Report - mxcloud.services/

Report Overview

Submitted URL
mxcloud.services/
IP
63.250.43.1
ASN
#22612 NAMECHEAP-NET
Submitted
2023-01-18 07:10:47
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
120

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	340 B	964 B	172.64.155.188
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	341 B	796 B	93.184.220.29
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.161.4.251
mxcloud.services	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	48 kB	3.6 MB	63.250.43.2
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.77.32
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	970 B	34 kB	216.58.207.227
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	1.5 kB	142.250.74.106
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	77 kB	34.120.237.76
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.8 kB	142.250.74.131
unpkg.com	11693	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.1 kB	7.8 kB	104.16.124.175

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-18	medium	mxcloud.services/	Malware
2023-01-18	medium	mxcloud.services/	Malware
2023-01-18	medium	mxcloud.services/wp-content/themes/konstruktic/assets/css/opal-boostrap.css?ver=6.1.1	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.4.6	Malware
2023-01-18	medium	mxcloud.services/wp-includes/css/classic-themes.min.css?ver=1	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8.3	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/jet-elements/assets/css/jet-elements-skin.css?ver=2.5.8	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/jet-elements/assets/css/jet-elements.css?ver=2.5.8	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.13.0	Malware
2023-01-18	medium	mxcloud.services/wp-content/uploads/elementor/css/post-1.css?ver=1634827018	Malware
2023-01-18	medium	mxcloud.services/wp-content/uploads/elementor/css/post-2205.css?ver=1634827942	Malware
2023-01-18	medium	mxcloud.services/wp-content/uploads/elementor/css/post-2209.css?ver=1634827019	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3	Malware
2023-01-18	medium	mxcloud.services/wp-content/uploads/elementor/css/post-1985.css?ver=1628778990	Malware
2023-01-18	medium	mxcloud.services/wp-content/uploads/elementor/css/global.css?ver=1634827019	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/konstruktic-core/assets/css/fullpage.css?ver=6.1.1	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/ele-custom-skin/assets/css/ecs-style.css?ver=3.1.3	Malware
2023-01-18	medium	mxcloud.services/wp-content/themes/konstruktic/assets/css/carousel.css?ver=6.1.1	Malware
2023-01-18	medium	mxcloud.services/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.4.6	Malware
2023-01-18	medium	mxcloud.services/wp-content/uploads/elementor/css/post-12.css?ver=1634828163	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/sticky-header-effects-for-elementor/assets/css/she-header-style.css?ver=1.4.7	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.4.6	Malware
2023-01-18	medium	mxcloud.services/wp-content/themes/konstruktic/assets/css/opal-icons.css?ver=6.1.1	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.4.6	Malware
2023-01-18	medium	mxcloud.services/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.3	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/ele-custom-skin/assets/js/ecs_ajax_pagination.js?ver=3.1.3	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/main.js?ver=1.15.1	Malware
2023-01-18	medium	mxcloud.services/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/konstruktic-core/assets/css/magnific-popup.css?ver=6.1.1	Malware
2023-01-18	medium	mxcloud.services/wp-includes/js/underscore.min.js?ver=1.13.4	Malware
2023-01-18	medium	mxcloud.services/wp-content/themes/konstruktic/assets/js/sticky-layout.js?ver=6.1.1	Malware
2023-01-18	medium	mxcloud.services/wp-includes/js/imagesloaded.min.js?ver=4.1.4	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.4.6	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.3.4	Malware
2023-01-18	medium	mxcloud.services/wp-includes/js/wp-util.min.js?ver=6.1.1	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/libs/jquery.magnific-popup.min.js?ver=6.1.1	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/elementor/frontend.js?ver=6.1.1	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.4.6	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/jet-tabs/assets/js/jet-tabs-frontend.min.js?ver=2.1.13	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.4.6	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.3.4	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/jet-elements/assets/js/jet-elements.min.js?ver=2.5.8	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.3.4	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2	Malware
2023-01-18	medium	mxcloud.services/wp-content/uploads/2021/04/Gilmer-Bold.ttf	Malware
2023-01-18	medium	mxcloud.services/wp-content/themes/konstruktic/assets/fonts/opal-icon.woff2	Malware
2023-01-18	medium	mxcloud.services/wp-content/themes/konstruktic/assets/fonts/GilmerBold.woff	Malware
2023-01-18	medium	mxcloud.services/wp-content/uploads/2021/04/logo-animation-type-2-.json	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js?version=5.4.8	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.actions.min.js?version=5.4.8	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.kenburn.min.js?version=5.4.8	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.navigation.min.js?version=5.4.8	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.13.0	Malware
2023-01-18	medium	mxcloud.services/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (64)

	URL	Size	First Seen	Last Seen
	mxcloud.services/	1.1 kB	2023-03-07	2024-04-18
Pretty URL mxcloud.services/ IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:03 Last Seen2024-04-18 14:14:43 Times Seen3309 Hash b36955bf11fd2b943745960d036901e5 d9b5403fee4ae8ec7ad7a3cc6ed747bb62aacf6e 5f82f0ebcd0edef1c37dcba00935d90b65c18d2b0834fce752efe5960e532de3 Loading...

	mxcloud.services/wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.3.4	164 kB	2023-03-07	2024-03-14
Pretty URL mxcloud.services/wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.3.4 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:25:39 Last Seen2024-03-14 11:45:12 Times Seen58 Hash 8e6308a83eed3cd09315df135586c2d0 26087bfc2e2ff268bf31c5fb0c9b29a83830e638 76ac33655e718d98c970cb74ba01f8f03da598d18a2e5339a6d3b6de7533eac7 Loading...

	mxcloud.services/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	90 kB	2023-03-08	2024-04-18
Pretty URL mxcloud.services/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-18 13:42:00 Times Seen31778 Hash 17738318d61d394f1de8890d589afaec f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3 cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981 Loading...

	mxcloud.services/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.3.4	59 kB	2023-03-07	2024-03-14
Pretty URL mxcloud.services/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.3.4 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:43:28 Last Seen2024-03-14 11:45:12 Times Seen65 Hash 661ad37748afe8af6705cce26ce3ab3c 90a2af9af5b2deeeebbbfbdf16311a547be6e7d5 e011b233e926c287f876b545ca6acc562777aceca92418988576d6532b0180a2 Loading...

	mxcloud.services/	1.3 kB	2023-03-13	2023-03-13
Pretty URL mxcloud.services/ IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:58:14 Last Seen2023-03-13 01:58:14 Times Seen1 Hash 779bd37583a01db7f10f86aafcf1bf98 c6abf915cb1731a02f0f58885ba57bee0ccfc8b2 8239d10eff19f53933e87989527a8d1550c41b04bdbaacffa0579a5e07429f7c Loading...

	mxcloud.services/wp-content/plugins/ele-custom-skin/assets/js/ecs_ajax_pagination.js?ver=3.1.3	3.8 kB	2023-03-07	2024-04-18
Pretty URL mxcloud.services/wp-content/plugins/ele-custom-skin/assets/js/ecs_ajax_pagination.js?ver=3.1.3 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:49 Last Seen2024-04-18 13:26:09 Times Seen1046 Hash 6a414b257267a883c6dd13b3c66b8596 23139e09437311e7bbf70b9e372c1e4ccaa31f65 95af163892829a3ef249441b70b2c8281b845edea4b24680d3326486861d6082 Loading...

	mxcloud.services/	1.9 kB	2023-03-13	2023-03-13
Pretty URL mxcloud.services/ IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:58:14 Last Seen2023-03-13 01:58:14 Times Seen1 Hash 560cf377c68ac34bbea8d0ee156518ba 90f4ec5c4d02bdbb9cb585dc7c9e99384ab72e43 3da34cd752ed1e36506c0f3183708bb34dbb1230beb5bb9273d9b777c258718f Loading...

	mxcloud.services/	246 B	2023-03-13	2023-03-13
Pretty URL mxcloud.services/ IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:58:14 Last Seen2023-03-13 01:58:14 Times Seen1 Hash 8a62ab3936be964e1b9424c03154559f eaa84b7b17b299703e4f47f1656a6892b399ab11 93ac1ba53d1dcddc7de451710b3038994ed298b746513709660a4e3c6f0f3060 Loading...

	mxcloud.services/	29 kB	2023-03-07	2024-04-17
Pretty URL mxcloud.services/ IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:03 Last Seen2024-04-17 05:54:00 Times Seen2211 Hash 10f428f59d120bf8adbc39b86d547a2f fe92af104d1ca10761ec932fdd2da77f759286d4 e0a244f4ace8e695c3aa03697b9dd349f5f1abbae8974d87e879274808305595 Loading...

	mxcloud.services/	2.2 kB	2023-03-13	2023-03-13
Pretty URL mxcloud.services/ IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:58:14 Last Seen2023-03-13 01:58:14 Times Seen1 Hash 5a57ab295a6d4c0d530b8bcb9671d4d1 6ae518969aac2390e056fe5b126809037e42092a 6270131aa9ec6f523344b34aabf218f7c04160230630f79477199aa7594ac111 Loading...

	mxcloud.services/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8.3	65 kB	2023-03-07	2024-04-16
Pretty URL mxcloud.services/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8.3 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:03 Last Seen2024-04-16 13:19:43 Times Seen3718 Hash e1223af8dbcd0552f6f6dc540431451e c01d6134f72ae04cb327a86918f3e88a63684e90 27ead7f47a3fb4d1e7cbef0c68e28bde7ea18923cf41d8ca82ba13584eebc710 Loading...

	mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/libs/jquery.magnific-popup.min.js?ver=6.1.1	20 kB	2023-03-07	2024-04-19
Pretty URL mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/libs/jquery.magnific-popup.min.js?ver=6.1.1 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-19 02:06:04 Times Seen19432 Hash ba6cf724c8bb1cf5b084e79ff230626e f455c5f153f872e52265f87a644ff89fe14a6fb6 3fddc6d28aba3c13d64cfd4847c333ff48c71d4a5a58bd1a0494ca6ae8ac1bb4 Loading...

	mxcloud.services/	396 B	2023-03-07	2024-04-14
Pretty URL mxcloud.services/ IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:03 Last Seen2024-04-14 23:43:21 Times Seen1413 Hash 2c702ceafc8e24985178a20c032b7723 c5229f4849fdbb1eab17007ab8d02da8e8d6eebc f186b1f2ce94cd81a064fa5f279694263d5815afaea10497b0266c64244da39c Loading...

	mxcloud.services/	56 kB	2023-03-07	2024-04-17
Pretty URL mxcloud.services/ IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:03 Last Seen2024-04-17 05:54:00 Times Seen2066 Hash a78982b40bf915f977f2bcb73e907934 540b38654ca018e915d4de20f586f7999d5119f2 f46438dc69e006684fd2254a035cd58fa8fc9277206bdf0f8c9a278bbfbc8756 Loading...

	mxcloud.services/	26 kB	2023-03-07	2024-03-27
Pretty URL mxcloud.services/ IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:03 Last Seen2024-03-27 14:26:52 Times Seen1929 Hash 05ec8fa18732b68a634f95e7c2bebd2e 2204916097137e7afe60b7d8a612e04f86496cbc 38da5f0c3fd471c5a28d03d7155aba416ae2562ba4a73a2ca3920b19e4b47a63 Loading...

	mxcloud.services/	380 B	2023-03-07	2024-04-12
Pretty URL mxcloud.services/ IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:02 Last Seen2024-04-12 19:43:31 Times Seen1613 Hash dd76b7be95a3fec972a9b9d6f71c5a1f ffafb2d79886453f55c177ce760a730c6c82ed9a 593c2f5d3a6d9e788f3eebb00ca3a1b41570599d885fc617ed89f1c48e4f02ba Loading...

	mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/libs/jquery-parallax.js?ver=1.15.1	325 B	2023-03-07	2024-01-28
Pretty URL mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/libs/jquery-parallax.js?ver=1.15.1 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06:21 Last Seen2024-01-28 12:04:55 Times Seen49 Hash e30b3975410a59bcb9839cc8346ce520 6328748dcee8f4a0993a2742a8a5db4f4e3d870f 585145500968af7ae86cd7615c6722f20df882908c98b558a533f8ed72b59a14 Loading...

	mxcloud.services/wp-includes/js/imagesloaded.min.js?ver=4.1.4	5.6 kB	2023-03-07	2024-04-18
Pretty URL mxcloud.services/wp-includes/js/imagesloaded.min.js?ver=4.1.4 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:40 Last Seen2024-04-18 13:42:00 Times Seen30936 Hash 3a56752b736635bf69cb069b8818cbfd 42e0951fe74bb3f56a30f51291823bcd4a84d76e ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869 Loading...

	mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/carousel.js?ver=6.1.1	4.4 kB	2023-03-07	2024-03-12
Pretty URL mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/carousel.js?ver=6.1.1 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06:20 Last Seen2024-03-12 09:54:32 Times Seen116 Hash 7950b78be956eabcb0420c8832cc33bf 14ac6ba5b8a96c8ca7e7b4bec37b90d9997476d0 9cbbcbb1f4d510721683b8ecfbecdf20af2a397cbecd76cbeebb09e48a4e9ff3 Loading...

	mxcloud.services/wp-includes/js/wp-util.min.js?ver=6.1.1	1.4 kB	2023-03-08	2024-04-19
Pretty URL mxcloud.services/wp-includes/js/wp-util.min.js?ver=6.1.1 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26:29 Last Seen2024-04-19 01:58:23 Times Seen24296 Hash 19d386c9004e54941c1cc61d357efa5d 0a77594006c8d86fdcc0adbc2b9aecaef3869586 3bc6467a95cec8fa516c6f5f69e1301e37e16f9bb1046fe7756729249f901b95 Loading...

	mxcloud.services/	1.2 kB	2023-03-13	2023-03-13
Pretty URL mxcloud.services/ IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:58:15 Last Seen2023-03-13 01:58:15 Times Seen1 Hash 75cbb8ad244d19e4ee6580710e82f695 67bf3d895d70e9d39f1ffdd5959924ced2f00af5 e9f30e20b50a0c84e91388a6ea10f158b4c3b88c7d2374730f9f3ebe4e7faded Loading...

	mxcloud.services/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.4.6	2.6 kB	2023-03-07	2024-04-18
Pretty URL mxcloud.services/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.4.6 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:28 Last Seen2024-04-18 13:42:00 Times Seen4615 Hash 9bb8540493a7fe11b229870eb37be165 d77f17cb9057dc8f622b8c0bf23f6acb739b3b8e 4a7ee62eb33f3bbb66c2151e5cac6bf4904e28302efc36128f3e3ccae6fde580 Loading...

	mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/libs/fullpage.min.js?ver=1.15.1	35 kB	2023-03-13	2024-03-12
Pretty URL mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/libs/fullpage.min.js?ver=1.15.1 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:58:15 Last Seen2024-03-12 09:54:33 Times Seen5 Hash aef165ca6273ca589437b4b0742fa586 8e08d5321a2affbbf6df6d6e5ad0360bf23a2fb9 e15151ccb761412632e48ba70e380c874c00f273fbb26e4932cff799bbe9b49b Loading...

	mxcloud.services/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.3.4	5.5 kB	2023-03-07	2024-03-14
Pretty URL mxcloud.services/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.3.4 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:43:28 Last Seen2024-03-14 11:45:12 Times Seen67 Hash 079153fb0712e3670c639d03c8fb4ddf 7690ab24c3ff37a5ecea4a3a47bfc08a270e84de 1a537d82ffc9c64689744b2886e0459405a399a32b3a4e5906217b45de09ffda Loading...

	mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/main.js?ver=1.15.1	1.4 kB	2023-03-13	2024-01-28
Pretty URL mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/main.js?ver=1.15.1 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:58:15 Last Seen2024-01-28 12:04:55 Times Seen5 Hash 8ccece328abfa979e8293cd465f26260 016f0f41dc271f6c2e76868655b45cf7148a7b68 2116119f02eb56889d76cfa108047804ea24501218ec431f097160446b8a7822 Loading...

	mxcloud.services/	763 B	2023-03-07	2024-04-14
Pretty URL mxcloud.services/ IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:03 Last Seen2024-04-14 23:43:22 Times Seen1664 Hash c291ddfafe8b815d28e02482f1251b5e 4501ffc2d31f0231d4eee4aad85578597c753ce7 371ffe791a9a08bddf8a965e60dbe84e817edd8cb480f731d05e791eff5b35af Loading...

	mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/libs/TweenMax.min.js?ver=1.15.1	115 kB	2023-03-07	2024-01-28
Pretty URL mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/libs/TweenMax.min.js?ver=1.15.1 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06:21 Last Seen2024-01-28 12:04:55 Times Seen64 Hash ae12e96c807825bb94359cf77eef2499 eb2516eafea1ba31cfa659f255bc567236658e78 3cde4552b576851bbf6901f8f77ee75dc88ddc32e4368dccc88ac78008336b76 Loading...

	mxcloud.services/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	12 kB	2023-03-07	2024-04-19
Pretty URL mxcloud.services/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-19 01:58:23 Times Seen52483 Hash 3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0 Loading...

	mxcloud.services/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.4.6	32 kB	2023-03-07	2024-02-28
Pretty URL mxcloud.services/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.4.6 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:23 Last Seen2024-02-28 15:31:04 Times Seen79 Hash 9165d25a822040e93bb500fb1024b175 32b47d87581b06cf2d9acdf40c37a96cddd7bad8 03edb50ff08f83a75f6266fb81f81592619c2b7c393cefcb37082a1d018b9caa Loading...

	mxcloud.services/wp-content/plugins/ele-custom-skin/assets/js/ecs.js?ver=3.1.3	284 B	2023-03-07	2024-04-18
Pretty URL mxcloud.services/wp-content/plugins/ele-custom-skin/assets/js/ecs.js?ver=3.1.3 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:49 Last Seen2024-04-18 13:26:09 Times Seen1265 Hash 447712f49ef92d24eda0381882e5f00b b041299af91182f0d7a997769cd20e3a2f7ebef4 566d4c5dfefc9c4d867e6bef080917a4273b4228731a8700e81f1763eae3d861 Loading...

	mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/libs/jquery.smartmenus.min.js?ver=1.15.1	24 kB	2023-03-07	2024-03-12
Pretty URL mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/libs/jquery.smartmenus.min.js?ver=1.15.1 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:08 Last Seen2024-03-12 15:28:02 Times Seen406 Hash f37878df1d94bbea0dfb7e85612888ec 19df702835ff55ce5a9b76b9974f8597cc528c6a 2fe668f50e1b19f758d3a06ac0c60b0e869c6b31fa1ab43190b6af3dd4f46b8e Loading...

	mxcloud.services/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.4.6	14 kB	2023-03-07	2024-02-28
Pretty URL mxcloud.services/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.4.6 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:23 Last Seen2024-02-28 15:31:04 Times Seen83 Hash cd72d0079ca14a947a207e82721fa60c b3b7de2a20f164c8ceaa780932e4186ad33d92bc 46844c3ab6d1262e6ae7c0faf174572df06bcd732365782946917a08f5e99396 Loading...

	mxcloud.services/wp-content/themes/konstruktic/assets/js/libs/owl.carousel.js?ver=2.2.1	104 kB	2023-03-07	2024-01-28
Pretty URL mxcloud.services/wp-content/themes/konstruktic/assets/js/libs/owl.carousel.js?ver=2.2.1 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06:21 Last Seen2024-01-28 12:04:55 Times Seen145 Hash 5931613d57f6ac2f00829eefd39a8b15 66304d3e2e5ae465ea3df42d582dd1ebcdf5aa6a 6e60e269abacf471d9157534945925d27747a831d86b5e55b0efc0bcfb152799 Loading...

	mxcloud.services/wp-includes/js/underscore.min.js?ver=1.13.4	19 kB	2023-03-08	2024-04-19
Pretty URL mxcloud.services/wp-includes/js/underscore.min.js?ver=1.13.4 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26:29 Last Seen2024-04-19 01:58:23 Times Seen41214 Hash f88d5720bb454ed5d204cbdb56901f6b f1952292fde4b15936e9aac16b2b9896684db95b 726b820e44f6ab90ad991d30a4bf26d3a5d71493cbcd1fb1efd0d14e89b9df2a Loading...

	mxcloud.services/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2	21 kB	2023-03-08	2024-04-18
Pretty URL mxcloud.services/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-18 13:42:00 Times Seen9796 Hash 034bd11ecaf6fb9240d905245e42e202 ff136c394ed95badfc0107fb98a890dcff642828 ca7154cdda62b535ceaba9ad2a2b2217ff49de94c069a2c4e89733f3f06b3651 Loading...

	mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/elementor/frontend.js?ver=6.1.1	39 kB	2023-03-13	2023-05-20
Pretty URL mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/elementor/frontend.js?ver=6.1.1 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:58:15 Last Seen2023-05-20 04:18:18 Times Seen3 Hash d1268c98006af605357ac7cc0d6a42c4 a430313b2210d5d78f54c2ae35bb56f842bd1904 79aa286349e5b0a98cdfbf6ca05c746024a1eca3e82571f53a143b384ccf43af Loading...

	mxcloud.services/wp-content/plugins/jet-tabs/assets/js/jet-tabs-frontend.min.js?ver=2.1.13	15 kB	2023-03-07	2023-11-20
Pretty URL mxcloud.services/wp-content/plugins/jet-tabs/assets/js/jet-tabs-frontend.min.js?ver=2.1.13 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:25 Last Seen2023-11-20 21:51:46 Times Seen74 Hash d496b149c833594a668fdb19d9f9c8b6 1178c9920cd04c4390a329851cac596f400d68c9 10637786c0b84219256ef47f0e0eb24b1a630c1a9312a47e3729fa72022acf7e Loading...

	mxcloud.services/	305 B	2023-03-13	2023-03-13
Pretty URL mxcloud.services/ IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:58:15 Last Seen2023-03-13 01:58:15 Times Seen1 Hash ffa19dfe9502acbed5f6a91b51d506a6 9eadae9e6a0e5f74e5c976c7c442056e4e63a627 eec2c6274873d5e9d9049618b88689f5088a1e7121238f1c761c2946873f52de Loading...

	unpkg.com/lottie-interactive@latest/dist/lottie-interactive.js	295 kB	2023-03-13	2023-03-13
Pretty URL unpkg.com/lottie-interactive@latest/dist/lottie-interactive.js IP 104.16.124.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:58:15 Last Seen2023-03-13 01:58:15 Times Seen1 Hash d1ddfc2370b60b2b98cc98305ccff95f e630be4ae8e31e6a45e6da64b0e3ebd055784015 8d35dd9633b2082b2b258a22933b624515dca6fb6b37bef2687be316ddd36b87 Loading...

	mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.4.6	15 kB	2023-03-07	2024-04-18
Pretty URL mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.4.6 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:07 Last Seen2024-04-18 22:11:38 Times Seen16363 Hash 7a5dea0a705cc2f4cd87dbaaa6666bc6 678bc6f750f13adb29bbc158eb0d9cd813b736fa 97cf1307c16a437b77b5f7f5c9bc0b985d0745a14be5a279019aca5a3432e264 Loading...

	mxcloud.services/	3.8 kB	2023-03-07	2024-03-26
Pretty URL mxcloud.services/ IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:03 Last Seen2024-03-26 11:27:53 Times Seen251 Hash 261d036ff4d77e01fbca0b39e05b3321 17c763757d51ca8dce4c3709acf87e061189d862 aa3a395c27bfaf020ed08d80d44b8470d2279339c2864d4b99c1c51520fc78e0 Loading...

	mxcloud.services/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.3.4	6.6 kB	2023-03-07	2024-04-18
Pretty URL mxcloud.services/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.3.4 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-18 13:42:01 Times Seen4076 Hash e16a8821e5f099c3a619889ea7cf0399 a38e0c736aaf0b019b29b63b00e68c1381502217 a48dea362116d7516a2cf97066a32758d353760ee02dbf900ddff86b02a16473 Loading...

	mxcloud.services/wp-content/plugins/jet-elements/assets/js/jet-elements.min.js?ver=2.5.8	65 kB	2023-03-08	2024-01-20
Pretty URL mxcloud.services/wp-content/plugins/jet-elements/assets/js/jet-elements.min.js?ver=2.5.8 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:57:13 Last Seen2024-01-20 21:43:35 Times Seen22 Hash cafc0ff938f3cac09ab6a684a5402784 bc40b48c224cd4c8d1a12ab2e53545a2b2ed31f7 4604fb3649c76594567706713285dd8be0c3538a2c3b0edfd49d74c9f5147972 Loading...

	mxcloud.services/	2.4 kB	2023-03-13	2023-03-13
Pretty URL mxcloud.services/ IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:58:15 Last Seen2023-03-13 01:58:15 Times Seen1 Hash 69b6adc6a345ff9dba77fd93c1e99161 f87c345ab641d06db6d340e371165373b30ae608 0f7e8a5254cd7de601a7d4f42b55bbf5ed66182e2c7cf4066810d45c65c634c6 Loading...

	mxcloud.services/	2.5 kB	2023-03-10	2023-12-17
Pretty URL mxcloud.services/ IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 03:00:25 Last Seen2023-12-17 02:23:52 Times Seen3 Hash 572de5dfacb2861b060747490e032238 ab4b9bdf73a3f0e4a6b2380a2fb076ffbab585fd 7da08c79f06b3b97f9d1e8743f71c645cc0f6a8ca6f4423277f97793e1baddaa Loading...

	mxcloud.services/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6	139 kB	2023-03-07	2024-04-18
Pretty URL mxcloud.services/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-18 22:13:38 Times Seen23118 Hash 15bb2b8491fc7e84137d65f610e1685a cd76b70a5426893e9c022b9a75c50a7c1348e2d0 b23f49f504faa32aac548b6662ffd64412f6738496fab8be38da46c5b7121804 Loading...

	mxcloud.services/	190 B	2023-03-13	2023-03-13
Pretty URL mxcloud.services/ IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:58:15 Last Seen2023-03-13 01:58:15 Times Seen1 Hash 4979a459e883852e57f43077c4982cf0 bb60779442e829ff64aad77eb58a44df4aac313b f7e55e61195c5bb2a1189a091cb1928b36dedd8280797be8ebe63c33262b749d Loading...

	unpkg.com/@lottiefiles/lottie-player@latest/dist/lottie-player.js	367 kB	2023-03-12	2023-11-23
Pretty URL unpkg.com/@lottiefiles/lottie-player@latest/dist/lottie-player.js IP 104.16.124.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:01:00 Last Seen2023-11-23 00:04:23 Times Seen2 Hash 71431354c6de47c203a7e82c50bf6e64 d5d448446221b560e3beb4a1c63942f435f5b438 18f515dc0910f93da9417755c6c22267e581d194fc41ae50aabc60e1cecd2ab6 Loading...

	mxcloud.services/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.4.6	37 kB	2023-03-07	2024-02-28
Pretty URL mxcloud.services/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.4.6 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:23 Last Seen2024-02-28 15:31:04 Times Seen84 Hash 3f484a9d593209e3383471c431714701 a4b63fcd52d9b6e0cda8c15d6e21fcc4fbb44ba0 a50c282f6e6c2efcb557215666d4737c9621d5109507636a799305ecc6596a4a Loading...

	mxcloud.services/wp-content/themes/konstruktic/assets/js/theme.js?ver=1.0	20 kB	2023-03-13	2024-01-28
Pretty URL mxcloud.services/wp-content/themes/konstruktic/assets/js/theme.js?ver=1.0 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:58:15 Last Seen2024-01-28 12:04:55 Times Seen5 Hash a52b8c5eb07a7254da2e30c18455b630 d30dbc1737bade4a8947e7499513bb80c7db81f1 aca43339941ee394e224d1200781b7103c1651aa445efcf8aa24bac23e81b8b4 Loading...

	mxcloud.services/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1	11 kB	2023-03-07	2024-04-18
Pretty URL mxcloud.services/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:39 Last Seen2024-04-18 05:49:36 Times Seen3492 Hash 58baf0f238d7afc7ab926b8d51e5b559 8515e5f578269e29c048450f78c107935d325dff 2989e0b9e836cb9de3274d641ec6a58c2052f039e790ddd59b22303930bfdeeb Loading...

	mxcloud.services/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.4.6	4.9 kB	2023-03-07	2024-02-28
Pretty URL mxcloud.services/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.4.6 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:23 Last Seen2024-02-28 15:31:04 Times Seen69 Hash 8d25ef9d56c6b53804621db33bdece57 caa97adcb80c1fbcdf80fe01f6e300ec9cdfef04 e06f8c87d1265e840cda9de89db64f4ac3754c8b88ba89ee43a93906eadc46fa Loading...

	mxcloud.services/wp-content/plugins/sticky-header-effects-for-elementor/assets/js/she-header.js?ver=1.4.7	7.3 kB	2023-03-07	2024-04-10
Pretty URL mxcloud.services/wp-content/plugins/sticky-header-effects-for-elementor/assets/js/she-header.js?ver=1.4.7 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06:53 Last Seen2024-04-10 00:36:23 Times Seen162 Hash f58ca58c4cf5e63dfd109fd9c89d8d0a b216befdf932fe380dafc2eb57f63a9a013036b3 00c910db9007dbf60eb25c0512bbcfa0b90678b94fcf0f3d3c926521ade4d7be Loading...

	mxcloud.services/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1	19 kB	2023-03-07	2024-04-18
Pretty URL mxcloud.services/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-18 13:32:29 Times Seen37992 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	mxcloud.services/	8.3 kB	2023-03-07	2024-03-27
Pretty URL mxcloud.services/ IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:03 Last Seen2024-03-27 14:26:52 Times Seen628 Hash 1e23424880dfdb9e886fcff2f0aae6ee 8acaff02a625c997cbbb7ed8843e7cf610bf2b5b 0fc4db12b0d589fd17b3e43c3ba4cdca64183916637624bfe59aad7299284284 Loading...

	unpkg.com/@lottiefiles/lottie-interactivity@latest/dist/lottie-interactivity.min.js	20 kB	2023-03-12	2024-04-12
Pretty URL unpkg.com/@lottiefiles/lottie-interactivity@latest/dist/lottie-interactivity.min.js IP 104.16.124.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 19:43:16 Last Seen2024-04-12 01:43:34 Times Seen793 Hash 36e904f4f5a4e175d71d585193e9fa02 8c40c596c4c53763840c2dcfd364807590e55804 6d4cb67a77ccaac1eb6226ad28e5c991a57a03a8aea99e85523b7e0df6694770 Loading...

	unknown	0 B	2023-03-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 04:35:29 Times Seen36952255 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	mxcloud.services/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-19
Pretty URL mxcloud.services/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-19 01:16:23 Times Seen68487 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	mxcloud.services/	96 B	2023-03-07	2024-04-18
Pretty URL mxcloud.services/ IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:51 Last Seen2024-04-18 19:01:07 Times Seen10590 Hash eb3a538fd2a39c22198e72c3b9f498a7 c966ebdbd2701a0980a85671126664f3892d4f1e ac233233e7bcaf806041b243578fab081dced8a045d9a82756410da9ea2382a1 Loading...

	mxcloud.services/wp-content/themes/konstruktic/assets/js/sticky-layout.js?ver=6.1.1	4.6 kB	2023-03-07	2024-01-28
Pretty URL mxcloud.services/wp-content/themes/konstruktic/assets/js/sticky-layout.js?ver=6.1.1 IP 63.250.43.1 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06:21 Last Seen2024-01-28 12:04:55 Times Seen27 Hash cb0e643b9725c79447ef12292e6d4942 9de76498685800322d215bdca8797483554982c6 f77afc62a6126a044513b51fd4e091b0e311f20f2d44da0a72d4629e2c69580a Loading...

		Size	First Seen	Last Seen
	#1 Eval - efc0eb0d52d74b8ffc27ab3df43a3e79	114 B	2023-03-13	2023-03-13
Pretty Observations First Seen2023-03-13 01:58:15 Last Seen2023-03-13 01:58:15 Times Seen1 Hash efc0eb0d52d74b8ffc27ab3df43a3e79 96cda29571ebca0ad36048747df8ff19d11e471f 807b5f916b70be38fb2064d4ca65498787731544bd6a8defe16e676f456df595 Loading...

	#2 Eval - 8d4f7a4894cad9c70d53be0eeab7f03a	118 B	2023-03-13	2023-03-13
Pretty Observations First Seen2023-03-13 01:58:15 Last Seen2023-03-13 01:58:15 Times Seen1 Hash 8d4f7a4894cad9c70d53be0eeab7f03a b6c55466a451753b1b58e6ff749b6caf3cfbba8f 6b35d03141b044b76f6f3bf0a550cd4673ecc61eea57396f80893af20bdcbd0b Loading...

	#3 Eval - a9e59a80f0a35b9a41a1cc37cb3026b7	123 B	2023-03-13	2023-03-13
Pretty Observations First Seen2023-03-13 01:58:15 Last Seen2023-03-13 01:58:15 Times Seen1 Hash a9e59a80f0a35b9a41a1cc37cb3026b7 cf12a01339f8d3044458b362eb82b97d65603514 a62610f4d423f29f5180054282ecfccb54ccf175401cae21295c156f68142959 Loading...

	#4 Eval - c2d0f64ccd778881152dd6ab330f2f62	119 B	2023-03-13	2023-03-13
Pretty Observations First Seen2023-03-13 01:58:15 Last Seen2023-03-13 01:58:15 Times Seen1 Hash c2d0f64ccd778881152dd6ab330f2f62 7371bd6bd067db01103de4c008efdefc5a622218 cdbc1e3a355b5df5efc517126e6bc05c5447b8a7a1e199cb8afc329ae71c01e6 Loading...

HTTP Transactions (137)

URL IP Response Size

mxcloud.services/

63.250.43.2

301 Moved Permanently

0 B

URL HTTP/1.1
mxcloud.services/
IP
63.250.43.2:0
ASN
#22612 NAMECHEAP-NET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
content-length: 0
location: https://mxcloud.services/

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
648bf42163c5d645d8a33cd0a9afebd0
9b9ac85435c4e90647e8379bca54c689058a8929
060757fb4857858d4d01a715824ea6771d0137e73a24bf75e2844d0f346380fa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "060757FB4857858D4D01A715824EA6771D0137E73A24BF75E2844D0F346380FA"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6788
Expires: Wed, 18 Jan 2023 09:03:43 GMT
Date: Wed, 18 Jan 2023 07:10:35 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cc07d664b5dadee6f9120d54904dfa57
df75a55b0b2019684a6c512bee528c51a2c4a756
14a1bd6315a3256468edafedfd1c02a6ba147914c0f01e8504e7d8cc67781c34

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "14A1BD6315A3256468EDAFEDFD1C02A6BA147914C0F01E8504E7D8CC67781C34"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5828
Expires: Wed, 18 Jan 2023 08:47:43 GMT
Date: Wed, 18 Jan 2023 07:10:35 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 18 Jan 2023 06:34:22 GMT
content-type: application/json
age: 2173
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6c8239f3894cfba54d1f3a9ea1c85db5
a70f2b3bf79f2aa26b0cc0340dd182565c3eb946
64dc0508d3fcea1ec92fb60310e9b3f5454c0b69f61e8453fd443bc46ab9471b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "64DC0508D3FCEA1EC92FB60310E9B3F5454C0B69F61E8453FD443BC46AB9471B"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5221
Expires: Wed, 18 Jan 2023 08:37:36 GMT
Date: Wed, 18 Jan 2023 07:10:35 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: O1+mxXfX7s0wZaCVdEDzMV06T1tGAm/4+b/n6UJdXnA1g9PdA83qU2SDUw7P8gCJrSAddMw8HzM=
x-amz-request-id: QKW8CMGC81WEHPVM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 18 Jan 2023 06:56:35 GMT
age: 840
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 07:10:35 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 18 Jan 2023 06:48:57 GMT
age: 1299
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
a0ede442f75c06b762d2e98e9fa6706e
9c4515fe4d965e4a88394bc913e1ef8d932158ae
1c39648970ecdc5db0dceb9d130b2e7f6adeaec9c71524e5121587fbb6a5d6d0

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 07:10:36 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 17 Jan 2023 11:08:19 GMT
Expires: Tue, 24 Jan 2023 11:08:18 GMT
Etag: "9c4515fe4d965e4a88394bc913e1ef8d932158ae"
Cache-Control: max-age=532061,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78b58302ed70b517-OSL

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
8720730dce33d0026a1a354ac93d4a7d
ed5f086bc646a4d93d2344b19ff7821c96e44f7c
b2892fda88242fbc4d58dd1f3bb159ca02cbf98b77c57dde66fba98d183c0136

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6364
Cache-Control: max-age=99737
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:10:36 GMT
Etag: "63c66529-1d7"
Expires: Thu, 19 Jan 2023 10:52:53 GMT
Last-Modified: Tue, 17 Jan 2023 09:06:49 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

mxcloud.services/

63.250.43.1

200 OK

36 kB

URL HTTP/2
mxcloud.services/
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (52143)
Size
36 kB (35811 bytes)
Hash
fb8510318fac4f9561ac0dc0b387a3a1
ea58da30e1b0d4d96760ff1eef960356323fed63
b4899de03841df83eef5cdc299de8ea0d5eb66b57a2184303cab5c016365c87a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:14 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
link: <https://mxcloud.services/wp-json/>; rel="https://api.w.org/", <https://mxcloud.services/wp-json/wp/v2/pages/12>; rel="alternate"; type="application/json", <https://mxcloud.services/>; rel=shortlink
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public
referrer-policy: strict-origin-when-cross-origin
content-encoding: gzip
x-cacheable: YES
age: 24981
accept-ranges: bytes
x-cache: HIT
content-length: 35811
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

push.services.mozilla.com/

35.161.4.251

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.161.4.251:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: huCUQwEVMdDwjHhvG/GihA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: jLEW+/c7fZLTcJh5eJDNZH5rJxM=

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2b02c407fd912449a1b278f0bf3d8574
817bcff5b7c0444426b19027c772bddce84cf130
67ceddcf2eef43f1c11fc85c1398c39b5ff875a93dafbf9c4526e6d3bc5eb52a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:10:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2b02c407fd912449a1b278f0bf3d8574
817bcff5b7c0444426b19027c772bddce84cf130
67ceddcf2eef43f1c11fc85c1398c39b5ff875a93dafbf9c4526e6d3bc5eb52a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:10:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

mxcloud.services/wp-content/themes/konstruktic/assets/css/opal-boostrap.css?ver=6.1.1

63.250.43.1

200 OK

14 kB

URL HTTP/2
mxcloud.services/wp-content/themes/konstruktic/assets/css/opal-boostrap.css?ver=6.1.1
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text
Size
14 kB (14315 bytes)
Hash
85ab4ed6c188036c7585ea66f442ad53
b14c0cb6eeb52ecf3b1090b1564debe5395d16ac
45612006722900a2833abe4ca3c3db1c843b5924c1546b9fdb1c716b4f2bd3b5

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/konstruktic/assets/css/opal-boostrap.css?ver=6.1.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:13:38 GMT
last-modified: Fri, 23 Apr 2021 18:46:59 GMT
etag: "60831623-1bdce"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 25017
accept-ranges: bytes
x-cache: HIT
content-length: 14315
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.4.6

63.250.43.1

200 OK

18 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.4.6
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (65497)
Size
18 kB (17665 bytes)
Hash
45a64f19060341617b336f503437cfaa
8adacfa0feffe358096fe272b40141d33a3d0508
9cde55289c7fc7c5f096c1c09977f9be9ff25d2ff22f49026d5f48ff34310e06

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.4.6 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:18 GMT
last-modified: Thu, 21 Oct 2021 14:29:21 GMT
etag: "61717941-20197"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24978
accept-ranges: bytes
x-cache: HIT
content-length: 17665
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

unpkg.com/@lottiefiles/lottie-interactivity@1.6.1/dist/lottie-interactivity.min.js

104.16.124.175

200 OK

5.0 kB

URL HTTP/2
unpkg.com/@lottiefiles/lottie-interactivity@1.6.1/dist/lottie-interactivity.min.js
IP
104.16.124.175:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (20214)
Size
5.0 kB (4999 bytes)
Hash
bf6d50febacacecb999e219292b062ae
758c1e0c7ced6ca5b59d108bff556d1149bad2f2
42f9062199b589bc233d86fa796fc1daff029989e74054c7f8b6cde3a858e64f

HTTP Headers

GET /@lottiefiles/lottie-interactivity@1.6.1/dist/lottie-interactivity.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:10:36 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"4f2c-jEDFlsTFN2OEDC3P02SAdZDlWAQ"
via: 1.1 fly.io
fly-request-id: 01G7PDR6HQ07VJ2NW46Y8V67RM-fra
cf-cache-status: HIT
age: 16489408
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78b58307cfa4b523-OSL
content-encoding: br
X-Firefox-Spdy: h2

mxcloud.services/wp-content/themes/konstruktic/style.css?ver=6.1.1

63.250.43.1

200 OK

22 kB

URL HTTP/2
mxcloud.services/wp-content/themes/konstruktic/style.css?ver=6.1.1
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
Unicode text, UTF-8 text, with very long lines (385)
Size
22 kB (21993 bytes)
Hash
15811408f29273837cc333660ff6f599
0c9317a0aa6bbb342e0003c3bda535d54a2d0890
0587c9df2b9166d8ef4891e6a75488135103540ce160791fd4ffee9b68e8c530

HTTP Headers

GET /wp-content/themes/konstruktic/style.css?ver=6.1.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 23 Apr 2021 18:46:59 GMT
etag: "60831623-1cd6d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 21993
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/konstruktic-core/assets/css/elementor/style.css?ver=1.15.1

63.250.43.1

200 OK

22 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/konstruktic-core/assets/css/elementor/style.css?ver=1.15.1
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (1779)
Size
22 kB (21524 bytes)
Hash
c1ef98adee79d446d23263d30cac6c0f
b8ea9255a0cb0905ec88889f16fd39a5f98c6662
f03daa048cd86b2d32eb8dfac8ada57337462c4c0309379bbd1a316be3f02219

HTTP Headers

GET /wp-content/plugins/konstruktic-core/assets/css/elementor/style.css?ver=1.15.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Mon, 22 Nov 2021 22:53:15 GMT
etag: "619c1f5b-27c1c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 21524
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1

63.250.43.1

200 OK

12 kB

URL HTTP/2
mxcloud.services/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (47826)
Size
12 kB (12518 bytes)
Hash
981383d43a7adb38d6c2bf5286dcd065
e41871905868763178f7d8127e3dfb87909f108f
fceb208fc5a1581abc1926596d5f59fa41e7a7d72027b563303b445cdf7ed126

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Tue, 15 Nov 2022 23:02:52 GMT
etag: "63741a9c-172a9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 12518
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-includes/css/classic-themes.min.css?ver=1

63.250.43.1

200 OK

217 B

URL HTTP/2
mxcloud.services/wp-includes/css/classic-themes.min.css?ver=1
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text
Size
217 B (217 bytes)
Hash
95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:18 GMT
last-modified: Wed, 02 Nov 2022 10:52:22 GMT
etag: "63624be6-d9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
content-length: 217
x-cacheable: YES
age: 24978
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8.3

63.250.43.1

200 OK

9.6 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8.3
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
Unicode text, UTF-8 text, with very long lines (5178), with CRLF line terminators
Size
9.6 kB (9563 bytes)
Hash
32d8fef334fd178398052529c40feb28
29002eaf2a3877bae23b4ccf8c6d72c4622145ea
50cf220734f07287449aef0d5b0ac126a2cc6148a7238449ab63e1c422c2caa1

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8.3 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:18 GMT
last-modified: Fri, 23 Apr 2021 18:48:23 GMT
etag: "60831677-9b8c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24978
accept-ranges: bytes
x-cache: HIT
content-length: 9563
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/jet-elements/assets/css/jet-elements-skin.css?ver=2.5.8

63.250.43.1

200 OK

2.9 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/jet-elements/assets/css/jet-elements-skin.css?ver=2.5.8
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (17381)
Size
2.9 kB (2890 bytes)
Hash
be82911c928de260fc06115576776c2e
2b0d7ed416ff25c3716d4b12216e999cb3829165
7f049c3e6f0e758f290b960b82d7d92995949c32a0969c7fc093c8ada4c4a2ff

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/jet-elements/assets/css/jet-elements-skin.css?ver=2.5.8 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 23 Jul 2021 17:01:24 GMT
etag: "60faf5e4-43e6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 2890
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/jet-elements/assets/css/jet-elements.css?ver=2.5.8

63.250.43.1

200 OK

22 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/jet-elements/assets/css/jet-elements.css?ver=2.5.8
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (65536), with no line terminators
Size
22 kB (22402 bytes)
Hash
02ee91e8f00013ecbe3c672c77b30054
01f56104a6c4eec406187d08bee1b5ead3a2d580
8ff0fecb97fbda33a8ed8349801928819d0de2297135309c862785d256fc953e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/jet-elements/assets/css/jet-elements.css?ver=2.5.8 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:18 GMT
last-modified: Fri, 23 Jul 2021 17:01:24 GMT
etag: "60faf5e4-3a86d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24978
accept-ranges: bytes
x-cache: HIT
content-length: 22402
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.13.0

63.250.43.1

200 OK

3.9 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.13.0
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (18854)
Size
3.9 kB (3882 bytes)
Hash
686d3a79bb3f81638813b23697acbe27
acf346260aaca8295787939960f46ac75fec7815
d7e7e71fbf2db6f6a4dbcc43dba846e1f64f54f6c43ad8bacb8db727e7d14d24

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.13.0 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:29:20 GMT
etag: "61717940-49d4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 3882
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/uploads/elementor/css/post-1.css?ver=1634827018

63.250.43.1

200 OK

349 B

URL HTTP/2
mxcloud.services/wp-content/uploads/elementor/css/post-1.css?ver=1634827018
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (1012), with no line terminators
Size
349 B (349 bytes)
Hash
f13ce464b4e63a96f6327805b0f6d27a
d76a8a83f295b6a7305835d2bbf4bb0f773c748b
187ba96c6331664647a16a2f5f0d86f2a77856fcac3e454e6d6abb3e7e031b26

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/elementor/css/post-1.css?ver=1634827018 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:36:58 GMT
etag: "61717b0a-3f4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 349
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/jet-tabs/assets/css/jet-tabs-frontend.css?ver=2.1.13

63.250.43.1

200 OK

4.0 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/jet-tabs/assets/css/jet-tabs-frontend.css?ver=2.1.13
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (43662)
Size
4.0 kB (4033 bytes)
Hash
e5cf71434a8aefcb40388856cc06ea17
d10d3d74b027e6af503218d11cf0aa86e079f362
14145b4a63946c29a067e834e71e79cb2faaed74f89db2a9a824cfdf2c24c527

HTTP Headers

GET /wp-content/plugins/jet-tabs/assets/css/jet-tabs-frontend.css?ver=2.1.13 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 23 Jul 2021 17:01:39 GMT
etag: "60faf5f3-aa8f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 4033
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.3.4

63.250.43.1

200 OK

26 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.3.4
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (65493)
Size
26 kB (25871 bytes)
Hash
05e6eb6c91d13d7aa4e4293b77abd499
b530021c59c4ec9ed6df882e7bf02e96094cdbd0
ecd422e3208710daa1fd6790f16e7f518a534ba7925f094ae38040756846820e

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.3.4 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 23 Jul 2021 17:02:11 GMT
etag: "60faf613-39cde"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 25871
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/uploads/elementor/css/post-2205.css?ver=1634827942

63.250.43.1

200 OK

1.6 kB

URL HTTP/2
mxcloud.services/wp-content/uploads/elementor/css/post-2205.css?ver=1634827942
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (11413), with CRLF, LF line terminators
Size
1.6 kB (1594 bytes)
Hash
6ae6a1c458c0cc63e04023877f80ffeb
8a7c9cfaac8eaed0df77b29d9c2aef2775487924
627bb12461587dc3888732188fb2ab874e4fdf51dbb578f2a6eb6ce531368cd1

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/elementor/css/post-2205.css?ver=1634827942 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:52:22 GMT
etag: "61717ea6-3348"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 1594
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/uploads/elementor/css/post-2209.css?ver=1634827019

63.250.43.1

200 OK

2.0 kB

URL HTTP/2
mxcloud.services/wp-content/uploads/elementor/css/post-2209.css?ver=1634827019
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (9829)
Size
2.0 kB (1990 bytes)
Hash
cea4bec5e9dc8a57923f1a0eb0b4e098
6b4c9549210e22d1ff53ab8b1698c393c9f78ce1
ede24a66eaca0fd70ee8fabe9e7d6d9ba30614df9d0da30a48aa1a80d71da60b

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/elementor/css/post-2209.css?ver=1634827019 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:36:59 GMT
etag: "61717b0b-5257"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 1990
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3

63.250.43.1

200 OK

309 B

URL HTTP/2
mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (483)
Size
309 B (309 bytes)
Hash
0ea43e394ddaae5fdb710dbbc8869e58
3b0c93adc80720236096201db5cc2751e703996d
85225fffa21a94bfd954393d7471069ab227b98fd8b51cb5ab4af5488168a34e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:29:20 GMT
etag: "61717940-29d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 309
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3

63.250.43.1

200 OK

308 B

URL HTTP/2
mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (489)
Size
308 B (308 bytes)
Hash
0a08469d24387f830bbaaa00b3c228ae
01f5dfeb8f93a32c9a8f66fe5940758109771fcd
3c7c29e5fc1193ff7ce24f72f77b2dc129e1a9434a97ef7b625f6f715531803c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:29:20 GMT
etag: "61717940-2a3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 308
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/uploads/elementor/css/post-1985.css?ver=1628778990

63.250.43.1

200 OK

1.1 kB

URL HTTP/2
mxcloud.services/wp-content/uploads/elementor/css/post-1985.css?ver=1628778990
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (4705), with CRLF, LF line terminators
Size
1.1 kB (1081 bytes)
Hash
a041821f23c256762bb5cc5267df1b37
694e76f1a2a66793b50b321b67875b1962219bb5
9d8a68b7332780dcb809cc525cadc4955a1ab3719de3153c832484134bb3969d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/elementor/css/post-1985.css?ver=1628778990 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:37:02 GMT
etag: "61717b0e-1e65"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 1081
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/uploads/elementor/css/global.css?ver=1634827019

63.250.43.1

200 OK

5.1 kB

URL HTTP/2
mxcloud.services/wp-content/uploads/elementor/css/global.css?ver=1634827019
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (46566)
Size
5.1 kB (5103 bytes)
Hash
d32820d6b3240b19e6d00dae16185ce9
a71843b02a534387eb5230df9dc87a2cef8a1e52
5d3bcf5d51c76e59aed6505a02ee8e77ac5d64f3f57eafedc8cb606403e290e6

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/elementor/css/global.css?ver=1634827019 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:18 GMT
last-modified: Thu, 21 Oct 2021 14:36:59 GMT
etag: "61717b0b-12c08"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24978
accept-ranges: bytes
x-cache: HIT
content-length: 5103
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3

63.250.43.1

200 OK

13 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (57726)
Size
13 kB (12581 bytes)
Hash
b8914a9a422b658a721edee22da4803f
dcb57be1523de06493b62bff04208dbb7eaf7b92
32cbd3295c9c436f50437a22d401fa3838a98c1dc03eddfc4552eda9e0a6bc6e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:29:20 GMT
etag: "61717940-e238"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 12581
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/konstruktic-core/assets/css/fullpage.css?ver=6.1.1

63.250.43.1

200 OK

1.5 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/konstruktic-core/assets/css/fullpage.css?ver=6.1.1
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text
Size
1.5 kB (1534 bytes)
Hash
3981c933b672da764f1156b498237ac0
d761b477dcc7fc066b1da2f983ac4b3ecd59b582
d32dc960e0407886273cc1e0466e82f1407402980586c9fc2dece7e3c1d21b87

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/konstruktic-core/assets/css/fullpage.css?ver=6.1.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Mon, 22 Nov 2021 22:53:15 GMT
etag: "619c1f5b-152d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 1534
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/ele-custom-skin/assets/css/ecs-style.css?ver=3.1.3

63.250.43.1

200 OK

1.8 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/ele-custom-skin/assets/css/ecs-style.css?ver=3.1.3
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text
Size
1.8 kB (1838 bytes)
Hash
a77b31e5dc5a480aa72ce08f1e8466ca
1356b8b72b34bf255d4b89c44bcbd43bdd54d9ba
4800448e1569f9ecd7f412f8ce43645560b9c22267be0f43cacc975e4893346d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/ele-custom-skin/assets/css/ecs-style.css?ver=3.1.3 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:37:20 GMT
etag: "61717b20-235c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 1838
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/sticky-header-effects-for-elementor/assets/js/she-header.js?ver=1.4.7

63.250.43.1

200 OK

1.6 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/sticky-header-effects-for-elementor/assets/js/she-header.js?ver=1.4.7
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text
Size
1.6 kB (1616 bytes)
Hash
8e487a68326b09dd111e103b151469ca
80e9ea3d3c69ba92312b38fdff0f772f1d446693
88dbace531315b9910d8d1abf84fde6e0c5a0fc1b85d120e1ef18eb0101b2a59

HTTP Headers

GET /wp-content/plugins/sticky-header-effects-for-elementor/assets/js/she-header.js?ver=1.4.7 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:38:43 GMT
etag: "61717b73-1ca2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 1616
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/themes/konstruktic/assets/css/carousel.css?ver=6.1.1

63.250.43.1

200 OK

1.6 kB

URL HTTP/2
mxcloud.services/wp-content/themes/konstruktic/assets/css/carousel.css?ver=6.1.1
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text
Size
1.6 kB (1597 bytes)
Hash
614b24a23f611026384af096dcdb8128
2d2ad801082a5900b50f4d1a114fd490c6837a62
8cc0574e41455e3e23c0f2d25701d3e8c6b18cc6dfd7d5291c874eadbdf01860

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/konstruktic/assets/css/carousel.css?ver=6.1.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:18 GMT
last-modified: Fri, 23 Apr 2021 18:46:59 GMT
etag: "60831623-1a0e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24978
accept-ranges: bytes
x-cache: HIT
content-length: 1597
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

63.250.43.1

200 OK

4.2 kB

URL HTTP/2
mxcloud.services/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (11126)
Size
4.2 kB (4169 bytes)
Hash
5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 11 Mar 2021 09:49:12 GMT
etag: "6049e798-2bd8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 4169
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.4.6

63.250.43.1

200 OK

4.2 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.4.6
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (26516)
Size
4.2 kB (4229 bytes)
Hash
d74abcef3df71d56667a44693f75c454
be993a7b5c88a550ef0dc19c4841f240e41967f8
8c8fb98c0a68a93f2bcf224fcc1bdaa1095fc1b3f5418f2e2c5fddcfa3dee410

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.4.6 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:29:20 GMT
etag: "61717940-684e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 4229
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/uploads/elementor/css/post-12.css?ver=1634828163

63.250.43.1

200 OK

6.9 kB

URL HTTP/2
mxcloud.services/wp-content/uploads/elementor/css/post-12.css?ver=1634828163
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (65536), with no line terminators
Size
6.9 kB (6872 bytes)
Hash
7c9e8b9748ecc22bae5a77737d188cbb
44cf529b7202c644d933676d9e7fc90c5a529201
f5ee93e24dae0a8a1c0fe570ce35590c0f950c0dccfc13cfdbe67f58e3185857

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/elementor/css/post-12.css?ver=1634828163 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:56:03 GMT
etag: "61717f83-185e5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 6872
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/sticky-header-effects-for-elementor/assets/css/she-header-style.css?ver=1.4.7

63.250.43.1

200 OK

624 B

URL HTTP/2
mxcloud.services/wp-content/plugins/sticky-header-effects-for-elementor/assets/css/she-header-style.css?ver=1.4.7
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with CRLF line terminators
Size
624 B (624 bytes)
Hash
179bb6d55d94f8d603ba70e54dfc5732
084c4debc65f51c3a77abbbd79ad0c67bcec6895
3106ceaffefcf44548877e0c4c573cf7d08d0e54f2b272c9e7c412d1e4cce063

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/sticky-header-effects-for-elementor/assets/css/she-header-style.css?ver=1.4.7 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:38:43 GMT
etag: "61717b73-1334"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 624
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.4.6

63.250.43.1

200 OK

4.2 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.4.6
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (14869)
Size
4.2 kB (4205 bytes)
Hash
1fcdd9935a66511c3b8069495af248e3
b0e375ac95b547b3bb6ce74cd1bcc505ffc2281d
4a741209fc122872cb5ae018a5870d70848a616fa98eb4289ad78cec986ec282

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.4.6 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:29:21 GMT
etag: "61717941-3acf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 4205
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/themes/konstruktic/assets/css/opal-icons.css?ver=6.1.1

63.250.43.1

200 OK

8.3 kB

URL HTTP/2
mxcloud.services/wp-content/themes/konstruktic/assets/css/opal-icons.css?ver=6.1.1
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
troff or preprocessor input, Unicode text, UTF-8 text
Size
8.3 kB (8320 bytes)
Hash
55b7e874382218bda28de97e45f2de3e
ee67a964d5ce3dd23cd205322aae7f360bb16267
749a4c0d86232dda6698b897656717aa288b9b0d2c4be40bb6a121f0bbfaec4a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/konstruktic/assets/css/opal-icons.css?ver=6.1.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 23 Apr 2021 18:46:59 GMT
etag: "60831623-9cda"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 8320
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.4.6

63.250.43.1

200 OK

13 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.4.6
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (59158)
Size
13 kB (12868 bytes)
Hash
ec28881f94373ca699b82164b944915a
4abd68ea4dd8e75b907092030283332d8e037ee0
800119a3bea6194c052f582d6005bbb8f280b8e51cc9d3a487c2bccfc01eff81

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.4.6 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:18 GMT
last-modified: Thu, 21 Oct 2021 14:29:20 GMT
etag: "61717940-e7d0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24978
accept-ranges: bytes
x-cache: HIT
content-length: 12868
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/carousel.js?ver=6.1.1

63.250.43.1

200 OK

1.7 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/carousel.js?ver=6.1.1
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (4375)
Size
1.7 kB (1674 bytes)
Hash
39c0044321e49f661bde12df443ded55
48d64c110b4164271421e2d6b07b1a112db3e142
2ce184bc018e0370e53fa6d31d44d3c6969402256bd6381e016c4d5215cfc5e9

HTTP Headers

GET /wp-content/plugins/konstruktic-core/assets/js/carousel.js?ver=6.1.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Mon, 22 Nov 2021 22:53:15 GMT
etag: "619c1f5b-113d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 1674
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/ele-custom-skin/assets/js/ecs.js?ver=3.1.3

63.250.43.1

200 OK

167 B

URL HTTP/2
mxcloud.services/wp-content/plugins/ele-custom-skin/assets/js/ecs.js?ver=3.1.3
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text
Size
167 B (167 bytes)
Hash
6c7b1ace99498765899d4a6491f42a27
e31dd9aa7bd3a5dd224169b3bcc62d1b163b290d
bd3db097b4ee6e29ba8e9cd32c6ada53dba0c30977e4f8754ddc3a62a310def8

HTTP Headers

GET /wp-content/plugins/ele-custom-skin/assets/js/ecs.js?ver=3.1.3 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:37:20 GMT
etag: "61717b20-11c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 167
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8.3

63.250.43.1

200 OK

18 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8.3
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (64614), with CRLF line terminators
Size
18 kB (18088 bytes)
Hash
f9f08906db0c9db201c229f363a85664
03879fb3cb37c7302a4e1147dcbf9f82d48624ee
0919cb684c2e2541f4f3181c9a41816b280d14a22e9ddcc430843390078c828d

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8.3 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 23 Apr 2021 18:48:20 GMT
etag: "60831674-fdb5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 18088
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-includes/js/jquery/jquery.min.js?ver=3.6.1

63.250.43.1

200 OK

31 kB

URL HTTP/2
mxcloud.services/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (65447)
Size
31 kB (31038 bytes)
Hash
2eccf707201b564e5e0cc3637fe4fd79
13b3ab2c399a84808e8fd6a2c795a6a49f5090a4
fb2e62f5864ef969b2d586b0e589fc81d7689038cd54a90fbca4b463e0ca6261

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Wed, 02 Nov 2022 10:52:23 GMT
etag: "63624be7-15e54"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 31038
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.3

63.250.43.1

200 OK

38 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.3
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (27287), with CRLF line terminators
Size
38 kB (38344 bytes)
Hash
d30a64aaf355e8ec20ee27634dfce995
b9e145baa8aa01a6c28a8902f52bf40f3f9171a0
902e3fcef22aaf2cdcdf1d01089d2b20ebc28905265f92f67c80a2f64e5ee47a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.3 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 23 Apr 2021 18:48:20 GMT
etag: "60831674-1afe4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 38344
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/ele-custom-skin/assets/js/ecs_ajax_pagination.js?ver=3.1.3

63.250.43.1

200 OK

1.3 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/ele-custom-skin/assets/js/ecs_ajax_pagination.js?ver=3.1.3
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text
Size
1.3 kB (1316 bytes)
Hash
992267d8157c04ab7210bc2ef2366b12
24791a08d5501829d74a05a9d4f570eb364541a3
5cbd5f8f11f11a6a294a94b6713fd8e0afc3b67c0a17abe10a28546f53551ff6

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/ele-custom-skin/assets/js/ecs_ajax_pagination.js?ver=3.1.3 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:37:20 GMT
etag: "61717b20-ecb"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 1316
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/main.js?ver=1.15.1

63.250.43.1

200 OK

809 B

URL HTTP/2
mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/main.js?ver=1.15.1
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
HTML document, ASCII text, with very long lines (1402)
Size
809 B (809 bytes)
Hash
5d11d509c4b1f18136888bce2b59a740
38cbb28f430149314b8bbe55f1e41039b30fcdd8
07c539be46cfcb488aed3578f49f895a98551502490eec634a2ddc997757fdf9

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/konstruktic-core/assets/js/main.js?ver=1.15.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Mon, 22 Nov 2021 22:53:15 GMT
etag: "619c1f5b-59c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 809
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/themes/konstruktic/assets/js/libs/owl.carousel.js?ver=2.2.1

63.250.43.1

200 OK

19 kB

URL HTTP/2
mxcloud.services/wp-content/themes/konstruktic/assets/js/libs/owl.carousel.js?ver=2.2.1
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text
Size
19 kB (19301 bytes)
Hash
588df9c7ad24c6e10733656651d7b7ba
171994065e4d0a862b21e3190288ea02ea99a2c4
52eacc4bfb3c91b9c7f9405b7354549dff9ad326ef8108f4cc061cd1c0a25d4a

HTTP Headers

GET /wp-content/themes/konstruktic/assets/js/libs/owl.carousel.js?ver=2.2.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 23 Apr 2021 18:46:59 GMT
etag: "60831623-1952f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 19301
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1

63.250.43.1

200 OK

5.0 kB

URL HTTP/2
mxcloud.services/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (15660)
Size
5.0 kB (5004 bytes)
Hash
1b982d290af16dac5885f21a198aaa66
f847ca85d23c2f240938bbde0135f3de97925759
0b6e238cc0728a0bace390dfff472ff8bb5a5fd4714bcfcdac7c28621d67b8dc

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Tue, 24 May 2022 22:51:45 GMT
etag: "628d6181-48b9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 5004
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/konstruktic-core/assets/css/magnific-popup.css?ver=6.1.1

63.250.43.1

200 OK

1.8 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/konstruktic-core/assets/css/magnific-popup.css?ver=6.1.1
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text
Size
1.8 kB (1844 bytes)
Hash
441f6a5665c5f3d3ecc564b6deea4ea2
cfd831e798d2ef418d5ffbba0777d16eef07895f
3939c870b95c5437418e7760dcacd50774acd0220579eb0044ee22bdd79f068d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/konstruktic-core/assets/css/magnific-popup.css?ver=6.1.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Mon, 22 Nov 2021 22:53:15 GMT
etag: "619c1f5b-1b8e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 1844
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/themes/konstruktic/assets/js/theme.js?ver=1.0

63.250.43.1

200 OK

3.8 kB

URL HTTP/2
mxcloud.services/wp-content/themes/konstruktic/assets/js/theme.js?ver=1.0
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (564)
Size
3.8 kB (3831 bytes)
Hash
5eacc83f464ad5dc9a772a952d84bc29
eed11d1f18648531e3262953589e7c31fb1160ea
c5cbfec218b416d0fbdbd5bb03c6ff858c13edf0f7c6984774c7e6b28be219ef

HTTP Headers

GET /wp-content/themes/konstruktic/assets/js/theme.js?ver=1.0 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 23 Apr 2021 18:46:59 GMT
etag: "60831623-4ea7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 3831
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-includes/js/underscore.min.js?ver=1.13.4

63.250.43.1

200 OK

7.3 kB

URL HTTP/2
mxcloud.services/wp-includes/js/underscore.min.js?ver=1.13.4
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (18798)
Size
7.3 kB (7311 bytes)
Hash
3f92fc0fb188799b432341421df6cfde
09041f63af89e1164a53dec66eb7b2ac1dc58ba6
6b09e750d7ecaac14315f7c7e09b6de17f8d1f790b4acdc094b74832402aee31

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Wed, 02 Nov 2022 10:52:22 GMT
etag: "63624be6-4991"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 7311
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/themes/konstruktic/assets/js/sticky-layout.js?ver=6.1.1

63.250.43.1

200 OK

1.8 kB

URL HTTP/2
mxcloud.services/wp-content/themes/konstruktic/assets/js/sticky-layout.js?ver=6.1.1
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (4515)
Size
1.8 kB (1840 bytes)
Hash
62364b86a2c6a57b83d89fa1dd6a12f5
cbdd7a294a2fbe58e20b7b2d49b1257d45002119
f3572ed692bb31d5120ef01fdfdf894922f1ec4fe45860479ce6a9db5356ed1b

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/konstruktic/assets/js/sticky-layout.js?ver=6.1.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 23 Apr 2021 18:46:59 GMT
etag: "60831623-11ce"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 1840
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/libs/fullpage.min.js?ver=1.15.1

63.250.43.1

200 OK

12 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/libs/fullpage.min.js?ver=1.15.1
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (35075)
Size
12 kB (12398 bytes)
Hash
56bcbe854b502b3a0fc41f25a9da665a
bbd267bdd419b9f7a67b784b72807e87eea4ec80
f6261be59649631e720a543b669765e32f0bab88269d5bfb4454a8bd84a7a478

HTTP Headers

GET /wp-content/plugins/konstruktic-core/assets/js/libs/fullpage.min.js?ver=1.15.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Mon, 22 Nov 2021 22:53:15 GMT
etag: "619c1f5b-8a59"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 12398
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/libs/jquery.smartmenus.min.js?ver=1.15.1

63.250.43.1

200 OK

7.1 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/libs/jquery.smartmenus.min.js?ver=1.15.1
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (24459)
Size
7.1 kB (7052 bytes)
Hash
b02637cacabfd8bfd7d4faa1faa929f1
a18ced6b263832fc16b6dd87b0399225c76a5cd6
7dda518a67e970ac9b10cd6528e3ba6ce153dc769a50f6017234bda28c645e13

HTTP Headers

GET /wp-content/plugins/konstruktic-core/assets/js/libs/jquery.smartmenus.min.js?ver=1.15.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Mon, 22 Nov 2021 22:53:15 GMT
etag: "619c1f5b-5fe4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 7052
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/libs/jquery-parallax.js?ver=1.15.1

63.250.43.1

200 OK

200 B

URL HTTP/2
mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/libs/jquery-parallax.js?ver=1.15.1
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text
Size
200 B (200 bytes)
Hash
08dffd483bb8a69e26dc4977f8fbabe3
55d7831f5ba3d278e6cae0ebedcdd4d39b3df645
a9d0fd8d598e61373d400f589d51e91d1f2731763dc24babd4a44f849d183405

HTTP Headers

GET /wp-content/plugins/konstruktic-core/assets/js/libs/jquery-parallax.js?ver=1.15.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Mon, 22 Nov 2021 22:53:15 GMT
etag: "619c1f5b-145"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 200
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-includes/js/imagesloaded.min.js?ver=4.1.4

63.250.43.1

200 OK

1.8 kB

URL HTTP/2
mxcloud.services/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (5477)
Size
1.8 kB (1834 bytes)
Hash
951ae46ca55ec7b0e401e2074bdf8b54
64bbbdc28a351b26cab9c230e134ca8eb4d4f83e
fd5d4c623e9d68551114b2a1303584b6792e592e864d4416145904fe8b9edd91

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 11 Mar 2021 09:49:12 GMT
etag: "6049e798-15fd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 1834
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.3.4

63.250.43.1

200 OK

2.4 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.3.4
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (5419)
Size
2.4 kB (2441 bytes)
Hash
5f8d0eb7f6eb0c3249fb1115a668de10
bffc43d8808bb9c15c600fbf1c0532c1825352d2
a0f4c62bed870b15dd9c36501f726a57db02742edad606db753e7a55d175e8b6

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.3.4 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 23 Jul 2021 17:02:11 GMT
etag: "60faf613-1556"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 2441
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.4.6

63.250.43.1

200 OK

4.5 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.4.6
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (13963)
Size
4.5 kB (4542 bytes)
Hash
95088f86574ef00361bac00d42f872f6
22429496122b2b23ba6e2ed36e022d4d1df46d15
63557624017d894694f8500fdad2a9fb0dfb4e069f3cacb54dfbcc23fe19bcc8

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.4.6 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:29:21 GMT
etag: "61717941-36b2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 4542
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.3.4

63.250.43.1

200 OK

16 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.3.4
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
Unicode text, UTF-8 text, with very long lines (58848)
Size
16 kB (16185 bytes)
Hash
fb738d15ca12ecc054ba2dcd560eecfa
559d5e0867672723aea74b15d799456caa61f42b
6f7a370217fd95e8818e39d2d910b5f4c563c7db9adf665938575d99d4b4a07f

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.3.4 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 23 Jul 2021 17:02:11 GMT
etag: "60faf613-e60d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 16185
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/uploads/2021/05/Managed-IT.png

63.250.43.1

200 OK

37 kB

URL HTTP/2
mxcloud.services/wp-content/uploads/2021/05/Managed-IT.png
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
PNG image data, 500 x 500, 8-bit/color RGBA, interlaced\012- data
Size
37 kB (37270 bytes)
Hash
58363743396898ddb21067406548db0c
eda197f0d25b96b88003f194c69c7ca956b63012
d8b5722d2548ba28788228f130286e7fb0ae9628bfdf18f63c4acb15ba3591b0

HTTP Headers

GET /wp-content/uploads/2021/05/Managed-IT.png HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 28 May 2021 07:51:08 GMT
etag: "60b0a0ec-9196"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: image/png
content-length: 37270
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/uploads/2021/05/Cloud-IT.png

63.250.43.1

200 OK

32 kB

URL HTTP/2
mxcloud.services/wp-content/uploads/2021/05/Cloud-IT.png
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
PNG image data, 500 x 500, 8-bit/color RGBA, interlaced\012- data
Size
32 kB (32318 bytes)
Hash
6b08260c492545d9fa73529369aeaa5c
bf226ddade1d2a40fd1c3c8d815cb7040c8b0b32
4c0747fc32101bd0cd1ff4915e1e27dfece5704d6d681247323d6d8ea42726e4

HTTP Headers

GET /wp-content/uploads/2021/05/Cloud-IT.png HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 28 May 2021 07:51:26 GMT
etag: "60b0a0fe-7e3e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: image/png
content-length: 32318
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-includes/js/wp-util.min.js?ver=6.1.1

63.250.43.1

200 OK

756 B

URL HTTP/2
mxcloud.services/wp-includes/js/wp-util.min.js?ver=6.1.1
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (1391)
Size
756 B (756 bytes)
Hash
838aa5f64f258023c2f4ced3125cc12e
0f9ba4eee7038506d01a6e741b16324ffb347fda
8212000a2ae7888dec134e6a079a16c19d71f6bcd0924384abb16027325ed218

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/wp-util.min.js?ver=6.1.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Wed, 02 Nov 2022 10:52:22 GMT
etag: "63624be6-592"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 756
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/revslider/public/assets/fonts/font-awesome/css/font-awesome.css

63.250.43.1

200 OK

7.6 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/revslider/public/assets/fonts/font-awesome/css/font-awesome.css
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (372)
Size
7.6 kB (7609 bytes)
Hash
030960e438ffdb1a9e41523429edb61c
8e7dc814141cff1e536f6fdd26610a376e3fc0a6
bef6863506d46933af7e163bec383139ed0c251c4537cd9e9e105366798d95f5

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/fonts/font-awesome/css/font-awesome.css HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 23 Apr 2021 18:48:23 GMT
etag: "60831677-a250"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 7609
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/libs/jquery.magnific-popup.min.js?ver=6.1.1

63.250.43.1

200 OK

7.3 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/libs/jquery.magnific-popup.min.js?ver=6.1.1
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (20087)
Size
7.3 kB (7346 bytes)
Hash
efa6db60af1529649bd3b95c4220e9ba
4b6b8cd07ee784e67c7702c147e0c80e0bb3bd90
5723d10c2697c434b25b904f2fcec179ad231ccaebc4c77daa7732c7949a1e99

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/konstruktic-core/assets/js/libs/jquery.magnific-popup.min.js?ver=6.1.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Mon, 22 Nov 2021 22:53:15 GMT
etag: "619c1f5b-4ef8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 7346
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.4.6

63.250.43.1

200 OK

2.6 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.4.6
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (10019)
Size
2.6 kB (2592 bytes)
Hash
0ea81c35141c6a4692506e4fe8d36edb
392c5f96995e66d74c27ed5a42f93169c2f32d18
b7488fd21ad73e483cdcaf42097ea7787ffe0616477e29a537f53f6064e321ab

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.4.6 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:29:20 GMT
etag: "61717940-4824"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 2592
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2

63.250.43.1

200 OK

7.1 kB

URL HTTP/2
mxcloud.services/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
Unicode text, UTF-8 text, with very long lines (8189)
Size
7.1 kB (7098 bytes)
Hash
4e91f3bde34bcef7ac5a2e1553ec4b7e
398cc0b8fa5795ad41a1490b42b974621e5c3529
8ad8783c45440f481056ff5d7b9cad3e3d52bb043b9ec40260daa62feec0ea18

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Wed, 02 Nov 2022 10:52:23 GMT
etag: "63624be7-53c0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 7098
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2

63.250.43.1

200 OK

3.0 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (12198), with no line terminators
Size
3.0 kB (2995 bytes)
Hash
4a8bd9ec5e8683ca461354b56882d3e2
993bc0c343abdd5e5f555b8ade72320ae7f59502
97cb584c6d8b9e884e58afdfe9aa8204940cb39047f2bf84d19b96db01ee8de5

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:29:20 GMT
etag: "61717940-2fa6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 2995
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1

63.250.43.1

200 OK

3.5 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (10725)
Size
3.5 kB (3510 bytes)
Hash
7cfd02f91cb9e6033a4c4f712d90e6c7
b7da7a7aac93f699cb245b50b0c4449cad5036f2
397327e595ffa0aadde96cdac849edd1db5ef2f5a956f5e33876ce70f4d1ac26

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:29:20 GMT
etag: "61717940-2a6f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 3510
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/elementor/frontend.js?ver=6.1.1

63.250.43.1

200 OK

7.6 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/elementor/frontend.js?ver=6.1.1
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (31960)
Size
7.6 kB (7624 bytes)
Hash
2a6beded02df3b7a058968d0140e26c9
2190935079d3e8c86b9c3ae8008c1c04099f36e6
366624a4d5d349f810205f991759763ae6d9b88f9de643d46c12d7f4400cf0dc

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/konstruktic-core/assets/js/elementor/frontend.js?ver=6.1.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Mon, 22 Nov 2021 22:53:15 GMT
etag: "619c1f5b-997e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 7624
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.4.6

63.250.43.1

200 OK

11 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.4.6
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (36618)
Size
11 kB (10626 bytes)
Hash
65917abd4d3886bc1869ca0c440ed146
eaef73d3d6ebec232b2fef7dfec351b4e792bc3d
819c8fd158d61e19f01a86a3ac71c7521c3d2d5f411ad40306be96934eafe23b

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.4.6 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:29:21 GMT
etag: "61717941-8f31"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 10626
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.4.6

63.250.43.1

200 OK

1.1 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.4.6
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (2577)
Size
1.1 kB (1099 bytes)
Hash
71a6972e79bfdcc72ffc068e6e845a23
0e37b7f3c6252f6701998fa0e2e1b555b4804a97
dc7dbf2f94f1c49a262b4be428f54349805cfa2841806bc8d691fda13b82e90f

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.4.6 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:29:21 GMT
etag: "61717941-a12"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 1099
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.4.6

63.250.43.1

200 OK

9.1 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.4.6
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (32234)
Size
9.1 kB (9068 bytes)
Hash
0a6d6a227a82c5572c2bd0c1ec42f666
057a92661f81bcde830ce7ef6adf7d7de311c584
bba49a6db0e963faf964d72b592c82b2c73387752ebd0826ed696dc405b21c94

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.4.6 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:29:21 GMT
etag: "61717941-7e11"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 9068
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/jet-tabs/assets/js/jet-tabs-frontend.min.js?ver=2.1.13

63.250.43.1

200 OK

4.1 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/jet-tabs/assets/js/jet-tabs-frontend.min.js?ver=2.1.13
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (14862), with no line terminators
Size
4.1 kB (4144 bytes)
Hash
985fec1cf5918e3c74c8185056f79c8a
71a23aacd7bd3123e93919a5105301081afd265c
c17611f5ddb6e694a5264dcec9659d4f0fe47b84737aa2f1c9e06f94c3c7a0be

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/jet-tabs/assets/js/jet-tabs-frontend.min.js?ver=2.1.13 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 23 Jul 2021 17:01:39 GMT
etag: "60faf5f3-3a0e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 4144
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.4.6

63.250.43.1

200 OK

2.2 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.4.6
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (4840)
Size
2.2 kB (2158 bytes)
Hash
bdbb0e8e5a11be81a4a88ff15bcd38a6
11a92d1380027ce6ea61788f7d5a38f46558362f
3959ffac54d43ece291a045eff66175dbd08d1043a1266985b627d644eb9564a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.4.6 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:29:21 GMT
etag: "61717941-130f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 2158
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.3.4

63.250.43.1

200 OK

1.9 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.3.4
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (6595), with no line terminators
Size
1.9 kB (1895 bytes)
Hash
c8ebb5b680f4fa05c2502a56875e03f7
96542e309834bb6dfddaf3d1efce6d75ceff5e18
76a0021ccb778baeadd50f182e2c4055a36527e1fc70341f82136a2e60eeb442

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.3.4 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 23 Jul 2021 17:02:11 GMT
etag: "60faf613-19c3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 1895
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/uploads/2021/05/Sheild-IT.png

63.250.43.1

200 OK

48 kB

URL HTTP/2
mxcloud.services/wp-content/uploads/2021/05/Sheild-IT.png
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
PNG image data, 500 x 500, 8-bit/color RGBA, interlaced\012- data
Size
48 kB (48106 bytes)
Hash
44060b6689b54b8d24b8204f082acf31
f6cdf4b8608ec0e10ca9c42495f558535e82b998
35d789c8c51be5f34644f266452763328b672c21e4b1425d38d247edf388cf55

HTTP Headers

GET /wp-content/uploads/2021/05/Sheild-IT.png HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 28 May 2021 07:51:38 GMT
etag: "60b0a10a-bbea"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: image/png
content-length: 48106
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/jet-elements/assets/js/jet-elements.min.js?ver=2.5.8

63.250.43.1

200 OK

22 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/jet-elements/assets/js/jet-elements.min.js?ver=2.5.8
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (64960), with no line terminators
Size
22 kB (21685 bytes)
Hash
9e8dbb308d49888fea67c904ddbd05fd
8e5a45d5c6e2a302e51dbb4a6c51cf1e7feb3f30
79256530526800162bfff68462e333231000d439cbcad2e396226c922c4b0a70

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/jet-elements/assets/js/jet-elements.min.js?ver=2.5.8 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 23 Jul 2021 17:01:24 GMT
etag: "60faf5e4-fdc0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 21685
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/libs/TweenMax.min.js?ver=1.15.1

63.250.43.1

200 OK

38 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/libs/TweenMax.min.js?ver=1.15.1
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (32059)
Size
38 kB (38525 bytes)
Hash
1c0b7229c87f490a2962c2a945b61fd5
4bf1c84863f7eefc8668bda3346c5c97067591ba
cce15b6b69e5fb1591bedaf253422bef73f3d6e7bd923b21d3ca9c338e496e2a

HTTP Headers

GET /wp-content/plugins/konstruktic-core/assets/js/libs/TweenMax.min.js?ver=1.15.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Mon, 22 Nov 2021 22:53:15 GMT
etag: "619c1f5b-1c276"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 38525
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/uploads/2021/05/Build-IT.png

63.250.43.1

200 OK

36 kB

URL HTTP/2
mxcloud.services/wp-content/uploads/2021/05/Build-IT.png
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
PNG image data, 500 x 500, 8-bit/color RGBA, interlaced\012- data
Size
36 kB (36165 bytes)
Hash
a1728aaa5c24e9f1de810212a74f7efe
e527ba5cc8327f5e02329f3940b9c6dd9fd3a462
e393885f6fb7f5dae006b89325789ca04e9e37f641ede0884079d8a9c7334dbf

HTTP Headers

GET /wp-content/uploads/2021/05/Build-IT.png HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 28 May 2021 07:51:51 GMT
etag: "60b0a117-8d45"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: image/png
content-length: 36165
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6

63.250.43.1

200 OK

36 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (65280)
Size
36 kB (35516 bytes)
Hash
a46e6555153bd32db46b588f92468fec
00f81e8c63664516d3fae2ad5585688b964b6b5d
ced01af673936a3d52321dfecb776d9da4c53cc28ffedc691ab7a24892f720e5

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:29:21 GMT
etag: "61717941-21f91"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 35516
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.3.4

63.250.43.1

200 OK

39 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.3.4
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (65493)
Size
39 kB (38819 bytes)
Hash
b1bc4edf9337c3976c969278dff37793
a0d19d22c119d60cdc9dbe10fd0ee2f0d5700152
0488e992cb2cb5e33dfad2b2b91975b367c317e4b8dd7465e465a0a07a4b39f2

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.3.4 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 23 Jul 2021 17:02:11 GMT
etag: "60faf613-280c7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 38819
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/uploads/2021/04/mx-cloud-services-IT-Services.jpg

63.250.43.1

200 OK

213 kB

URL HTTP/2
mxcloud.services/wp-content/uploads/2021/04/mx-cloud-services-IT-Services.jpg
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1920x1280, components 3\012- data
Size
213 kB (212887 bytes)
Hash
dd71b8f77c0d3b3dd5956ee047ec8dd0
6ec177b6dbe0790b2d438c76fee04a1ba8e0b96a
ec64cf2b3cdd6df801dd0725829918ad0d06db3abd081fc7516a997369b62199

HTTP Headers

GET /wp-content/uploads/2021/04/mx-cloud-services-IT-Services.jpg HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 29 Apr 2021 19:32:02 GMT
etag: "608b09b2-33f97"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: image/jpeg
content-length: 212887
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d547e6cc07ecb62b49cfb14f223d3b87
7f316e0778cf7e132cf376b92d1f9860e06894f5
4ceb4872fc5aa21ce6cdba296ce83f68d1b46836df05886eb76e0607358ba42c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:10:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/hind/v16/5aU69_a8oxmIdGl4BA.woff2

216.58.207.227

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/hind/v16/5aU69_a8oxmIdGl4BA.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 16216, version 1.0\012- data
Size
16 kB (16216 bytes)
Hash
4c5bc71b3cf6f2584725c0bb3e25d391
f051f482061dc48d09c328c45459dd04db5b5547
aca5dec430a7470ff1d8a16f9e7bb3ca30f2ff58f3bd60432cf1dddfa30c9d71

HTTP Headers

GET /s/hind/v16/5aU69_a8oxmIdGl4BA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mxcloud.services
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16216
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 15 Jan 2023 02:22:39 GMT
expires: Mon, 15 Jan 2024 02:22:39 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 26 Apr 2022 15:45:50 GMT
content-type: font/woff2
age: 276478
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d547e6cc07ecb62b49cfb14f223d3b87
7f316e0778cf7e132cf376b92d1f9860e06894f5
4ceb4872fc5aa21ce6cdba296ce83f68d1b46836df05886eb76e0607358ba42c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:10:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7db9f11a1c6ab0117ed3dd1d36e3aecc
61a4de77803ce4ad730c21dd88b5b55a196f26d6
b52c568528f72c5653bad85a1f72fb22f43dcb5d96ad234ab2772a7f95ca6cc2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B52C568528F72C5653BAD85A1F72FB22F43DCB5D96AD234AB2772A7F95CA6CC2"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9663
Expires: Wed, 18 Jan 2023 09:51:40 GMT
Date: Wed, 18 Jan 2023 07:10:37 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7db9f11a1c6ab0117ed3dd1d36e3aecc
61a4de77803ce4ad730c21dd88b5b55a196f26d6
b52c568528f72c5653bad85a1f72fb22f43dcb5d96ad234ab2772a7f95ca6cc2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B52C568528F72C5653BAD85A1F72FB22F43DCB5D96AD234AB2772A7F95CA6CC2"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9663
Expires: Wed, 18 Jan 2023 09:51:40 GMT
Date: Wed, 18 Jan 2023 07:10:37 GMT
Connection: keep-alive

mxcloud.services/wp-content/uploads/2021/04/mx-cloud-services-Guard-IT.jpg

63.250.43.1

200 OK

198 kB

URL HTTP/2
mxcloud.services/wp-content/uploads/2021/04/mx-cloud-services-Guard-IT.jpg
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1920x1280, components 3\012- data
Size
198 kB (198346 bytes)
Hash
e496f1cc0c73ff7548ee817e5d402dde
47ecbba8f83971cd51445a81b7c79a2a6cc47937
f9513a48d736afeab7071a97cb6a637e7a8e772c11c1f432b3bed3446c5effd4

HTTP Headers

GET /wp-content/uploads/2021/04/mx-cloud-services-Guard-IT.jpg HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 29 Apr 2021 19:23:58 GMT
etag: "608b07ce-306ca"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: image/jpeg
content-length: 198346
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7db9f11a1c6ab0117ed3dd1d36e3aecc
61a4de77803ce4ad730c21dd88b5b55a196f26d6
b52c568528f72c5653bad85a1f72fb22f43dcb5d96ad234ab2772a7f95ca6cc2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B52C568528F72C5653BAD85A1F72FB22F43DCB5D96AD234AB2772A7F95CA6CC2"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9663
Expires: Wed, 18 Jan 2023 09:51:40 GMT
Date: Wed, 18 Jan 2023 07:10:37 GMT
Connection: keep-alive

mxcloud.services/wp-content/uploads/2021/04/mx-cloud-services-Build-IT.jpg

63.250.43.1

200 OK

198 kB

URL HTTP/2
mxcloud.services/wp-content/uploads/2021/04/mx-cloud-services-Build-IT.jpg
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1920x1280, components 3\012- data
Size
198 kB (197654 bytes)
Hash
169745922ae02d030912822a7c5f31bb
c17c21fd0060ca12a79b693f65d478ba46e07aae
9c71336cf623af849035390f62caeaca50be49d02df487c2dff9fb9e41b5865b

HTTP Headers

GET /wp-content/uploads/2021/04/mx-cloud-services-Build-IT.jpg HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 29 Apr 2021 17:46:06 GMT
etag: "608af0de-30416"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: image/jpeg
content-length: 197654
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd03bc60-bcfc-42c6-a1a0-0631c979fdd4.jpeg

34.120.237.76

200 OK

7.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd03bc60-bcfc-42c6-a1a0-0631c979fdd4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.4 kB (7361 bytes)
Hash
26fa7bd40b5c3a3b5a6f95e7fca843b9
d8064f74f1e40bf6be4ea8ab4e319db22026c462
3e7744acf3e7ace6931c28cb5a5d3d7a77d9b97855b864c5c774368f2d0719c1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd03bc60-bcfc-42c6-a1a0-0631c979fdd4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7361
x-amzn-requestid: 54e3621a-ec24-4d56-85bf-84239fa7811e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e23ZvGtnIAMFivg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5d2a4-7ce0e7924c03aeaa3ea684c3;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 22:41:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hamm4_4ud3QWXK2EeTcYUSN7ot6m-d-1z_NN29tSFYP25Itmz25jaA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:18:31 GMT
age: 31926
etag: "d8064f74f1e40bf6be4ea8ab4e319db22026c462"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe52164e3-afec-433e-87ab-adb17222f1cd.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (13848 bytes)
Hash
8656702f08344d3a4658bc43a9074a1f
fba424e1d09cbdc839ca320458b51715dafbbccc
0b0ac963c377b07f843637348f3d7c41d2aca89540ab8c2b80ef5fbbf466fee8

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe52164e3-afec-433e-87ab-adb17222f1cd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13848
x-amzn-requestid: 160148de-85b1-4456-a580-e079f391f979
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A0gErTIAMF_eQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714e9-52efcd642bd209373b16cf72;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ARZobaKhEsHSEJdma3SXwCn_IKwRJaDbgjHfq_p_0HypKFWoqJIOJw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 21:52:59 GMT
age: 33458
etag: "fba424e1d09cbdc839ca320458b51715dafbbccc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

mxcloud.services/wp-content/uploads/2021/04/mx-cloud-services-Cloud-Computing-.jpg

63.250.43.1

200 OK

258 kB

URL HTTP/2
mxcloud.services/wp-content/uploads/2021/04/mx-cloud-services-Cloud-Computing-.jpg
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1920x1280, components 3\012- data
Size
258 kB (258440 bytes)
Hash
4c90b1a7d2e972c3f7740cb933fd53bc
4b5db4fdf56a6fe721382f7d04a56c0b66ad4bfb
6ace5d1fb38ad47bdd4c63bbf08ab9b7db74dbb8645874be8273017e1e1af687

HTTP Headers

GET /wp-content/uploads/2021/04/mx-cloud-services-Cloud-Computing-.jpg HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 29 Apr 2021 19:38:57 GMT
etag: "608b0b51-3f188"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: image/jpeg
content-length: 258440
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F670ced8b-7c3c-440b-8ef8-ce104b85116d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10860 bytes)
Hash
318731dc24b5b47b96998e30e5ce27aa
86729555b4cf8d1f460ff74981b8b5a54a4bf9ea
acb7a93f815812cab50385796f6bcd7e16e96125422fb1415388a3b94767895e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F670ced8b-7c3c-440b-8ef8-ce104b85116d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10860
x-amzn-requestid: 808ed5a6-f0c3-40d9-a45f-aba1ffdf4ad9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0LSuEZcoAMFsyA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4bf44-52c2a1756df73c8c1b9e041a;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:06:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CvycM3_x2xA1YXgbYW2mKBBEiREecv23q-sPHKvyWAQVv3yiREynIA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 04:08:44 GMT
age: 10913
etag: "86729555b4cf8d1f460ff74981b8b5a54a4bf9ea"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F053123e4-9914-4404-b1e9-cb5f3e38b7a2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11781 bytes)
Hash
5caa7df39f82600c651046957ab6b62d
d6d6fbd676b74e487ee06248c48da87e178223e7
df3090d2e7c7c6e970fe498609d74c63e04aa80d55a26c956d1e3be5bebfafbc

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F053123e4-9914-4404-b1e9-cb5f3e38b7a2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11781
x-amzn-requestid: 522a0799-2025-43cd-9d7e-08cdaa5acf11
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0vQMGZRIAMFfjg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4f8cd-697804fd5b8b3cff7d2d5a7e;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 07:12:13 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ZcErvrIx9oHVckDiZ1etMYXpi2eeCZ7Z1AmcW8ZNui8IsPLFsPhpTw==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 07:30:15 GMT
age: 85222
etag: "d6d6fbd676b74e487ee06248c48da87e178223e7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

fonts.gstatic.com/s/hind/v16/5aU19_a8oxmIfNJdERySjQ.woff2

216.58.207.227

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/hind/v16/5aU19_a8oxmIfNJdERySjQ.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 16268, version 1.0\012- data
Size
16 kB (16268 bytes)
Hash
376d4202f0309c9a844661c230736ccb
10731308876ef0b8b9763815352d6b18020026e0
5aed4a8f357d7edc1ac50eb4de07867c83e69a10a1711e10053bddce99294b7e

HTTP Headers

GET /s/hind/v16/5aU19_a8oxmIfNJdERySjQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mxcloud.services
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16268
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 15 Jan 2023 14:05:47 GMT
expires: Mon, 15 Jan 2024 14:05:47 GMT
cache-control: public, max-age=31536000
age: 234290
last-modified: Tue, 26 Apr 2022 15:48:34 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a78cd6d-1eab-47b0-b5c7-f2d1f91acc3a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8853 bytes)
Hash
3f112ea3865f38cbbcc8400b58320fa0
dacc584338546bf60f26b2a0bec48e9b584640dc
7feb3c0691f40354701d1cb0bf3c834d1eeead4a7297fac3afc0f4a7ca2c94cb

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a78cd6d-1eab-47b0-b5c7-f2d1f91acc3a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8853
x-amzn-requestid: ff98ec33-294a-4a13-b064-3cd4744cd2b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0LLKHPnIAMF0vQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4bf14-233cbc6407c6b138144d7abb;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:05:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QZZaGtGl3Z-4G4DxO4R_gjfDdQVgJc30Ur9EyLAvbGFhv4LfaXziPQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:21:58 GMT
etag: "dacc584338546bf60f26b2a0bec48e9b584640dc"
content-type: image/jpeg
age: 31719
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F873f34de-bef8-46f1-9dc4-d277bf6c1c65.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.7 kB (7741 bytes)
Hash
f491398239265c63ac162d47ab006ce6
c95e1bba76e910100e86f8abf789e5b5c1a2baa6
cdada2d9608e9d3f8e03cf9ced211550b6f7c8f7e0b5ee027a96f45af38523f1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F873f34de-bef8-46f1-9dc4-d277bf6c1c65.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7741
x-amzn-requestid: 9af04340-5be9-42b0-96be-0264661c6dae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A6LEMtoAMFW_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c7150d-2348c8846249175e74efc226;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:37:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _7YOm38n8-T2LAL-cRA7R8KvEUBhXEM0dOXjOZ6HyPRNfMu6Z0Fh3g==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:10:03 GMT
age: 32434
etag: "c95e1bba76e910100e86f8abf789e5b5c1a2baa6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2

63.250.43.1

200 OK

13 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
Web Open Font Format (Version 2), TrueType, length 13276, version 331.-31261\012- data
Size
13 kB (13276 bytes)
Hash
f0f8230116992e521526097a28f54066
0447c6b10bbf73f97b23dcfd6e6a48510822cb6e
8afc6e5e842baab16010c2ce6fcf48ec4ded8e1579a37c1f1bc027e120d04951

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.4.6
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Thu, 21 Oct 2021 14:29:20 GMT
etag: "61717940-33dc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: https://mxcloud.services
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: font/woff2
content-length: 13276
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/uploads/2021/04/Gilmer-Bold.ttf

63.250.43.1

200 OK

48 kB

URL HTTP/2
mxcloud.services/wp-content/uploads/2021/04/Gilmer-Bold.ttf
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
TrueType Font data, 18 tables, 1st "FFTM", 26 names, Macintosh\012- data
Size
48 kB (47685 bytes)
Hash
8fe12715bc541c7f5516859cae37c0e6
9818c079ad15cfba5c0d9969ba9c9b2e9e030cc8
040611c124e93fd94c43a7825fe40e11d95fc19b25ef34c4a46ecc5bcba44348

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/2021/04/Gilmer-Bold.ttf HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxcloud.services/wp-content/uploads/elementor/css/post-2205.css?ver=1634827942
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Wed, 28 Apr 2021 02:51:54 GMT
etag: "6088cdca-18c70"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: https://mxcloud.services
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/x-font-ttf
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
content-length: 47685
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/themes/konstruktic/assets/fonts/opal-icon.woff2

63.250.43.1

200 OK

14 kB

URL HTTP/2
mxcloud.services/wp-content/themes/konstruktic/assets/fonts/opal-icon.woff2
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
Web Open Font Format (Version 2), TrueType, length 14352, version 1.0\012- data
Size
14 kB (14352 bytes)
Hash
34678ee58dba1bb1421bb4bace8dbc2b
c8676bd54c14091bab7925d400ba76e7a23f4306
685377116aef147d22d2da071011be3ccf1f41b78f1db579869307fd0895d64f

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/konstruktic/assets/fonts/opal-icon.woff2 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://mxcloud.services/wp-content/themes/konstruktic/assets/css/opal-icons.css?ver=6.1.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Fri, 23 Apr 2021 18:46:59 GMT
etag: "60831623-3810"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: https://mxcloud.services
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: font/woff2
content-length: 14352
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/themes/konstruktic/assets/fonts/GilmerBold.woff

63.250.43.1

200 OK

32 kB

URL HTTP/2
mxcloud.services/wp-content/themes/konstruktic/assets/fonts/GilmerBold.woff
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
Web Open Font Format, TrueType, length 32324, version 0.0\012- data
Size
32 kB (32324 bytes)
Hash
ace9521157a623762d3ccd82c0c766eb
09705c55e5562574a3cade4fb951483ef14e552f
1fe185b0a0aaa037adaaf1cfa42f13599690335cbc21102d3768c823ff624e8a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/konstruktic/assets/fonts/GilmerBold.woff HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://mxcloud.services/wp-content/themes/konstruktic/style.css?ver=6.1.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Fri, 23 Apr 2021 18:46:59 GMT
etag: "60831623-7e44"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: https://mxcloud.services
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: font/woff
content-length: 32324
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/uploads/2021/04/logo-animation-type-2-.json

63.250.43.1

200 OK

7.3 kB

URL HTTP/2
mxcloud.services/wp-content/uploads/2021/04/logo-animation-type-2-.json
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (65536), with no line terminators
Size
7.3 kB (7300 bytes)
Hash
a22db16eca7737bc7ebf4413c55ad3ea
77b426aa7866f07f535db91c5fa4170b027ecdcb
a075800ba83f32066cb95dfaf1066f41814e026e059507037a63ca2ade68729f

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/2021/04/logo-animation-type-2-.json HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Tue, 11 May 2021 11:23:59 GMT
etag: "609a694f-14577"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public
referrer-policy: strict-origin-when-cross-origin
content-type: application/json
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
content-length: 7300
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/uploads/2021/04/ms-cloud-office.jpg

63.250.43.1

200 OK

230 kB

URL HTTP/2
mxcloud.services/wp-content/uploads/2021/04/ms-cloud-office.jpg
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 240x240, segment length 16, baseline, precision 8, 1920x1280, components 3\012- data
Size
230 kB (229635 bytes)
Hash
09e3ea4e3d1218e554fadc1413b0dc2e
21cffa87440fc7d7c8fc0b040d65a368a42f5403
3436a11031386cebf1d7273c0f12a1e9c5f51a06ec42dc9b091ebbc19dce2ed6

HTTP Headers

GET /wp-content/uploads/2021/04/ms-cloud-office.jpg HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxcloud.services/wp-content/uploads/elementor/css/post-12.css?ver=1634828163
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Thu, 29 Apr 2021 04:35:36 GMT
etag: "608a3798-38103"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: image/jpeg
content-length: 229635
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/uploads/2021/04/Team-Member-05.jpg

63.250.43.1

200 OK

182 kB

URL HTTP/2
mxcloud.services/wp-content/uploads/2021/04/Team-Member-05.jpg
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=500, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=400], baseline, precision 8, 400x500, components 3\012- data
Size
182 kB (182307 bytes)
Hash
314b8d02172f9cec19e33e036e07bcc0
b1434c3a0af75e1bd140c0e02bbfb6f0855aef1a
1e602b4d0e44d51398a9de18d036decf050ba0f93ef4f23a06242a81b8398aaa

HTTP Headers

GET /wp-content/uploads/2021/04/Team-Member-05.jpg HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxcloud.services/wp-content/uploads/elementor/css/post-12.css?ver=1634828163
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Thu, 29 Apr 2021 08:36:20 GMT
etag: "608a7004-2c823"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: image/jpeg
content-length: 182307
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/uploads/2021/04/Team-Member-02.jpg

63.250.43.1

200 OK

125 kB

URL HTTP/2
mxcloud.services/wp-content/uploads/2021/04/Team-Member-02.jpg
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 21.0 (Windows), datetime=2020:11:28 15:53:27], baseline, precision 8, 400x500, components 3\012- data
Size
125 kB (124980 bytes)
Hash
62da2928d8379f7e435f67327fcfadf4
8268ce77b89a23a55fdaea63b76dcf0198957a80
56d4de4c94111f8cbeb6d5a8c1d7f51194cc3fd654df67aa92779382cba1101a

HTTP Headers

GET /wp-content/uploads/2021/04/Team-Member-02.jpg HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxcloud.services/wp-content/uploads/elementor/css/post-12.css?ver=1634828163
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Thu, 29 Apr 2021 08:53:25 GMT
etag: "608a7405-1e834"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: image/jpeg
content-length: 124980
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/uploads/2021/04/Team-Member-03.jpg

63.250.43.1

200 OK

127 kB

URL HTTP/2
mxcloud.services/wp-content/uploads/2021/04/Team-Member-03.jpg
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x500, components 3\012- data
Size
127 kB (126985 bytes)
Hash
7fe9698d5676b39f981d39a1b23b8873
fae6cecfc917d322c933211b7544eadad616f2df
86017d8bdf8a2a7b24c80465dbe8e2b31cca04367ebd795620b32e9d81f0abb3

HTTP Headers

GET /wp-content/uploads/2021/04/Team-Member-03.jpg HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxcloud.services/wp-content/uploads/elementor/css/post-12.css?ver=1634828163
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Thu, 29 Apr 2021 08:54:29 GMT
etag: "608a7445-1f009"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: image/jpeg
content-length: 126985
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/uploads/2021/04/Team-Member-01.jpg

63.250.43.1

200 OK

211 kB

URL HTTP/2
mxcloud.services/wp-content/uploads/2021/04/Team-Member-01.jpg
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x500, components 3\012- data
Size
211 kB (211083 bytes)
Hash
1eec1ffcccae2d2476b53b6877036a58
9e907a814635ba563d6be7251cbba1fb8825cda1
7c48d2423215c3410b35560be22c50bf25f2bdb7b3e7c7b459d8bdb66f28b8c9

HTTP Headers

GET /wp-content/uploads/2021/04/Team-Member-01.jpg HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxcloud.services/wp-content/uploads/elementor/css/post-12.css?ver=1634828163
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Thu, 29 Apr 2021 08:54:59 GMT
etag: "608a7463-3388b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: image/jpeg
content-length: 211083
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2

63.250.43.1

200 OK

78 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Size
78 kB (78196 bytes)
Hash
e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Thu, 21 Oct 2021 14:29:20 GMT
etag: "61717940-13174"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: https://mxcloud.services
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: font/woff2
content-length: 78196
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/uploads/2021/04/ms-cloud-officeroom.jpg

63.250.43.1

200 OK

185 kB

URL HTTP/2
mxcloud.services/wp-content/uploads/2021/04/ms-cloud-officeroom.jpg
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1920x1280, components 3\012- data
Size
185 kB (184904 bytes)
Hash
b93a0f4ab8b9fd3122eb3091070934a9
c6fe6c5306fb3cbb2f8f098a816113184aa00b71
86180f7db1eb979589dea31e8324896dbd9ee39dab1921d020871a5b87e0fad3

HTTP Headers

GET /wp-content/uploads/2021/04/ms-cloud-officeroom.jpg HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxcloud.services/wp-content/uploads/elementor/css/post-12.css?ver=1634828163
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Thu, 29 Apr 2021 09:52:23 GMT
etag: "608a81d7-2d248"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: image/jpeg
content-length: 184904
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2

63.250.43.1

200 OK

77 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Size
77 kB (76764 bytes)
Hash
f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Thu, 21 Oct 2021 14:29:20 GMT
etag: "61717940-12bdc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: https://mxcloud.services
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: font/woff2
content-length: 76764
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/uploads/2021/04/here-we-help-you-1536x864.jpg

63.250.43.1

200 OK

90 kB

URL HTTP/2
mxcloud.services/wp-content/uploads/2021/04/here-we-help-you-1536x864.jpg
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1536x864, components 3\012- data
Size
90 kB (89992 bytes)
Hash
e25669cc315d8013d19fa043b3a2c78d
f856a6896501c23c3f12f5453e8fe90a2031c77e
6cf2669b480ebad8ca537ef73a80f39d0a0b738ff8dba98b25be31e908864a0b

HTTP Headers

GET /wp-content/uploads/2021/04/here-we-help-you-1536x864.jpg HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 17 Jan 2023 06:58:34 GMT
content-type: image/jpeg
content-length: 89992
last-modified: Wed, 28 Apr 2021 14:22:06 GMT
etag: "60896f8e-15f88"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 87123
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js?version=5.4.8

63.250.43.1

200 OK

6.9 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js?version=5.4.8
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (28818), with CRLF line terminators
Size
6.9 kB (6878 bytes)
Hash
4bae534f11358bf3fcb8d01e29a0b074
875654c48d33f88553af52c24cfe5810c010a679
486cd5be866f1c01208071d61d15712ad251940f6b592ab653819658ae871d9a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js?version=5.4.8 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Fri, 23 Apr 2021 18:48:20 GMT
etag: "60831674-718e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
content-length: 6878
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.actions.min.js?version=5.4.8

63.250.43.1

200 OK

2.6 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.actions.min.js?version=5.4.8
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (8089), with CRLF line terminators
Size
2.6 kB (2572 bytes)
Hash
3beee57c4dde3e8b875c82beb77a7327
609461801b026559ca5787a2336b3aa3ee06e63b
7dfd42c3837c9db1531177fc4c6ca8f5f72d8c93d1f723599b9a950dd56f4977

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.actions.min.js?version=5.4.8 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Fri, 23 Apr 2021 18:48:20 GMT
etag: "60831674-2089"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
content-length: 2572
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.layeranimation.min.js?version=5.4.8

63.250.43.1

200 OK

14 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.layeranimation.min.js?version=5.4.8
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (55556), with CRLF line terminators
Size
14 kB (14302 bytes)
Hash
e007731397e9d481f295269a4d095a05
019d4c788790278b811023a9f995da5ae0557cb6
15275b1c5ad06a35899bb8ac2f54443a5465f690a28b9dada652e62699f8a8b3

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.layeranimation.min.js?version=5.4.8 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Fri, 23 Apr 2021 18:48:20 GMT
etag: "60831674-da01"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
content-length: 14302
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.kenburn.min.js?version=5.4.8

63.250.43.1

200 OK

1.6 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.kenburn.min.js?version=5.4.8
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (3515), with CRLF line terminators
Size
1.6 kB (1560 bytes)
Hash
6b3cd4d520d390aee1fe3b05956d9e69
60066a09a36237b87bbe5bdfb2480dc19b43d37e
7277571b56ceb5ba1e4a66fb840a941ab5b689c7264f4e4a5caadc148df22787

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.kenburn.min.js?version=5.4.8 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Fri, 23 Apr 2021 18:48:20 GMT
etag: "60831674-eaa"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
content-length: 1560
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.navigation.min.js?version=5.4.8

63.250.43.1

200 OK

7.0 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.navigation.min.js?version=5.4.8
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (25862), with CRLF line terminators
Size
7.0 kB (7041 bytes)
Hash
9122842266e2b0bc42bd817dfbce915a
a428ffe75f21bf46f450c7e52aee57b6de993caa
81384d2f04b6874b0ceda2fb9f09b945150a28e5b998ff3a4324c58d1fe225a0

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.navigation.min.js?version=5.4.8 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Fri, 23 Apr 2021 18:48:20 GMT
etag: "60831674-65f7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
content-length: 7041
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/revslider/public/assets/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0

63.250.43.1

200 OK

77 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/revslider/public/assets/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://mxcloud.services/wp-content/plugins/revslider/public/assets/fonts/font-awesome/css/font-awesome.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Fri, 23 Apr 2021 18:48:23 GMT
etag: "60831677-12d68"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: https://mxcloud.services
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: font/woff2
content-length: 77160
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/uploads/revslider/slide-home7/mx-cloud-services-home-slider-image-02.jpg

63.250.43.1

200 OK

255 kB

URL HTTP/2
mxcloud.services/wp-content/uploads/revslider/slide-home7/mx-cloud-services-home-slider-image-02.jpg
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 240x240, segment length 16, baseline, precision 8, 1920x1277, components 3\012- data
Size
255 kB (254746 bytes)
Hash
912d0bbfc8830c00d589498cf3454fbe
842027b1897c0f13123b0f931a9433cbdc23351c
f7c0462f45aca0d495683bae121e76da3e0bb89243e2ea5d95d3221d8317d6fa

HTTP Headers

GET /wp-content/uploads/revslider/slide-home7/mx-cloud-services-home-slider-image-02.jpg HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 29 Apr 2021 03:32:40 GMT
etag: "608a28d8-3e31a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: image/jpeg
content-length: 254746
x-cacheable: YES
age: 24962
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.13.0

63.250.43.1

200 OK

92 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.13.0
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
Web Open Font Format (Version 2), TrueType, length 91472, version 1.0\012- data
Size
92 kB (91472 bytes)
Hash
f4f91f34f5cd97cb1fb1ff9de8cb1473
56eefd5e8875fd3a639a2e4c884f880fd1829525
3368bde807b9dc25e071e9d50a7f698b8788e5b12b7a967dd1efcffb8cc957ab

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.13.0 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://mxcloud.services/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.13.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Thu, 21 Oct 2021 14:29:20 GMT
etag: "61717940-16550"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: https://mxcloud.services
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: font/woff2
content-length: 91472
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/favicon.ico

63.250.43.1

204 No Content

0 B

URL HTTP/2
mxcloud.services/favicon.ico
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 204 No Content
server: nginx
date: Wed, 18 Jan 2023 01:56:06 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-type: image/png
age: 18872
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/revslider/public/assets/assets/loader.gif

63.250.43.1

200 OK

2.5 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/revslider/public/assets/assets/loader.gif
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
GIF image data, version 89a, 24 x 24\012- data
Size
2.5 kB (2545 bytes)
Hash
4b3afb84b2b71ef56df09997a350bd04
accdac8a7abeab0e21c49539aad0a973addb28ef
9034d5d34015e4b05d2c1d1a8dc9f6ec9d59bd96d305eb9e24e24e65c591a645

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/assets/loader.gif HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxcloud.services/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8.3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Fri, 23 Apr 2021 18:48:20 GMT
etag: "60831674-9f1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: image/gif
content-length: 2545
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mxcloud.services/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888

63.250.43.1

200 OK

7.5 kB

URL HTTP/2
mxcloud.services/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
IP
63.250.43.1:0
ASN
#22612 NAMECHEAP-NET

File type
Web Open Font Format, TrueType, length 7536, version 1.0\012- data
Size
7.5 kB (7536 bytes)
Hash
04eb8fc57f27498e5ae37523e3bfb2c7
d942ae11706c3f7e511e3c49b0e4574d7ad199c4
f7b9c3065e55fa3b9e320093612e7b30dcb14355a44ec461247b495a3e729686

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://mxcloud.services/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:06 GMT
last-modified: Fri, 23 Apr 2021 18:48:23 GMT
etag: "60831677-1d70"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: https://mxcloud.services
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: font/woff
content-length: 7536
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1983f844-6675-400d-b957-26ce8e636ae7.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8939 bytes)
Hash
015e1f23253643036d718d5a785be61b
55b5ce93ba3ab53b227aa1fdb60b6062d35ae2f0
78045e55e5e9966b1fddb9e3f734972611ea78e7cb78b92beb2e4adf56f724ed

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1983f844-6675-400d-b957-26ce8e636ae7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 8939
x-amzn-requestid: 5fbb2a5d-5731-4fb0-8b95-cc59338862de
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A1nGMvoAMFrQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714f0-14de6c94416a9ced1c284d5b;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xtPNgaK-8fYccAq_D-bA7rVmM2tq5-prvjbnn2yhlOVr_yT9uxYxdg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:10:07 GMT
age: 32437
etag: "55b5ce93ba3ab53b227aa1fdb60b6062d35ae2f0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

unpkg.com/@lottiefiles/lottie-interactivity@latest/dist/lottie-interactivity.min.js

104.16.124.175

302 Found

0 B

URL HTTP/2
unpkg.com/@lottiefiles/lottie-interactivity@latest/dist/lottie-interactivity.min.js
IP
104.16.124.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /@lottiefiles/lottie-interactivity@latest/dist/lottie-interactivity.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Wed, 18 Jan 2023 07:10:36 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /@lottiefiles/lottie-interactivity@1.6.1/dist/lottie-interactivity.min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GQ1V40WMX8DH2JZCHN2Y68GV-fra
cf-cache-status: HIT
age: 335
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78b583077f57b523-OSL
X-Firefox-Spdy: h2

unpkg.com/@lottiefiles/lottie-player@latest/dist/lottie-player.js

104.16.124.175

302 Found

0 B

URL HTTP/2
unpkg.com/@lottiefiles/lottie-player@latest/dist/lottie-player.js
IP
104.16.124.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /@lottiefiles/lottie-player@latest/dist/lottie-player.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Wed, 18 Jan 2023 07:10:36 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /@lottiefiles/lottie-player@1.6.3/dist/lottie-player.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GQ1VC3ZEN9ND1XR1AHHCP8PQ-fra
cf-cache-status: HIT
age: 68
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78b583077f59b523-OSL
X-Firefox-Spdy: h2

unpkg.com/@lottiefiles/lottie-player@1.6.3/dist/lottie-player.js

104.16.124.175

200 OK

0 B

URL HTTP/2
unpkg.com/@lottiefiles/lottie-player@1.6.3/dist/lottie-player.js
IP
104.16.124.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /@lottiefiles/lottie-player@1.6.3/dist/lottie-player.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:10:36 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"5990b-1dRIRGIhtWDjvrShxjlC9DX1tDg"
via: 1.1 fly.io
fly-request-id: 01GPDFVHX23HXR3GS8BNMDB4M0-fra
cf-cache-status: HIT
age: 683177
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78b58307cfaeb523-OSL
content-encoding: br
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CHind%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.1.1

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CHind%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.1.1
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CHind%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 18 Jan 2023 07:10:36 GMT
date: Wed, 18 Jan 2023 07:10:36 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Hind%3A400&subset=latin-ext

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Hind%3A400&subset=latin-ext
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Hind%3A400&subset=latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 18 Jan 2023 07:10:36 GMT
date: Wed, 18 Jan 2023 07:10:36 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

unpkg.com/lottie-interactive@latest/dist/lottie-interactive.js

104.16.124.175

302 Found

0 B

URL HTTP/2
unpkg.com/lottie-interactive@latest/dist/lottie-interactive.js
IP
104.16.124.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /lottie-interactive@latest/dist/lottie-interactive.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Wed, 18 Jan 2023 07:10:36 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /lottie-interactive@1.3.2/dist/lottie-interactive.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GQ1VE85V2Q4M7JPPCY6846ZV-fra
cf-cache-status: EXPIRED
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78b583077f55b523-OSL
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (64)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML