Report - u.to/1jFBIA

Report Overview

Submitted URL
u.to/1jFBIA
IP
195.216.243.155
ASN
#57724 Ddos-Guard Ltd
Submitted
2024-04-20 16:20:20
Access
public
Website Title
_ – army
Final URL
dzcqalqx.elementor.cloud/_/?preview_id=562
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
74

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
dzcqalqx.elementor.cloud	unknown	2019-04-29	2023-10-07	2024-04-12	17 kB	908 kB	162.159.137.9
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-20	523 B	24 kB	216.58.207.227
aus5.mozilla.org	2548	1998-01-24	2015-10-27	2024-04-19	512 B	1.2 kB	35.244.181.201
static.cloudflareinsights.com	1294	2019-08-30	2019-09-24	2024-04-19	514 B	20 kB	104.16.80.73
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-20	620 B	8.3 kB	142.250.74.74
u.to	155534	unknown	2012-05-21	2024-03-23	465 B	573 B	195.216.243.155

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-20	medium	u.to/1jFBIA	AT&T
2024-04-20	medium	dzcqalqx.elementor.cloud/_/?preview_id=562	AT&T

PhishTank

Scan Date	Severity	Indicator	Alert
2024-01-23	medium	u.to/1jFBIA	Other

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed

ThreatFox

No alerts detected

JavaScript (26)

	URL	Size	First Seen	Last Seen
	dzcqalqx.elementor.cloud/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0	6.6 kB	2023-11-03	2024-05-04
Pretty URL dzcqalqx.elementor.cloud/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0 IP 162.159.137.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-03 09:26:42 Last Seen2024-05-04 01:27:52 Times Seen13857 Hash fd7ef2e4737acd74fd0dcdc3b515e304 0d792b33f12a48ee8aaaf2560a63a5682470645b 1d52e1ac7d3bc25a8b0ffc257153f9dd50249f96fe9a4df5e0d771241a69062c Loading...

	dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	12 kB	2023-03-07	2024-05-04
Pretty URL dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP 162.159.137.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-05-04 00:17:00 Times Seen53340 Hash 3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0 Loading...

	dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/form.10bf1a6475f0741920ff.bundle.min.js	19 kB	2024-04-11	2024-04-23
Pretty URL dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/form.10bf1a6475f0741920ff.bundle.min.js IP 162.159.137.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-11 07:10:38 Last Seen2024-04-23 18:39:51 Times Seen10 Hash 2eea76460b3f83cf379a0fceab653c50 2d6caf7f87c844b16c5137515593f0659f976857 ed92168d93e157dba1e9febdd23d814dd17468ffad0d706c3ce3f6db0f50e876 Loading...

	dzcqalqx.elementor.cloud/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1	14 kB	2023-05-09	2024-05-04
Pretty URL dzcqalqx.elementor.cloud/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP 162.159.137.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 19:21:05 Last Seen2024-05-04 01:27:53 Times Seen82319 Hash 9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89 Loading...

	dzcqalqx.elementor.cloud/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef	9.4 kB	2023-08-08	2024-05-04
Pretty URL dzcqalqx.elementor.cloud/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef IP 162.159.137.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-08 23:25:56 Last Seen2024-05-04 01:27:53 Times Seen18541 Hash c2c4e2a562e06e1cb22293a5b920aca6 a7b5a369ac4883f1ee7fa701b238d20238b675ca 698e93fe491cc7bbf07a470579a33dbd0db53c19142b7be41ebfd39a23aef11f Loading...

	dzcqalqx.elementor.cloud/_/?preview_id=562	3.3 kB	2024-04-12	2024-04-20
Pretty URL dzcqalqx.elementor.cloud/_/?preview_id=562 IP 162.159.137.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-12 17:58:12 Last Seen2024-04-20 18:20:44 Times Seen3 Hash 2602651d5a36884b5046e32f363e927d bc5b532afdfdc6a3207d0550b7cccc13e7fb0419 4d32268c731dacdc167047b27edcc2dd9acc302ce2c5ad61afa04766051c67eb Loading...

	static.cloudflareinsights.com/beacon.min.js/v55bfa2fee65d44688e90c00735ed189a1713218998793	19 kB	2024-04-17	2024-05-03
Pretty URL static.cloudflareinsights.com/beacon.min.js/v55bfa2fee65d44688e90c00735ed189a1713218998793 IP 104.16.80.73 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 04:05:01 Last Seen2024-05-03 04:44:29 Times Seen1486 Hash 3be93fd15d2f7dee2fc0c8981c6fa5c6 8cd88c36fad3e96641dbc4d781f5ddbe5123312f 17106bf803d42bcf2f2bdf778ece084d3f91c68e7ea41dae7bff61fefa573dee Loading...

	dzcqalqx.elementor.cloud/wp-includes/js/jquery/jquery.min.js?ver=3.7.1	88 kB	2023-11-03	2024-05-04
Pretty URL dzcqalqx.elementor.cloud/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP 162.159.137.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-03 09:26:43 Last Seen2024-05-04 01:27:53 Times Seen43891 Hash 826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf Loading...

	dzcqalqx.elementor.cloud/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1	4.6 kB	2023-08-08	2024-05-04
Pretty URL dzcqalqx.elementor.cloud/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1 IP 162.159.137.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-08 23:25:56 Last Seen2024-05-04 01:27:52 Times Seen20199 Hash 7bd48eb3bd568033e96caf0fb62e6690 b38066999294b99d92d95db5f38bc15707eb1f22 7868467c94a5aa0b3f11ef542f45287967f9627b3b5acdc86e47f8f77a126596 Loading...

	dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.22.0-cloud1	38 kB	2024-04-11	2024-04-23
Pretty URL dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.22.0-cloud1 IP 162.159.137.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-11 07:10:38 Last Seen2024-04-23 18:39:51 Times Seen10 Hash 04c49c7253b000e423dd3274bd73bb47 f0c46c56c6300151c434c40c0d6a5fd50fe63980 6cbccd54ef19853d861ffb2118a952228e7dbe89668e8939b6e53a58e41d6092 Loading...

	unknown	247 B	2024-04-20	2024-04-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-20 18:20:21 Last Seen2024-04-20 18:20:21 Times Seen1 Hash 6c1f952057ac863b923cae6ecde2b079 def40abed2406d4fb07da3f037f4ba87cda54e79 aa32504afbf5b51598388b0bcc6d4c206ca66761f709d007998f5b76d514360e Loading...

	dzcqalqx.elementor.cloud/_/?preview_id=562	68 B	2023-03-07	2024-05-04
Pretty URL dzcqalqx.elementor.cloud/_/?preview_id=562 IP 162.159.137.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:08 Last Seen2024-05-04 01:27:53 Times Seen22671 Hash d30f13da1f424ee0383b76edc55881e1 7e348a5f57ab13eedbc4ed917cdeee5bb9f9bd46 cf01a621447e67a81629bc28276677c86c48fd72c44cba83a82448574aadfd60 Loading...

	dzcqalqx.elementor.cloud/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=3.0.1	2.9 kB	2023-12-27	2024-05-04
Pretty URL dzcqalqx.elementor.cloud/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=3.0.1 IP 162.159.137.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-27 11:44:50 Last Seen2024-05-04 00:11:52 Times Seen629 Hash 37a18cd57014e833a5c4a7bfa6eea9b3 bdaa4dc40b15d010d66959bfe7a40b10292d1763 fad3123058cce0346ee9998342ef09cfa766dc1393ee3b5c2b450a18936c7d1b Loading...

	dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.22.0-cloud1	5.8 kB	2024-04-11	2024-04-23
Pretty URL dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.22.0-cloud1 IP 162.159.137.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-11 07:10:37 Last Seen2024-04-23 18:39:50 Times Seen7 Hash 27f81a6c59ba4718ef4ca769c691046d e122c6bed95f5862d8f115a19ada65478c73d839 fda9bf5594c42fabe8a019aa81aed0695a7ff723565c8c52dd462a14b239e166 Loading...

	dzcqalqx.elementor.cloud/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2	8.2 kB	2023-03-13	2024-05-04
Pretty URL dzcqalqx.elementor.cloud/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 IP 162.159.137.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:32:06 Last Seen2024-05-04 01:27:53 Times Seen51536 Hash dda652db133fddb9b80a05c6d1b5c540 60c8514c57a5db2980c4b046b0dd479bd427357b c1a9a3e223bad631dff12d33b5499eb145cb08d8621c20d9d73870e78d97afe4 Loading...

	dzcqalqx.elementor.cloud/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2	21 kB	2023-04-01	2024-05-04
Pretty URL dzcqalqx.elementor.cloud/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 IP 162.159.137.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:26:15 Last Seen2024-05-04 01:27:16 Times Seen52508 Hash c4e68a0f3463c0bd3c39eab38815e881 0ce58644e9f3c5063a11453ff287c5ec096465a7 ca7dce2391845e8aec7da135f33fabd10f74eed28a532ac66fd01f761fcfb42f Loading...

	dzcqalqx.elementor.cloud/cdn-cgi/challenge-platform/scripts/jsd/main.js	7.8 kB	2024-04-20	2024-04-20
Pretty URL dzcqalqx.elementor.cloud/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 162.159.137.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-20 18:20:22 Last Seen2024-04-20 18:20:22 Times Seen2 Hash ca682127bd3f091b09e440ced6028801 847a4522e680fa409d90275a5c0657516f95fc3b c9b78ea17df86cca489187374c0b3019703cac8eba7a41e335e12307cb1cde87 Loading...

	dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/popup.085c1727e36940b18f29.bundle.min.js	751 B	2024-04-11	2024-04-23
Pretty URL dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/popup.085c1727e36940b18f29.bundle.min.js IP 162.159.137.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-11 07:10:37 Last Seen2024-04-23 18:39:50 Times Seen7 Hash 7ee7bb265c2ae9ba1b47989d623890b6 eb22d6eca7f3d63b855620ce1971b25a58a6e097 d9e04f15200493fb03da21332461836814c9cc353e11024c7428de5fa2261415 Loading...

	dzcqalqx.elementor.cloud/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0	115 kB	2023-11-03	2024-05-04
Pretty URL dzcqalqx.elementor.cloud/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 IP 162.159.137.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-03 09:26:42 Last Seen2024-05-04 01:27:53 Times Seen12181 Hash 9a98016751e498c06d434cc022ca1a44 6aa9af5fe436eab9c313de9f0bea072c04637624 da9ed5720b674f0d297fe621ac2d8d518c4e622bef1e9b0d4ae489dee9aa43f8 Loading...

	dzcqalqx.elementor.cloud/_/?preview_id=562	1.3 kB	2024-04-20	2024-04-20
Pretty URL dzcqalqx.elementor.cloud/_/?preview_id=562 IP 162.159.137.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-20 18:20:22 Last Seen2024-04-20 18:20:44 Times Seen2 Hash 78c79626a4f1a39d0c34da738d4e4eaf e999ec36ca693ed10f4983ebc6c702a68ef4d848 8ab80b9f2f79595283c187de06324d9f7ef20a8cec054456ce1b35d97d126b15 Loading...

	dzcqalqx.elementor.cloud/_/?preview_id=562	2.6 kB	2024-04-20	2024-04-20
Pretty URL dzcqalqx.elementor.cloud/_/?preview_id=562 IP 162.159.137.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-20 18:20:22 Last Seen2024-04-20 18:20:44 Times Seen2 Hash 05f68c5b1b0459364aedd92db8c22d56 d6a58d9845c89c5f1125a0171cdeaceedee02604 8197c80a205ca6d2b1f245a833abf6d54077676b76379ebe2b83eba8f058ef73 Loading...

	dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.22.0-cloud1	5.0 kB	2024-04-11	2024-04-23
Pretty URL dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.22.0-cloud1 IP 162.159.137.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-11 07:10:37 Last Seen2024-04-23 18:39:48 Times Seen8 Hash 3dbeeacc0e809a6f3a09faa3d0f8dea4 22283d12e1c202059388a97b2c049a9b2c400bf1 512191dc7b75d089eb55638093d24b19798504a785d702c98ef2bb774aebd299 Loading...

	dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.22.0-cloud1	40 kB	2024-04-11	2024-04-23
Pretty URL dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.22.0-cloud1 IP 162.159.137.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-11 07:10:37 Last Seen2024-04-23 18:39:51 Times Seen12 Hash e25513535b0f31315a0ffd36f7c59a40 c994b70bb269f6ed4fa6ce0a1138b963f11343b6 81481273d37258c2ba2b8614642063d90f9e6fbd9d1da3bc0fb50e0bc034f5cf Loading...

	dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.22.0-cloud1	63 kB	2024-04-11	2024-04-23
Pretty URL dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.22.0-cloud1 IP 162.159.137.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-11 07:10:37 Last Seen2024-04-23 18:39:48 Times Seen9 Hash 6068d99d1dd62c4d7a74bc87f3bcb4d7 4651efb2da723c0d2fe5ebf857cc7ca6789782f6 8e7f0dbbf69f5cdc4be4dccfac71a6dc49fab3be83d2dfae49d8c94eb8b5c359 Loading...

	dzcqalqx.elementor.cloud/_/?preview_id=562	1.1 kB	2024-04-20	2024-04-20
Pretty URL dzcqalqx.elementor.cloud/_/?preview_id=562 IP 162.159.137.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-20 18:20:22 Last Seen2024-04-20 18:20:22 Times Seen1 Hash 9bd88cfa95de2c551478e3552d77884e 815b0e3cc514ce0cdddf920f5bbff791211dbe64 6baa4ec82b2f4c2bb74d3e297ca395ecc695b3525ce44e320ab3451007d450f1 Loading...

	dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.22.0-cloud1	25 kB	2024-04-11	2024-04-23
Pretty URL dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.22.0-cloud1 IP 162.159.137.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-11 07:10:37 Last Seen2024-04-23 18:39:49 Times Seen10 Hash 8fbaec6437832264ce2d6f6dec1dacc8 340fcfbb728577c93863b1072e9e8545d80dc321 112e08940377c0edcbe80fa65619c3111f9bce1d46a367e65de20174650b89fa Loading...

HTTP Transactions (39)

URL IP Response Size

u.to/1jFBIA

195.216.243.155

302 Found

230 B

URL User Request GET HTTP/1.1
u.to/1jFBIA
IP
195.216.243.155:443
ASN
#57724 Ddos-Guard Ltd

Certificate
IssuerGoGetSSL
Subjectu.to
Fingerprint5F:34:9B:CA:9B:9B:07:E0:65:E5:80:E3:F9:98:A2:66:0C:E3:59:A8
ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 24 Oct 2024 23:59:59 GMT

File type
HTML document, ASCII text
Size
230 B (230 bytes)
Hash
e5b73782349f76514ea4d4925a57f4f6
bfba32ffb1cebdaccd14a5ee19e892daea0c28f2
41160407a7d19ef70cbf0c18606690092e39f2852e46fd42c4b7d67d7fe71e10

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	AT&T
PhishTank	phishing	Other

HTTP Headers

GET /1jFBIA HTTP/1.1
Host: u.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Server: nginx/1.8.0
Date: Sat, 20 Apr 2024 16:19:49 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Set-Cookie: lng=en; path=/; expires=Sun, 20-Apr-2025 16:19:49 GMT; domain=.u.to;
Location: https://dzcqalqx.elementor.cloud/_/?preview_id=562

dzcqalqx.elementor.cloud/wp-content/uploads/2023/12/att_hz_lg_lkp_rgb_pos-1024x504.jpg

162.159.137.9

200 OK

26 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/uploads/2023/12/att_hz_lg_lkp_rgb_pos-1024x504.jpg
IP
162.159.137.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], progressive, precision 8, 1024x504, components 3
Size
26 kB (26349 bytes)
Hash
b936323bdb2b4526ada2864637e01084
6c3130f3d264a5655f75da8777cc35df499c79d4
eb0249bb04590e2ebda75f8bf42d82dbe9aeb3c7d8cc8877e55f1e37e503b8bb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/12/att_hz_lg_lkp_rgb_pos-1024x504.jpg HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: image/jpeg
content-length: 26349
cf-ray: 8776755dfee0b4fa-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=315360000
etag: "656f381e-934d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 05 Dec 2023 14:47:58 GMT
vary: Accept-Encoding
cf-bgj: imgq:100,h2pri
cf-polished: origSize=37709
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=A_tzEO2mC0jNAPItYD0BwEHqvRq1Jd20cNnzfrk5ZoQ-1713629992-1.0.1.1-RlGud1OVAkKBXZVs9.cP_DkX1hlUf.93_LNkKsENGH65bnTDOoelewAA1Z1co5TMwKrsg6CV2CqPoX0UgQgMZA; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=bIoSewUAuNd911EqamiV_XogbL4kqDefETy5lh1B51Y-1713629992713-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/cdn-cgi/challenge-platform/scripts/jsd/main.js

162.159.137.9

302 Found

0 B

URL GET HTTP/3
dzcqalqx.elementor.cloud/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
162.159.137.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Sat, 20 Apr 2024 16:19:52 GMT
content-length: 0
access-control-allow-origin: *
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js
cache-control: max-age=300, public
set-cookie: __cf_bm=6gQmbcmdbGDUP_ru2LZjoyzTteT8X1MADBECYCT0tak-1713629992-1.0.1.1-NzCMcxcNqci24GE6GD9Fnj62ofVBE8OAAwXlEiPjU0VRRuLcIenq53Fufdfnt0T.OlviNFZo6uGY_kwCVDgvVw; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
x-powered-by: Elementor Cloud
server: cloudflare
cf-ray: 8776756018cfb4fa-OSL
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2

216.58.207.227

200 OK

24 kB

URL GET HTTP/2
fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23580, version 1.0
Size
24 kB (23580 bytes)
Hash
e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537

HTTP Headers

GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dzcqalqx.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:21:46 GMT
expires: Fri, 18 Apr 2025 17:21:46 GMT
cache-control: public, max-age=31536000
age: 169087
last-modified: Tue, 02 May 2023 15:17:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

dzcqalqx.elementor.cloud/cdn-cgi/challenge-platform/h/b/jsd/r/87767559ec307128

162.159.137.9

200 OK

0 B

URL POST HTTP/3
dzcqalqx.elementor.cloud/cdn-cgi/challenge-platform/h/b/jsd/r/87767559ec307128
IP
162.159.137.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/jsd/r/87767559ec307128 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12197
Origin: https://dzcqalqx.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:53 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=9DP_OgnSAnGaV3CUnIzrM3o30Y4qOtkO8SU3eIgchAw-1713629993-1.0.1.1-4hg3.uPu0L2xOURVcD72mD85HmJwC0WWmBUx8QlvlORO61OE72sjpdq1a2bmp.WAsutYsR74a9yZXVwJUMoeBA; path=/; expires=Sun, 20-Apr-25 16:19:53 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
__cf_bm=2I7XOR4TaFw6p0wG05OGekxD7jHaYLICXWkFnpn7MBk-1713629993-1.0.1.1-LPjtmCO3ELKou4ov8txtSSglxO8x8DstFProJKwnigtkL7xHfnjUuH51YcvJ5NbBh5tK5WfLs1S6DwycSyb20A; path=/; expires=Sat, 20-Apr-24 16:49:53 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
x-powered-by: Elementor Cloud
server: cloudflare
cf-ray: 877675615a02b4fa-OSL
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/form.10bf1a6475f0741920ff.bundle.min.js

162.159.137.9

200 OK

5.2 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/form.10bf1a6475f0741920ff.bundle.min.js
IP
162.159.137.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JavaScript source, ASCII text, with very long lines (19185)
Size
5.2 kB (5215 bytes)
Hash
2eea76460b3f83cf379a0fceab653c50
2d6caf7f87c844b16c5137515593f0659f976857
ed92168d93e157dba1e9febdd23d814dd17468ffad0d706c3ce3f6db0f50e876

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/form.10bf1a6475f0741920ff.bundle.min.js HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:53 GMT
content-type: application/javascript
cf-ray: 877675615a07b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"66166d50-4b1d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:28 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=RaKQyfPoSdFZxr6bKN0QScCBo8K79P14SWXtKxf.lGo-1713629993-1.0.1.1-bL3m9y261ei4kBH7i6i7c5REXz1a1_cjY.PKQkLCMnQ1q2IDuDm6tGA8L8rK24oHmIihcdOKV1EiJiZ_2_musQ; path=/; expires=Sat, 20-Apr-24 16:49:53 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=3FXm0glzKJqwax.rlFo1k4iGjeAoGL0BTfvkBNGIIXo-1713629993217-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-content/uploads/elementor/css/post-6.css?ver=1712784082

162.159.137.9

200 OK

1.3 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/uploads/elementor/css/post-6.css?ver=1712784082
IP
162.159.137.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
ASCII text, with very long lines (3812), with no line terminators
Size
1.3 kB (1250 bytes)
Hash
193ca7e1d095bc53668e7f6822324a29
fc985e17fd8c59d079c9c5b9849e08d0c815885f
56dba0012cb2d3bedaa717a1d6c4b8ff5885a878f850922e2fdcae3b8d9c842a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/post-6.css?ver=1712784082 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: text/css
cf-ray: 8776755dfed4b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"661702d2-f01"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 21:21:22 GMT
vary: Accept-Encoding
cf-bgj: minify
cf-polished: origSize=3841
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=gjo34KzUxWMr7.C2PePjroYrduSJ5AdVeI9wodxitIo-1713629992-1.0.1.1-skloNbin7m.rKkS_kLbjlpw0ZatColkBD9zBAMkJYW38LfHMyrvwYVC2Zc9YCJZZbiQbL3XOxCUXf7Q0uXWN1w; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=3V_F5FNZC.u2vUJiyghC6pAV.dGv7foaSszapeyhVfw-1713629992684-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-content/uploads/elementor/css/post-562.css?ver=1712784082

162.159.137.9

200 OK

1.1 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/uploads/elementor/css/post-562.css?ver=1712784082
IP
162.159.137.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
ASCII text, with very long lines (3374), with no line terminators
Size
1.1 kB (1070 bytes)
Hash
acd31995d88aed0c9547cdb21a560ea6
10946b0ae8a28f9299ebe2559bc54711308eb5e7
233cbb26dc89b6e4e2b45079d45a9bff47ead1b3f75fc0efc28df2bd63a06e65

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/post-562.css?ver=1712784082 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: text/css
cf-ray: 8776755dfeddb4fa-OSL
cf-cache-status: MISS
cache-control: max-age=315360000
etag: W/"661702d2-d2e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 21:21:22 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=1bxbopbs4khgsboGgG1g1C17IaeFWqURUyn4mnq87ws-1713629992-1.0.1.1-EWiv4stod9UpDi_mkqrpTBAc5i8d0QBZLm98WQenSTcA_XibNt8NlT2LGT._G1mFLbIR5YGzHmp9teNGao5sjw; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=6Sn5Kh508pOwQ0VddR77HuDKitIDRkGue.lj_C3vOig-1713629992746-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-content/themes/hello-elementor/header-footer.min.css?ver=3.0.1

162.159.137.9

200 OK

6.1 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/themes/hello-elementor/header-footer.min.css?ver=3.0.1
IP
162.159.137.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
Unicode text, UTF-8 text, with very long lines (7323), with no line terminators
Size
6.1 kB (6097 bytes)
Hash
4f6608672aae4899d264369dd0c580d9
c4b0007b7f9377cd9d7c6b8106dffedaa03d1610
97a09cb2af7d4406f6163874dad15c607d571749611d00890d47143495a0a617

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/hello-elementor/header-footer.min.css?ver=3.0.1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: text/css
cf-ray: 8776755deed2b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"65b17d1b-1c9d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 24 Jan 2024 21:11:55 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=2c6_t4YkKs7BxcVXVdf5K1UZgPN6BmF8dE.YJVLeNQE-1713629992-1.0.1.1-CqSj0ZxBzNTSjeXtNK2w8HYyACPLMSlz5QD47XKGKMC3Qc8Mja4GmFwWl65xTDACa0Sv.ZSg7NN7PsdpevJaXw; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=T_GsDcMsWRi5pNqPZGOj5xJTH62YQcTT5gpNwebhpYc-1713629992682-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.22.0-cloud1

162.159.137.9

200 OK

21 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.22.0-cloud1
IP
162.159.137.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
ASCII text, with very long lines (65496)
Size
21 kB (20854 bytes)
Hash
7f89faa927aa1d8a090d9bf39e323cea
db552f998a08815c40945750323a2b0221707d2a
e7da4c57810a97ff8331dd1371f6db4db3d23983dbc6a313e52298a0985e4153

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.22.0-cloud1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: text/css
cf-ray: 8776755dfed3b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"66166d37-1d078"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:03 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=HD317O6gcEkoswOjYLhxqDf3.b8slJey.AH08Iujp4Q-1713629992-1.0.1.1-nJsirU3WXxdckdKXX8.lgo5ASEA2U9wcBUdlqqBlfD20rvM.v77Wm7.Y.BgafYRtJ65Ge31QgOa9BSgh64EXLw; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=wqVzFL5hH8t.YMeNFK5Q2codYsmNBgDlYXB_BhADE90-1713629992692-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/_/?preview_id=562

162.159.137.9

200 OK

16 kB

URL User Request GET HTTP/2
dzcqalqx.elementor.cloud/_/?preview_id=562
IP
162.159.137.9:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
HTML document, ASCII text, with very long lines (9462)
Size
16 kB (15923 bytes)
Hash
185965b080a72b0f41c8ee8aa3b5987d
591ee1971f3c6c9bfab0332d02dac8a24fa17948
23ebb14cf8ea4fd3873b97bf20157dc5f7d88fbb8aa3d3be6348e6d198fab10a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	AT&T
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_/?preview_id=562 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: text/html; charset=UTF-8
cf-ray: 87767559ec307128-OSL
cf-cache-status: DYNAMIC
cache-control: public, max-age=604800
link: <https://dzcqalqx.elementor.cloud/wp-json/>; rel="https://api.w.org/", <https://dzcqalqx.elementor.cloud/wp-json/wp/v2/pages/562>; rel="alternate"; type="application/json", <https://dzcqalqx.elementor.cloud/?p=562>; rel=shortlink
ec-cdn-cache-control: public, max-age=604800
ec-cdn-status: miss
ec-cdn-supported: 1
ec-coldstart: 
ec-source: dynamic
vary: Accept-Encoding
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=vAhh.uIhRgKiODEdiOtVrUUBTKW7hUHldb.Ho_P6LQA-1713629992-1.0.1.1-CPkIKg.JfSpQHezGRSFkCB6MhAhEUZq2tw1ojfUcGWxla9jf8VqT8Av9w9qJBTVW5_WdgQKIQVB0sR_aJjHlAw; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=jebHWRSCHQyf6OPxq7KjTu5T1nKO5YAqOOdQ4WobRZQ-1713629992309-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

dzcqalqx.elementor.cloud/wp-content/uploads/elementor/css/global.css?ver=1712784082

162.159.137.9

200 OK

10 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/uploads/elementor/css/global.css?ver=1712784082
IP
162.159.137.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
10 kB (10078 bytes)
Hash
3b170027b0a3e7a5a00ebb8bbab0f7a2
fd083ec348d9a621d6aea233d9da56ad23d131d8
b8a4055c8e7fce6cdce5cabe110d20bc133f1853d68f399cdeb4625aadd4f54f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/global.css?ver=1712784082 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: text/css
cf-ray: 8776755dfedbb4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"661702d2-2c1fb"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 21:21:22 GMT
vary: Accept-Encoding
cf-bgj: minify
cf-polished: origSize=180731
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=S3BS3JMBEYx6vw0f3jAg_yBTpm.oL.LtbGuPeAhAlvQ-1713629992-1.0.1.1-DB0.WXZmf7vKEoFhW6aEx_3eklqpPFycd3.ogAP_aOJ4rxZx3ZvVbth9fS.Nd2srUoRxVwxDhGlJJoVp.QMRPA; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=0G0SMyi2isKuJiLB0tCZkETosl2Npq8L5uHDRtI.jX4-1713629992681-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml

35.244.181.201

444 B

URL
aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml
IP
35.244.181.201:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
XML 1.0 document, ASCII text, with very long lines (332)
Size
444 B (444 bytes)
Hash
3b324dec137a87ef7e24a30a65b13dd0
c0faa95b2f1018e264b3a14aaf50d1003e6c27b3
6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463

HTTP Headers

GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-06-09-11-51-10.chain; p384ecdsa=2MeGS3pk_1T9hauAFt968jKnp7zESNMwIpwPQZM-Rr8SeidR0Vg4kr0uf1Tq7TelGF6vmXx2Kmfoj7zdGCxAav3NzWnuoE2GrqXuUvvgrSwR16tVsgPDcU8Ui7Q_qeb_
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
date: Sat, 20 Apr 2024 16:20:08 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 2
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2

dzcqalqx.elementor.cloud/cdn-cgi/rum?

162.159.137.9

204 No Content

0 B

URL POST HTTP/3
dzcqalqx.elementor.cloud/cdn-cgi/rum?
IP
162.159.137.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 472
Origin: https://dzcqalqx.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/3 204 No Content
date: Sat, 20 Apr 2024 16:20:14 GMT
access-control-allow-origin: https://dzcqalqx.elementor.cloud
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 877675e9182cb4fa-OSL
x-frame-options: DENY
x-content-type-options: nosniff

dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2

162.159.137.9

200 OK

12 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP
162.159.137.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JavaScript source, ASCII text, with very long lines (12198), with no line terminators
Size
12 kB (12198 bytes)
Hash
3819c3569da71daec283a75483735f7e
ecd40a5cc6f0b76200c454ca880210dc301cfab8
214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: application/javascript
cf-ray: 8776755e2f0bb4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"66166d3b-2fa6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:07 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=JLHrmZkVrQBi9SIIkKPf3F7LbfDAtfhjrpuclSTbWbo-1713629992-1.0.1.1-5UZ4vO4A5.TzlnAxP281IQZ_UIeri1aBB7tzuMk1_UF9kgdO4WYynhhY7UHy_y0DkrdwA9Sx5nxdR1TAzMIIxQ; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=nyWo0d4NNmVUaULhMPO5kH45S5WODXAR6.g0HdVvkJ4-1713629992715-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

static.cloudflareinsights.com/beacon.min.js/v55bfa2fee65d44688e90c00735ed189a1713218998793

104.16.80.73

200 OK

19 kB

URL GET HTTP/2
static.cloudflareinsights.com/beacon.min.js/v55bfa2fee65d44688e90c00735ed189a1713218998793
IP
104.16.80.73:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerGoogle Trust Services LLC
Subjectcloudflareinsights.com
Fingerprint73:92:5A:16:97:55:FC:A5:32:7C:F3:9D:0C:84:EF:F3:2F:AA:B5:00
ValiditySun, 10 Mar 2024 02:33:42 GMT - Sat, 08 Jun 2024 02:33:41 GMT

File type
JavaScript source, ASCII text, with very long lines (19261), with no line terminators
Size
19 kB (19261 bytes)
Hash
3be93fd15d2f7dee2fc0c8981c6fa5c6
8cd88c36fad3e96641dbc4d781f5ddbe5123312f
17106bf803d42bcf2f2bdf778ece084d3f91c68e7ea41dae7bff61fefa573dee

HTTP Headers

GET /beacon.min.js/v55bfa2fee65d44688e90c00735ed189a1713218998793 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dzcqalqx.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2024.4.0"
last-modified: Mon, 15 Apr 2024 22:09:58 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 8776755e49480b69-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/popup.085c1727e36940b18f29.bundle.min.js

162.159.137.9

200 OK

751 B

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/popup.085c1727e36940b18f29.bundle.min.js
IP
162.159.137.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
ASCII text, with very long lines (764), with no line terminators
Size
751 B (751 bytes)
Hash
ccce883a338840920ec5f544848e3d28
84be9b0a6bb7f18247a63552f7090dabed5d28b3
7381cada244bad9371ee0cadb3aee5c894bb16284db6596f98f704610106841d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/popup.085c1727e36940b18f29.bundle.min.js HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:53 GMT
content-type: application/javascript
cf-ray: 877675615a0eb4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"66166d50-2ef"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:28 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=Jgv3yEXK0dVvq8v0seoAY7GJmWwHv27OgfH9YldYKXo-1713629993-1.0.1.1-CEbAQNfAP2il9VGaggdq_cKLeYyHSQMoqErcpEC0ipvEZHeMyYhcXvPm_R0uHZmL2jmf7dBXYJCiSkQg4OloXg; path=/; expires=Sat, 20-Apr-24 16:49:53 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=3FXm0glzKJqwax.rlFo1k4iGjeAoGL0BTfvkBNGIIXo-1713629993217-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-content/themes/hello-elementor/style.min.css?ver=3.0.1

162.159.137.9

200 OK

5.8 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/themes/hello-elementor/style.min.css?ver=3.0.1
IP
162.159.137.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
ASCII text, with very long lines (5770), with no line terminators
Size
5.8 kB (5756 bytes)
Hash
3e929a2fad069f519621df29efd3db08
5f28c42c92f486a7450781734b008d1d8bd232b2
bab510c0226c69bce87b7ae90a6fc2ed90f5dbd6f626cccbef64660651e64013

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/hello-elementor/style.min.css?ver=3.0.1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: text/css
cf-ray: 8776755deec9b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"65b17d1b-167c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 24 Jan 2024 21:11:55 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=0csU1gWXs61nsiK5qiyFjwUBqdzsRWW9JofyDUZpedU-1713629992-1.0.1.1-W4VfOBgqOcWD4Yco9CITsG5DaOJupEYZsyQ1KFzhtV97YxEFV9hzIjRc8d9hsQvr_Fag0Pl32CQ6fv_m3NmRew; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=QfA.fSOO0efkVxGZuNpcn73xFK1noGIih_5WUI_H5pI-1713629992683-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.22.0-cloud1

162.159.137.9

200 OK

11 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.22.0-cloud1
IP
162.159.137.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
ASCII text, with very long lines (11009)
Size
11 kB (11053 bytes)
Hash
d308fd54eaa5f4797eb66d61e98be087
9f680ec552c9be7ad6c86afe3c2f82ed8667d866
f62b56d8aeac35080b423aaa3a0897b0fcf66b807f203c7ac77e2fd7b6e73776

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.22.0-cloud1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: text/css
cf-ray: 8776755dfed7b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"66166d4e-2b2d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:26 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=SuExoQmbrvehnPd8NXr1Y2DUNRnBieJHfwo53V4sEdg-1713629992-1.0.1.1-00T_xGGcM9Fb8zgJZ1oUoOYjUT9wQYqkSZ4QzUmZnejnf9VH62eTlFqpSaDyYOdNzn1Cbol.RC5FmBU_xTtVrQ; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=j482JiwGWy9LyJkmfpnKPkrzIW8v_hFwp4p6Qlz8M3s-1713629992695-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-includes/js/jquery/jquery.min.js?ver=3.7.1

162.159.137.9

200 OK

88 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
IP
162.159.137.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
88 kB (87553 bytes)
Hash
826eb77e86b02ab7724fe3d0141ff87c
79cd3587d565afe290076a8d36c31c305a573d18
cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: application/javascript
cf-ray: 8776755e1ef6b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"660a4adb-15601"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 01 Apr 2024 05:49:15 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=VioIU3fEkz0fbllcCgJBNCkUGqkfn_wfLy8CTlgBSZE-1713629992-1.0.1.1-gM_LYwy4c2ZUJZU3kCLdt61uEA0il2MFd5aYmbJNWbhVl93DkJFhmzRotdUShmnP3cwlqqF6MeYE20rDUY0THA; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=yEhRFPd4rmSEbZ9KH.gubN4ggU1qX_7GMxAo1jbmyG4-1713629992743-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.22.0-cloud1

162.159.137.9

200 OK

25 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.22.0-cloud1
IP
162.159.137.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JavaScript source, ASCII text, with very long lines (25022)
Size
25 kB (25066 bytes)
Hash
8fbaec6437832264ce2d6f6dec1dacc8
340fcfbb728577c93863b1072e9e8545d80dc321
112e08940377c0edcbe80fa65619c3111f9bce1d46a367e65de20174650b89fa

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.22.0-cloud1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: application/javascript
cf-ray: 8776755e1f06b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"66166d50-61ea"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:28 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=qbmHIk5ZxEd24wvaaxs9Zfq9KfcV5TrofRz4aRHFewA-1713629992-1.0.1.1-uHc9veVBNxZSwz6MaVchrqA6mDckFfptjdqKBmgvg9PHAQnLNHXm1lt1S2h3j_WFWDj1p4XS9b.PzwNT8KFEoQ; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=ploz93mvI1rJX1RyE4bcUMtZ3p3K_mGz8W1.m9LNtA8-1713629992723-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css?family=Lato%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.4.4

142.250.74.74

200 OK

7.7 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Lato%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.4.4
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
ASCII text, with very long lines (7874), with no line terminators
Size
7.7 kB (7694 bytes)
Hash
83883a3950b917f5cf818c378f3d7534
0e597e0d42060491b3a0bf1d78f519a540d32489
366a512bc79e7d75125a712c73136dd3d916cfbe75e82e6d4bfecea90d835a03

HTTP Headers

GET /css?family=Lato%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.4.4 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 20 Apr 2024 16:19:52 GMT
date: Sat, 20 Apr 2024 16:19:52 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.22.0-cloud1

162.159.137.9

200 OK

5.8 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.22.0-cloud1
IP
162.159.137.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JavaScript source, ASCII text, with very long lines (5964), with no line terminators
Size
5.8 kB (5825 bytes)
Hash
56abca2df99bb883efec0f70a1a6211b
f74c435072006e4bbe0ddb5d0e4e6bc7d8c6da62
e83485bc29f9bd7a8796ff55014305608c1f67a1578c19305987c548f610ab52

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.22.0-cloud1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: application/javascript
cf-ray: 8776755e1ef3b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"66166d50-16c1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:28 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=tB4p46uBuwKm6rLZO4YmjRhEh_bnIPrOgxaKlmdY1jg-1713629992-1.0.1.1-U5kmUTaqbDWDJIym0p1VNry_MEpxvS6eyMLOkOq3aCG4cxwNGL_cSBI5hvQ6y2cpFPyBSv4wT6x7uZv0m.alpA; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=5reyhDy755f3tHiS5TTSQXtEZamreKmJxr8ilX185GI-1713629992699-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.22.0-cloud1

162.159.137.9

200 OK

40 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.22.0-cloud1
IP
162.159.137.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JavaScript source, ASCII text, with very long lines (39932)
Size
40 kB (39972 bytes)
Hash
e25513535b0f31315a0ffd36f7c59a40
c994b70bb269f6ed4fa6ce0a1138b963f11343b6
81481273d37258c2ba2b8614642063d90f9e6fbd9d1da3bc0fb50e0bc034f5cf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.22.0-cloud1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: application/javascript
cf-ray: 8776755e2f10b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"66166d38-9c24"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:04 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=BzICK5rGP07wfJ.c7.d8A.zTYPsnbXE6ZNkT9eZ2jcE-1713629992-1.0.1.1-R1tkhrgzq3npldPUTjLHlRO8OZOLFwiMT4MFc6Cf2QmiQVr3phNmdTu_6pRVjGP1hDphyl7V1JhhCUsFVRrsog; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=Tz7g2QY9whylUqwMAH9Apbi0_vDJSpRoWrv1S_UQL80-1713629992719-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-content/themes/hello-elementor/theme.min.css?ver=3.0.1

162.159.137.9

200 OK

5.1 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/themes/hello-elementor/theme.min.css?ver=3.0.1
IP
162.159.137.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
Unicode text, UTF-8 text, with very long lines (5133), with no line terminators
Size
5.1 kB (5131 bytes)
Hash
34bf51be1c5266da84fa8d7eb5c17058
0d2135697935ee96e472f44db9823c6affd998d9
7e564bb797f0a9362e7711a9cd5654aa02a2c3b4c370e354d84d6f729a260359

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/hello-elementor/theme.min.css?ver=3.0.1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: text/css
cf-ray: 8776755deeccb4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"65b17d1b-140b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 24 Jan 2024 21:11:55 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=CFved0TFraW3cXGYhpv2UDhoDUAlnGndydXVf1oCnAI-1713629992-1.0.1.1-Ns8DQITQbmIgIs1jpbaRogLsqEvK8ayyJDOL2c2zmCw6hnM8qep7Iqb7a0JxSwGZGKYeFfX_RQUGtn9C80nutQ; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=5z1ZwSXdizq1KgC1ymMLlrqj_l9zEyMhtD3aPGFC3Ho-1713629992688-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/lib/swiper/v8/css/swiper.min.css?ver=8.4.5

162.159.137.9

200 OK

16 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/lib/swiper/v8/css/swiper.min.css?ver=8.4.5
IP
162.159.137.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
ASCII text, with very long lines (16214)
Size
16 kB (16471 bytes)
Hash
a2431bc290cf34e330e11ec4cfce1247
32a53342901fef5f4f4dbb26a555e730f84437a4
c57e64fcb72bddafa9c38de574441c3e69ac6c961df96b0cad34da83658bd196

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/swiper/v8/css/swiper.min.css?ver=8.4.5 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: text/css
cf-ray: 8776755dfed6b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"66166d3b-4057"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:07 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=jkcfRVlA5ec24rDlx4.bhTIHDSkgs_PKMSr8iZGpOXE-1713629992-1.0.1.1-.zBZr7s07MnalYRYqAhWopj1o6u4ZuM6YPEehZyiqV3El4niiHC60eVdAZCMUXDUsH9UPMNiiYntTwWUSqZzyg; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=9rK1f1tuJXcAkKwgltWsfti8QcHdOz66G73zzw7RT70-1713629992697-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0

162.159.137.9

200 OK

6.6 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0
IP
162.159.137.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JavaScript source, ASCII text, with very long lines (6799), with no line terminators
Size
6.6 kB (6625 bytes)
Hash
ccaa7ba23a1f74bc12d091b65b515c4f
26b795b942f321ee8237178a1fcc16f1cee5a99e
daceae61a869247d42436998814874e2698dc5f4789c65cd9bad98da52276db1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: application/javascript
cf-ray: 8776755e1efeb4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"660a4adb-19e1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 01 Apr 2024 05:49:15 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=NXSQT_Kx9cTX3AmbaVaoJSonL4nk1Ooh_cQoKE3aZ2U-1713629992-1.0.1.1-_vmQJnJJ2mR64D5hSjRNGrYFrW01PiGlDKyk8Cis6gY_in2SqQoUnwhU4PTmaOev_jEPwQk2hB.hG35UB1GlyA; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=OueN64Cbaf1eac9tkynURa9am9PBzsO9FcXlisyQ6Cg-1713629992710-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0

162.159.137.9

200 OK

115 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
162.159.137.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type

Size
115 kB (115127 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: application/javascript
cf-ray: 8776755e1f00b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"660a4adb-1c1b7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 01 Apr 2024 05:49:15 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=_5agCdzLMBMttATlGVY_L7MvzJlqYxKbILHH1JMtLoo-1713629992-1.0.1.1-EzOQgWpG1uYWXeaVlKIifOVBQEK8EaNia6HQ.76zDS_wlC18QRt8gtqGQKCHikxqAm9xPdrz5hWxN.T9mfPQvA; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=LdmfQPKUsn5g8DXrWRuAkuErBUESmAfuunZTJ.DLAP0-1713629992717-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js

162.159.137.9

200 OK

7.8 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js
IP
162.159.137.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JavaScript source, ASCII text, with very long lines (7786), with no line terminators
Size
7.8 kB (7786 bytes)
Hash
ca682127bd3f091b09e440ced6028801
847a4522e680fa409d90275a5c0657516f95fc3b
c9b78ea17df86cca489187374c0b3019703cac8eba7a41e335e12307cb1cde87

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:53 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, public
x-content-type-options: nosniff
content-encoding: br
vary: accept-encoding
set-cookie: __cf_bm=dIxIsDTQVY8EsgPQYFzE6FUj3YWS_Z1v6n2CExxgkRQ-1713629993-1.0.1.1-97nGh8ENCCICnz.V.FDZZWuKriNE0bpTx7Vv0ElF1Fl59aWZizTmRTslRPUkmbB1goux.MzH_ZoCuzSknPbvgg; path=/; expires=Sat, 20-Apr-24 16:49:53 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
x-powered-by: Elementor Cloud
server: cloudflare
cf-ray: 877675605900b4fa-OSL
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2

162.159.137.9

200 OK

8.2 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2
IP
162.159.137.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JavaScript source, ASCII text, with very long lines (8365), with no line terminators
Size
8.2 kB (8171 bytes)
Hash
08e6714eaf3cfe8f3c7839f22d90ba4e
94fdad68854d0d3482b877aef7ba7c2eb265c621
e424039d5a737a1bda8a5ded60919e5067085729310762eebb09c20e07d249c8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: application/javascript
cf-ray: 8776755e1efbb4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"63c7d511-1feb"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 18 Jan 2023 11:16:33 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=Rgd4ZN5471jtCwEnLm4CCImmOyTRT9RZtD_aUXQnjGc-1713629992-1.0.1.1-fF1n_baihfJruFF1qVCD0Fu1V60q1GsMgRKt_6LNhbFjI6vFSYGfv045UDNf0CWvixA6saobZSKBJyf163fT2Q; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=HEtvCb61XkTeF2.ucbllULW_RrRlZK0rpNkKRR3hKm4-1713629992703-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1

162.159.137.9

200 OK

4.6 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1
IP
162.159.137.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JavaScript source, ASCII text, with very long lines (4704), with no line terminators
Size
4.6 kB (4627 bytes)
Hash
414c8462f6209b4905f767c8ba5c787d
a80b8b79908e6cdf11648f810e707a75c859cda3
007c3734a3f7737d74061ab5b96905dcb14ba1f88e7a6df55364b9d9573e3ce1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: application/javascript
cf-ray: 8776755e1f03b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"649af113-1213"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 27 Jun 2023 14:24:19 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=MFkNh0tFLmu4d4MdBjtP04evZ2n7RWIdr5uw2SvX1rg-1713629992-1.0.1.1-cAwwDSBxFO7I10813fhZSBG_J9dBS9DnNH9LifjZ.4W8LgmkRvlIV6iiFlt5ghnopSQic25hmJanq4uWSv53NQ; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=6ccbk1uvUWsUv74ocAWtA43mCNYS2o8KCOw_I8ilO1I-1713629992705-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.22.0-cloud1

162.159.137.9

200 OK

38 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.22.0-cloud1
IP
162.159.137.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JavaScript source, ASCII text, with very long lines (38238)
Size
38 kB (38282 bytes)
Hash
04c49c7253b000e423dd3274bd73bb47
f0c46c56c6300151c434c40c0d6a5fd50fe63980
6cbccd54ef19853d861ffb2118a952228e7dbe89668e8939b6e53a58e41d6092

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.22.0-cloud1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: application/javascript
cf-ray: 8776755e2f13b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"66166d51-958a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:29 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=7sfAUAepg2y56qfVwBEU8uGhroO8gaUKE30jZ4WhJb0-1713629992-1.0.1.1-5n2BkGgaEY51nJDbHcgelrMCAFJ1Klr1aWLEDul6vslGnXNEHtE2H7LzizfVDDJmWKiEQqupCPeEeBHlQXskgw; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=9fb21RAt9co0jm3W_cqL9I6GJ0WlrTB302vEooeh_VU-1713629992700-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=3.0.1

162.159.137.9

200 OK

2.9 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=3.0.1
IP
162.159.137.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
ASCII text, with very long lines (3014), with no line terminators
Size
2.9 kB (2937 bytes)
Hash
3558ffe726402b8287e07c4f6f1a23e9
cf93a5eb6abbce3dee64f76dcec9858d462fd2aa
fcf7772f63ca13b9ae424e83f2b23a7929873864b47f2d10305297f7d7445afa

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=3.0.1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: application/javascript
cf-ray: 8776755dfee1b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"65b17d1b-b79"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 24 Jan 2024 21:11:55 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=sILrElYF1qlyPbGlridY1anHthgrp54mQBAJpRjB.qg-1713629992-1.0.1.1-JtWV8eFlCJTHUjG8y30c0OoysLbaWSNlmPOOqy6rSerU6BaWX.H75TBzD4OR4UA96SaMCnNnIWE0b4PRg1pm5g; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=UZ4.B43MYpeXKOJIMfWrli2TpUGpJm9UPSIULSj9PVE-1713629992698-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.22.0-cloud1

162.159.137.9

200 OK

63 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.22.0-cloud1
IP
162.159.137.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type

Size
63 kB (63265 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.22.0-cloud1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: application/javascript
cf-ray: 8776755e1ef8b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"66166d39-f721"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:05 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=_b7KAwiS8yalzfve_dGkvRYBPT.19TplkBYOrnBu4v4-1713629992-1.0.1.1-vW8noYnUGVtBT38yKuHSiNhePNjKEWcVLXnizJB5bQmuuKvdmekddFUB47_B5xZY2SNBrNKuJdZnU04ZjolArg; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=LdmfQPKUsn5g8DXrWRuAkuErBUESmAfuunZTJ.DLAP0-1713629992717-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2

162.159.137.9

200 OK

21 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP
162.159.137.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type

Size
21 kB (21438 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: application/javascript
cf-ray: 8776755e2f0fb4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"63dbe690-53be"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 02 Feb 2023 16:36:32 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=3qyRLvM8Wt8hR_2por2qbZRZQJFFu7PLi6lamEbsrk4-1713629992-1.0.1.1-pCGOSWEXKZWxAShx0.IiG28rz8Ve9mr4hehVen8NZV.2XK_TLHR4j6bZ_D9aon7Iyl2uMXabUBUXzE5cxMMZmg; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=VLRruDLa1UZ3899dQY0gag0WJXSpBAB6fPTUHxGoFVE-1713629992721-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/favicon.ico

162.159.137.9

200 OK

286 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/favicon.ico
IP
162.159.137.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
MS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Size
286 kB (285478 bytes)
Hash
838a2d9c7ed09540e1854ada805993fe
70405096fbca9399ba57356caf400242e0455271
ab03bc7123cd8e66c6706cf98819138e657af34842831a45f936cf97947854e4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:53 GMT
content-type: image/x-icon
cf-ray: 87767560d982b4fa-OSL
cf-cache-status: MISS
etag: W/"65140b4b-45b26"
last-modified: Wed, 27 Sep 2023 11:00:27 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=KStsAAdEl2uiHnfX1sTf_5jaWvfW9TEsyFhCo7cfin0-1713629993-1.0.1.1-C.HyrPIOdu25nPkY9tqwFuUKw.XlkiFfQW.ZApqLM0x7N6qPk0fYYZwxWpmeqv4Ks6.0cpITWxYNPMI36AA7EA; path=/; expires=Sat, 20-Apr-24 16:49:53 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=qwaCG9CXaG7zp9PcKN2UIpmN06UQNpTk_fREvSxrmkA-1713629993232-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.22.0-cloud1

162.159.137.9

200 OK

5.0 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.22.0-cloud1
IP
162.159.137.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JavaScript source, ASCII text, with very long lines (5094), with no line terminators
Size
5.0 kB (4997 bytes)
Hash
b001b76084c110ab499fa579292cf579
e113ea81d7c2246d6605a978de6bba0fa2efb116
7eda3c7f25acd080888fcf10e18ba24ebf71b710035cd10c3cfa3d7a2d26d92b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.22.0-cloud1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: application/javascript
cf-ray: 8776755e1ef5b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"66166d39-1385"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:05 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=_hPVSY6Sov4F1zxyjbXlqSAaTy4NBacls4bom3HI8nI-1713629992-1.0.1.1-RqoORNBo4gX523gmvHaN2ULH.0nuDNya2VU7XpUfmIMjdaiT6KYJO1woEenbhWo12hQ5uI2kq6vNtRJmoMm8Bw; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=rw5nU0_V9GinhtYME1ab3LrE1jPHbc50W4V2bifM27k-1713629992702-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1

162.159.137.9

200 OK

14 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP
162.159.137.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JavaScript source, ASCII text, with very long lines (13479)
Size
14 kB (13577 bytes)
Hash
9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: application/javascript
cf-ray: 8776755e1ef7b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"6482bd64-3509"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 09 Jun 2023 05:49:24 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=rREwLRq6urygx1yjNgpde6sdZhOZ_N0uzfnHRF.gaGY-1713629992-1.0.1.1-1rbttUvMkYBTasHupHySCiFJK2CoXSZgw9Q.gY4LwJYmU2T4ie.730qGvxLJZYkFicRBOElDPLn1JBAMh9lsyg; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=9fb21RAt9co0jm3W_cqL9I6GJ0WlrTB302vEooeh_VU-1713629992700-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef

162.159.137.9

200 OK

9.4 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef
IP
162.159.137.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JavaScript source, ASCII text, with very long lines (9729), with no line terminators
Size
9.4 kB (9445 bytes)
Hash
3597d2da73a2e3de74981fcc5ecbfce4
94f7e899ca4635c129e8285579b3f0e38cf19730
080a50955b97dc50d39c296cc22e8d02f07a3cfcc58d3127d93466e281514637

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:19:52 GMT
content-type: application/javascript
cf-ray: 8776755e1f05b4fa-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"649c934e-24e5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 28 Jun 2023 20:08:46 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=GlBixyrVvURps8v0xllbz4cMQbrov4fmpFH9t5vuw6s-1713629992-1.0.1.1-mhjx2aBa91zNY4igZALcyTIfkPa7NzEXSe9o8T1ppt1.rUKppkums9URew8caKMxhRdPMY3IgR38zgQ56VhMzg; path=/; expires=Sat, 20-Apr-24 16:49:52 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=PUSiWov.SvMmFG50kWKH_wunEqrh.a5HhhXEkMIm8X4-1713629992734-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (26)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML