Report - dzcqalqx.elementor.cloud/_/?preview

Report Overview

Submitted URL
dzcqalqx.elementor.cloud/_/?preview_id=562
IP
162.159.137.9
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-20 16:20:43
Access
public
Website Title
_ – army
Final URL
dzcqalqx.elementor.cloud/_/?preview_id=562
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
70

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
dzcqalqx.elementor.cloud	unknown	2019-04-29	2023-10-07	2024-04-12	17 kB	949 kB	162.159.138.9
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-20	525 B	24 kB	216.58.207.227
static.cloudflareinsights.com	1294	2019-08-30	2019-09-24	2024-04-19	514 B	20 kB	104.16.80.73
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-20	620 B	8.3 kB	142.250.74.74

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-20	medium	dzcqalqx.elementor.cloud/_/?preview_id=562	AT&T

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed
2024-04-20	medium	dzcqalqx.elementor.cloud	Sinkholed

ThreatFox

No alerts detected

JavaScript (26)

	URL	Size	First Seen	Last Seen
	dzcqalqx.elementor.cloud/_/?preview_id=562	3.3 kB	2024-04-12	2024-04-20
Pretty URL dzcqalqx.elementor.cloud/_/?preview_id=562 IP 162.159.138.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-12 17:58:12 Last Seen2024-04-20 18:20:44 Times Seen3 Hash 2602651d5a36884b5046e32f363e927d bc5b532afdfdc6a3207d0550b7cccc13e7fb0419 4d32268c731dacdc167047b27edcc2dd9acc302ce2c5ad61afa04766051c67eb Loading...

	dzcqalqx.elementor.cloud/_/?preview_id=562	68 B	2023-03-07	2024-05-03
Pretty URL dzcqalqx.elementor.cloud/_/?preview_id=562 IP 162.159.138.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:08 Last Seen2024-05-03 23:15:23 Times Seen22670 Hash d30f13da1f424ee0383b76edc55881e1 7e348a5f57ab13eedbc4ed917cdeee5bb9f9bd46 cf01a621447e67a81629bc28276677c86c48fd72c44cba83a82448574aadfd60 Loading...

	dzcqalqx.elementor.cloud/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=3.0.1	2.9 kB	2023-12-27	2024-05-03
Pretty URL dzcqalqx.elementor.cloud/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=3.0.1 IP 162.159.138.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-27 11:44:50 Last Seen2024-05-03 16:12:10 Times Seen627 Hash 37a18cd57014e833a5c4a7bfa6eea9b3 bdaa4dc40b15d010d66959bfe7a40b10292d1763 fad3123058cce0346ee9998342ef09cfa766dc1393ee3b5c2b450a18936c7d1b Loading...

	dzcqalqx.elementor.cloud/wp-includes/js/jquery/jquery.min.js?ver=3.7.1	88 kB	2023-11-03	2024-05-04
Pretty URL dzcqalqx.elementor.cloud/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP 162.159.138.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-03 09:26:43 Last Seen2024-05-04 00:03:20 Times Seen43869 Hash 826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf Loading...

	dzcqalqx.elementor.cloud/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0	115 kB	2023-11-03	2024-05-03
Pretty URL dzcqalqx.elementor.cloud/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 IP 162.159.138.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-03 09:26:42 Last Seen2024-05-03 20:52:01 Times Seen12179 Hash 9a98016751e498c06d434cc022ca1a44 6aa9af5fe436eab9c313de9f0bea072c04637624 da9ed5720b674f0d297fe621ac2d8d518c4e622bef1e9b0d4ae489dee9aa43f8 Loading...

	static.cloudflareinsights.com/beacon.min.js/v55bfa2fee65d44688e90c00735ed189a1713218998793	19 kB	2024-04-17	2024-05-03
Pretty URL static.cloudflareinsights.com/beacon.min.js/v55bfa2fee65d44688e90c00735ed189a1713218998793 IP 104.16.80.73 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 04:05:01 Last Seen2024-05-03 04:44:29 Times Seen1486 Hash 3be93fd15d2f7dee2fc0c8981c6fa5c6 8cd88c36fad3e96641dbc4d781f5ddbe5123312f 17106bf803d42bcf2f2bdf778ece084d3f91c68e7ea41dae7bff61fefa573dee Loading...

	dzcqalqx.elementor.cloud/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2	8.2 kB	2023-03-13	2024-05-03
Pretty URL dzcqalqx.elementor.cloud/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 IP 162.159.138.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:32:06 Last Seen2024-05-03 23:26:24 Times Seen51528 Hash dda652db133fddb9b80a05c6d1b5c540 60c8514c57a5db2980c4b046b0dd479bd427357b c1a9a3e223bad631dff12d33b5499eb145cb08d8621c20d9d73870e78d97afe4 Loading...

	dzcqalqx.elementor.cloud/_/?preview_id=562	1.3 kB	2024-04-20	2024-04-20
Pretty URL dzcqalqx.elementor.cloud/_/?preview_id=562 IP 162.159.138.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-20 18:20:22 Last Seen2024-04-20 18:20:44 Times Seen2 Hash 78c79626a4f1a39d0c34da738d4e4eaf e999ec36ca693ed10f4983ebc6c702a68ef4d848 8ab80b9f2f79595283c187de06324d9f7ef20a8cec054456ce1b35d97d126b15 Loading...

	dzcqalqx.elementor.cloud/cdn-cgi/challenge-platform/scripts/jsd/main.js	7.8 kB	2024-04-20	2024-04-20
Pretty URL dzcqalqx.elementor.cloud/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 162.159.138.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-20 18:00:39 Last Seen2024-04-20 18:20:44 Times Seen3 Hash 6351124d7efb66a29a3f1d5723616122 fde61024eb2cba0ce70b24ff6bdf7031937cb0d2 4da77181b10ef9e4d19c9ca94fae239769a55e436913c2ee0599c16f7b8353eb Loading...

	dzcqalqx.elementor.cloud/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2	21 kB	2023-04-01	2024-05-03
Pretty URL dzcqalqx.elementor.cloud/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 IP 162.159.138.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:26:15 Last Seen2024-05-03 23:26:24 Times Seen52504 Hash c4e68a0f3463c0bd3c39eab38815e881 0ce58644e9f3c5063a11453ff287c5ec096465a7 ca7dce2391845e8aec7da135f33fabd10f74eed28a532ac66fd01f761fcfb42f Loading...

	dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/form.10bf1a6475f0741920ff.bundle.min.js	19 kB	2024-04-11	2024-04-23
Pretty URL dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/form.10bf1a6475f0741920ff.bundle.min.js IP 162.159.138.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-11 07:10:38 Last Seen2024-04-23 18:39:51 Times Seen10 Hash 2eea76460b3f83cf379a0fceab653c50 2d6caf7f87c844b16c5137515593f0659f976857 ed92168d93e157dba1e9febdd23d814dd17468ffad0d706c3ce3f6db0f50e876 Loading...

	dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.22.0-cloud1	25 kB	2024-04-11	2024-04-23
Pretty URL dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.22.0-cloud1 IP 162.159.138.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-11 07:10:37 Last Seen2024-04-23 18:39:49 Times Seen10 Hash 8fbaec6437832264ce2d6f6dec1dacc8 340fcfbb728577c93863b1072e9e8545d80dc321 112e08940377c0edcbe80fa65619c3111f9bce1d46a367e65de20174650b89fa Loading...

	dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	12 kB	2023-03-07	2024-05-03
Pretty URL dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP 162.159.138.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-05-03 23:26:24 Times Seen53336 Hash 3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0 Loading...

	dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.22.0-cloud1	40 kB	2024-04-11	2024-04-23
Pretty URL dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.22.0-cloud1 IP 162.159.138.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-11 07:10:37 Last Seen2024-04-23 18:39:51 Times Seen12 Hash e25513535b0f31315a0ffd36f7c59a40 c994b70bb269f6ed4fa6ce0a1138b963f11343b6 81481273d37258c2ba2b8614642063d90f9e6fbd9d1da3bc0fb50e0bc034f5cf Loading...

	dzcqalqx.elementor.cloud/_/?preview_id=562	2.6 kB	2024-04-20	2024-04-20
Pretty URL dzcqalqx.elementor.cloud/_/?preview_id=562 IP 162.159.138.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-20 18:20:22 Last Seen2024-04-20 18:20:44 Times Seen2 Hash 05f68c5b1b0459364aedd92db8c22d56 d6a58d9845c89c5f1125a0171cdeaceedee02604 8197c80a205ca6d2b1f245a833abf6d54077676b76379ebe2b83eba8f058ef73 Loading...

	dzcqalqx.elementor.cloud/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1	14 kB	2023-05-09	2024-05-04
Pretty URL dzcqalqx.elementor.cloud/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP 162.159.138.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 19:21:05 Last Seen2024-05-04 00:03:19 Times Seen82297 Hash 9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89 Loading...

	dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.22.0-cloud1	63 kB	2024-04-11	2024-04-23
Pretty URL dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.22.0-cloud1 IP 162.159.138.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-11 07:10:37 Last Seen2024-04-23 18:39:48 Times Seen9 Hash 6068d99d1dd62c4d7a74bc87f3bcb4d7 4651efb2da723c0d2fe5ebf857cc7ca6789782f6 8e7f0dbbf69f5cdc4be4dccfac71a6dc49fab3be83d2dfae49d8c94eb8b5c359 Loading...

	dzcqalqx.elementor.cloud/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0	6.6 kB	2023-11-03	2024-05-03
Pretty URL dzcqalqx.elementor.cloud/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0 IP 162.159.138.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-03 09:26:42 Last Seen2024-05-03 23:26:24 Times Seen13851 Hash fd7ef2e4737acd74fd0dcdc3b515e304 0d792b33f12a48ee8aaaf2560a63a5682470645b 1d52e1ac7d3bc25a8b0ffc257153f9dd50249f96fe9a4df5e0d771241a69062c Loading...

	dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.22.0-cloud1	38 kB	2024-04-11	2024-04-23
Pretty URL dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.22.0-cloud1 IP 162.159.138.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-11 07:10:38 Last Seen2024-04-23 18:39:51 Times Seen10 Hash 04c49c7253b000e423dd3274bd73bb47 f0c46c56c6300151c434c40c0d6a5fd50fe63980 6cbccd54ef19853d861ffb2118a952228e7dbe89668e8939b6e53a58e41d6092 Loading...

	unknown	247 B	2024-04-20	2024-04-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-20 18:20:44 Last Seen2024-04-20 18:20:44 Times Seen1 Hash 4aaae125649ba464c198b5f596ed5648 fb3eeae388a8ae56f9e764d2d54475160d34c89a c41f4b7b555b5cc04e0603be0aff70ea5a2a5e278ebb8468b141f56aedd531c1 Loading...

	dzcqalqx.elementor.cloud/_/?preview_id=562	1.1 kB	2024-04-20	2024-04-20
Pretty URL dzcqalqx.elementor.cloud/_/?preview_id=562 IP 162.159.138.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-20 18:20:44 Last Seen2024-04-20 18:20:44 Times Seen1 Hash 012ce9c8b6f686097fd9862a892c974c 6862a1a5f1441b9e08e5d37041c1aa334d7bf754 5515d05b1cca5e8e085e18e7a184e89e3badcf0c8c25c09094d93701552cf008 Loading...

	dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.22.0-cloud1	5.8 kB	2024-04-11	2024-04-23
Pretty URL dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.22.0-cloud1 IP 162.159.138.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-11 07:10:37 Last Seen2024-04-23 18:39:50 Times Seen7 Hash 27f81a6c59ba4718ef4ca769c691046d e122c6bed95f5862d8f115a19ada65478c73d839 fda9bf5594c42fabe8a019aa81aed0695a7ff723565c8c52dd462a14b239e166 Loading...

	dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.22.0-cloud1	5.0 kB	2024-04-11	2024-04-23
Pretty URL dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.22.0-cloud1 IP 162.159.138.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-11 07:10:37 Last Seen2024-04-23 18:39:48 Times Seen8 Hash 3dbeeacc0e809a6f3a09faa3d0f8dea4 22283d12e1c202059388a97b2c049a9b2c400bf1 512191dc7b75d089eb55638093d24b19798504a785d702c98ef2bb774aebd299 Loading...

	dzcqalqx.elementor.cloud/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1	4.6 kB	2023-08-08	2024-05-03
Pretty URL dzcqalqx.elementor.cloud/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1 IP 162.159.138.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-08 23:25:56 Last Seen2024-05-03 20:52:01 Times Seen20197 Hash 7bd48eb3bd568033e96caf0fb62e6690 b38066999294b99d92d95db5f38bc15707eb1f22 7868467c94a5aa0b3f11ef542f45287967f9627b3b5acdc86e47f8f77a126596 Loading...

	dzcqalqx.elementor.cloud/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef	9.4 kB	2023-08-08	2024-05-03
Pretty URL dzcqalqx.elementor.cloud/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef IP 162.159.138.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-08 23:25:56 Last Seen2024-05-03 20:52:01 Times Seen18539 Hash c2c4e2a562e06e1cb22293a5b920aca6 a7b5a369ac4883f1ee7fa701b238d20238b675ca 698e93fe491cc7bbf07a470579a33dbd0db53c19142b7be41ebfd39a23aef11f Loading...

	dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/popup.085c1727e36940b18f29.bundle.min.js	751 B	2024-04-11	2024-04-23
Pretty URL dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/popup.085c1727e36940b18f29.bundle.min.js IP 162.159.138.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-11 07:10:37 Last Seen2024-04-23 18:39:50 Times Seen7 Hash 7ee7bb265c2ae9ba1b47989d623890b6 eb22d6eca7f3d63b855620ce1971b25a58a6e097 d9e04f15200493fb03da21332461836814c9cc353e11024c7428de5fa2261415 Loading...

HTTP Transactions (37)

URL IP Response Size

dzcqalqx.elementor.cloud/wp-content/uploads/2023/12/att_hz_lg_lkp_rgb_pos-1024x504.jpg

162.159.138.9

200 OK

26 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/uploads/2023/12/att_hz_lg_lkp_rgb_pos-1024x504.jpg
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], progressive, precision 8, 1024x504, components 3
Size
26 kB (26349 bytes)
Hash
b936323bdb2b4526ada2864637e01084
6c3130f3d264a5655f75da8777cc35df499c79d4
eb0249bb04590e2ebda75f8bf42d82dbe9aeb3c7d8cc8877e55f1e37e503b8bb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/12/att_hz_lg_lkp_rgb_pos-1024x504.jpg HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:20:17 GMT
content-type: image/jpeg
content-length: 26349
cf-ray: 877675f89d1556c1-OSL
cf-cache-status: HIT
accept-ranges: bytes
age: 25
cache-control: max-age=315360000
etag: "656f381e-934d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 05 Dec 2023 14:47:58 GMT
vary: Accept-Encoding
cf-bgj: imgq:100,h2pri
cf-polished: origSize=37709
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=SYtyATFWySeqa67QzRFLz.zDegeLz8ZI24_5cJHsa4o-1713630017-1.0.1.1-KRMnSt55Zst_GI54zH7eYmruQbrgnyyWRJfcbZP22wUhyH.0mbJwQwIB3EL5UnWd_FzyEdR4HPZSxLM5Ggln7Q; path=/; expires=Sat, 20-Apr-24 16:50:17 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=JO9iwJCrUqmaAFfjbYGVoAZWYd0Sh__odenXFDar9Zk-1713630017434-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.22.0-cloud1

162.159.138.9

200 OK

15 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.22.0-cloud1
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JavaScript source, ASCII text, with very long lines (39932)
Size
15 kB (15066 bytes)
Hash
e25513535b0f31315a0ffd36f7c59a40
c994b70bb269f6ed4fa6ce0a1138b963f11343b6
81481273d37258c2ba2b8614642063d90f9e6fbd9d1da3bc0fb50e0bc034f5cf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.22.0-cloud1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:20:17 GMT
content-type: application/javascript
cf-ray: 877675f8cd4356c1-OSL
cf-cache-status: HIT
age: 25
cache-control: max-age=315360000
etag: W/"66166d38-9c24"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:04 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=hdirMiMANUKgdiwzAz.rhU4f_MBYFCBntijWmejCIBs-1713630017-1.0.1.1-lZkZjFaQXL4izjkONJcRaMeJDO4c0J0b9HKN8qXQa_p2uYGpwpfQ.2lvwNXkFXYWkFQu0PVK_rPFn.RYvAdxng; path=/; expires=Sat, 20-Apr-24 16:50:17 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=eIHvpFl8t2LN_5bNbP7hwQJlpFOnLPXtR4_sr8o4Rf0-1713630017446-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-content/uploads/elementor/css/global.css?ver=1712784082

162.159.138.9

200 OK

5.2 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/uploads/elementor/css/global.css?ver=1712784082
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
5.2 kB (5153 bytes)
Hash
3b170027b0a3e7a5a00ebb8bbab0f7a2
fd083ec348d9a621d6aea233d9da56ad23d131d8
b8a4055c8e7fce6cdce5cabe110d20bc133f1853d68f399cdeb4625aadd4f54f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/global.css?ver=1712784082 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:20:17 GMT
content-type: text/css
cf-ray: 877675f89d0c56c1-OSL
cf-cache-status: HIT
age: 25
cache-control: max-age=315360000
etag: W/"661702d2-2c1fb"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 21:21:22 GMT
vary: Accept-Encoding
cf-bgj: minify
cf-polished: origSize=180731
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=c5aDgOsr9vg9__mbx701EosizRfiF7ppdEdoXaZrZrA-1713630017-1.0.1.1-_NouCDXZss82s4WhQWlaniXt0RVyAPAyuSa_hktP6MPY0h4CQWBpI7PahYfBJ3vkKVI5i5tlxO5z7CUpo9032Q; path=/; expires=Sat, 20-Apr-24 16:50:17 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=UKdQFJ9Koc6CwFuf7XMWWcdCWmUIpanTlyz29iucMCk-1713630017426-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1

162.159.138.9

200 OK

25 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JavaScript source, ASCII text, with very long lines (4592)
Size
25 kB (25202 bytes)
Hash
7bd48eb3bd568033e96caf0fb62e6690
b38066999294b99d92d95db5f38bc15707eb1f22
7868467c94a5aa0b3f11ef542f45287967f9627b3b5acdc86e47f8f77a126596

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:20:17 GMT
content-type: application/javascript
cf-ray: 877675f8bd2e56c1-OSL
cf-cache-status: HIT
age: 25
cache-control: max-age=315360000
etag: W/"649af113-1213"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 27 Jun 2023 14:24:19 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=fRPDHVR.e.cEjVTjKVca12wb562o4fwGghTDMVZde0k-1713630017-1.0.1.1-lqFZLHoYkxQ98H8gyksdG38C3DRE4dq_vykIRDYlWO2q6MSIBMzh.rbhck544_txrsPDoGv2MFpVo3nTkFqTqQ; path=/; expires=Sat, 20-Apr-24 16:50:17 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=VIG7cB9Zy71SCWomEfxqAS7AepGymsJtwnANxrsB3a0-1713630017442-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js

162.159.138.9

200 OK

4.2 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JavaScript source, ASCII text, with very long lines (7831), with no line terminators
Size
4.2 kB (4198 bytes)
Hash
6351124d7efb66a29a3f1d5723616122
fde61024eb2cba0ce70b24ff6bdf7031937cb0d2
4da77181b10ef9e4d19c9ca94fae239769a55e436913c2ee0599c16f7b8353eb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:20:17 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, public
x-content-type-options: nosniff
vary: accept-encoding
content-encoding: br
set-cookie: __cf_bm=KVK736_yDbzJC8ru_3VOdaQOgcTJYzbbf9.RxWzWT4I-1713630017-1.0.1.1-hcYnokIOQ1ysHrWR395ENC828HZ3piBccC5Amql9dgCE8eyvKAR0zxR7MRCgVJqvtJUVL1zGcRB4QbYxXQ59DA; path=/; expires=Sat, 20-Apr-24 16:50:17 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
x-powered-by: Elementor Cloud
server: cloudflare
cf-ray: 877675fb0f0056c1-OSL
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/cdn-cgi/challenge-platform/h/b/jsd/r/877675f68db90b51

162.159.138.9

200 OK

0 B

URL POST HTTP/3
dzcqalqx.elementor.cloud/cdn-cgi/challenge-platform/h/b/jsd/r/877675f68db90b51
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/jsd/r/877675f68db90b51 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12194
Origin: https://dzcqalqx.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:20:17 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=eOb.ztfxmhb81HJ7Rjhpo9SwaD0xcLXShzkj7iuJQ34-1713630017-1.0.1.1-jhoo7qYxA2mqKN0tEY9KSSVHZLCYlhJ1KMzpR9Ufn9i3OCO2ExakU8PcovBrhj2Gc2WikQcjr4fMsB5J0WzcOg; path=/; expires=Sun, 20-Apr-25 16:20:17 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
__cf_bm=HIHOn6oakRNEPZieUGKZSGfFHg1L3Zn8uWW.ASY244c-1713630017-1.0.1.1-J68psbLA.QiQ9KswdSCmWCc3LO0_Jc_M0SKQXlW7RBzpx4BWVqdjqzBk0UJDwOWsdPw74D6FANEAtR9eLh_vow; path=/; expires=Sat, 20-Apr-24 16:50:17 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
x-powered-by: Elementor Cloud
server: cloudflare
cf-ray: 877675fbefcf56c1-OSL
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/cdn-cgi/rum?

162.159.138.9

204 No Content

0 B

URL POST HTTP/3
dzcqalqx.elementor.cloud/cdn-cgi/rum?
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1074
Origin: https://dzcqalqx.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
date: Sat, 20 Apr 2024 16:20:18 GMT
access-control-allow-origin: https://dzcqalqx.elementor.cloud
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 877675fcc88c56c1-OSL
x-frame-options: DENY
x-content-type-options: nosniff

dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.22.0-cloud1

162.159.138.9

200 OK

2.0 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.22.0-cloud1
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
ASCII text, with very long lines (11009)
Size
2.0 kB (2017 bytes)
Hash
d308fd54eaa5f4797eb66d61e98be087
9f680ec552c9be7ad6c86afe3c2f82ed8667d866
f62b56d8aeac35080b423aaa3a0897b0fcf66b807f203c7ac77e2fd7b6e73776

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.22.0-cloud1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:20:17 GMT
content-type: text/css
cf-ray: 877675f89d0856c1-OSL
cf-cache-status: HIT
age: 25
cache-control: max-age=315360000
etag: W/"66166d4e-2b2d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:26 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=wDu38KHccvPy8cEHFLSwo3VdE4HBZBCXx5H6ImEdKjA-1713630017-1.0.1.1-hbesLQKTZ3BG92ady5gOh6oCA1EhMODeQftOXpS0J5nYoyzPQB.gOXvVke3ExxOlYcX0Fn_oJr.KinCCcHPBiw; path=/; expires=Sat, 20-Apr-24 16:50:17 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=UKdQFJ9Koc6CwFuf7XMWWcdCWmUIpanTlyz29iucMCk-1713630017426-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1

162.159.138.9

200 OK

5.6 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JavaScript source, ASCII text, with very long lines (13479)
Size
5.6 kB (5555 bytes)
Hash
9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:20:17 GMT
content-type: application/javascript
cf-ray: 877675f8ad1f56c1-OSL
cf-cache-status: HIT
age: 25
cache-control: max-age=315360000
etag: W/"6482bd64-3509"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 09 Jun 2023 05:49:24 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=Ced8abR7HuWXeg5REyxVxQiE_E6Vrumet10MIr2.Q0s-1713630017-1.0.1.1-9TtMAYunQuee.a0p468BSTeOapOMAwvWA2TwqcLYFOCi5wLdy9Fvfrj46b83yUhNPHUgccaEZr6EoRmz65zc0Q; path=/; expires=Sat, 20-Apr-24 16:50:17 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=N6FXHAaqXJr891.5E2GwVoxX3WYsKm9m6G1DEDuKb3E-1713630017427-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.22.0-cloud1

162.159.138.9

200 OK

19 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.22.0-cloud1
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (63224)
Size
19 kB (18890 bytes)
Hash
6068d99d1dd62c4d7a74bc87f3bcb4d7
4651efb2da723c0d2fe5ebf857cc7ca6789782f6
8e7f0dbbf69f5cdc4be4dccfac71a6dc49fab3be83d2dfae49d8c94eb8b5c359

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.22.0-cloud1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:20:17 GMT
content-type: application/javascript
cf-ray: 877675f8ad2056c1-OSL
cf-cache-status: HIT
age: 25
cache-control: max-age=315360000
etag: W/"66166d39-f721"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:05 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=q_cvwKUWb7kkRGNw1Q8nJdh2f4Vi29BHl_Z.sGMBVUg-1713630017-1.0.1.1-E7MrVBJzBmfOPkggk_5juACyYghnwKORLhRdJk.C9XXKUXLrvQlnE765ht95zwj8u1lnCLveX75lv38WYIIY8g; path=/; expires=Sat, 20-Apr-24 16:50:17 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=FFFafOwutTSV006gc8GjrNy8z9uSmmYoBpmzQ2IneNQ-1713630017416-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/popup.085c1727e36940b18f29.bundle.min.js

162.159.138.9

200 OK

11 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/popup.085c1727e36940b18f29.bundle.min.js
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JavaScript source, ASCII text, with very long lines (707)
Size
11 kB (11141 bytes)
Hash
7ee7bb265c2ae9ba1b47989d623890b6
eb22d6eca7f3d63b855620ce1971b25a58a6e097
d9e04f15200493fb03da21332461836814c9cc353e11024c7428de5fa2261415

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/popup.085c1727e36940b18f29.bundle.min.js HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:20:18 GMT
content-type: application/javascript
cf-ray: 877675fca87956c1-OSL
cf-cache-status: HIT
age: 25
cache-control: max-age=315360000
etag: W/"66166d50-2ef"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:28 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=TiWyhm.jWTiDpw5JiPZtFQ5peb.I_CO9p55wHR_sPho-1713630018-1.0.1.1-6YMFOFOO1llectIr0MPGCLiGDWBLK.GwQBR8v4W.8loWOm319cernY2UrtN1W_Y3Y7bbAIENPQsUdmu_ozfv5w; path=/; expires=Sat, 20-Apr-24 16:50:18 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=8G4rescaIsYstLrx8a53snqjYDbYVOYoOKbfIc.Wpfk-1713630018048-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.22.0-cloud1

162.159.138.9

200 OK

7.7 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.22.0-cloud1
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JavaScript source, ASCII text, with very long lines (5781)
Size
7.7 kB (7711 bytes)
Hash
27f81a6c59ba4718ef4ca769c691046d
e122c6bed95f5862d8f115a19ada65478c73d839
fda9bf5594c42fabe8a019aa81aed0695a7ff723565c8c52dd462a14b239e166

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.22.0-cloud1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:20:17 GMT
content-type: application/javascript
cf-ray: 877675f8ad1b56c1-OSL
cf-cache-status: HIT
age: 25
cache-control: max-age=315360000
etag: W/"66166d50-16c1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:28 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=52m_fUggJOXwanjz7erH9uE1pNFu.EemmK_4qRANLi0-1713630017-1.0.1.1-LFlXo7emjYqKyfSe9etUAhljcJ5UOT6DM1a2BJBxut8KZW60Kkwz1G2wssu4wnQsC.8EJWxVhJqfwi8BoV4Khw; path=/; expires=Sat, 20-Apr-24 16:50:17 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=cvp7Sa2FDUcIUfGFep8x7ShhVYkcL89r3p9fAg5LpcU-1713630017419-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.22.0-cloud1

162.159.138.9

200 OK

12 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.22.0-cloud1
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JavaScript source, ASCII text, with very long lines (4957)
Size
12 kB (11707 bytes)
Hash
3dbeeacc0e809a6f3a09faa3d0f8dea4
22283d12e1c202059388a97b2c049a9b2c400bf1
512191dc7b75d089eb55638093d24b19798504a785d702c98ef2bb774aebd299

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.22.0-cloud1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:20:17 GMT
content-type: application/javascript
cf-ray: 877675f8ad1c56c1-OSL
cf-cache-status: HIT
age: 25
cache-control: max-age=315360000
etag: W/"66166d39-1385"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:05 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=zO7Xz.cEh6rw._chuNcmgtfslpQJDbB6wDBh3ZQdci8-1713630017-1.0.1.1-za2TewCks9QWXCqdrYRPilWTHzByxxe5YImMhBoSoEGDL_tIZ0topVkDWtA9I0hhdljcTD1O3eCqEZsJUvuJ_g; path=/; expires=Sat, 20-Apr-24 16:50:17 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=UKdQFJ9Koc6CwFuf7XMWWcdCWmUIpanTlyz29iucMCk-1713630017426-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-includes/js/jquery/jquery.min.js?ver=3.7.1

162.159.138.9

200 OK

36 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
36 kB (36483 bytes)
Hash
826eb77e86b02ab7724fe3d0141ff87c
79cd3587d565afe290076a8d36c31c305a573d18
cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:20:17 GMT
content-type: application/javascript
cf-ray: 877675f8ad1d56c1-OSL
cf-cache-status: HIT
age: 25
cache-control: max-age=315360000
etag: W/"660a4adb-15601"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 01 Apr 2024 05:49:15 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=xIv_C1dSicqjyYWRxTcVEKUrO41wzIfCI8smuNgwoYQ-1713630017-1.0.1.1-LdGodWKV2ccmixQLBuOX4w4VHPjFWZj59s_tngCL7CtKr36IfhnWr1B_U5X8jl5.oObLOHI2DhD60XuwFD6OrA; path=/; expires=Sat, 20-Apr-24 16:50:17 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=cvp7Sa2FDUcIUfGFep8x7ShhVYkcL89r3p9fAg5LpcU-1713630017419-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-content/themes/hello-elementor/theme.min.css?ver=3.0.1

162.159.138.9

200 OK

11 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/themes/hello-elementor/theme.min.css?ver=3.0.1
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
Unicode text, UTF-8 text, with very long lines (5127), with no line terminators
Size
11 kB (10923 bytes)
Hash
08fae0e9f8ce7e1cc244d6957a0fc71c
958fbf4f8b318e39612dd25eefae43c006769883
30c2e510f9fac929eeab0ea915d80904a4e72b22eb8612dd8c83c7dfb71862e0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/hello-elementor/theme.min.css?ver=3.0.1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:20:17 GMT
content-type: text/css
cf-ray: 877675f88cfd56c1-OSL
cf-cache-status: HIT
age: 25
cache-control: max-age=315360000
etag: W/"65b17d1b-140b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 24 Jan 2024 21:11:55 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=N9qXPQUodEr6dGIXsSseoDoqN7YH0YjFjOzXcj.1zL8-1713630017-1.0.1.1-1l7VDjT56uZfRQMFXVMP1blaYnWb4Dtt.Pz2PYytwrCdyiAsj.xkp56g_ILJiVEjBB7C.w4J4RgXpA.e5C9N8g; path=/; expires=Sat, 20-Apr-24 16:50:17 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=FFFafOwutTSV006gc8GjrNy8z9uSmmYoBpmzQ2IneNQ-1713630017416-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef

162.159.138.9

200 OK

3.8 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
data
Size
3.8 kB (3778 bytes)
Hash
c2c4e2a562e06e1cb22293a5b920aca6
a7b5a369ac4883f1ee7fa701b238d20238b675ca
698e93fe491cc7bbf07a470579a33dbd0db53c19142b7be41ebfd39a23aef11f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:20:17 GMT
content-type: application/javascript
cf-ray: 877675f8bd3356c1-OSL
cf-cache-status: HIT
age: 25
cache-control: max-age=315360000
etag: W/"649c934e-24e5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 28 Jun 2023 20:08:46 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=lYO6EI7wmmFogUee06tQ0eQzKw3hj.OoYEFE0i.G0ws-1713630017-1.0.1.1-_F80KmDB1yYGSdCX0.ggO.5VlOg5XudLIF4ctyHSOLHQE9mmfOdA5BIVPt88cbRSTlZjxgepSYodtva5oLx2vQ; path=/; expires=Sat, 20-Apr-24 16:50:17 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=PoHIemCeGLBRr8xnnvfjA7M6g5.9YawO0QTn1.IJgsE-1713630017439-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-content/themes/hello-elementor/style.min.css?ver=3.0.1

162.159.138.9

200 OK

5.8 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/themes/hello-elementor/style.min.css?ver=3.0.1
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
ASCII text, with very long lines (5770), with no line terminators
Size
5.8 kB (5756 bytes)
Hash
3e929a2fad069f519621df29efd3db08
5f28c42c92f486a7450781734b008d1d8bd232b2
bab510c0226c69bce87b7ae90a6fc2ed90f5dbd6f626cccbef64660651e64013

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/hello-elementor/style.min.css?ver=3.0.1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:20:17 GMT
content-type: text/css
cf-ray: 877675f88cfb56c1-OSL
cf-cache-status: HIT
age: 25
cache-control: max-age=315360000
etag: W/"65b17d1b-167c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 24 Jan 2024 21:11:55 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=ENBOneyGCJF3gRuITU5sununo_oZpA07AHcOmRoBzGo-1713630017-1.0.1.1-atytYT604fTBcohdVT_yA0vt9dJYuhIczasQXzLxOgrWH6AuB2B6vlRxHe5KDDpkBdViHYY4eSmKukgy4XmCTg; path=/; expires=Sat, 20-Apr-24 16:50:17 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=q.h_xnxF.BWAfxsk8oOWNExG1Ga8OlF5_cSw0x6CkPY-1713630017414-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2

216.58.207.227

200 OK

24 kB

URL GET HTTP/2
fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23580, version 1.0
Size
24 kB (23580 bytes)
Hash
e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537

HTTP Headers

GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dzcqalqx.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:21:46 GMT
expires: Fri, 18 Apr 2025 17:21:46 GMT
cache-control: public, max-age=31536000
age: 169111
last-modified: Tue, 02 May 2023 15:17:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

dzcqalqx.elementor.cloud/wp-content/themes/hello-elementor/header-footer.min.css?ver=3.0.1

162.159.138.9

200 OK

7.3 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/themes/hello-elementor/header-footer.min.css?ver=3.0.1
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
Unicode text, UTF-8 text, with very long lines (7330), with no line terminators
Size
7.3 kB (7325 bytes)
Hash
b71e66a0b0751d118f8eacfb714c8438
cfff91615648b2046e921bf3c76e194180a1b383
43385d84e39cb9ece06f37d7c2af3638a6038d0d1d1409a9e0ac30717d981539

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/hello-elementor/header-footer.min.css?ver=3.0.1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:20:17 GMT
content-type: text/css
cf-ray: 877675f89cfe56c1-OSL
cf-cache-status: HIT
age: 25
cache-control: max-age=315360000
etag: W/"65b17d1b-1c9d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 24 Jan 2024 21:11:55 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=BCiM0ncqp30YbvPFwuqXEJcWhPBUYxdRnVX4yfXydYk-1713630017-1.0.1.1-sA0M0FC_zCM7V0kDf7QTNLGJOM5ccOTvft0c6PmfDgWHoQKS75A46tBqozazT9s.ZR49nAwp3XpJ_RsVPlBZ8g; path=/; expires=Sat, 20-Apr-24 16:50:17 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=FFFafOwutTSV006gc8GjrNy8z9uSmmYoBpmzQ2IneNQ-1713630017416-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

static.cloudflareinsights.com/beacon.min.js/v55bfa2fee65d44688e90c00735ed189a1713218998793

104.16.80.73

200 OK

19 kB

URL GET HTTP/2
static.cloudflareinsights.com/beacon.min.js/v55bfa2fee65d44688e90c00735ed189a1713218998793
IP
104.16.80.73:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerGoogle Trust Services LLC
Subjectcloudflareinsights.com
Fingerprint73:92:5A:16:97:55:FC:A5:32:7C:F3:9D:0C:84:EF:F3:2F:AA:B5:00
ValiditySun, 10 Mar 2024 02:33:42 GMT - Sat, 08 Jun 2024 02:33:41 GMT

File type
JavaScript source, ASCII text, with very long lines (19261), with no line terminators
Size
19 kB (19261 bytes)
Hash
3be93fd15d2f7dee2fc0c8981c6fa5c6
8cd88c36fad3e96641dbc4d781f5ddbe5123312f
17106bf803d42bcf2f2bdf778ece084d3f91c68e7ea41dae7bff61fefa573dee

HTTP Headers

GET /beacon.min.js/v55bfa2fee65d44688e90c00735ed189a1713218998793 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dzcqalqx.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 20 Apr 2024 16:20:17 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2024.4.0"
last-modified: Mon, 15 Apr 2024 22:09:58 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 877675f8ebd6b505-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/form.10bf1a6475f0741920ff.bundle.min.js

162.159.138.9

200 OK

19 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/form.10bf1a6475f0741920ff.bundle.min.js
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JavaScript source, ASCII text, with very long lines (19185)
Size
19 kB (19229 bytes)
Hash
2eea76460b3f83cf379a0fceab653c50
2d6caf7f87c844b16c5137515593f0659f976857
ed92168d93e157dba1e9febdd23d814dd17468ffad0d706c3ce3f6db0f50e876

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/form.10bf1a6475f0741920ff.bundle.min.js HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:20:17 GMT
content-type: application/javascript
cf-ray: 877675fc583056c1-OSL
cf-cache-status: HIT
age: 24
cache-control: max-age=315360000
etag: W/"66166d50-4b1d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:28 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=BvNHd8Smwhbz1gR2.dzRjXE_j04bIjMOgoxnAO1cyQw-1713630017-1.0.1.1-epXZqR9KAGHJAhIU.qXu9OnHzX9D862XClHWlfGRPa56CsqRGKH0GJN1HPBjZNkPfkz18UTW3GBO.Y2tMG1ynQ; path=/; expires=Sat, 20-Apr-24 16:50:17 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=m0WUAw1XOcDFB8MzwIiCewVoPJ9uR3i0gUjpTVdrMyE-1713630017998-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/lib/swiper/v8/css/swiper.min.css?ver=8.4.5

162.159.138.9

200 OK

16 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/lib/swiper/v8/css/swiper.min.css?ver=8.4.5
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
ASCII text, with very long lines (16214)
Size
16 kB (16471 bytes)
Hash
a2431bc290cf34e330e11ec4cfce1247
32a53342901fef5f4f4dbb26a555e730f84437a4
c57e64fcb72bddafa9c38de574441c3e69ac6c961df96b0cad34da83658bd196

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/swiper/v8/css/swiper.min.css?ver=8.4.5 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:20:17 GMT
content-type: text/css
cf-ray: 877675f89d0656c1-OSL
cf-cache-status: HIT
age: 25
cache-control: max-age=315360000
etag: W/"66166d3b-4057"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:07 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=OdRPP3kVFTy71Mkv7d9XBa9xaeGKXS_7nlnzHbz0uJk-1713630017-1.0.1.1-JcCAqsvdt.Khx0d3doXVMpcPuny80O9JkhjM9rJwaiUX3_2ZdIYdoQqlp5HFzWnKZFeEBux5JzIb086.0Nsl6w; path=/; expires=Sat, 20-Apr-24 16:50:17 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=qzcOnbABDjHEQtPLM95.xDPf8qM5che3U1V5C4JIIVo-1713630017403-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css?family=Lato%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.4.4

142.250.74.74

200 OK

7.7 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Lato%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.4.4
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
ASCII text, with very long lines (7874), with no line terminators
Size
7.7 kB (7694 bytes)
Hash
83883a3950b917f5cf818c378f3d7534
0e597e0d42060491b3a0bf1d78f519a540d32489
366a512bc79e7d75125a712c73136dd3d916cfbe75e82e6d4bfecea90d835a03

HTTP Headers

GET /css?family=Lato%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.4.4 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 20 Apr 2024 16:20:17 GMT
date: Sat, 20 Apr 2024 16:20:17 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

dzcqalqx.elementor.cloud/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=3.0.1

162.159.138.9

200 OK

2.9 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=3.0.1
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
ASCII text, with very long lines (3014), with no line terminators
Size
2.9 kB (2937 bytes)
Hash
3558ffe726402b8287e07c4f6f1a23e9
cf93a5eb6abbce3dee64f76dcec9858d462fd2aa
fcf7772f63ca13b9ae424e83f2b23a7929873864b47f2d10305297f7d7445afa

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=3.0.1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:20:17 GMT
content-type: application/javascript
cf-ray: 877675f8ad1956c1-OSL
cf-cache-status: HIT
age: 25
cache-control: max-age=315360000
etag: W/"65b17d1b-b79"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 24 Jan 2024 21:11:55 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=VJu8sLC1ODUqpAEOgv14yYec2cJlhuYMV2qUjy80Wlo-1713630017-1.0.1.1-XPS3wEdamv2Yvw87lJlnPsaz51F7Nd0ALwf4XIBIHhV3d2fAhIOYI1fcl.2eqjkipovNESl.0t1ES78rvKdigQ; path=/; expires=Sat, 20-Apr-24 16:50:17 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=MMRytoT88U1f7ybHYmagpo8Q.7trDhSeCpjo4pm_40E-1713630017422-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0

162.159.138.9

200 OK

115 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type

Size
115 kB (115127 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:20:17 GMT
content-type: application/javascript
cf-ray: 877675f8ad2a56c1-OSL
cf-cache-status: HIT
age: 25
cache-control: max-age=315360000
etag: W/"660a4adb-1c1b7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 01 Apr 2024 05:49:15 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=SebworDJMDq4RfUZE_QQa5m_IRp_3d3aC1GIf15hTEc-1713630017-1.0.1.1-YSwV_REGRvriKNJZwy_x1stGlnyfZ0fFp4vBTZ3zOK7MByzpFEz4DhemMCbCYN6ma9lc1o0RkzmxLEOyDf5kQg; path=/; expires=Sat, 20-Apr-24 16:50:17 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=G2u9OHNZY_XhquliHyQGq_lbYZk9OM2mVVy7T2RdwqY-1713630017435-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-content/uploads/elementor/css/post-562.css?ver=1712784082

162.159.138.9

200 OK

3.3 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/uploads/elementor/css/post-562.css?ver=1712784082
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
ASCII text, with very long lines (3297), with no line terminators
Size
3.3 kB (3297 bytes)
Hash
eca593e1c0a5f0f9b3666506a8689988
ac8ca81cedcdef5ea159d2c27b56c5688ef440cc
dafc257b5b58c1ef3fb750bc6e5b7f0a5dba93cb2a008e85a223a202b39680b0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/post-562.css?ver=1712784082 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:20:17 GMT
content-type: text/css
cf-ray: 877675f89d1056c1-OSL
cf-cache-status: HIT
age: 25
cache-control: max-age=315360000
etag: W/"661702d2-d2e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 21:21:22 GMT
vary: Accept-Encoding
cf-bgj: minify
cf-polished: origSize=3374
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=CdlWrcH86__mTjNLZiRzcgCshGkvf9vlI6A60sYLY1Q-1713630017-1.0.1.1-77yAZi7P7MI0bApZRxTwCVDmEXdtyMSZxeX_vjShlIOwitfYw.gomZCVDJGzJ3yatBblWRJGtzrfQSD8V9R0lg; path=/; expires=Sat, 20-Apr-24 16:50:17 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=nvl3E8kRhC4DwmyNeg.dlZF3EOirGUpU0ilGchbIPH4-1713630017432-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.22.0-cloud1

162.159.138.9

200 OK

25 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.22.0-cloud1
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JavaScript source, ASCII text, with very long lines (25022)
Size
25 kB (25066 bytes)
Hash
8fbaec6437832264ce2d6f6dec1dacc8
340fcfbb728577c93863b1072e9e8545d80dc321
112e08940377c0edcbe80fa65619c3111f9bce1d46a367e65de20174650b89fa

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.22.0-cloud1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:20:17 GMT
content-type: application/javascript
cf-ray: 877675f8bd3656c1-OSL
cf-cache-status: HIT
age: 25
cache-control: max-age=315360000
etag: W/"66166d50-61ea"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:28 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=llt0ZsE3iomjCmm8h1RSs18BBjiU6tIzqrd_lhySvB4-1713630017-1.0.1.1-I0_bSADiRe7a5Nihez38Vm59G1K0rP2QeNAkRvIouIpiwHkhyXjIkgq9tzQyD1zI34vHbAa0FRYc8bnNzrt8tw; path=/; expires=Sat, 20-Apr-24 16:50:17 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=MgHUmHGtLMTm_3ClyvJbm6ihnQU6CQ_z8yhg71ef4kQ-1713630017429-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.22.0-cloud1

162.159.138.9

200 OK

38 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.22.0-cloud1
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JavaScript source, ASCII text, with very long lines (38238)
Size
38 kB (38282 bytes)
Hash
04c49c7253b000e423dd3274bd73bb47
f0c46c56c6300151c434c40c0d6a5fd50fe63980
6cbccd54ef19853d861ffb2118a952228e7dbe89668e8939b6e53a58e41d6092

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.22.0-cloud1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:20:17 GMT
content-type: application/javascript
cf-ray: 877675f8cd4556c1-OSL
cf-cache-status: HIT
age: 25
cache-control: max-age=315360000
etag: W/"66166d51-958a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:29 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=EmMPzw6R8eSP35prhYkQVAW7LJMTTi.RB5ISL1Aj4o4-1713630017-1.0.1.1-g8XQ4jn4ctKLjjXSwKMpxx0zGB9EF_ryKGsADYBPSyq1nBVEEEDXM3UcKAj2J2VJONVQx3azaA6aUFQsWuWp.g; path=/; expires=Sat, 20-Apr-24 16:50:17 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=l8OS3VID1T1eG5HzqpYTfCRhkoz87SiUq5EQFeR_MyM-1713630017448-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/favicon.ico

162.159.138.9

200 OK

286 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/favicon.ico
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
MS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Size
286 kB (285478 bytes)
Hash
838a2d9c7ed09540e1854ada805993fe
70405096fbca9399ba57356caf400242e0455271
ab03bc7123cd8e66c6706cf98819138e657af34842831a45f936cf97947854e4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:20:17 GMT
content-type: image/x-icon
cf-ray: 877675fb6f5556c1-OSL
cf-cache-status: HIT
age: 24
etag: W/"65140b4b-45b26"
last-modified: Wed, 27 Sep 2023 11:00:27 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=Cg2.vH3G1GVNwnP.asdzWohGL5wHZ6rlNFkJYy4K95c-1713630017-1.0.1.1-cYtbQb2B3sGlsTZ9M8PYX9ULJP8B5CJ1sFRkXd0Y4DW2MwNF7YcNsOapUhuTgQ64XgDzpx0fdth3dnsUdFKvwQ; path=/; expires=Sat, 20-Apr-24 16:50:17 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=em6dR3RUCqZU2JmizWtZQ7fiwSLzlS9aZBzk291qWjQ-1713630017846-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.22.0-cloud1

162.159.138.9

200 OK

119 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.22.0-cloud1
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
ASCII text, with very long lines (65496)
Size
119 kB (118904 bytes)
Hash
7f89faa927aa1d8a090d9bf39e323cea
db552f998a08815c40945750323a2b0221707d2a
e7da4c57810a97ff8331dd1371f6db4db3d23983dbc6a313e52298a0985e4153

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.22.0-cloud1 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:20:17 GMT
content-type: text/css
cf-ray: 877675f89d0256c1-OSL
cf-cache-status: HIT
age: 25
cache-control: max-age=315360000
etag: W/"66166d37-1d078"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:03 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=ywnZ7ObeTcabMj6_LWKIgdxkQWvk6xxgGXrN16nM_Ag-1713630017-1.0.1.1-Im5gWzrDIAEyU0CXDxD.qIKjgRy18aYaJ.ejJKLSduGv2TraModmQon0S_BsaB10oLaJhZomYAhAyCn.4rdL1A; path=/; expires=Sat, 20-Apr-24 16:50:17 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=6FTUeg6rUF8fa_KHfCPubwaJWBd_CRWT3hIWPLEfA3g-1713630017405-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-content/uploads/elementor/css/post-6.css?ver=1712784082

162.159.138.9

200 OK

3.8 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/uploads/elementor/css/post-6.css?ver=1712784082
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
ASCII text, with very long lines (3822), with no line terminators
Size
3.8 kB (3812 bytes)
Hash
0b54839afd341b7bf8422c05ded13435
f3dbf7dfaaad44ab0bc2ff52f561079c256fb3e1
db56aa542c8c8d43b81f4654a6bc0cdf9b9116af071cbb4c769a3b814ca7d8b2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/post-6.css?ver=1712784082 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:20:17 GMT
content-type: text/css
cf-ray: 877675f89d0556c1-OSL
cf-cache-status: HIT
age: 25
cache-control: max-age=315360000
etag: W/"661702d2-f01"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 21:21:22 GMT
vary: Accept-Encoding
cf-bgj: minify
cf-polished: origSize=3841
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=4_OY_O_RoRQGSFf1G_2o2ku65HVi8EElFoFeOxoLvs4-1713630017-1.0.1.1-o7PbJacdBUPJbBdwzUThWy6kOUm1RMt9QsxL1QuRj_57BbLbqnOiA58aHvZJFJJx856omU6N9AI16DuGOBzXuQ; path=/; expires=Sat, 20-Apr-24 16:50:17 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=HR8FyNVx8xnKTqzJb6CuG_gahkbk2hAlcBam9U_.Lts-1713630017423-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0

162.159.138.9

200 OK

6.6 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JavaScript source, ASCII text, with very long lines (6799), with no line terminators
Size
6.6 kB (6625 bytes)
Hash
ccaa7ba23a1f74bc12d091b65b515c4f
26b795b942f321ee8237178a1fcc16f1cee5a99e
daceae61a869247d42436998814874e2698dc5f4789c65cd9bad98da52276db1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:20:17 GMT
content-type: application/javascript
cf-ray: 877675f8ad2356c1-OSL
cf-cache-status: HIT
age: 25
cache-control: max-age=315360000
etag: W/"660a4adb-19e1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 01 Apr 2024 05:49:15 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=S2piVW1e_kkRGuowEVEB79daODyrprQAqtvSouDYgYY-1713630017-1.0.1.1-caaQNdwzbNpMH4Nd4t4PD9keU3MR2P7HswKKkNoDUvOBb0m8C_f3wP28JzvOEkm2YrE5fKi7PWuYBp2uAuiVmg; path=/; expires=Sat, 20-Apr-24 16:50:17 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=cvp7Sa2FDUcIUfGFep8x7ShhVYkcL89r3p9fAg5LpcU-1713630017419-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/cdn-cgi/challenge-platform/scripts/jsd/main.js

162.159.138.9

302 Found

7.8 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type

Size
7.8 kB (7831 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 302 Found
date: Sat, 20 Apr 2024 16:20:17 GMT
content-length: 0
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js
cache-control: max-age=300, public
access-control-allow-origin: *
set-cookie: __cf_bm=x1EhOtEGas9UGHM7ed8AIIxitoTTlqvuSWkuufES6Bg-1713630017-1.0.1.1-7j1pZOgUHFjSIveHKUWKvZzr9jQQfkqxdA.xPcX24PykM8g9eJP_jXjcOhGWrw02uqiRJ1HvNswvHCMaO_pmug; path=/; expires=Sat, 20-Apr-24 16:50:17 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
x-powered-by: Elementor Cloud
server: cloudflare
cf-ray: 877675facecc56c1-OSL
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/_/?preview_id=562

162.159.138.9

200 OK

36 kB

URL User Request GET HTTP/2
dzcqalqx.elementor.cloud/_/?preview_id=562
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
HTML document, ASCII text, with very long lines (9462)
Size
36 kB (36129 bytes)
Hash
f3937c5ed7971aeff112ea990c784736
2d46e3a1699f34295a89b27f8fe0551e5aa47f41
34bd2265c32862cdd539a2ebc334b8d389806bbe225a995502c51015283f5611

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	AT&T
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_/?preview_id=562 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 20 Apr 2024 16:20:17 GMT
content-type: text/html; charset=UTF-8
cf-ray: 877675f68db90b51-OSL
cf-cache-status: HIT
age: 25
cache-control: public, max-age=604800
last-modified: Sat, 20 Apr 2024 16:19:52 GMT
link: <https://dzcqalqx.elementor.cloud/wp-json/>; rel="https://api.w.org/", <https://dzcqalqx.elementor.cloud/wp-json/wp/v2/pages/562>; rel="alternate"; type="application/json", <https://dzcqalqx.elementor.cloud/?p=562>; rel=shortlink
ec-cdn-cache-control: public, max-age=604800
ec-cdn-status: hit
ec-cdn-supported: 1
ec-coldstart: 
ec-source: dynamic
vary: Accept-Encoding
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=nUNWQKMk2PGNPCRRoIkUVl42FypXOuONmCz27JuAyDg-1713630017-1.0.1.1-wavJ2fR8Fn6zLC.DP7MOREJ9Vg4sqX7.gWvofc2IYUhn14bGSCYnpXARgbzt8gd7rKekqrh9P.emHamhgJfy4A; path=/; expires=Sat, 20-Apr-24 16:50:17 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=PSueVEgiU2UtGSkSMazxS7yi9BWyd0OXxIyUWs56yi8-1713630017071-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

dzcqalqx.elementor.cloud/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2

162.159.138.9

200 OK

8.2 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JavaScript source, ASCII text, with very long lines (8365), with no line terminators
Size
8.2 kB (8171 bytes)
Hash
08e6714eaf3cfe8f3c7839f22d90ba4e
94fdad68854d0d3482b877aef7ba7c2eb265c621
e424039d5a737a1bda8a5ded60919e5067085729310762eebb09c20e07d249c8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:20:17 GMT
content-type: application/javascript
cf-ray: 877675f8ad2156c1-OSL
cf-cache-status: HIT
age: 25
cache-control: max-age=315360000
etag: W/"63c7d511-1feb"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 18 Jan 2023 11:16:33 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=qdQ_NWGiyKp0.CUMdeg1HDDFoXDBm4GRc5_HPkY93ZM-1713630017-1.0.1.1-_IJOHaymJ5DRO.aqYv8leRi7qXj9NeeEyGLV607yf8KJiZRsfFkY4I22iSXBPEQ5SBlsGuTjMyPg52Un2Yb.xw; path=/; expires=Sat, 20-Apr-24 16:50:17 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=3oVBNY7dEy_q4G.FFUaNwCRyLQl_5q2hmciRqc_mATE-1713630017437-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2

162.159.138.9

200 OK

21 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type

Size
21 kB (21438 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:20:17 GMT
content-type: application/javascript
cf-ray: 877675f8cd4156c1-OSL
cf-cache-status: HIT
age: 25
cache-control: max-age=315360000
etag: W/"63dbe690-53be"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 02 Feb 2023 16:36:32 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=oGg_F3QFyeYjs32f.cCrDgY4vbp9kiH5T_42n4m6ans-1713630017-1.0.1.1-sArxyWr2ZsPkAfTX7ZJrKfmyDXTlGFIlBLfE_HqsPGIrKDIgcu1q7w1aiXdtW4qN2myRdCGzqGgkOtPQzGeDxg; path=/; expires=Sat, 20-Apr-24 16:50:17 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=PoHIemCeGLBRr8xnnvfjA7M6g5.9YawO0QTn1.IJgsE-1713630017439-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2

162.159.138.9

200 OK

12 kB

URL GET HTTP/3
dzcqalqx.elementor.cloud/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dzcqalqx.elementor.cloud/_/?preview_id=562
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JavaScript source, ASCII text, with very long lines (12198), with no line terminators
Size
12 kB (12198 bytes)
Hash
3819c3569da71daec283a75483735f7e
ecd40a5cc6f0b76200c454ca880210dc301cfab8
214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: dzcqalqx.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dzcqalqx.elementor.cloud/_/?preview_id=562
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:20:17 GMT
content-type: application/javascript
cf-ray: 877675f8bd3856c1-OSL
cf-cache-status: HIT
age: 25
cache-control: max-age=315360000
etag: W/"66166d3b-2fa6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 10:43:07 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=LDeMAV6CN.IALrBnNIOvwWu5MnRgj_VqyI_PaM45B5Q-1713630017-1.0.1.1-52MT2nkjK27Swx_BJx3zdn62LrFBvsaz9EiMhX9wL.UmNmLMQ1y41ZcTtks.12E4CDmxIgpghx0GZp0Et4DzeA; path=/; expires=Sat, 20-Apr-24 16:50:17 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=ess.GR2oW_wOnqB1JiyvfHdWtxWH_NnnPqqB7PkSafw-1713630017436-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (26)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML