa5c6 8cd88c36fad3e96641dbc4d781f5ddbe5123312f 17106bf803d42bcf2f2bdf778ece084d3f91c68e7ea41dae7bff61fefa573dee
GET /beacon.min.js/v55bfa2fee65d44688e90c00735ed189a1713218998793 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dzcqalqx.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2024.4.0"
last-modified: Mon, 15 Apr 2024 22:09:58 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 8776755e49480b69-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/popup.085c1727e36940b18f29.bundle.min.js | 162.159.137.9 | 200 OK | 751 B |
URL GET HTTP/3dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/popup.085c1727e36940b18f29.bundle.min.js IP162.159.137.9:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeASCII text, with very long lines (764), with no line terminators Hashccce883a338840920ec5f544848e3d28 84be9b0a6bb7f18247a63552f7090dabed5d28b3 7381cada244bad9371ee0cadb3aee5c894bb16284db6596f98f704610106841d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor-pro/assets/js/popup.085c1727e36940b18f29.bundle.min.js HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:53 GMT
content-type: application/javascript
cf-ray: 877675615a0eb4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"66166d50-2ef"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:28 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=Jgv3yEXK0dVvq8v0seoAY7GJmWwHv27OgfH9YldYKXo-1713629993-1.0.1.1-CEbAQNfAP2il9VGaggdq_cKLeYyHSQMoqErcpEC0ipvEZHeMyYhcXvPm_R0uHZmL2jmf7dBXYJCiSkQg4OloXg; path=/; expires=Sat, 20-Apr-24 16:49:53 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=3FXm0glzKJqwax.rlFo1k4iGjeAoGL0BTfvkBNGIIXo-1713629993217-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dzcqalqx.elementor.cloud/wp-content/themes/hello-elementor/style.min.css?ver=3.0.1 | 162.159.137.9 | 200 OK | 5.8 kB |
URL GET HTTP/3dzcqalqx.elementor.cloud/wp-content/themes/hello-elementor/style.min.css?ver=3.0.1 IP162.159.137.9:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeASCII text, with very long lines (5770), with no line terminators Hash3e929a2fad069f519621df29efd3db08 5f28c42c92f486a7450781734b008d1d8bd232b2 bab510c0226c69bce87b7ae90a6fc2ed90f5dbd6f626cccbef64660651e64013
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/hello-elementor/style.min.css?ver=3.0.1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: text/css
cf-ray: 8776755deec9b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"65b17d1b-167c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 24 Jan 2024 21:11:55 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=0csU1gWXs61nsiK5qiyFjwUBqdzsRWW9JofyDUZpedU-1713629992-1.0.1.1-W4VfOBgqOcWD4Yco9CITsG5DaOJupEYZsyQ1KFzhtV97YxEFV9hzIjRc8d9hsQvr_Fag0Pl32CQ6fv_m3NmRew; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=QfA.fSOO0efkVxGZuNpcn73xFK1noGIih_5WUI_H5pI-1713629992683-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.22.0-cloud1 | 162.159.137.9 | 200 OK | 11 kB |
URL GET HTTP/3dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.22.0-cloud1 IP162.159.137.9:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeASCII text, with very long lines (11009) Hashd308fd54eaa5f4797eb66d61e98be087 9f680ec552c9be7ad6c86afe3c2f82ed8667d866 f62b56d8aeac35080b423aaa3a0897b0fcf66b807f203c7ac77e2fd7b6e73776
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.22.0-cloud1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: text/css
cf-ray: 8776755dfed7b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"66166d4e-2b2d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:26 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=SuExoQmbrvehnPd8NXr1Y2DUNRnBieJHfwo53V4sEdg-1713629992-1.0.1.1-00T_xGGcM9Fb8zgJZ1oUoOYjUT9wQYqkSZ4QzUmZnejnf9VH62eTlFqpSaDyYOdNzn1Cbol.RC5FmBU_xTtVrQ; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=j482JiwGWy9LyJkmfpnKPkrzIW8v_hFwp4p6Qlz8M3s-1713629992695-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dzcqalqx.elementor.cloud/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 | 162.159.137.9 | 200 OK | 88 kB |
URL GET HTTP/3dzcqalqx.elementor.cloud/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP162.159.137.9:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: application/javascript
cf-ray: 8776755e1ef6b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"660a4adb-15601"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 01 Apr 2024 05:49:15 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=VioIU3fEkz0fbllcCgJBNCkUGqkfn_wfLy8CTlgBSZE-1713629992-1.0.1.1-gM_LYwy4c2ZUJZU3kCLdt61uEA0il2MFd5aYmbJNWbhVl93DkJFhmzRotdUShmnP3cwlqqF6MeYE20rDUY0THA; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=yEhRFPd4rmSEbZ9KH.gubN4ggU1qX_7GMxAo1jbmyG4-1713629992743-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.22.0-cloud1 | 162.159.137.9 | 200 OK | 25 kB |
URL GET HTTP/3dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.22.0-cloud1 IP162.159.137.9:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeJavaScript source, ASCII text, with very long lines (25022) Hash8fbaec6437832264ce2d6f6dec1dacc8 340fcfbb728577c93863b1072e9e8545d80dc321 112e08940377c0edcbe80fa65619c3111f9bce1d46a367e65de20174650b89fa
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.22.0-cloud1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: application/javascript
cf-ray: 8776755e1f06b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"66166d50-61ea"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:28 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=qbmHIk5ZxEd24wvaaxs9Zfq9KfcV5TrofRz4aRHFewA-1713629992-1.0.1.1-uHc9veVBNxZSwz6MaVchrqA6mDckFfptjdqKBmgvg9PHAQnLNHXm1lt1S2h3j_WFWDj1p4XS9b.PzwNT8KFEoQ; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=ploz93mvI1rJX1RyE4bcUMtZ3p3K_mGz8W1.m9LNtA8-1713629992723-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css?family=Lato%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.4.4 | 142.250.74.74 | 200 OK | 7.7 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Lato%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.4.4 IP142.250.74.74:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeASCII text, with very long lines (7874), with no line terminators Hash83883a3950b917f5cf818c378f3d7534 0e597e0d42060491b3a0bf1d78f519a540d32489 366a512bc79e7d75125a712c73136dd3d916cfbe75e82e6d4bfecea90d835a03
GET /css?family=Lato%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.4.4 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 20 Apr 2024 16:19:52 GMT
date: Sat, 20 Apr 2024 16:19:52 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.22.0-cloud1 | 162.159.137.9 | 200 OK | 5.8 kB |
URL GET HTTP/3dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.22.0-cloud1 IP162.159.137.9:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeJavaScript source, ASCII text, with very long lines (5964), with no line terminators Hash56abca2df99bb883efec0f70a1a6211b f74c435072006e4bbe0ddb5d0e4e6bc7d8c6da62 e83485bc29f9bd7a8796ff55014305608c1f67a1578c19305987c548f610ab52
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.22.0-cloud1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: application/javascript
cf-ray: 8776755e1ef3b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"66166d50-16c1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:28 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=tB4p46uBuwKm6rLZO4YmjRhEh_bnIPrOgxaKlmdY1jg-1713629992-1.0.1.1-U5kmUTaqbDWDJIym0p1VNry_MEpxvS6eyMLOkOq3aCG4cxwNGL_cSBI5hvQ6y2cpFPyBSv4wT6x7uZv0m.alpA; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=5reyhDy755f3tHiS5TTSQXtEZamreKmJxr8ilX185GI-1713629992699-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.22.0-cloud1 | 162.159.137.9 | 200 OK | 40 kB |
URL GET HTTP/3dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.22.0-cloud1 IP162.159.137.9:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeJavaScript source, ASCII text, with very long lines (39932) Hashe25513535b0f31315a0ffd36f7c59a40 c994b70bb269f6ed4fa6ce0a1138b963f11343b6 81481273d37258c2ba2b8614642063d90f9e6fbd9d1da3bc0fb50e0bc034f5cf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.22.0-cloud1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: application/javascript
cf-ray: 8776755e2f10b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"66166d38-9c24"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:04 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=BzICK5rGP07wfJ.c7.d8A.zTYPsnbXE6ZNkT9eZ2jcE-1713629992-1.0.1.1-R1tkhrgzq3npldPUTjLHlRO8OZOLFwiMT4MFc6Cf2QmiQVr3phNmdTu_6pRVjGP1hDphyl7V1JhhCUsFVRrsog; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=Tz7g2QY9whylUqwMAH9Apbi0_vDJSpRoWrv1S_UQL80-1713629992719-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dzcqalqx.elementor.cloud/wp-content/themes/hello-elementor/theme.min.css?ver=3.0.1 | 162.159.137.9 | 200 OK | 5.1 kB |
URL GET HTTP/3dzcqalqx.elementor.cloud/wp-content/themes/hello-elementor/theme.min.css?ver=3.0.1 IP162.159.137.9:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeUnicode text, UTF-8 text, with very long lines (5133), with no line terminators Hash34bf51be1c5266da84fa8d7eb5c17058 0d2135697935ee96e472f44db9823c6affd998d9 7e564bb797f0a9362e7711a9cd5654aa02a2c3b4c370e354d84d6f729a260359
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/hello-elementor/theme.min.css?ver=3.0.1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: text/css
cf-ray: 8776755deeccb4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"65b17d1b-140b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 24 Jan 2024 21:11:55 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=CFved0TFraW3cXGYhpv2UDhoDUAlnGndydXVf1oCnAI-1713629992-1.0.1.1-Ns8DQITQbmIgIs1jpbaRogLsqEvK8ayyJDOL2c2zmCw6hnM8qep7Iqb7a0JxSwGZGKYeFfX_RQUGtn9C80nutQ; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=5z1ZwSXdizq1KgC1ymMLlrqj_l9zEyMhtD3aPGFC3Ho-1713629992688-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/lib/swiper/v8/css/swiper.min.css?ver=8.4.5 | 162.159.137.9 | 200 OK | 16 kB |
URL GET HTTP/3dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/lib/swiper/v8/css/swiper.min.css?ver=8.4.5 IP162.159.137.9:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeASCII text, with very long lines (16214) Hasha2431bc290cf34e330e11ec4cfce1247 32a53342901fef5f4f4dbb26a555e730f84437a4 c57e64fcb72bddafa9c38de574441c3e69ac6c961df96b0cad34da83658bd196
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/lib/swiper/v8/css/swiper.min.css?ver=8.4.5 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: text/css
cf-ray: 8776755dfed6b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"66166d3b-4057"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:07 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=jkcfRVlA5ec24rDlx4.bhTIHDSkgs_PKMSr8iZGpOXE-1713629992-1.0.1.1-.zBZr7s07MnalYRYqAhWopj1o6u4ZuM6YPEehZyiqV3El4niiHC60eVdAZCMUXDUsH9UPMNiiYntTwWUSqZzyg; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=9rK1f1tuJXcAkKwgltWsfti8QcHdOz66G73zzw7RT70-1713629992697-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dzcqalqx.elementor.cloud/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0 | 162.159.137.9 | 200 OK | 6.6 kB |
URL GET HTTP/3dzcqalqx.elementor.cloud/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0 IP162.159.137.9:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeJavaScript source, ASCII text, with very long lines (6799), with no line terminators Hashccaa7ba23a1f74bc12d091b65b515c4f 26b795b942f321ee8237178a1fcc16f1cee5a99e daceae61a869247d42436998814874e2698dc5f4789c65cd9bad98da52276db1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: application/javascript
cf-ray: 8776755e1efeb4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"660a4adb-19e1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 01 Apr 2024 05:49:15 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=NXSQT_Kx9cTX3AmbaVaoJSonL4nk1Ooh_cQoKE3aZ2U-1713629992-1.0.1.1-_vmQJnJJ2mR64D5hSjRNGrYFrW01PiGlDKyk8Cis6gY_in2SqQoUnwhU4PTmaOev_jEPwQk2hB.hG35UB1GlyA; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=OueN64Cbaf1eac9tkynURa9am9PBzsO9FcXlisyQ6Cg-1713629992710-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dzcqalqx.elementor.cloud/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 | 162.159.137.9 | 200 OK | 115 kB |
URL GET HTTP/3dzcqalqx.elementor.cloud/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 IP162.159.137.9:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
Size115 kB (115127 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: application/javascript
cf-ray: 8776755e1f00b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"660a4adb-1c1b7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 01 Apr 2024 05:49:15 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=_5agCdzLMBMttATlGVY_L7MvzJlqYxKbILHH1JMtLoo-1713629992-1.0.1.1-EzOQgWpG1uYWXeaVlKIifOVBQEK8EaNia6HQ.76zDS_wlC18QRt8gtqGQKCHikxqAm9xPdrz5hWxN.T9mfPQvA; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=LdmfQPKUsn5g8DXrWRuAkuErBUESmAfuunZTJ.DLAP0-1713629992717-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dzcqalqx.elementor.cloud/cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js | 162.159.137.9 | 200 OK | 7.8 kB |
URL GET HTTP/3dzcqalqx.elementor.cloud/cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js IP162.159.137.9:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeJavaScript source, ASCII text, with very long lines (7786), with no line terminators Hashca682127bd3f091b09e440ced6028801 847a4522e680fa409d90275a5c0657516f95fc3b c9b78ea17df86cca489187374c0b3019703cac8eba7a41e335e12307cb1cde87
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:53 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, public
x-content-type-options: nosniff
content-encoding: br
vary: accept-encoding
set-cookie: __cf_bm=dIxIsDTQVY8EsgPQYFzE6FUj3YWS_Z1v6n2CExxgkRQ-1713629993-1.0.1.1-97nGh8ENCCICnz.V.FDZZWuKriNE0bpTx7Vv0ElF1Fl59aWZizTmRTslRPUkmbB1goux.MzH_ZoCuzSknPbvgg; path=/; expires=Sat, 20-Apr-24 16:49:53 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
x-powered-by: Elementor Cloud
server: cloudflare
cf-ray: 877675605900b4fa-OSL
alt-svc: h3=":443"; ma=86400
|
|
| dzcqalqx.elementor.cloud/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 | 162.159.137.9 | 200 OK | 8.2 kB |
URL GET HTTP/3dzcqalqx.elementor.cloud/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 IP162.159.137.9:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeJavaScript source, ASCII text, with very long lines (8365), with no line terminators Hash08e6714eaf3cfe8f3c7839f22d90ba4e 94fdad68854d0d3482b877aef7ba7c2eb265c621 e424039d5a737a1bda8a5ded60919e5067085729310762eebb09c20e07d249c8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: application/javascript
cf-ray: 8776755e1efbb4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"63c7d511-1feb"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 18 Jan 2023 11:16:33 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=Rgd4ZN5471jtCwEnLm4CCImmOyTRT9RZtD_aUXQnjGc-1713629992-1.0.1.1-fF1n_baihfJruFF1qVCD0Fu1V60q1GsMgRKt_6LNhbFjI6vFSYGfv045UDNf0CWvixA6saobZSKBJyf163fT2Q; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=HEtvCb61XkTeF2.ucbllULW_RrRlZK0rpNkKRR3hKm4-1713629992703-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dzcqalqx.elementor.cloud/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1 | 162.159.137.9 | 200 OK | 4.6 kB |
URL GET HTTP/3dzcqalqx.elementor.cloud/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1 IP162.159.137.9:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeJavaScript source, ASCII text, with very long lines (4704), with no line terminators Hash414c8462f6209b4905f767c8ba5c787d a80b8b79908e6cdf11648f810e707a75c859cda3 007c3734a3f7737d74061ab5b96905dcb14ba1f88e7a6df55364b9d9573e3ce1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: application/javascript
cf-ray: 8776755e1f03b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"649af113-1213"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 27 Jun 2023 14:24:19 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=MFkNh0tFLmu4d4MdBjtP04evZ2n7RWIdr5uw2SvX1rg-1713629992-1.0.1.1-cAwwDSBxFO7I10813fhZSBG_J9dBS9DnNH9LifjZ.4W8LgmkRvlIV6iiFlt5ghnopSQic25hmJanq4uWSv53NQ; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=6ccbk1uvUWsUv74ocAWtA43mCNYS2o8KCOw_I8ilO1I-1713629992705-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.22.0-cloud1 | 162.159.137.9 | 200 OK | 38 kB |
URL GET HTTP/3dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.22.0-cloud1 IP162.159.137.9:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeJavaScript source, ASCII text, with very long lines (38238) Hash04c49c7253b000e423dd3274bd73bb47 f0c46c56c6300151c434c40c0d6a5fd50fe63980 6cbccd54ef19853d861ffb2118a952228e7dbe89668e8939b6e53a58e41d6092
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.22.0-cloud1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: application/javascript
cf-ray: 8776755e2f13b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"66166d51-958a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:29 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=7sfAUAepg2y56qfVwBEU8uGhroO8gaUKE30jZ4WhJb0-1713629992-1.0.1.1-5n2BkGgaEY51nJDbHcgelrMCAFJ1Klr1aWLEDul6vslGnXNEHtE2H7LzizfVDDJmWKiEQqupCPeEeBHlQXskgw; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=9fb21RAt9co0jm3W_cqL9I6GJ0WlrTB302vEooeh_VU-1713629992700-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dzcqalqx.elementor.cloud/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=3.0.1 | 162.159.137.9 | 200 OK | 2.9 kB |
URL GET HTTP/3dzcqalqx.elementor.cloud/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=3.0.1 IP162.159.137.9:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeASCII text, with very long lines (3014), with no line terminators Hash3558ffe726402b8287e07c4f6f1a23e9 cf93a5eb6abbce3dee64f76dcec9858d462fd2aa fcf7772f63ca13b9ae424e83f2b23a7929873864b47f2d10305297f7d7445afa
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=3.0.1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: application/javascript
cf-ray: 8776755dfee1b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"65b17d1b-b79"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 24 Jan 2024 21:11:55 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=sILrElYF1qlyPbGlridY1anHthgrp54mQBAJpRjB.qg-1713629992-1.0.1.1-JtWV8eFlCJTHUjG8y30c0OoysLbaWSNlmPOOqy6rSerU6BaWX.H75TBzD4OR4UA96SaMCnNnIWE0b4PRg1pm5g; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=UZ4.B43MYpeXKOJIMfWrli2TpUGpJm9UPSIULSj9PVE-1713629992698-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.22.0-cloud1 | 162.159.137.9 | 200 OK | 63 kB |
URL GET HTTP/3dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.22.0-cloud1 IP162.159.137.9:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.22.0-cloud1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: application/javascript
cf-ray: 8776755e1ef8b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"66166d39-f721"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:05 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=_b7KAwiS8yalzfve_dGkvRYBPT.19TplkBYOrnBu4v4-1713629992-1.0.1.1-vW8noYnUGVtBT38yKuHSiNhePNjKEWcVLXnizJB5bQmuuKvdmekddFUB47_B5xZY2SNBrNKuJdZnU04ZjolArg; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=LdmfQPKUsn5g8DXrWRuAkuErBUESmAfuunZTJ.DLAP0-1713629992717-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dzcqalqx.elementor.cloud/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 | 162.159.137.9 | 200 OK | 21 kB |
URL GET HTTP/3dzcqalqx.elementor.cloud/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 IP162.159.137.9:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: application/javascript
cf-ray: 8776755e2f0fb4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"63dbe690-53be"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 02 Feb 2023 16:36:32 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=3qyRLvM8Wt8hR_2por2qbZRZQJFFu7PLi6lamEbsrk4-1713629992-1.0.1.1-pCGOSWEXKZWxAShx0.IiG28rz8Ve9mr4hehVen8NZV.2XK_TLHR4j6bZ_D9aon7Iyl2uMXabUBUXzE5cxMMZmg; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=VLRruDLa1UZ3899dQY0gag0WJXSpBAB6fPTUHxGoFVE-1713629992721-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dzcqalqx.elementor.cloud/favicon.ico | 162.159.137.9 | 200 OK | 286 kB |
URL GET HTTP/3dzcqalqx.elementor.cloud/favicon.ico IP162.159.137.9:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeMS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel Size286 kB (285478 bytes) Hash838a2d9c7ed09540e1854ada805993fe 70405096fbca9399ba57356caf400242e0455271 ab03bc7123cd8e66c6706cf98819138e657af34842831a45f936cf97947854e4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:53 GMT
content-type: image/x-icon
cf-ray: 87767560d982b4fa-OSL
cf-cache-status: MISS
etag: W/"65140b4b-45b26"
last-modified: Wed, 27 Sep 2023 11:00:27 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=KStsAAdEl2uiHnfX1sTf_5jaWvfW9TEsyFhCo7cfin0-1713629993-1.0.1.1-C.HyrPIOdu25nPkY9tqwFuUKw.XlkiFfQW.ZApqLM0x7N6qPk0fYYZwxWpmeqv4Ks6.0cpITWxYNPMI36AA7EA; path=/; expires=Sat, 20-Apr-24 16:49:53 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=qwaCG9CXaG7zp9PcKN2UIpmN06UQNpTk_fREvSxrmkA-1713629993232-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.22.0-cloud1 | 162.159.137.9 | 200 OK | 5.0 kB |
URL GET HTTP/3dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.22.0-cloud1 IP162.159.137.9:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeJavaScript source, ASCII text, with very long lines (5094), with no line terminators Hashb001b76084c110ab499fa579292cf579 e113ea81d7c2246d6605a978de6bba0fa2efb116 7eda3c7f25acd080888fcf10e18ba24ebf71b710035cd10c3cfa3d7a2d26d92b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.22.0-cloud1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: application/javascript
cf-ray: 8776755e1ef5b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"66166d39-1385"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:05 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=_hPVSY6Sov4F1zxyjbXlqSAaTy4NBacls4bom3HI8nI-1713629992-1.0.1.1-RqoORNBo4gX523gmvHaN2ULH.0nuDNya2VU7XpUfmIMjdaiT6KYJO1woEenbhWo12hQ5uI2kq6vNtRJmoMm8Bw; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=rw5nU0_V9GinhtYME1ab3LrE1jPHbc50W4V2bifM27k-1713629992702-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dzcqalqx.elementor.cloud/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 | 162.159.137.9 | 200 OK | 14 kB |
URL GET HTTP/3dzcqalqx.elementor.cloud/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP162.159.137.9:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeJavaScript source, ASCII text, with very long lines (13479) Hash9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: application/javascript
cf-ray: 8776755e1ef7b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"6482bd64-3509"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 09 Jun 2023 05:49:24 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=rREwLRq6urygx1yjNgpde6sdZhOZ_N0uzfnHRF.gaGY-1713629992-1.0.1.1-1rbttUvMkYBTasHupHySCiFJK2CoXSZgw9Q.gY4LwJYmU2T4ie.730qGvxLJZYkFicRBOElDPLn1JBAMh9lsyg; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=9fb21RAt9co0jm3W_cqL9I6GJ0WlrTB302vEooeh_VU-1713629992700-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dzcqalqx.elementor.cloud/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef | 162.159.137.9 | 200 OK | 9.4 kB |
URL GET HTTP/3dzcqalqx.elementor.cloud/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef IP162.159.137.9:443
Requested byhttps://dzcqalqx.elementor.cloud/_/?preview_id=562 CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeJavaScript source, ASCII text, with very long lines (9729), with no line terminators Hash3597d2da73a2e3de74981fcc5ecbfce4 94f7e899ca4635c129e8285579b3f0e38cf19730 080a50955b97dc50d39c296cc22e8d02f07a3cfcc58d3127d93466e281514637
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: application/javascript
cf-ray: 8776755e1f05b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"649c934e-24e5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 28 Jun 2023 20:08:46 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=GlBixyrVvURps8v0xllbz4cMQbrov4fmpFH9t5vuw6s-1713629992-1.0.1.1-mhjx2aBa91zNY4igZALcyTIfkPa7NzEXSe9o8T1ppt1.rUKppkums9URew8caKMxhRdPMY3IgR38zgQ56VhMzg; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=PUSiWov.SvMmFG50kWKH_wunEqrh.a5HhhXEkMIm8X4-1713629992734-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|