r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 96defe1601ba891731eee83f0830649d
ba500679fd337488c3f60543561740ff0dfc1898
d2a320a9feb1a874af3da921db2a8619513968724ef8eb0715c010291c4cf8d9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2A320A9FEB1A874AF3DA921DB2A8619513968724EF8EB0715C010291C4CF8D9"
Last-Modified: Sun, 25 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7216
Expires: Mon, 26 Dec 2022 09:39:37 GMT
Date: Mon, 26 Dec 2022 07:39:21 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 9cce060ddc316540d079e6816a1e7412
709a74969d1996d2b35ef0f7f34ae18455169f1e
6d58b895476c9ab451d8fc51df98809adca445bc6e9d720430e80a0c85242879
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6D58B895476C9AB451D8FC51DF98809ADCA445BC6E9D720430E80A0C85242879"
Last-Modified: Sun, 25 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7322
Expires: Mon, 26 Dec 2022 09:41:23 GMT
Date: Mon, 26 Dec 2022 07:39:21 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 26 Dec 2022 06:46:29 GMT
content-type: application/json
age: 3172
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
midpointsupportservices.com/
82.180.138.154301 Moved Permanently 707 B URL HTTP/1.1 midpointsupportservices.com/
IP 82.180.138.154:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Mon, 26 Dec 2022 07:39:21 GMT
server: LiteSpeed
location: https://midpointsupportservices.com/
platform: hostinger
content-security-policy: upgrade-insecure-requests
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash c298d0b2a05562a7ece94adf3589dacd
266befe104baa47e94fe0b9d00d10f96518b6525
a00a7433c6ee020d40e43fb5c821b8f2b835107852be361317fd2dfdcc4f0a15
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A00A7433C6EE020D40E43FB5C821B8F2B835107852BE361317FD2DFDCC4F0A15"
Last-Modified: Sun, 25 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6963
Expires: Mon, 26 Dec 2022 09:35:24 GMT
Date: Mon, 26 Dec 2022 07:39:21 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Bif5tC4/Htzcyo8Ua6QqZmHYZIw5NLocSKLaVxkGyAfDlNdOKrYgnHsSlmswwkUBqpZrN2D/7mk=
x-amz-request-id: N0XADAWYD4SK53NT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 26 Dec 2022 06:55:14 GMT
age: 2647
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 26 Dec 2022 07:39:21 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Alert, ETag, Content-Type, Last-Modified, Cache-Control, Expires, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 26 Dec 2022 07:08:06 GMT
age: 1876
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bdc6ddd27a64c85bd15f78b39a79874c
965b8f1b763483b4b4dfe35526d27393d1fdf05c
d2f4dee4d920109e0751634731bea278c9ea9e6c0120ac07969eba74ddbfe615
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 957
Cache-Control: max-age=92603
Content-Type: application/ocsp-response
Date: Mon, 26 Dec 2022 07:39:22 GMT
Etag: "63a812a8-1d7"
Expires: Tue, 27 Dec 2022 09:22:45 GMT
Last-Modified: Sun, 25 Dec 2022 09:06:48 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
midpointsupportservices.com/
82.180.138.154200 OK 24 kB URL HTTP/2 midpointsupportservices.com/
IP 82.180.138.154:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047)
Hash 3f1f539331f7ef8d6ff1f07889cdc878
e6480d0599d6464a93d632c9c188d96c4c0dc5f2
3fb9e0d5746e053a8a1cf42ea1b76c3b1c523065d9f56ec56be937130716562d
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/7.4.32
content-type: text/html; charset=UTF-8
link: <https://midpointsupportservices.com/wp-json/>; rel="https://api.w.org/", <https://midpointsupportservices.com/wp-json/wp/v2/pages/94>; rel="alternate"; type="application/json", <https://midpointsupportservices.com/>; rel=shortlink
etag: "454-1671804331;br"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding
content-length: 24502
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 508c2c991a10f5f048c213f732698d4c
5a43bb96597ada2c1a16fb35c6cd74529bb306c4
bdf5e18cacb564fe4be4448d268ecee27b7139b91109b6d0727f2b809c6b5f3f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Dec 2022 07:39:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Sen%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3
142.250.74.106200 OK 854 B URL HTTP/2 fonts.googleapis.com/css?family=Sen%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3
IP 142.250.74.106:0
Hash 7e846946dff91dccf245b57c470ad787
20bd836898bf3292e79335d7fd00814b80761a9e
9f87f8556fe89c7d3076a78837c12c4cbed8c59be8f086328553e8d52451c13c
GET /css?family=Sen%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 26 Dec 2022 07:39:22 GMT
date: Mon, 26 Dec 2022 07:39:22 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
push.services.mozilla.com/
35.160.122.190101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.160.122.190:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: iitvQd3fGWnlBgJvjvAjrg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: o0dGLkM+W6O7R6OzS1r+QLr8WK4=
midpointsupportservices.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
82.180.138.154200 OK 11 kB URL HTTP/2 midpointsupportservices.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
IP 82.180.138.154:0
File type ASCII text, with very long lines (43771)
Hash 3314a848319230ac733421112382eec5
98a167f06a0aa192b28891f8abbb13045a59cb93
491c2c2340db0cace5815f2434013e7fecb5bd9b1d9a721811603d7aaa485fbd
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: text/css
last-modified: Thu, 04 Aug 2022 01:02:11 GMT
etag: "15b64-62eb1a93-d7244c0e5c44cd19;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10703
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-content/themes/hello-elementor/style.min.css?ver=2.6.1
82.180.138.154200 OK 1.7 kB URL HTTP/2 midpointsupportservices.com/wp-content/themes/hello-elementor/style.min.css?ver=2.6.1
IP 82.180.138.154:0
File type ASCII text, with very long lines (6051), with no line terminators
Hash 8dcd32a94dfc5272c20e0217e63bd582
e98d09ec73a29fb0f346f037b1716c61cd9df4c4
9c433178c922c6f23186c711350655a8e07e31561f1094883afab1db5a0204a7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/hello-elementor/style.min.css?ver=2.6.1 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: text/css
last-modified: Thu, 04 Aug 2022 01:04:10 GMT
etag: "17a3-62eb1b0a-ddc074977b42f21b;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1708
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1
82.180.138.154200 OK 2.4 kB URL HTTP/2 midpointsupportservices.com/wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1
IP 82.180.138.154:0
File type ASCII text, with very long lines (15672), with no line terminators
Hash 7d34777663c191cff81cfb3a7eaee88b
a34a7bc731d2fc8089fc373656ec00747bf0d883
ada82b768ca2add4246695fcd568e87e4d5918d8b23fc24e5e51f44a476a38e5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: text/css
last-modified: Thu, 04 Aug 2022 01:04:10 GMT
etag: "3d38-62eb1b0a-fad415cc78661dcd;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2408
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.6.8
82.180.138.154200 OK 13 kB URL HTTP/2 midpointsupportservices.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.6.8
IP 82.180.138.154:0
File type ASCII text, with very long lines (65497)
Hash fed3b7b90142510a8fcd46740ef1b0d1
fc2bf185d5eae158809b9d15a7ff231ed9a36305
6549a0d838ca8f00d853f9153a35927ad7d602f074cbcaa42bd832b7cbbafeec
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.6.8 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: text/css
last-modified: Thu, 04 Aug 2022 01:03:28 GMT
etag: "1a5d9-62eb1ae0-404eec28e9bffb72;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12627
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-content/uploads/elementor/css/post-7.css?ver=1665184394
82.180.138.154200 OK 984 B URL HTTP/2 midpointsupportservices.com/wp-content/uploads/elementor/css/post-7.css?ver=1665184394
IP 82.180.138.154:0
File type ASCII text, with very long lines (6955), with no line terminators
Hash b85771452f0fd31e454f18e156da6be8
d49eac4ee748146413f4ece098598fbbf8e4e52d
442d42cc3cceb1d5cb90076e308380144c3aa133ddc71487475334180030b66e
GET /wp-content/uploads/elementor/css/post-7.css?ver=1665184394 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: text/css
last-modified: Fri, 07 Oct 2022 23:13:14 GMT
etag: "1b2b-6340b28a-6a42f596f157f0f5;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 984
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0
82.180.138.154200 OK 3.6 kB URL HTTP/2 midpointsupportservices.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0
IP 82.180.138.154:0
File type ASCII text, with very long lines (19082)
Hash 8078c3d99eff17305616f9b6091b936a
611a5fbeed238be881dfc185142b4ef0dd12a7bf
51ece773e10329f57ae5c26936fb055f40447fcb7557f9e0bc2a242f5cc8b8c6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: text/css
last-modified: Thu, 04 Aug 2022 01:03:28 GMT
etag: "4ab8-62eb1ae0-5ecf5a6cac85275;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3589
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.3
82.180.138.154200 OK 1.5 kB URL HTTP/2 midpointsupportservices.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.3
IP 82.180.138.154:0
File type ASCII text, with very long lines (11487)
Hash 00c5573958d95bbfa6a25370081d9573
717e72c601a61052411cda096138140c57a94ff5
60c087322a182c7f95ac72608fd9d5ba95b06ca37f370721328c4d1187d9181e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.3 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: text/css
last-modified: Thu, 04 Aug 2022 01:03:15 GMT
etag: "2d0a-62eb1ad3-fb0cf68724fbdb28;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1510
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-content/uploads/elementor/css/global.css?ver=1665184418
82.180.138.154200 OK 3.9 kB URL HTTP/2 midpointsupportservices.com/wp-content/uploads/elementor/css/global.css?ver=1665184418
IP 82.180.138.154:0
File type ASCII text, with very long lines (33636)
Hash 70d90823aa3f1b8f6ee3ef92016dd828
280708e2f0b23bed425d82ab93fedeb8d42d3af9
b8a3801cd5e1181584aacba9ec4c44ef3f435f22539b9cf7a82d0629f8698b9c
GET /wp-content/uploads/elementor/css/global.css?ver=1665184418 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: text/css
last-modified: Fri, 07 Oct 2022 23:13:38 GMT
etag: "2304b-6340b2a2-7ddf0e8fa2d1db31;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3890
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-content/uploads/elementor/css/post-94.css?ver=1669360977
82.180.138.154200 OK 2.4 kB URL HTTP/2 midpointsupportservices.com/wp-content/uploads/elementor/css/post-94.css?ver=1669360977
IP 82.180.138.154:0
File type ASCII text, with very long lines (34947), with no line terminators
Hash 389e9aaa3976a20936bb8e16fe2a08d5
bbb679bbf8a2b467be3fd45745192fe7b4703929
427e1e4d31bb6b431b0387def216aa0a6a1e19de96faa34fe504ea8e0907d4aa
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-94.css?ver=1669360977 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: text/css
last-modified: Fri, 25 Nov 2022 07:22:57 GMT
etag: "8883-63806d51-d059ebe3e98ae99b;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2366
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-content/uploads/elementor/css/post-34.css?ver=1665184394
82.180.138.154200 OK 1.2 kB URL HTTP/2 midpointsupportservices.com/wp-content/uploads/elementor/css/post-34.css?ver=1665184394
IP 82.180.138.154:0
File type ASCII text, with very long lines (7010)
Hash 4d1c7fcb5f059d509ff76cab19ead9e8
452bd7030026b414ea9c6fb4744a0a6a1ab05c8c
1b9420abb54c0fbd9eff813dd17555c4a8fa397306d842cbbfd8c8446eba4cab
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-34.css?ver=1665184394 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: text/css
last-modified: Fri, 07 Oct 2022 23:13:14 GMT
etag: "2cd8-6340b28a-31add5fd8f614cb4;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1158
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
82.180.138.154200 OK 4.0 kB URL HTTP/2 midpointsupportservices.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 82.180.138.154:0
File type ASCII text, with very long lines (11126)
Hash 4116c2be947ecf205a0c7fc117ca55f0
0cd8efc9fe349d67a86b49d1e5582a9b21d05add
6b1970b536b88a18b0eb4fe138e677b9736294057660676507fabee57cb0462c
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: application/x-javascript
last-modified: Thu, 04 Aug 2022 01:02:11 GMT
etag: "2bd8-62eb1a93-3deda26e257ab09;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3984
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0
82.180.138.154200 OK 953 B URL HTTP/2 midpointsupportservices.com/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0
IP 82.180.138.154:0
File type ASCII text, with very long lines (3164), with no line terminators
Hash a94d0b5536f44b92ffdc38ab17291bd8
04ba24be4bf09bdaaaa7247a1c83d5281ca6c374
93326330d566907e0eac94db3876711d655211d04a9e5e280caaa4795e914d59
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: application/x-javascript
last-modified: Thu, 04 Aug 2022 01:04:10 GMT
etag: "c5c-62eb1b0a-81c4db40043d8450;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 953
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.3
82.180.138.154200 OK 5.5 kB URL HTTP/2 midpointsupportservices.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.3
IP 82.180.138.154:0
File type ASCII text, with very long lines (21374)
Hash 85ed592f2339fc6eabba9d7449d08087
1c4352af2c93055be7a38a33f334e1605cabaca0
5e25f128f68f890e53d9352348b357d4fb449948c737ed994f4b3b3c09798603
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.3 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: application/x-javascript
last-modified: Thu, 04 Aug 2022 01:03:15 GMT
etag: "53a9-62eb1ad3-ac9e58dd74d4e34e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5478
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
82.180.138.154200 OK 2.8 kB URL HTTP/2 midpointsupportservices.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 82.180.138.154:0
File type ASCII text, with very long lines (12198), with no line terminators
Hash 1393d0dbec2f83777455cdd096954f70
f9c4b9daea64fb4f7ffe076cf8e8e94600babd45
37c699d5ada4e2710a93784052ed68aa9b73e263ebb4a7a216c5a40e2c6bea7b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: application/x-javascript
last-modified: Thu, 04 Aug 2022 01:03:28 GMT
etag: "2fa6-62eb1ae0-39499fdc88906d63;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2838
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
82.180.138.154200 OK 30 kB URL HTTP/2 midpointsupportservices.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 82.180.138.154:0
File type ASCII text, with very long lines (65447)
Hash 63373db5c13254717674a1af4cd88aa2
21a1962ab8597d9066640a7157a41370341ff0cf
d883f77be0299ddb715175908b03076554287b13f87570369fb58adeade16891
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: application/x-javascript
last-modified: Thu, 04 Aug 2022 01:02:11 GMT
etag: "15db1-62eb1a93-449b17976f7edd5c;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30027
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-content/uploads/elementor/css/post-27.css?ver=1669354245
82.180.138.154200 OK 2.0 kB URL HTTP/2 midpointsupportservices.com/wp-content/uploads/elementor/css/post-27.css?ver=1669354245
IP 82.180.138.154:0
File type ASCII text, with very long lines (10408)
Hash c481a08a0dece45eaf9f89d50f5024b8
9bc9a60c72874e6b9f362f6f991447a45fa0ea13
1ff43f71b962c2784762376ca4552758364b0be2c4b999c247dcbe631677faa7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-27.css?ver=1669354245 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: text/css
last-modified: Fri, 25 Nov 2022 05:30:45 GMT
etag: "5aa6-63805305-7d9ddb513f6d40bb;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2047
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-content/uploads/elementor/css/post-16.css?ver=1669356374
82.180.138.154200 OK 981 B URL HTTP/2 midpointsupportservices.com/wp-content/uploads/elementor/css/post-16.css?ver=1669356374
IP 82.180.138.154:0
File type ASCII text, with very long lines (6843), with no line terminators
Hash 10f173cac81738bf0f92577452dc3691
b411139b360137129fc3b6ef7a2c014a82551bd0
bb3e4ce45b2499e3ce6ff956d215f88bd6519a2ec15ea79ff52d1cac9b71af37
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-16.css?ver=1669356374 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: text/css
last-modified: Fri, 25 Nov 2022 06:06:14 GMT
etag: "1abb-63805b56-4190f58004ebd4af;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 981
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
82.180.138.154200 OK 12 kB URL HTTP/2 midpointsupportservices.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 82.180.138.154:0
File type ASCII text, with very long lines (57726)
Hash 91b010ccff2c2eae59d1794f2b893ca3
2263e1a89bc96c5720c681354d1b60512080906d
370789e5320420899b6a44e4cd3d9bc145cacb81ac35fb60dc79f39e3b75749d
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: text/css
last-modified: Thu, 04 Aug 2022 01:03:28 GMT
etag: "e238-62eb1ae0-5fb72aee954f6789;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12071
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
82.180.138.154200 OK 286 B URL HTTP/2 midpointsupportservices.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP 82.180.138.154:0
File type ASCII text, with very long lines (483)
Hash 8828fa3c5bdcfa66615714a2b8c9d807
4f556d0b005ac7754af607418df445f8cf98e8b1
16950dcce60bc3ee2613b60439c99e7ed74d10245f59fe6f68346b7e72dd95e7
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: text/css
last-modified: Thu, 04 Aug 2022 01:03:28 GMT
etag: "29d-62eb1ae0-c67faa4fa04186cc;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 286
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
82.180.138.154200 OK 284 B URL HTTP/2 midpointsupportservices.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP 82.180.138.154:0
File type ASCII text, with very long lines (489)
Hash dc279c928e2924b07a4a7575f8070ee8
0196756cacdb61ef40483af7ea982b699b0933de
80b6d9e3f0304f4199350c6015fd96084646c2a0121332bcb5a46d3956b7df5c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: text/css
last-modified: Thu, 04 Aug 2022 01:03:28 GMT
etag: "2a3-62eb1ae0-8e79eae1e40927a8;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 284
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css
82.180.138.154200 OK 3.3 kB URL HTTP/2 midpointsupportservices.com/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css
IP 82.180.138.154:0
File type Unicode text, UTF-8 text, with very long lines (29357)
Hash ca72d54060b1b593a1166c1820d3c4d9
fe6d5e0b0945a1fde443260ebb0a766306990031
6fab9f20ece5336db2c997ea0eb21e4a546a6944d590f187ecdb6a493ca8c1f7
GET /wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: text/css
last-modified: Thu, 04 Aug 2022 01:03:15 GMT
etag: "72d9-62eb1ad3-4d73cb0edbf5e1f1;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3293
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
82.180.138.154200 OK 903 B URL HTTP/2 midpointsupportservices.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
IP 82.180.138.154:0
File type ASCII text, with very long lines (11736)
Hash 1badfd40db7b5d5ed980ccf88760aa4d
697452a09f8a0b1e1544cb435fc40c1c0f534217
c46a776f8420ea1e85166358d0c0c6aba59e7e3e29cd59b6f140e36435b87ae5
GET /wp-content/plugins/elementor/assets/css/widget-icon-list.min.css HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: text/css
last-modified: Thu, 04 Aug 2022 01:03:29 GMT
etag: "2dff-62eb1ae1-554dba8f67ff44d4;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 903
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-content/plugins/elementor/assets/css/widget-icon-box.min.css
82.180.138.154200 OK 741 B URL HTTP/2 midpointsupportservices.com/wp-content/plugins/elementor/assets/css/widget-icon-box.min.css
IP 82.180.138.154:0
File type ASCII text, with very long lines (12953)
Hash cd7634c8e23228878c637852e4d540ef
2a3c1b1abf744d9e54806845a646b172fab77f94
fdcc563ace7d1419551b684db49cfe9f3f7080167dc226222870a41b36dea777
GET /wp-content/plugins/elementor/assets/css/widget-icon-box.min.css HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: text/css
last-modified: Thu, 04 Aug 2022 01:03:28 GMT
etag: "32c0-62eb1ae0-dd48c910f42e1527;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 741
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.6.8
82.180.138.154200 OK 2.4 kB URL HTTP/2 midpointsupportservices.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.6.8
IP 82.180.138.154:0
File type ASCII text, with very long lines (10019)
Hash f480cd12f3c18225e406e533ceca2b75
75c4f87e98bc72e80707efdb358829410683e87c
2969122f862447894932756ab6cf065793ad7a1fa7447b208160bf885e5706e4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.6.8 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: text/css
last-modified: Thu, 04 Aug 2022 01:03:28 GMT
etag: "4824-62eb1ae0-d4656671eb44dfa0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2422
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
82.180.138.154200 OK 6.9 kB URL HTTP/2 midpointsupportservices.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
IP 82.180.138.154:0
File type ASCII text, with very long lines (25115)
Hash 63cf475ef580584e7d0b6750fbffcaec
28062b61594c4e8ac80e999d1c748d9dde2fa7db
50e7a8cb88901c971e315123a785cc8e6b3eeb26456f0bd898dcb2627d1317b4
GET /wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: application/x-javascript
last-modified: Thu, 04 Aug 2022 01:03:14 GMT
etag: "6272-62eb1ad2-7d3a202fabcb000b;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6857
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a4887aa0a07d726c889d8dfbddc359c6
83658ae9db1abb14fb2b869bf451caa97ef58e4d
085603732bde2eb04b81ae99e116350593ad282d21e81bfd624c0f9543247cd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Dec 2022 07:39:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/sen/v7/6xKjdSxYI9_3nPWN.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/sen/v7/6xKjdSxYI9_3nPWN.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 16244, version 1.0\012- data
Hash dde25f34f3abf16bd639d63eb8d8c6fd
40e9d20fafbe9f33bb25230c88d5a7b9f943a390
952d0124577741a92bf7acd3838367a2678a77c33f6f2ea348c35cdb2237fa20
GET /s/sen/v7/6xKjdSxYI9_3nPWN.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://midpointsupportservices.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16244
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Dec 2022 00:09:26 GMT
expires: Fri, 22 Dec 2023 00:09:26 GMT
cache-control: public, max-age=31536000
age: 372597
last-modified: Wed, 27 Apr 2022 16:33:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a4887aa0a07d726c889d8dfbddc359c6
83658ae9db1abb14fb2b869bf451caa97ef58e4d
085603732bde2eb04b81ae99e116350593ad282d21e81bfd624c0f9543247cd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Dec 2022 07:39:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
midpointsupportservices.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.3
82.180.138.154200 OK 2.2 kB URL HTTP/2 midpointsupportservices.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.3
IP 82.180.138.154:0
File type ASCII text, with very long lines (5141)
Hash 12a952b83269e822be290e4c7bc7498d
b3a7bf06a8d32ec4d7ca44d1d4e7dc52ea3aa1b1
b525946604518b200565d75fd5bc33a8a7f20dba36d06f41e766ed376e078e9f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.3 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: application/x-javascript
last-modified: Thu, 04 Aug 2022 01:03:14 GMT
etag: "1440-62eb1ad2-d1cadd82fdf81594;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2189
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.6.8
82.180.138.154200 OK 2.0 kB URL HTTP/2 midpointsupportservices.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.6.8
IP 82.180.138.154:0
File type ASCII text, with very long lines (4918)
Hash 6dd34224194a2c4abed21a2bbe8f8895
609989757990899e13a15a51f5db4e0680b8e715
c1f497cfa530a593c9ad9dff61151ce4ca5a1e2313d7b1570fcc55e844dbaf3a
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.6.8 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: application/x-javascript
last-modified: Thu, 04 Aug 2022 01:03:28 GMT
etag: "135d-62eb1ae0-d4acc2f626f57c53;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2041
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.6.8
82.180.138.154200 OK 10 kB URL HTTP/2 midpointsupportservices.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.6.8
IP 82.180.138.154:0
File type Unicode text, UTF-8 text, with very long lines (32569)
Hash 4e1625628e609e01465db41913633714
f794d9b281d762cd95bde1e778c686d6b49a792d
90e87e8c0aacab8cf98650a73d77cd3ac8c16a19922d3bc43be2034725f98955
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.6.8 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: application/x-javascript
last-modified: Thu, 04 Aug 2022 01:03:28 GMT
etag: "7f61-62eb1ae0-c8322ef393598fa3;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10331
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
82.180.138.154200 OK 2.3 kB URL HTTP/2 midpointsupportservices.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 82.180.138.154:0
File type ASCII text, with very long lines (6475), with no line terminators
Hash 80abfa68756de384aa21eb4bfa1abe6a
02c7125e1cce1a8bdb729e99bf2c19d74b65efea
e012a513b2e1c1ba041be3618086803d20629c5fd54a6fd1f13e8268cd326e17
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: application/x-javascript
last-modified: Thu, 04 Aug 2022 01:02:11 GMT
etag: "194b-62eb1a93-c09ee0cc39488818;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2349
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sen/v7/6xKudSxYI9__J9CYLUv0.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/sen/v7/6xKudSxYI9__J9CYLUv0.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 16604, version 1.0\012- data
Hash 69b7159505c3a7354e6a301acd8f25b8
3acb17b290a383f645a86bd6ba0e6f26788f1510
0d815a4a5a8ba21461cea529116c6af12b04619617fe813e55cc5a6af255e525
GET /s/sen/v7/6xKudSxYI9__J9CYLUv0.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://midpointsupportservices.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16604
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Dec 2022 00:10:04 GMT
expires: Fri, 22 Dec 2023 00:10:04 GMT
cache-control: public, max-age=31536000
age: 372559
last-modified: Wed, 27 Apr 2022 16:30:21 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a4887aa0a07d726c889d8dfbddc359c6
83658ae9db1abb14fb2b869bf451caa97ef58e4d
085603732bde2eb04b81ae99e116350593ad282d21e81bfd624c0f9543247cd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Dec 2022 07:39:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
midpointsupportservices.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
82.180.138.154200 OK 6.8 kB URL HTTP/2 midpointsupportservices.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 82.180.138.154:0
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Hash ffb3c14bf1326bb8cd02da142982e2f5
bb3e99fef9fc1dcd1f55bc5f593584ab9daac3cd
cd07aa98d73c3294cbf3de7a6538a31051e6702d28942cca0eecbc63ae1a1e21
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: application/x-javascript
last-modified: Thu, 04 Aug 2022 01:02:11 GMT
etag: "4ac6-62eb1a93-6ed79600237c2c2c;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6828
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
82.180.138.154200 OK 1.6 kB URL HTTP/2 midpointsupportservices.com/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
IP 82.180.138.154:0
File type ASCII text, with very long lines (4875)
Hash 84bc607a21ceabf4db8b46cc9f562d66
5fb6ce023605123eeadbe96f30b8f6c91f595a9a
059f799c65f8a54f48e3f6686ea45679729310b389321f7c5a05d6aa923b4831
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: application/x-javascript
last-modified: Thu, 04 Aug 2022 01:02:11 GMT
etag: "132e-62eb1a93-cb6004b04174cf0b;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1574
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
82.180.138.154200 OK 3.7 kB URL HTTP/2 midpointsupportservices.com/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
IP 82.180.138.154:0
Hash d93a6dc481aac1ab883c0992fc3fee7a
af4ed44d7b4aaae7c93b9ceb18d559a2abedf3c0
64304ab965f8ae09b0645cae655181d627abe56fd1caa56f5f28ab3d4b47920f
GET /wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: application/x-javascript
last-modified: Thu, 04 Aug 2022 01:02:11 GMT
etag: "27ee-62eb1a93-bcec09f272cc841e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3711
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
82.180.138.154200 OK 6.6 kB URL HTTP/2 midpointsupportservices.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 82.180.138.154:0
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash f575ab312b49bdebc33b7b28ee29b16d
0b16dca38ff6612ed8aca1e1e5646470406303bd
64861ab14e4f836d5d660c403987335e807409f5677b5fa83945e888a0a6442d
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: application/x-javascript
last-modified: Thu, 04 Aug 2022 01:02:11 GMT
etag: "50eb-62eb1a93-e2ec35c1c20d1a57;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6605
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.6.8
82.180.138.154200 OK 12 kB URL HTTP/2 midpointsupportservices.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.6.8
IP 82.180.138.154:0
File type ASCII text, with very long lines (40438)
Hash 86bf3a2c8108868c97725874ffbe2e9d
820f68f46e61b1dbad77fbb0bdd21c04f73211dc
67e7771448865e7d374dceba390495cebd4d2b6943796586660dcf95380a2709
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.6.8 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: application/x-javascript
last-modified: Thu, 04 Aug 2022 01:03:28 GMT
etag: "9e1d-62eb1ae0-83fc73611ca8f250;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11643
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.3
82.180.138.154200 OK 5.3 kB URL HTTP/2 midpointsupportservices.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.3
IP 82.180.138.154:0
File type ASCII text, with very long lines (24339)
Hash a51986806eb52f2b38fe0e9c42b2519c
2abc3156cd6c0e3d465cceb7ed093c81ddedc0b7
add8def04d22f23e84b22658194d73b51e86148b4695bcc33bad6bc63465e08e
GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.3 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: application/x-javascript
last-modified: Thu, 04 Aug 2022 01:03:14 GMT
etag: "5f3e-62eb1ad2-e8290fcea669d188;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5267
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.7.3
82.180.138.154200 OK 1.5 kB URL HTTP/2 midpointsupportservices.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.7.3
IP 82.180.138.154:0
File type ASCII text, with very long lines (3703)
Hash 9f37ef18bfba1bafae37b003522d0e55
cebbd034e8bef4a5e80f182a7ac5de0015f85f8c
3e1cd8caf553f369d6c0141570f4173e01f6fec20b3f24f6ab850f422fb1316f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.7.3 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: application/x-javascript
last-modified: Thu, 04 Aug 2022 01:03:14 GMT
etag: "e78-62eb1ad2-ca96e8ae4c0e38e8;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1478
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-includes/js/underscore.min.js?ver=1.13.3
82.180.138.154200 OK 7.1 kB URL HTTP/2 midpointsupportservices.com/wp-includes/js/underscore.min.js?ver=1.13.3
IP 82.180.138.154:0
File type ASCII text, with very long lines (18876)
Hash 49217061ea5ae8a5a387cfb541f1dde9
076230eeb258a7e163b000d3a28686cb90981ac5
224353e63b965caf4c583c661c62ad0d33ccb434da29c5dcff2c0e482eb1de93
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/underscore.min.js?ver=1.13.3 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: application/x-javascript
last-modified: Thu, 04 Aug 2022 01:02:11 GMT
etag: "49df-62eb1a93-9e1c8743d68f0589;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7146
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-includes/js/wp-util.min.js?ver=6.0.3
82.180.138.154200 OK 646 B URL HTTP/2 midpointsupportservices.com/wp-includes/js/wp-util.min.js?ver=6.0.3
IP 82.180.138.154:0
File type ASCII text, with very long lines (1305)
Hash 6545e92af6fa2c33aed6fb1d0492af5e
b95b4d49921004f3a23ea8d057beadd4d45a6d74
ef9475d7d2b07f279a49a8458afc74f865810087e299437ef355024b93929eb2
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-util.min.js?ver=6.0.3 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: application/x-javascript
last-modified: Thu, 04 Aug 2022 01:02:11 GMT
etag: "53c-62eb1a93-33db71be8ad00d93;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 646
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.5.5
82.180.138.154200 OK 339 B URL HTTP/2 midpointsupportservices.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.5.5
IP 82.180.138.154:0
File type ASCII text, with very long lines (754), with no line terminators
Hash f4cea5c82bb62f34a31f39a322513366
bab5dfb3f8d04b76f83ca994798534e697b85290
5b00e0c1288d5d1f1df303a55bd0ff67d9acf5b734bc0093a651727c48a077ff
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.5.5 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: application/x-javascript
last-modified: Thu, 04 Aug 2022 01:02:21 GMT
etag: "2f2-62eb1a9d-f6b5bfabac70984;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 339
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
midpointsupportservices.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
82.180.138.154200 OK 4.6 kB URL HTTP/2 midpointsupportservices.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
IP 82.180.138.154:0
File type ASCII text, with very long lines (15660)
Hash 4402e98c197d70e9bc78b1da062e658a
b1d2477c6b1dfa9283d79a0a3944098dde573f68
4e646c55a8c057d08458aed4f913f5ae713e1351aadc0bcdf947bc48fb6a73ed
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1
Host: midpointsupportservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://midpointsupportservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 02 Jan 2023 07:39:22 GMT
content-type: application/x-javascript
last-modified: Thu, 04 Aug 2022 01:02:11 GMT
etag: "48b9-62eb1a93-9fefb2dda0aec0eb;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4572
date: Mon, 26 Dec 2022 07:39:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 796e102a616f07b0de39f5476179ccd5
bf1d8b0944ffa91afc7d31d2ffb3291652f903c3
6881d46edd3d3730884da6719176d7d4bc79aa6d05cda0f4ef97ac10c4591279
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6881D46EDD3D3730884DA6719176D7D4BC79AA6D05CDA0F4EF97AC10C4591279"
Last-Modified: Sun, 25 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9884
Expires: Mon, 26 Dec 2022 10:24:08 GMT
Date: Mon, 26 Dec 2022 07:39:24 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 796e102a616f07b0de39f5476179ccd5
bf1d8b0944ffa91afc7d31d2ffb3291652f903c3
6881d46edd3d3730884da6719176d7d4bc79aa6d05cda0f4ef97ac10c4591279
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6881D46EDD3D3730884DA6719176D7D4BC79AA6D05CDA0F4EF97AC10C4591279"
Last-Modified: Sun, 25 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9884
Expires: Mon, 26 Dec 2022 10:24:08 GMT
Date: Mon, 26 Dec 2022 07:39:24 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 796e102a616f07b0de39f5476179ccd5
bf1d8b0944ffa91afc7d31d2ffb3291652f903c3
6881d46edd3d3730884da6719176d7d4bc79aa6d05cda0f4ef97ac10c4591279
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6881D46EDD3D3730884DA6719176D7D4BC79AA6D05CDA0F4EF97AC10C4591279"
Last-Modified: Sun, 25 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9884
Expires: Mon, 26 Dec 2022 10:24:08 GMT
Date: Mon, 26 Dec 2022 07:39:24 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 796e102a616f07b0de39f5476179ccd5
bf1d8b0944ffa91afc7d31d2ffb3291652f903c3
6881d46edd3d3730884da6719176d7d4bc79aa6d05cda0f4ef97ac10c4591279
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6881D46EDD3D3730884DA6719176D7D4BC79AA6D05CDA0F4EF97AC10C4591279"
Last-Modified: Sun, 25 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9884
Expires: Mon, 26 Dec 2022 10:24:08 GMT
Date: Mon, 26 Dec 2022 07:39:24 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb995026c-9c36-40df-864d-b3c2b7e5482b.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb995026c-9c36-40df-864d-b3c2b7e5482b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e2665a6ae98ace2eab671f9e8a9f0978
d1b0b2b7bf8c8bf2e9765e9103908aba36989727
ae9125caee2dc267c67bf4f31f2669e03f65c47a43f2d0ab83081eb043d23d85
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb995026c-9c36-40df-864d-b3c2b7e5482b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9932
x-amzn-requestid: 280fdeaa-a0e1-4306-9adb-52c0f28b4002
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: duNZzGcjoAMF5wg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a8c2a4-73e3e4b34b67da2d2dbb8020;Sampled=0
x-amzn-remapped-date: Sun, 25 Dec 2022 21:37:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nR7WiQ1kUfI129AOECPfR181bNjexz6B7BEIYxDRiGNqfKCQPiBKOQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Dec 2022 21:58:57 GMT
age: 34827
etag: "d1b0b2b7bf8c8bf2e9765e9103908aba36989727"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15ba8929-c657-48a6-a579-360324426927.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15ba8929-c657-48a6-a579-360324426927.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8403a671b2c4b3b2ce2f8a9eba9de2c0
5437391241a500b6b0d2118120e835d2673e7d39
1e52a144b08ff6efe2da52dfdfeccbc4cea9270536cf5e7a2a769bbff9cd7d2f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15ba8929-c657-48a6-a579-360324426927.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11249
x-amzn-requestid: 6fdd6489-ffea-400f-9199-a20789160ba8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dlFk6FvuoAMFYcQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a51c85-6805b25c54c3390e5c39c6e1;Sampled=0
x-amzn-remapped-date: Fri, 23 Dec 2022 03:12:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gfO9Ei1XEd8cvE7CBnK5AUz1wIr890fLc9vwcZje7I23ZEjJkFLUDg==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Dec 2022 03:52:37 GMT
age: 13607
etag: "5437391241a500b6b0d2118120e835d2673e7d39"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff70fb5bc-19d9-433d-adc5-222fa8c0b134.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff70fb5bc-19d9-433d-adc5-222fa8c0b134.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e38d94b0be1b10ecac941b497f57c861
12911cd039f5c7b05013ebbc369aec5613134906
38a41df0d4f4405e8ecf6b379431bdb87eaed40e20481262b43d1fd127c010fd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff70fb5bc-19d9-433d-adc5-222fa8c0b134.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9452
x-amzn-requestid: 41b87e86-25f2-4d3b-a4ac-ae9a933a75b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: duMupEMdIAMF7Gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a8c190-22b2693c043757fb5d58dda7;Sampled=0
x-amzn-remapped-date: Sun, 25 Dec 2022 21:33:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: StP3cRZB5uQq5vj2oEZZmxAsLlu-nsnDNjQBdeb_o6Rd3YsP7p2Qlg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Dec 2022 22:01:52 GMT
etag: "12911cd039f5c7b05013ebbc369aec5613134906"
content-type: image/jpeg
age: 34652
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4202e798-ea02-47b7-a60c-abaacf6f94da.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4202e798-ea02-47b7-a60c-abaacf6f94da.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 68b2ed84d67beddfef011b88b3dd4815
a2b63df96a7d0e35e5e35b857dc8da2bd4c8c1d5
0f132fdf3778bf91796cd5d0058205e2b205549068238cb9b86ecf3e93f9843d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4202e798-ea02-47b7-a60c-abaacf6f94da.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8057
x-amzn-requestid: 81cfbbac-4e1e-4f02-bada-6958b2ed9f56
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dte7yEcyoAMFTPg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a8784b-46967ddd564b103f20799c0c;Sampled=0
x-amzn-remapped-date: Sun, 25 Dec 2022 16:20:27 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qaSO6hPpDEQpdjPtJbKRFjc37ZA-cLNpLpJ0Mi4VsDKfJidaAPSJjA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Dec 2022 04:36:41 GMT
age: 10963
etag: "a2b63df96a7d0e35e5e35b857dc8da2bd4c8c1d5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8acfbe14-6ef3-4805-a79f-989bf4baa86a.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8acfbe14-6ef3-4805-a79f-989bf4baa86a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4d6c3c9ebb71d01fc49a33aaa117d07e
c68e14965ed0d66ee60785fd261afd4651bb975d
16ae4f9cda16e06370067f92d1c3d5680714f32b0216453a4a584384222e927d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8acfbe14-6ef3-4805-a79f-989bf4baa86a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10560
x-amzn-requestid: 7ae51a69-57b8-462b-94dc-c98f3a81c518
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dsPBgH3jIAMFfkg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a7f86f-5b46b60218f5523b3b728145;Sampled=0
x-amzn-remapped-date: Sun, 25 Dec 2022 07:14:55 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rANghosrRCwf3fxtTQfojDdLvgxOlYDZcqLazBwwOd5wi2w82CfQpA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Dec 2022 06:40:06 GMT
age: 3558
etag: "c68e14965ed0d66ee60785fd261afd4651bb975d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb12e2114-0241-4da7-bd1e-899e349748e5.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb12e2114-0241-4da7-bd1e-899e349748e5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d168ba736203efdefa90d8882fc40505
c661ff487be1f6c6d8fbe8fd671aa55159052b13
03154c7d275e14a4a2174e710e0a8be4ffee79070052f210e3496f0c0b5f37c7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb12e2114-0241-4da7-bd1e-899e349748e5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12097
x-amzn-requestid: aae402bd-c19f-4245-98e9-e89ca85c4d25
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: duNcOHqcIAMFpYg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a8c2b4-0038899d5108109039e9d46a;Sampled=0
x-amzn-remapped-date: Sun, 25 Dec 2022 21:37:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: N54ZNk6rFLXw2TwRtNLAt4e1gBHqKMZ4uN0_fD5Fm7wtofseV-IgWQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Dec 2022 21:51:30 GMT
age: 35274
etag: "c661ff487be1f6c6d8fbe8fd671aa55159052b13"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb7dbee83-176a-4fa9-a42c-2a2c9db4001b.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb7dbee83-176a-4fa9-a42c-2a2c9db4001b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b46e077944b0d53e361327e6d690f2ec
c9f17cad706817aa66832633d1307a91c8c7d61e
b00a16c34c95675a08bafb198f7cc4b374e88a9041a6bb8593a61cb08ef3c306
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb7dbee83-176a-4fa9-a42c-2a2c9db4001b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10961
x-amzn-requestid: 4013aad4-805c-4abd-a748-9619aad6c134
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: duNb5Ha0oAMFzfA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a8c2b2-5701d49371016fb7580ba6c8;Sampled=0
x-amzn-remapped-date: Sun, 25 Dec 2022 21:37:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Axg_RTSiVQPB7tFIaN91OfTysuh7NTs0FH5w_vI0SsV3Fv_m3X1YyQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Dec 2022 22:08:59 GMT
age: 34231
etag: "c9f17cad706817aa66832633d1307a91c8c7d61e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2