mxcloud.services/
63.250.43.2301 Moved Permanently 0 B IP 63.250.43.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
content-length: 0
location: https://mxcloud.services/
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 648bf42163c5d645d8a33cd0a9afebd0
9b9ac85435c4e90647e8379bca54c689058a8929
060757fb4857858d4d01a715824ea6771d0137e73a24bf75e2844d0f346380fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "060757FB4857858D4D01A715824EA6771D0137E73A24BF75E2844D0F346380FA"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6788
Expires: Wed, 18 Jan 2023 09:03:43 GMT
Date: Wed, 18 Jan 2023 07:10:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cc07d664b5dadee6f9120d54904dfa57
df75a55b0b2019684a6c512bee528c51a2c4a756
14a1bd6315a3256468edafedfd1c02a6ba147914c0f01e8504e7d8cc67781c34
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "14A1BD6315A3256468EDAFEDFD1C02A6BA147914C0F01E8504E7D8CC67781C34"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5828
Expires: Wed, 18 Jan 2023 08:47:43 GMT
Date: Wed, 18 Jan 2023 07:10:35 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 18 Jan 2023 06:34:22 GMT
content-type: application/json
age: 2173
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6c8239f3894cfba54d1f3a9ea1c85db5
a70f2b3bf79f2aa26b0cc0340dd182565c3eb946
64dc0508d3fcea1ec92fb60310e9b3f5454c0b69f61e8453fd443bc46ab9471b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "64DC0508D3FCEA1EC92FB60310E9B3F5454C0B69F61E8453FD443BC46AB9471B"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5221
Expires: Wed, 18 Jan 2023 08:37:36 GMT
Date: Wed, 18 Jan 2023 07:10:35 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: O1+mxXfX7s0wZaCVdEDzMV06T1tGAm/4+b/n6UJdXnA1g9PdA83qU2SDUw7P8gCJrSAddMw8HzM=
x-amz-request-id: QKW8CMGC81WEHPVM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 18 Jan 2023 06:56:35 GMT
age: 840
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 07:10:35 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 18 Jan 2023 06:48:57 GMT
age: 1299
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash a0ede442f75c06b762d2e98e9fa6706e
9c4515fe4d965e4a88394bc913e1ef8d932158ae
1c39648970ecdc5db0dceb9d130b2e7f6adeaec9c71524e5121587fbb6a5d6d0
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 07:10:36 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 17 Jan 2023 11:08:19 GMT
Expires: Tue, 24 Jan 2023 11:08:18 GMT
Etag: "9c4515fe4d965e4a88394bc913e1ef8d932158ae"
Cache-Control: max-age=532061,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78b58302ed70b517-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8720730dce33d0026a1a354ac93d4a7d
ed5f086bc646a4d93d2344b19ff7821c96e44f7c
b2892fda88242fbc4d58dd1f3bb159ca02cbf98b77c57dde66fba98d183c0136
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6364
Cache-Control: max-age=99737
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:10:36 GMT
Etag: "63c66529-1d7"
Expires: Thu, 19 Jan 2023 10:52:53 GMT
Last-Modified: Tue, 17 Jan 2023 09:06:49 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
mxcloud.services/
63.250.43.1200 OK 36 kB IP 63.250.43.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (52143)
Hash fb8510318fac4f9561ac0dc0b387a3a1
ea58da30e1b0d4d96760ff1eef960356323fed63
b4899de03841df83eef5cdc299de8ea0d5eb66b57a2184303cab5c016365c87a
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:14 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
link: <https://mxcloud.services/wp-json/>; rel="https://api.w.org/", <https://mxcloud.services/wp-json/wp/v2/pages/12>; rel="alternate"; type="application/json", <https://mxcloud.services/>; rel=shortlink
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public
referrer-policy: strict-origin-when-cross-origin
content-encoding: gzip
x-cacheable: YES
age: 24981
accept-ranges: bytes
x-cache: HIT
content-length: 35811
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
push.services.mozilla.com/
35.161.4.251101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.161.4.251:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: huCUQwEVMdDwjHhvG/GihA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: jLEW+/c7fZLTcJh5eJDNZH5rJxM=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2b02c407fd912449a1b278f0bf3d8574
817bcff5b7c0444426b19027c772bddce84cf130
67ceddcf2eef43f1c11fc85c1398c39b5ff875a93dafbf9c4526e6d3bc5eb52a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:10:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2b02c407fd912449a1b278f0bf3d8574
817bcff5b7c0444426b19027c772bddce84cf130
67ceddcf2eef43f1c11fc85c1398c39b5ff875a93dafbf9c4526e6d3bc5eb52a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:10:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mxcloud.services/wp-content/themes/konstruktic/assets/css/opal-boostrap.css?ver=6.1.1
63.250.43.1200 OK 14 kB URL HTTP/2 mxcloud.services/wp-content/themes/konstruktic/assets/css/opal-boostrap.css?ver=6.1.1
IP 63.250.43.1:0
Hash 85ab4ed6c188036c7585ea66f442ad53
b14c0cb6eeb52ecf3b1090b1564debe5395d16ac
45612006722900a2833abe4ca3c3db1c843b5924c1546b9fdb1c716b4f2bd3b5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/konstruktic/assets/css/opal-boostrap.css?ver=6.1.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:13:38 GMT
last-modified: Fri, 23 Apr 2021 18:46:59 GMT
etag: "60831623-1bdce"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 25017
accept-ranges: bytes
x-cache: HIT
content-length: 14315
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.4.6
63.250.43.1200 OK 18 kB URL HTTP/2 mxcloud.services/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.4.6
IP 63.250.43.1:0
File type ASCII text, with very long lines (65497)
Hash 45a64f19060341617b336f503437cfaa
8adacfa0feffe358096fe272b40141d33a3d0508
9cde55289c7fc7c5f096c1c09977f9be9ff25d2ff22f49026d5f48ff34310e06
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.4.6 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:18 GMT
last-modified: Thu, 21 Oct 2021 14:29:21 GMT
etag: "61717941-20197"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24978
accept-ranges: bytes
x-cache: HIT
content-length: 17665
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
unpkg.com/@lottiefiles/lottie-interactivity@1.6.1/dist/lottie-interactivity.min.js
104.16.124.175200 OK 5.0 kB URL HTTP/2 unpkg.com/@lottiefiles/lottie-interactivity@1.6.1/dist/lottie-interactivity.min.js
IP 104.16.124.175:0
File type ASCII text, with very long lines (20214)
Hash bf6d50febacacecb999e219292b062ae
758c1e0c7ced6ca5b59d108bff556d1149bad2f2
42f9062199b589bc233d86fa796fc1daff029989e74054c7f8b6cde3a858e64f
GET /@lottiefiles/lottie-interactivity@1.6.1/dist/lottie-interactivity.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:10:36 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"4f2c-jEDFlsTFN2OEDC3P02SAdZDlWAQ"
via: 1.1 fly.io
fly-request-id: 01G7PDR6HQ07VJ2NW46Y8V67RM-fra
cf-cache-status: HIT
age: 16489408
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78b58307cfa4b523-OSL
content-encoding: br
X-Firefox-Spdy: h2
mxcloud.services/wp-content/themes/konstruktic/style.css?ver=6.1.1
63.250.43.1200 OK 22 kB URL HTTP/2 mxcloud.services/wp-content/themes/konstruktic/style.css?ver=6.1.1
IP 63.250.43.1:0
File type Unicode text, UTF-8 text, with very long lines (385)
Hash 15811408f29273837cc333660ff6f599
0c9317a0aa6bbb342e0003c3bda535d54a2d0890
0587c9df2b9166d8ef4891e6a75488135103540ce160791fd4ffee9b68e8c530
GET /wp-content/themes/konstruktic/style.css?ver=6.1.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 23 Apr 2021 18:46:59 GMT
etag: "60831623-1cd6d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 21993
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/konstruktic-core/assets/css/elementor/style.css?ver=1.15.1
63.250.43.1200 OK 22 kB URL HTTP/2 mxcloud.services/wp-content/plugins/konstruktic-core/assets/css/elementor/style.css?ver=1.15.1
IP 63.250.43.1:0
File type ASCII text, with very long lines (1779)
Hash c1ef98adee79d446d23263d30cac6c0f
b8ea9255a0cb0905ec88889f16fd39a5f98c6662
f03daa048cd86b2d32eb8dfac8ada57337462c4c0309379bbd1a316be3f02219
GET /wp-content/plugins/konstruktic-core/assets/css/elementor/style.css?ver=1.15.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Mon, 22 Nov 2021 22:53:15 GMT
etag: "619c1f5b-27c1c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 21524
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
63.250.43.1200 OK 12 kB URL HTTP/2 mxcloud.services/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 63.250.43.1:0
File type ASCII text, with very long lines (47826)
Hash 981383d43a7adb38d6c2bf5286dcd065
e41871905868763178f7d8127e3dfb87909f108f
fceb208fc5a1581abc1926596d5f59fa41e7a7d72027b563303b445cdf7ed126
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Tue, 15 Nov 2022 23:02:52 GMT
etag: "63741a9c-172a9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 12518
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-includes/css/classic-themes.min.css?ver=1
63.250.43.1200 OK 217 B URL HTTP/2 mxcloud.services/wp-includes/css/classic-themes.min.css?ver=1
IP 63.250.43.1:0
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:18 GMT
last-modified: Wed, 02 Nov 2022 10:52:22 GMT
etag: "63624be6-d9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
content-length: 217
x-cacheable: YES
age: 24978
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8.3
63.250.43.1200 OK 9.6 kB URL HTTP/2 mxcloud.services/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8.3
IP 63.250.43.1:0
File type Unicode text, UTF-8 text, with very long lines (5178), with CRLF line terminators
Hash 32d8fef334fd178398052529c40feb28
29002eaf2a3877bae23b4ccf8c6d72c4622145ea
50cf220734f07287449aef0d5b0ac126a2cc6148a7238449ab63e1c422c2caa1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8.3 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:18 GMT
last-modified: Fri, 23 Apr 2021 18:48:23 GMT
etag: "60831677-9b8c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24978
accept-ranges: bytes
x-cache: HIT
content-length: 9563
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/jet-elements/assets/css/jet-elements-skin.css?ver=2.5.8
63.250.43.1200 OK 2.9 kB URL HTTP/2 mxcloud.services/wp-content/plugins/jet-elements/assets/css/jet-elements-skin.css?ver=2.5.8
IP 63.250.43.1:0
File type ASCII text, with very long lines (17381)
Hash be82911c928de260fc06115576776c2e
2b0d7ed416ff25c3716d4b12216e999cb3829165
7f049c3e6f0e758f290b960b82d7d92995949c32a0969c7fc093c8ada4c4a2ff
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/jet-elements/assets/css/jet-elements-skin.css?ver=2.5.8 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 23 Jul 2021 17:01:24 GMT
etag: "60faf5e4-43e6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 2890
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/jet-elements/assets/css/jet-elements.css?ver=2.5.8
63.250.43.1200 OK 22 kB URL HTTP/2 mxcloud.services/wp-content/plugins/jet-elements/assets/css/jet-elements.css?ver=2.5.8
IP 63.250.43.1:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 02ee91e8f00013ecbe3c672c77b30054
01f56104a6c4eec406187d08bee1b5ead3a2d580
8ff0fecb97fbda33a8ed8349801928819d0de2297135309c862785d256fc953e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/jet-elements/assets/css/jet-elements.css?ver=2.5.8 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:18 GMT
last-modified: Fri, 23 Jul 2021 17:01:24 GMT
etag: "60faf5e4-3a86d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24978
accept-ranges: bytes
x-cache: HIT
content-length: 22402
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.13.0
63.250.43.1200 OK 3.9 kB URL HTTP/2 mxcloud.services/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.13.0
IP 63.250.43.1:0
File type ASCII text, with very long lines (18854)
Hash 686d3a79bb3f81638813b23697acbe27
acf346260aaca8295787939960f46ac75fec7815
d7e7e71fbf2db6f6a4dbcc43dba846e1f64f54f6c43ad8bacb8db727e7d14d24
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.13.0 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:29:20 GMT
etag: "61717940-49d4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 3882
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/uploads/elementor/css/post-1.css?ver=1634827018
63.250.43.1200 OK 349 B URL HTTP/2 mxcloud.services/wp-content/uploads/elementor/css/post-1.css?ver=1634827018
IP 63.250.43.1:0
File type ASCII text, with very long lines (1012), with no line terminators
Hash f13ce464b4e63a96f6327805b0f6d27a
d76a8a83f295b6a7305835d2bbf4bb0f773c748b
187ba96c6331664647a16a2f5f0d86f2a77856fcac3e454e6d6abb3e7e031b26
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-1.css?ver=1634827018 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:36:58 GMT
etag: "61717b0a-3f4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 349
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/jet-tabs/assets/css/jet-tabs-frontend.css?ver=2.1.13
63.250.43.1200 OK 4.0 kB URL HTTP/2 mxcloud.services/wp-content/plugins/jet-tabs/assets/css/jet-tabs-frontend.css?ver=2.1.13
IP 63.250.43.1:0
File type ASCII text, with very long lines (43662)
Hash e5cf71434a8aefcb40388856cc06ea17
d10d3d74b027e6af503218d11cf0aa86e079f362
14145b4a63946c29a067e834e71e79cb2faaed74f89db2a9a824cfdf2c24c527
GET /wp-content/plugins/jet-tabs/assets/css/jet-tabs-frontend.css?ver=2.1.13 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 23 Jul 2021 17:01:39 GMT
etag: "60faf5f3-aa8f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 4033
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.3.4
63.250.43.1200 OK 26 kB URL HTTP/2 mxcloud.services/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.3.4
IP 63.250.43.1:0
File type ASCII text, with very long lines (65493)
Hash 05e6eb6c91d13d7aa4e4293b77abd499
b530021c59c4ec9ed6df882e7bf02e96094cdbd0
ecd422e3208710daa1fd6790f16e7f518a534ba7925f094ae38040756846820e
GET /wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.3.4 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 23 Jul 2021 17:02:11 GMT
etag: "60faf613-39cde"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 25871
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/uploads/elementor/css/post-2205.css?ver=1634827942
63.250.43.1200 OK 1.6 kB URL HTTP/2 mxcloud.services/wp-content/uploads/elementor/css/post-2205.css?ver=1634827942
IP 63.250.43.1:0
File type ASCII text, with very long lines (11413), with CRLF, LF line terminators
Hash 6ae6a1c458c0cc63e04023877f80ffeb
8a7c9cfaac8eaed0df77b29d9c2aef2775487924
627bb12461587dc3888732188fb2ab874e4fdf51dbb578f2a6eb6ce531368cd1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-2205.css?ver=1634827942 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:52:22 GMT
etag: "61717ea6-3348"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 1594
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/uploads/elementor/css/post-2209.css?ver=1634827019
63.250.43.1200 OK 2.0 kB URL HTTP/2 mxcloud.services/wp-content/uploads/elementor/css/post-2209.css?ver=1634827019
IP 63.250.43.1:0
File type ASCII text, with very long lines (9829)
Hash cea4bec5e9dc8a57923f1a0eb0b4e098
6b4c9549210e22d1ff53ab8b1698c393c9f78ce1
ede24a66eaca0fd70ee8fabe9e7d6d9ba30614df9d0da30a48aa1a80d71da60b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-2209.css?ver=1634827019 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:36:59 GMT
etag: "61717b0b-5257"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 1990
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
63.250.43.1200 OK 309 B URL HTTP/2 mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP 63.250.43.1:0
File type ASCII text, with very long lines (483)
Hash 0ea43e394ddaae5fdb710dbbc8869e58
3b0c93adc80720236096201db5cc2751e703996d
85225fffa21a94bfd954393d7471069ab227b98fd8b51cb5ab4af5488168a34e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:29:20 GMT
etag: "61717940-29d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 309
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
63.250.43.1200 OK 308 B URL HTTP/2 mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP 63.250.43.1:0
File type ASCII text, with very long lines (489)
Hash 0a08469d24387f830bbaaa00b3c228ae
01f5dfeb8f93a32c9a8f66fe5940758109771fcd
3c7c29e5fc1193ff7ce24f72f77b2dc129e1a9434a97ef7b625f6f715531803c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:29:20 GMT
etag: "61717940-2a3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 308
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/uploads/elementor/css/post-1985.css?ver=1628778990
63.250.43.1200 OK 1.1 kB URL HTTP/2 mxcloud.services/wp-content/uploads/elementor/css/post-1985.css?ver=1628778990
IP 63.250.43.1:0
File type ASCII text, with very long lines (4705), with CRLF, LF line terminators
Hash a041821f23c256762bb5cc5267df1b37
694e76f1a2a66793b50b321b67875b1962219bb5
9d8a68b7332780dcb809cc525cadc4955a1ab3719de3153c832484134bb3969d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-1985.css?ver=1628778990 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:37:02 GMT
etag: "61717b0e-1e65"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 1081
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/uploads/elementor/css/global.css?ver=1634827019
63.250.43.1200 OK 5.1 kB URL HTTP/2 mxcloud.services/wp-content/uploads/elementor/css/global.css?ver=1634827019
IP 63.250.43.1:0
File type ASCII text, with very long lines (46566)
Hash d32820d6b3240b19e6d00dae16185ce9
a71843b02a534387eb5230df9dc87a2cef8a1e52
5d3bcf5d51c76e59aed6505a02ee8e77ac5d64f3f57eafedc8cb606403e290e6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/global.css?ver=1634827019 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:18 GMT
last-modified: Thu, 21 Oct 2021 14:36:59 GMT
etag: "61717b0b-12c08"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24978
accept-ranges: bytes
x-cache: HIT
content-length: 5103
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
63.250.43.1200 OK 13 kB URL HTTP/2 mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 63.250.43.1:0
File type ASCII text, with very long lines (57726)
Hash b8914a9a422b658a721edee22da4803f
dcb57be1523de06493b62bff04208dbb7eaf7b92
32cbd3295c9c436f50437a22d401fa3838a98c1dc03eddfc4552eda9e0a6bc6e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:29:20 GMT
etag: "61717940-e238"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 12581
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/konstruktic-core/assets/css/fullpage.css?ver=6.1.1
63.250.43.1200 OK 1.5 kB URL HTTP/2 mxcloud.services/wp-content/plugins/konstruktic-core/assets/css/fullpage.css?ver=6.1.1
IP 63.250.43.1:0
Hash 3981c933b672da764f1156b498237ac0
d761b477dcc7fc066b1da2f983ac4b3ecd59b582
d32dc960e0407886273cc1e0466e82f1407402980586c9fc2dece7e3c1d21b87
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/konstruktic-core/assets/css/fullpage.css?ver=6.1.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Mon, 22 Nov 2021 22:53:15 GMT
etag: "619c1f5b-152d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 1534
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/ele-custom-skin/assets/css/ecs-style.css?ver=3.1.3
63.250.43.1200 OK 1.8 kB URL HTTP/2 mxcloud.services/wp-content/plugins/ele-custom-skin/assets/css/ecs-style.css?ver=3.1.3
IP 63.250.43.1:0
Hash a77b31e5dc5a480aa72ce08f1e8466ca
1356b8b72b34bf255d4b89c44bcbd43bdd54d9ba
4800448e1569f9ecd7f412f8ce43645560b9c22267be0f43cacc975e4893346d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ele-custom-skin/assets/css/ecs-style.css?ver=3.1.3 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:37:20 GMT
etag: "61717b20-235c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 1838
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/sticky-header-effects-for-elementor/assets/js/she-header.js?ver=1.4.7
63.250.43.1200 OK 1.6 kB URL HTTP/2 mxcloud.services/wp-content/plugins/sticky-header-effects-for-elementor/assets/js/she-header.js?ver=1.4.7
IP 63.250.43.1:0
Hash 8e487a68326b09dd111e103b151469ca
80e9ea3d3c69ba92312b38fdff0f772f1d446693
88dbace531315b9910d8d1abf84fde6e0c5a0fc1b85d120e1ef18eb0101b2a59
GET /wp-content/plugins/sticky-header-effects-for-elementor/assets/js/she-header.js?ver=1.4.7 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:38:43 GMT
etag: "61717b73-1ca2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 1616
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/themes/konstruktic/assets/css/carousel.css?ver=6.1.1
63.250.43.1200 OK 1.6 kB URL HTTP/2 mxcloud.services/wp-content/themes/konstruktic/assets/css/carousel.css?ver=6.1.1
IP 63.250.43.1:0
Hash 614b24a23f611026384af096dcdb8128
2d2ad801082a5900b50f4d1a114fd490c6837a62
8cc0574e41455e3e23c0f2d25701d3e8c6b18cc6dfd7d5291c874eadbdf01860
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/konstruktic/assets/css/carousel.css?ver=6.1.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:18 GMT
last-modified: Fri, 23 Apr 2021 18:46:59 GMT
etag: "60831623-1a0e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24978
accept-ranges: bytes
x-cache: HIT
content-length: 1597
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
63.250.43.1200 OK 4.2 kB URL HTTP/2 mxcloud.services/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 63.250.43.1:0
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 11 Mar 2021 09:49:12 GMT
etag: "6049e798-2bd8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 4169
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.4.6
63.250.43.1200 OK 4.2 kB URL HTTP/2 mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.4.6
IP 63.250.43.1:0
File type ASCII text, with very long lines (26516)
Hash d74abcef3df71d56667a44693f75c454
be993a7b5c88a550ef0dc19c4841f240e41967f8
8c8fb98c0a68a93f2bcf224fcc1bdaa1095fc1b3f5418f2e2c5fddcfa3dee410
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.4.6 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:29:20 GMT
etag: "61717940-684e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 4229
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/uploads/elementor/css/post-12.css?ver=1634828163
63.250.43.1200 OK 6.9 kB URL HTTP/2 mxcloud.services/wp-content/uploads/elementor/css/post-12.css?ver=1634828163
IP 63.250.43.1:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 7c9e8b9748ecc22bae5a77737d188cbb
44cf529b7202c644d933676d9e7fc90c5a529201
f5ee93e24dae0a8a1c0fe570ce35590c0f950c0dccfc13cfdbe67f58e3185857
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-12.css?ver=1634828163 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:56:03 GMT
etag: "61717f83-185e5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 6872
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/sticky-header-effects-for-elementor/assets/css/she-header-style.css?ver=1.4.7
63.250.43.1200 OK 624 B URL HTTP/2 mxcloud.services/wp-content/plugins/sticky-header-effects-for-elementor/assets/css/she-header-style.css?ver=1.4.7
IP 63.250.43.1:0
File type ASCII text, with CRLF line terminators
Hash 179bb6d55d94f8d603ba70e54dfc5732
084c4debc65f51c3a77abbbd79ad0c67bcec6895
3106ceaffefcf44548877e0c4c573cf7d08d0e54f2b272c9e7c412d1e4cce063
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/sticky-header-effects-for-elementor/assets/css/she-header-style.css?ver=1.4.7 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:38:43 GMT
etag: "61717b73-1334"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 624
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.4.6
63.250.43.1200 OK 4.2 kB URL HTTP/2 mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.4.6
IP 63.250.43.1:0
File type ASCII text, with very long lines (14869)
Hash 1fcdd9935a66511c3b8069495af248e3
b0e375ac95b547b3bb6ce74cd1bcc505ffc2281d
4a741209fc122872cb5ae018a5870d70848a616fa98eb4289ad78cec986ec282
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.4.6 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:29:21 GMT
etag: "61717941-3acf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 4205
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/themes/konstruktic/assets/css/opal-icons.css?ver=6.1.1
63.250.43.1200 OK 8.3 kB URL HTTP/2 mxcloud.services/wp-content/themes/konstruktic/assets/css/opal-icons.css?ver=6.1.1
IP 63.250.43.1:0
File type troff or preprocessor input, Unicode text, UTF-8 text
Hash 55b7e874382218bda28de97e45f2de3e
ee67a964d5ce3dd23cd205322aae7f360bb16267
749a4c0d86232dda6698b897656717aa288b9b0d2c4be40bb6a121f0bbfaec4a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/konstruktic/assets/css/opal-icons.css?ver=6.1.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 23 Apr 2021 18:46:59 GMT
etag: "60831623-9cda"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 8320
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.4.6
63.250.43.1200 OK 13 kB URL HTTP/2 mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.4.6
IP 63.250.43.1:0
File type ASCII text, with very long lines (59158)
Hash ec28881f94373ca699b82164b944915a
4abd68ea4dd8e75b907092030283332d8e037ee0
800119a3bea6194c052f582d6005bbb8f280b8e51cc9d3a487c2bccfc01eff81
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.4.6 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:18 GMT
last-modified: Thu, 21 Oct 2021 14:29:20 GMT
etag: "61717940-e7d0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24978
accept-ranges: bytes
x-cache: HIT
content-length: 12868
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/carousel.js?ver=6.1.1
63.250.43.1200 OK 1.7 kB URL HTTP/2 mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/carousel.js?ver=6.1.1
IP 63.250.43.1:0
File type ASCII text, with very long lines (4375)
Hash 39c0044321e49f661bde12df443ded55
48d64c110b4164271421e2d6b07b1a112db3e142
2ce184bc018e0370e53fa6d31d44d3c6969402256bd6381e016c4d5215cfc5e9
GET /wp-content/plugins/konstruktic-core/assets/js/carousel.js?ver=6.1.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Mon, 22 Nov 2021 22:53:15 GMT
etag: "619c1f5b-113d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 1674
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/ele-custom-skin/assets/js/ecs.js?ver=3.1.3
63.250.43.1200 OK 167 B URL HTTP/2 mxcloud.services/wp-content/plugins/ele-custom-skin/assets/js/ecs.js?ver=3.1.3
IP 63.250.43.1:0
Hash 6c7b1ace99498765899d4a6491f42a27
e31dd9aa7bd3a5dd224169b3bcc62d1b163b290d
bd3db097b4ee6e29ba8e9cd32c6ada53dba0c30977e4f8754ddc3a62a310def8
GET /wp-content/plugins/ele-custom-skin/assets/js/ecs.js?ver=3.1.3 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:37:20 GMT
etag: "61717b20-11c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 167
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8.3
63.250.43.1200 OK 18 kB URL HTTP/2 mxcloud.services/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8.3
IP 63.250.43.1:0
File type ASCII text, with very long lines (64614), with CRLF line terminators
Hash f9f08906db0c9db201c229f363a85664
03879fb3cb37c7302a4e1147dcbf9f82d48624ee
0919cb684c2e2541f4f3181c9a41816b280d14a22e9ddcc430843390078c828d
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8.3 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 23 Apr 2021 18:48:20 GMT
etag: "60831674-fdb5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 18088
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
63.250.43.1200 OK 31 kB URL HTTP/2 mxcloud.services/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 63.250.43.1:0
File type ASCII text, with very long lines (65447)
Hash 2eccf707201b564e5e0cc3637fe4fd79
13b3ab2c399a84808e8fd6a2c795a6a49f5090a4
fb2e62f5864ef969b2d586b0e589fc81d7689038cd54a90fbca4b463e0ca6261
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Wed, 02 Nov 2022 10:52:23 GMT
etag: "63624be7-15e54"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 31038
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.3
63.250.43.1200 OK 38 kB URL HTTP/2 mxcloud.services/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.3
IP 63.250.43.1:0
File type ASCII text, with very long lines (27287), with CRLF line terminators
Hash d30a64aaf355e8ec20ee27634dfce995
b9e145baa8aa01a6c28a8902f52bf40f3f9171a0
902e3fcef22aaf2cdcdf1d01089d2b20ebc28905265f92f67c80a2f64e5ee47a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.3 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 23 Apr 2021 18:48:20 GMT
etag: "60831674-1afe4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 38344
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/ele-custom-skin/assets/js/ecs_ajax_pagination.js?ver=3.1.3
63.250.43.1200 OK 1.3 kB URL HTTP/2 mxcloud.services/wp-content/plugins/ele-custom-skin/assets/js/ecs_ajax_pagination.js?ver=3.1.3
IP 63.250.43.1:0
Hash 992267d8157c04ab7210bc2ef2366b12
24791a08d5501829d74a05a9d4f570eb364541a3
5cbd5f8f11f11a6a294a94b6713fd8e0afc3b67c0a17abe10a28546f53551ff6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ele-custom-skin/assets/js/ecs_ajax_pagination.js?ver=3.1.3 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:37:20 GMT
etag: "61717b20-ecb"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 1316
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/main.js?ver=1.15.1
63.250.43.1200 OK 809 B URL HTTP/2 mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/main.js?ver=1.15.1
IP 63.250.43.1:0
File type HTML document, ASCII text, with very long lines (1402)
Hash 5d11d509c4b1f18136888bce2b59a740
38cbb28f430149314b8bbe55f1e41039b30fcdd8
07c539be46cfcb488aed3578f49f895a98551502490eec634a2ddc997757fdf9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/konstruktic-core/assets/js/main.js?ver=1.15.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Mon, 22 Nov 2021 22:53:15 GMT
etag: "619c1f5b-59c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 809
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/themes/konstruktic/assets/js/libs/owl.carousel.js?ver=2.2.1
63.250.43.1200 OK 19 kB URL HTTP/2 mxcloud.services/wp-content/themes/konstruktic/assets/js/libs/owl.carousel.js?ver=2.2.1
IP 63.250.43.1:0
Hash 588df9c7ad24c6e10733656651d7b7ba
171994065e4d0a862b21e3190288ea02ea99a2c4
52eacc4bfb3c91b9c7f9405b7354549dff9ad326ef8108f4cc061cd1c0a25d4a
GET /wp-content/themes/konstruktic/assets/js/libs/owl.carousel.js?ver=2.2.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 23 Apr 2021 18:46:59 GMT
etag: "60831623-1952f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 19301
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
63.250.43.1200 OK 5.0 kB URL HTTP/2 mxcloud.services/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 63.250.43.1:0
File type ASCII text, with very long lines (15660)
Hash 1b982d290af16dac5885f21a198aaa66
f847ca85d23c2f240938bbde0135f3de97925759
0b6e238cc0728a0bace390dfff472ff8bb5a5fd4714bcfcdac7c28621d67b8dc
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Tue, 24 May 2022 22:51:45 GMT
etag: "628d6181-48b9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 5004
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/konstruktic-core/assets/css/magnific-popup.css?ver=6.1.1
63.250.43.1200 OK 1.8 kB URL HTTP/2 mxcloud.services/wp-content/plugins/konstruktic-core/assets/css/magnific-popup.css?ver=6.1.1
IP 63.250.43.1:0
Hash 441f6a5665c5f3d3ecc564b6deea4ea2
cfd831e798d2ef418d5ffbba0777d16eef07895f
3939c870b95c5437418e7760dcacd50774acd0220579eb0044ee22bdd79f068d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/konstruktic-core/assets/css/magnific-popup.css?ver=6.1.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Mon, 22 Nov 2021 22:53:15 GMT
etag: "619c1f5b-1b8e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 1844
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/themes/konstruktic/assets/js/theme.js?ver=1.0
63.250.43.1200 OK 3.8 kB URL HTTP/2 mxcloud.services/wp-content/themes/konstruktic/assets/js/theme.js?ver=1.0
IP 63.250.43.1:0
File type ASCII text, with very long lines (564)
Hash 5eacc83f464ad5dc9a772a952d84bc29
eed11d1f18648531e3262953589e7c31fb1160ea
c5cbfec218b416d0fbdbd5bb03c6ff858c13edf0f7c6984774c7e6b28be219ef
GET /wp-content/themes/konstruktic/assets/js/theme.js?ver=1.0 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 23 Apr 2021 18:46:59 GMT
etag: "60831623-4ea7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 3831
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-includes/js/underscore.min.js?ver=1.13.4
63.250.43.1200 OK 7.3 kB URL HTTP/2 mxcloud.services/wp-includes/js/underscore.min.js?ver=1.13.4
IP 63.250.43.1:0
File type ASCII text, with very long lines (18798)
Hash 3f92fc0fb188799b432341421df6cfde
09041f63af89e1164a53dec66eb7b2ac1dc58ba6
6b09e750d7ecaac14315f7c7e09b6de17f8d1f790b4acdc094b74832402aee31
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Wed, 02 Nov 2022 10:52:22 GMT
etag: "63624be6-4991"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 7311
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/themes/konstruktic/assets/js/sticky-layout.js?ver=6.1.1
63.250.43.1200 OK 1.8 kB URL HTTP/2 mxcloud.services/wp-content/themes/konstruktic/assets/js/sticky-layout.js?ver=6.1.1
IP 63.250.43.1:0
File type ASCII text, with very long lines (4515)
Hash 62364b86a2c6a57b83d89fa1dd6a12f5
cbdd7a294a2fbe58e20b7b2d49b1257d45002119
f3572ed692bb31d5120ef01fdfdf894922f1ec4fe45860479ce6a9db5356ed1b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/konstruktic/assets/js/sticky-layout.js?ver=6.1.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 23 Apr 2021 18:46:59 GMT
etag: "60831623-11ce"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 1840
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/libs/fullpage.min.js?ver=1.15.1
63.250.43.1200 OK 12 kB URL HTTP/2 mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/libs/fullpage.min.js?ver=1.15.1
IP 63.250.43.1:0
File type ASCII text, with very long lines (35075)
Hash 56bcbe854b502b3a0fc41f25a9da665a
bbd267bdd419b9f7a67b784b72807e87eea4ec80
f6261be59649631e720a543b669765e32f0bab88269d5bfb4454a8bd84a7a478
GET /wp-content/plugins/konstruktic-core/assets/js/libs/fullpage.min.js?ver=1.15.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Mon, 22 Nov 2021 22:53:15 GMT
etag: "619c1f5b-8a59"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 12398
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/libs/jquery.smartmenus.min.js?ver=1.15.1
63.250.43.1200 OK 7.1 kB URL HTTP/2 mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/libs/jquery.smartmenus.min.js?ver=1.15.1
IP 63.250.43.1:0
File type ASCII text, with very long lines (24459)
Hash b02637cacabfd8bfd7d4faa1faa929f1
a18ced6b263832fc16b6dd87b0399225c76a5cd6
7dda518a67e970ac9b10cd6528e3ba6ce153dc769a50f6017234bda28c645e13
GET /wp-content/plugins/konstruktic-core/assets/js/libs/jquery.smartmenus.min.js?ver=1.15.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Mon, 22 Nov 2021 22:53:15 GMT
etag: "619c1f5b-5fe4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 7052
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/libs/jquery-parallax.js?ver=1.15.1
63.250.43.1200 OK 200 B URL HTTP/2 mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/libs/jquery-parallax.js?ver=1.15.1
IP 63.250.43.1:0
Hash 08dffd483bb8a69e26dc4977f8fbabe3
55d7831f5ba3d278e6cae0ebedcdd4d39b3df645
a9d0fd8d598e61373d400f589d51e91d1f2731763dc24babd4a44f849d183405
GET /wp-content/plugins/konstruktic-core/assets/js/libs/jquery-parallax.js?ver=1.15.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Mon, 22 Nov 2021 22:53:15 GMT
etag: "619c1f5b-145"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 200
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-includes/js/imagesloaded.min.js?ver=4.1.4
63.250.43.1200 OK 1.8 kB URL HTTP/2 mxcloud.services/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 63.250.43.1:0
File type ASCII text, with very long lines (5477)
Hash 951ae46ca55ec7b0e401e2074bdf8b54
64bbbdc28a351b26cab9c230e134ca8eb4d4f83e
fd5d4c623e9d68551114b2a1303584b6792e592e864d4416145904fe8b9edd91
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 11 Mar 2021 09:49:12 GMT
etag: "6049e798-15fd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 1834
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.3.4
63.250.43.1200 OK 2.4 kB URL HTTP/2 mxcloud.services/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.3.4
IP 63.250.43.1:0
File type ASCII text, with very long lines (5419)
Hash 5f8d0eb7f6eb0c3249fb1115a668de10
bffc43d8808bb9c15c600fbf1c0532c1825352d2
a0f4c62bed870b15dd9c36501f726a57db02742edad606db753e7a55d175e8b6
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.3.4 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 23 Jul 2021 17:02:11 GMT
etag: "60faf613-1556"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 2441
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.4.6
63.250.43.1200 OK 4.5 kB URL HTTP/2 mxcloud.services/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.4.6
IP 63.250.43.1:0
File type ASCII text, with very long lines (13963)
Hash 95088f86574ef00361bac00d42f872f6
22429496122b2b23ba6e2ed36e022d4d1df46d15
63557624017d894694f8500fdad2a9fb0dfb4e069f3cacb54dfbcc23fe19bcc8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.4.6 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:29:21 GMT
etag: "61717941-36b2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 4542
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.3.4
63.250.43.1200 OK 16 kB URL HTTP/2 mxcloud.services/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.3.4
IP 63.250.43.1:0
File type Unicode text, UTF-8 text, with very long lines (58848)
Hash fb738d15ca12ecc054ba2dcd560eecfa
559d5e0867672723aea74b15d799456caa61f42b
6f7a370217fd95e8818e39d2d910b5f4c563c7db9adf665938575d99d4b4a07f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.3.4 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 23 Jul 2021 17:02:11 GMT
etag: "60faf613-e60d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 16185
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/uploads/2021/05/Managed-IT.png
63.250.43.1200 OK 37 kB URL HTTP/2 mxcloud.services/wp-content/uploads/2021/05/Managed-IT.png
IP 63.250.43.1:0
File type PNG image data, 500 x 500, 8-bit/color RGBA, interlaced\012- data
Hash 58363743396898ddb21067406548db0c
eda197f0d25b96b88003f194c69c7ca956b63012
d8b5722d2548ba28788228f130286e7fb0ae9628bfdf18f63c4acb15ba3591b0
GET /wp-content/uploads/2021/05/Managed-IT.png HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 28 May 2021 07:51:08 GMT
etag: "60b0a0ec-9196"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: image/png
content-length: 37270
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/uploads/2021/05/Cloud-IT.png
63.250.43.1200 OK 32 kB URL HTTP/2 mxcloud.services/wp-content/uploads/2021/05/Cloud-IT.png
IP 63.250.43.1:0
File type PNG image data, 500 x 500, 8-bit/color RGBA, interlaced\012- data
Hash 6b08260c492545d9fa73529369aeaa5c
bf226ddade1d2a40fd1c3c8d815cb7040c8b0b32
4c0747fc32101bd0cd1ff4915e1e27dfece5704d6d681247323d6d8ea42726e4
GET /wp-content/uploads/2021/05/Cloud-IT.png HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 28 May 2021 07:51:26 GMT
etag: "60b0a0fe-7e3e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: image/png
content-length: 32318
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-includes/js/wp-util.min.js?ver=6.1.1
63.250.43.1200 OK 756 B URL HTTP/2 mxcloud.services/wp-includes/js/wp-util.min.js?ver=6.1.1
IP 63.250.43.1:0
File type ASCII text, with very long lines (1391)
Hash 838aa5f64f258023c2f4ced3125cc12e
0f9ba4eee7038506d01a6e741b16324ffb347fda
8212000a2ae7888dec134e6a079a16c19d71f6bcd0924384abb16027325ed218
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-util.min.js?ver=6.1.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Wed, 02 Nov 2022 10:52:22 GMT
etag: "63624be6-592"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 756
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/revslider/public/assets/fonts/font-awesome/css/font-awesome.css
63.250.43.1200 OK 7.6 kB URL HTTP/2 mxcloud.services/wp-content/plugins/revslider/public/assets/fonts/font-awesome/css/font-awesome.css
IP 63.250.43.1:0
File type ASCII text, with very long lines (372)
Hash 030960e438ffdb1a9e41523429edb61c
8e7dc814141cff1e536f6fdd26610a376e3fc0a6
bef6863506d46933af7e163bec383139ed0c251c4537cd9e9e105366798d95f5
GET /wp-content/plugins/revslider/public/assets/fonts/font-awesome/css/font-awesome.css HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 23 Apr 2021 18:48:23 GMT
etag: "60831677-a250"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 7609
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/libs/jquery.magnific-popup.min.js?ver=6.1.1
63.250.43.1200 OK 7.3 kB URL HTTP/2 mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/libs/jquery.magnific-popup.min.js?ver=6.1.1
IP 63.250.43.1:0
File type ASCII text, with very long lines (20087)
Hash efa6db60af1529649bd3b95c4220e9ba
4b6b8cd07ee784e67c7702c147e0c80e0bb3bd90
5723d10c2697c434b25b904f2fcec179ad231ccaebc4c77daa7732c7949a1e99
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/konstruktic-core/assets/js/libs/jquery.magnific-popup.min.js?ver=6.1.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Mon, 22 Nov 2021 22:53:15 GMT
etag: "619c1f5b-4ef8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 7346
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.4.6
63.250.43.1200 OK 2.6 kB URL HTTP/2 mxcloud.services/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.4.6
IP 63.250.43.1:0
File type ASCII text, with very long lines (10019)
Hash 0ea81c35141c6a4692506e4fe8d36edb
392c5f96995e66d74c27ed5a42f93169c2f32d18
b7488fd21ad73e483cdcaf42097ea7787ffe0616477e29a537f53f6064e321ab
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.4.6 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:29:20 GMT
etag: "61717940-4824"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 2592
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
63.250.43.1200 OK 7.1 kB URL HTTP/2 mxcloud.services/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 63.250.43.1:0
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 4e91f3bde34bcef7ac5a2e1553ec4b7e
398cc0b8fa5795ad41a1490b42b974621e5c3529
8ad8783c45440f481056ff5d7b9cad3e3d52bb043b9ec40260daa62feec0ea18
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Wed, 02 Nov 2022 10:52:23 GMT
etag: "63624be7-53c0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 7098
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
63.250.43.1200 OK 3.0 kB URL HTTP/2 mxcloud.services/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 63.250.43.1:0
File type ASCII text, with very long lines (12198), with no line terminators
Hash 4a8bd9ec5e8683ca461354b56882d3e2
993bc0c343abdd5e5f555b8ade72320ae7f59502
97cb584c6d8b9e884e58afdfe9aa8204940cb39047f2bf84d19b96db01ee8de5
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:29:20 GMT
etag: "61717940-2fa6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 2995
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1
63.250.43.1200 OK 3.5 kB URL HTTP/2 mxcloud.services/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1
IP 63.250.43.1:0
File type ASCII text, with very long lines (10725)
Hash 7cfd02f91cb9e6033a4c4f712d90e6c7
b7da7a7aac93f699cb245b50b0c4449cad5036f2
397327e595ffa0aadde96cdac849edd1db5ef2f5a956f5e33876ce70f4d1ac26
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:29:20 GMT
etag: "61717940-2a6f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 3510
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/elementor/frontend.js?ver=6.1.1
63.250.43.1200 OK 7.6 kB URL HTTP/2 mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/elementor/frontend.js?ver=6.1.1
IP 63.250.43.1:0
File type ASCII text, with very long lines (31960)
Hash 2a6beded02df3b7a058968d0140e26c9
2190935079d3e8c86b9c3ae8008c1c04099f36e6
366624a4d5d349f810205f991759763ae6d9b88f9de643d46c12d7f4400cf0dc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/konstruktic-core/assets/js/elementor/frontend.js?ver=6.1.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Mon, 22 Nov 2021 22:53:15 GMT
etag: "619c1f5b-997e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 7624
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.4.6
63.250.43.1200 OK 11 kB URL HTTP/2 mxcloud.services/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.4.6
IP 63.250.43.1:0
File type ASCII text, with very long lines (36618)
Hash 65917abd4d3886bc1869ca0c440ed146
eaef73d3d6ebec232b2fef7dfec351b4e792bc3d
819c8fd158d61e19f01a86a3ac71c7521c3d2d5f411ad40306be96934eafe23b
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.4.6 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:29:21 GMT
etag: "61717941-8f31"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 10626
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.4.6
63.250.43.1200 OK 1.1 kB URL HTTP/2 mxcloud.services/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.4.6
IP 63.250.43.1:0
File type ASCII text, with very long lines (2577)
Hash 71a6972e79bfdcc72ffc068e6e845a23
0e37b7f3c6252f6701998fa0e2e1b555b4804a97
dc7dbf2f94f1c49a262b4be428f54349805cfa2841806bc8d691fda13b82e90f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.4.6 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:29:21 GMT
etag: "61717941-a12"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 1099
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.4.6
63.250.43.1200 OK 9.1 kB URL HTTP/2 mxcloud.services/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.4.6
IP 63.250.43.1:0
File type ASCII text, with very long lines (32234)
Hash 0a6d6a227a82c5572c2bd0c1ec42f666
057a92661f81bcde830ce7ef6adf7d7de311c584
bba49a6db0e963faf964d72b592c82b2c73387752ebd0826ed696dc405b21c94
GET /wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.4.6 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:29:21 GMT
etag: "61717941-7e11"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 9068
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/jet-tabs/assets/js/jet-tabs-frontend.min.js?ver=2.1.13
63.250.43.1200 OK 4.1 kB URL HTTP/2 mxcloud.services/wp-content/plugins/jet-tabs/assets/js/jet-tabs-frontend.min.js?ver=2.1.13
IP 63.250.43.1:0
File type ASCII text, with very long lines (14862), with no line terminators
Hash 985fec1cf5918e3c74c8185056f79c8a
71a23aacd7bd3123e93919a5105301081afd265c
c17611f5ddb6e694a5264dcec9659d4f0fe47b84737aa2f1c9e06f94c3c7a0be
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/jet-tabs/assets/js/jet-tabs-frontend.min.js?ver=2.1.13 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 23 Jul 2021 17:01:39 GMT
etag: "60faf5f3-3a0e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 4144
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.4.6
63.250.43.1200 OK 2.2 kB URL HTTP/2 mxcloud.services/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.4.6
IP 63.250.43.1:0
File type ASCII text, with very long lines (4840)
Hash bdbb0e8e5a11be81a4a88ff15bcd38a6
11a92d1380027ce6ea61788f7d5a38f46558362f
3959ffac54d43ece291a045eff66175dbd08d1043a1266985b627d644eb9564a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.4.6 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:29:21 GMT
etag: "61717941-130f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 2158
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.3.4
63.250.43.1200 OK 1.9 kB URL HTTP/2 mxcloud.services/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.3.4
IP 63.250.43.1:0
File type ASCII text, with very long lines (6595), with no line terminators
Hash c8ebb5b680f4fa05c2502a56875e03f7
96542e309834bb6dfddaf3d1efce6d75ceff5e18
76a0021ccb778baeadd50f182e2c4055a36527e1fc70341f82136a2e60eeb442
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.3.4 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 23 Jul 2021 17:02:11 GMT
etag: "60faf613-19c3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 1895
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/uploads/2021/05/Sheild-IT.png
63.250.43.1200 OK 48 kB URL HTTP/2 mxcloud.services/wp-content/uploads/2021/05/Sheild-IT.png
IP 63.250.43.1:0
File type PNG image data, 500 x 500, 8-bit/color RGBA, interlaced\012- data
Hash 44060b6689b54b8d24b8204f082acf31
f6cdf4b8608ec0e10ca9c42495f558535e82b998
35d789c8c51be5f34644f266452763328b672c21e4b1425d38d247edf388cf55
GET /wp-content/uploads/2021/05/Sheild-IT.png HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 28 May 2021 07:51:38 GMT
etag: "60b0a10a-bbea"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: image/png
content-length: 48106
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/jet-elements/assets/js/jet-elements.min.js?ver=2.5.8
63.250.43.1200 OK 22 kB URL HTTP/2 mxcloud.services/wp-content/plugins/jet-elements/assets/js/jet-elements.min.js?ver=2.5.8
IP 63.250.43.1:0
File type ASCII text, with very long lines (64960), with no line terminators
Hash 9e8dbb308d49888fea67c904ddbd05fd
8e5a45d5c6e2a302e51dbb4a6c51cf1e7feb3f30
79256530526800162bfff68462e333231000d439cbcad2e396226c922c4b0a70
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/jet-elements/assets/js/jet-elements.min.js?ver=2.5.8 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 23 Jul 2021 17:01:24 GMT
etag: "60faf5e4-fdc0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 21685
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/libs/TweenMax.min.js?ver=1.15.1
63.250.43.1200 OK 38 kB URL HTTP/2 mxcloud.services/wp-content/plugins/konstruktic-core/assets/js/libs/TweenMax.min.js?ver=1.15.1
IP 63.250.43.1:0
File type ASCII text, with very long lines (32059)
Hash 1c0b7229c87f490a2962c2a945b61fd5
4bf1c84863f7eefc8668bda3346c5c97067591ba
cce15b6b69e5fb1591bedaf253422bef73f3d6e7bd923b21d3ca9c338e496e2a
GET /wp-content/plugins/konstruktic-core/assets/js/libs/TweenMax.min.js?ver=1.15.1 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Mon, 22 Nov 2021 22:53:15 GMT
etag: "619c1f5b-1c276"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24961
accept-ranges: bytes
x-cache: HIT
content-length: 38525
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/uploads/2021/05/Build-IT.png
63.250.43.1200 OK 36 kB URL HTTP/2 mxcloud.services/wp-content/uploads/2021/05/Build-IT.png
IP 63.250.43.1:0
File type PNG image data, 500 x 500, 8-bit/color RGBA, interlaced\012- data
Hash a1728aaa5c24e9f1de810212a74f7efe
e527ba5cc8327f5e02329f3940b9c6dd9fd3a462
e393885f6fb7f5dae006b89325789ca04e9e37f641ede0884079d8a9c7334dbf
GET /wp-content/uploads/2021/05/Build-IT.png HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 28 May 2021 07:51:51 GMT
etag: "60b0a117-8d45"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: image/png
content-length: 36165
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
63.250.43.1200 OK 36 kB URL HTTP/2 mxcloud.services/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP 63.250.43.1:0
File type ASCII text, with very long lines (65280)
Hash a46e6555153bd32db46b588f92468fec
00f81e8c63664516d3fae2ad5585688b964b6b5d
ced01af673936a3d52321dfecb776d9da4c53cc28ffedc691ab7a24892f720e5
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 21 Oct 2021 14:29:21 GMT
etag: "61717941-21f91"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 35516
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.3.4
63.250.43.1200 OK 39 kB URL HTTP/2 mxcloud.services/wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.3.4
IP 63.250.43.1:0
File type ASCII text, with very long lines (65493)
Hash b1bc4edf9337c3976c969278dff37793
a0d19d22c119d60cdc9dbe10fd0ee2f0d5700152
0488e992cb2cb5e33dfad2b2b91975b367c317e4b8dd7465e465a0a07a4b39f2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.3.4 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Fri, 23 Jul 2021 17:02:11 GMT
etag: "60faf613-280c7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
content-length: 38819
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/uploads/2021/04/mx-cloud-services-IT-Services.jpg
63.250.43.1200 OK 213 kB URL HTTP/2 mxcloud.services/wp-content/uploads/2021/04/mx-cloud-services-IT-Services.jpg
IP 63.250.43.1:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1920x1280, components 3\012- data
Size 213 kB (212887 bytes)
Hash dd71b8f77c0d3b3dd5956ee047ec8dd0
6ec177b6dbe0790b2d438c76fee04a1ba8e0b96a
ec64cf2b3cdd6df801dd0725829918ad0d06db3abd081fc7516a997369b62199
GET /wp-content/uploads/2021/04/mx-cloud-services-IT-Services.jpg HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 29 Apr 2021 19:32:02 GMT
etag: "608b09b2-33f97"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: image/jpeg
content-length: 212887
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d547e6cc07ecb62b49cfb14f223d3b87
7f316e0778cf7e132cf376b92d1f9860e06894f5
4ceb4872fc5aa21ce6cdba296ce83f68d1b46836df05886eb76e0607358ba42c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:10:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/hind/v16/5aU69_a8oxmIdGl4BA.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/hind/v16/5aU69_a8oxmIdGl4BA.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 16216, version 1.0\012- data
Hash 4c5bc71b3cf6f2584725c0bb3e25d391
f051f482061dc48d09c328c45459dd04db5b5547
aca5dec430a7470ff1d8a16f9e7bb3ca30f2ff58f3bd60432cf1dddfa30c9d71
GET /s/hind/v16/5aU69_a8oxmIdGl4BA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mxcloud.services
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16216
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 15 Jan 2023 02:22:39 GMT
expires: Mon, 15 Jan 2024 02:22:39 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 26 Apr 2022 15:45:50 GMT
content-type: font/woff2
age: 276478
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d547e6cc07ecb62b49cfb14f223d3b87
7f316e0778cf7e132cf376b92d1f9860e06894f5
4ceb4872fc5aa21ce6cdba296ce83f68d1b46836df05886eb76e0607358ba42c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:10:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7db9f11a1c6ab0117ed3dd1d36e3aecc
61a4de77803ce4ad730c21dd88b5b55a196f26d6
b52c568528f72c5653bad85a1f72fb22f43dcb5d96ad234ab2772a7f95ca6cc2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B52C568528F72C5653BAD85A1F72FB22F43DCB5D96AD234AB2772A7F95CA6CC2"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9663
Expires: Wed, 18 Jan 2023 09:51:40 GMT
Date: Wed, 18 Jan 2023 07:10:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7db9f11a1c6ab0117ed3dd1d36e3aecc
61a4de77803ce4ad730c21dd88b5b55a196f26d6
b52c568528f72c5653bad85a1f72fb22f43dcb5d96ad234ab2772a7f95ca6cc2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B52C568528F72C5653BAD85A1F72FB22F43DCB5D96AD234AB2772A7F95CA6CC2"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9663
Expires: Wed, 18 Jan 2023 09:51:40 GMT
Date: Wed, 18 Jan 2023 07:10:37 GMT
Connection: keep-alive
mxcloud.services/wp-content/uploads/2021/04/mx-cloud-services-Guard-IT.jpg
63.250.43.1200 OK 198 kB URL HTTP/2 mxcloud.services/wp-content/uploads/2021/04/mx-cloud-services-Guard-IT.jpg
IP 63.250.43.1:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1920x1280, components 3\012- data
Size 198 kB (198346 bytes)
Hash e496f1cc0c73ff7548ee817e5d402dde
47ecbba8f83971cd51445a81b7c79a2a6cc47937
f9513a48d736afeab7071a97cb6a637e7a8e772c11c1f432b3bed3446c5effd4
GET /wp-content/uploads/2021/04/mx-cloud-services-Guard-IT.jpg HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 29 Apr 2021 19:23:58 GMT
etag: "608b07ce-306ca"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: image/jpeg
content-length: 198346
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7db9f11a1c6ab0117ed3dd1d36e3aecc
61a4de77803ce4ad730c21dd88b5b55a196f26d6
b52c568528f72c5653bad85a1f72fb22f43dcb5d96ad234ab2772a7f95ca6cc2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B52C568528F72C5653BAD85A1F72FB22F43DCB5D96AD234AB2772A7F95CA6CC2"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9663
Expires: Wed, 18 Jan 2023 09:51:40 GMT
Date: Wed, 18 Jan 2023 07:10:37 GMT
Connection: keep-alive
mxcloud.services/wp-content/uploads/2021/04/mx-cloud-services-Build-IT.jpg
63.250.43.1200 OK 198 kB URL HTTP/2 mxcloud.services/wp-content/uploads/2021/04/mx-cloud-services-Build-IT.jpg
IP 63.250.43.1:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1920x1280, components 3\012- data
Size 198 kB (197654 bytes)
Hash 169745922ae02d030912822a7c5f31bb
c17c21fd0060ca12a79b693f65d478ba46e07aae
9c71336cf623af849035390f62caeaca50be49d02df487c2dff9fb9e41b5865b
GET /wp-content/uploads/2021/04/mx-cloud-services-Build-IT.jpg HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 29 Apr 2021 17:46:06 GMT
etag: "608af0de-30416"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: image/jpeg
content-length: 197654
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd03bc60-bcfc-42c6-a1a0-0631c979fdd4.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd03bc60-bcfc-42c6-a1a0-0631c979fdd4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 26fa7bd40b5c3a3b5a6f95e7fca843b9
d8064f74f1e40bf6be4ea8ab4e319db22026c462
3e7744acf3e7ace6931c28cb5a5d3d7a77d9b97855b864c5c774368f2d0719c1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd03bc60-bcfc-42c6-a1a0-0631c979fdd4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7361
x-amzn-requestid: 54e3621a-ec24-4d56-85bf-84239fa7811e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e23ZvGtnIAMFivg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5d2a4-7ce0e7924c03aeaa3ea684c3;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 22:41:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hamm4_4ud3QWXK2EeTcYUSN7ot6m-d-1z_NN29tSFYP25Itmz25jaA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:18:31 GMT
age: 31926
etag: "d8064f74f1e40bf6be4ea8ab4e319db22026c462"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe52164e3-afec-433e-87ab-adb17222f1cd.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe52164e3-afec-433e-87ab-adb17222f1cd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8656702f08344d3a4658bc43a9074a1f
fba424e1d09cbdc839ca320458b51715dafbbccc
0b0ac963c377b07f843637348f3d7c41d2aca89540ab8c2b80ef5fbbf466fee8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe52164e3-afec-433e-87ab-adb17222f1cd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13848
x-amzn-requestid: 160148de-85b1-4456-a580-e079f391f979
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A0gErTIAMF_eQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714e9-52efcd642bd209373b16cf72;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ARZobaKhEsHSEJdma3SXwCn_IKwRJaDbgjHfq_p_0HypKFWoqJIOJw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 21:52:59 GMT
age: 33458
etag: "fba424e1d09cbdc839ca320458b51715dafbbccc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mxcloud.services/wp-content/uploads/2021/04/mx-cloud-services-Cloud-Computing-.jpg
63.250.43.1200 OK 258 kB URL HTTP/2 mxcloud.services/wp-content/uploads/2021/04/mx-cloud-services-Cloud-Computing-.jpg
IP 63.250.43.1:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1920x1280, components 3\012- data
Size 258 kB (258440 bytes)
Hash 4c90b1a7d2e972c3f7740cb933fd53bc
4b5db4fdf56a6fe721382f7d04a56c0b66ad4bfb
6ace5d1fb38ad47bdd4c63bbf08ab9b7db74dbb8645874be8273017e1e1af687
GET /wp-content/uploads/2021/04/mx-cloud-services-Cloud-Computing-.jpg HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 29 Apr 2021 19:38:57 GMT
etag: "608b0b51-3f188"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: image/jpeg
content-length: 258440
x-cacheable: YES
age: 24960
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F670ced8b-7c3c-440b-8ef8-ce104b85116d.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F670ced8b-7c3c-440b-8ef8-ce104b85116d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 318731dc24b5b47b96998e30e5ce27aa
86729555b4cf8d1f460ff74981b8b5a54a4bf9ea
acb7a93f815812cab50385796f6bcd7e16e96125422fb1415388a3b94767895e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F670ced8b-7c3c-440b-8ef8-ce104b85116d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10860
x-amzn-requestid: 808ed5a6-f0c3-40d9-a45f-aba1ffdf4ad9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0LSuEZcoAMFsyA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4bf44-52c2a1756df73c8c1b9e041a;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:06:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CvycM3_x2xA1YXgbYW2mKBBEiREecv23q-sPHKvyWAQVv3yiREynIA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 04:08:44 GMT
age: 10913
etag: "86729555b4cf8d1f460ff74981b8b5a54a4bf9ea"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F053123e4-9914-4404-b1e9-cb5f3e38b7a2.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F053123e4-9914-4404-b1e9-cb5f3e38b7a2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5caa7df39f82600c651046957ab6b62d
d6d6fbd676b74e487ee06248c48da87e178223e7
df3090d2e7c7c6e970fe498609d74c63e04aa80d55a26c956d1e3be5bebfafbc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F053123e4-9914-4404-b1e9-cb5f3e38b7a2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11781
x-amzn-requestid: 522a0799-2025-43cd-9d7e-08cdaa5acf11
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0vQMGZRIAMFfjg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4f8cd-697804fd5b8b3cff7d2d5a7e;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 07:12:13 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ZcErvrIx9oHVckDiZ1etMYXpi2eeCZ7Z1AmcW8ZNui8IsPLFsPhpTw==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 07:30:15 GMT
age: 85222
etag: "d6d6fbd676b74e487ee06248c48da87e178223e7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.gstatic.com/s/hind/v16/5aU19_a8oxmIfNJdERySjQ.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/hind/v16/5aU19_a8oxmIfNJdERySjQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 16268, version 1.0\012- data
Hash 376d4202f0309c9a844661c230736ccb
10731308876ef0b8b9763815352d6b18020026e0
5aed4a8f357d7edc1ac50eb4de07867c83e69a10a1711e10053bddce99294b7e
GET /s/hind/v16/5aU19_a8oxmIfNJdERySjQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mxcloud.services
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16268
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 15 Jan 2023 14:05:47 GMT
expires: Mon, 15 Jan 2024 14:05:47 GMT
cache-control: public, max-age=31536000
age: 234290
last-modified: Tue, 26 Apr 2022 15:48:34 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a78cd6d-1eab-47b0-b5c7-f2d1f91acc3a.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a78cd6d-1eab-47b0-b5c7-f2d1f91acc3a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3f112ea3865f38cbbcc8400b58320fa0
dacc584338546bf60f26b2a0bec48e9b584640dc
7feb3c0691f40354701d1cb0bf3c834d1eeead4a7297fac3afc0f4a7ca2c94cb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a78cd6d-1eab-47b0-b5c7-f2d1f91acc3a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8853
x-amzn-requestid: ff98ec33-294a-4a13-b064-3cd4744cd2b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0LLKHPnIAMF0vQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4bf14-233cbc6407c6b138144d7abb;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:05:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QZZaGtGl3Z-4G4DxO4R_gjfDdQVgJc30Ur9EyLAvbGFhv4LfaXziPQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:21:58 GMT
etag: "dacc584338546bf60f26b2a0bec48e9b584640dc"
content-type: image/jpeg
age: 31719
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F873f34de-bef8-46f1-9dc4-d277bf6c1c65.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F873f34de-bef8-46f1-9dc4-d277bf6c1c65.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f491398239265c63ac162d47ab006ce6
c95e1bba76e910100e86f8abf789e5b5c1a2baa6
cdada2d9608e9d3f8e03cf9ced211550b6f7c8f7e0b5ee027a96f45af38523f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F873f34de-bef8-46f1-9dc4-d277bf6c1c65.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7741
x-amzn-requestid: 9af04340-5be9-42b0-96be-0264661c6dae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A6LEMtoAMFW_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c7150d-2348c8846249175e74efc226;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:37:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _7YOm38n8-T2LAL-cRA7R8KvEUBhXEM0dOXjOZ6HyPRNfMu6Z0Fh3g==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:10:03 GMT
age: 32434
etag: "c95e1bba76e910100e86f8abf789e5b5c1a2baa6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
63.250.43.1200 OK 13 kB URL HTTP/2 mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
IP 63.250.43.1:0
File type Web Open Font Format (Version 2), TrueType, length 13276, version 331.-31261\012- data
Hash f0f8230116992e521526097a28f54066
0447c6b10bbf73f97b23dcfd6e6a48510822cb6e
8afc6e5e842baab16010c2ce6fcf48ec4ded8e1579a37c1f1bc027e120d04951
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.4.6
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Thu, 21 Oct 2021 14:29:20 GMT
etag: "61717940-33dc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: https://mxcloud.services
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: font/woff2
content-length: 13276
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/uploads/2021/04/Gilmer-Bold.ttf
63.250.43.1200 OK 48 kB URL HTTP/2 mxcloud.services/wp-content/uploads/2021/04/Gilmer-Bold.ttf
IP 63.250.43.1:0
File type TrueType Font data, 18 tables, 1st "FFTM", 26 names, Macintosh\012- data
Hash 8fe12715bc541c7f5516859cae37c0e6
9818c079ad15cfba5c0d9969ba9c9b2e9e030cc8
040611c124e93fd94c43a7825fe40e11d95fc19b25ef34c4a46ecc5bcba44348
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2021/04/Gilmer-Bold.ttf HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxcloud.services/wp-content/uploads/elementor/css/post-2205.css?ver=1634827942
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Wed, 28 Apr 2021 02:51:54 GMT
etag: "6088cdca-18c70"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: https://mxcloud.services
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/x-font-ttf
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
content-length: 47685
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/themes/konstruktic/assets/fonts/opal-icon.woff2
63.250.43.1200 OK 14 kB URL HTTP/2 mxcloud.services/wp-content/themes/konstruktic/assets/fonts/opal-icon.woff2
IP 63.250.43.1:0
File type Web Open Font Format (Version 2), TrueType, length 14352, version 1.0\012- data
Hash 34678ee58dba1bb1421bb4bace8dbc2b
c8676bd54c14091bab7925d400ba76e7a23f4306
685377116aef147d22d2da071011be3ccf1f41b78f1db579869307fd0895d64f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/konstruktic/assets/fonts/opal-icon.woff2 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://mxcloud.services/wp-content/themes/konstruktic/assets/css/opal-icons.css?ver=6.1.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Fri, 23 Apr 2021 18:46:59 GMT
etag: "60831623-3810"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: https://mxcloud.services
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: font/woff2
content-length: 14352
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/themes/konstruktic/assets/fonts/GilmerBold.woff
63.250.43.1200 OK 32 kB URL HTTP/2 mxcloud.services/wp-content/themes/konstruktic/assets/fonts/GilmerBold.woff
IP 63.250.43.1:0
File type Web Open Font Format, TrueType, length 32324, version 0.0\012- data
Hash ace9521157a623762d3ccd82c0c766eb
09705c55e5562574a3cade4fb951483ef14e552f
1fe185b0a0aaa037adaaf1cfa42f13599690335cbc21102d3768c823ff624e8a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/konstruktic/assets/fonts/GilmerBold.woff HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://mxcloud.services/wp-content/themes/konstruktic/style.css?ver=6.1.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Fri, 23 Apr 2021 18:46:59 GMT
etag: "60831623-7e44"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: https://mxcloud.services
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: font/woff
content-length: 32324
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/uploads/2021/04/logo-animation-type-2-.json
63.250.43.1200 OK 7.3 kB URL HTTP/2 mxcloud.services/wp-content/uploads/2021/04/logo-animation-type-2-.json
IP 63.250.43.1:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash a22db16eca7737bc7ebf4413c55ad3ea
77b426aa7866f07f535db91c5fa4170b027ecdcb
a075800ba83f32066cb95dfaf1066f41814e026e059507037a63ca2ade68729f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2021/04/logo-animation-type-2-.json HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Tue, 11 May 2021 11:23:59 GMT
etag: "609a694f-14577"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public
referrer-policy: strict-origin-when-cross-origin
content-type: application/json
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
content-length: 7300
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/uploads/2021/04/ms-cloud-office.jpg
63.250.43.1200 OK 230 kB URL HTTP/2 mxcloud.services/wp-content/uploads/2021/04/ms-cloud-office.jpg
IP 63.250.43.1:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 240x240, segment length 16, baseline, precision 8, 1920x1280, components 3\012- data
Size 230 kB (229635 bytes)
Hash 09e3ea4e3d1218e554fadc1413b0dc2e
21cffa87440fc7d7c8fc0b040d65a368a42f5403
3436a11031386cebf1d7273c0f12a1e9c5f51a06ec42dc9b091ebbc19dce2ed6
GET /wp-content/uploads/2021/04/ms-cloud-office.jpg HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxcloud.services/wp-content/uploads/elementor/css/post-12.css?ver=1634828163
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Thu, 29 Apr 2021 04:35:36 GMT
etag: "608a3798-38103"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: image/jpeg
content-length: 229635
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/uploads/2021/04/Team-Member-05.jpg
63.250.43.1200 OK 182 kB URL HTTP/2 mxcloud.services/wp-content/uploads/2021/04/Team-Member-05.jpg
IP 63.250.43.1:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=500, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=400], baseline, precision 8, 400x500, components 3\012- data
Size 182 kB (182307 bytes)
Hash 314b8d02172f9cec19e33e036e07bcc0
b1434c3a0af75e1bd140c0e02bbfb6f0855aef1a
1e602b4d0e44d51398a9de18d036decf050ba0f93ef4f23a06242a81b8398aaa
GET /wp-content/uploads/2021/04/Team-Member-05.jpg HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxcloud.services/wp-content/uploads/elementor/css/post-12.css?ver=1634828163
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Thu, 29 Apr 2021 08:36:20 GMT
etag: "608a7004-2c823"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: image/jpeg
content-length: 182307
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/uploads/2021/04/Team-Member-02.jpg
63.250.43.1200 OK 125 kB URL HTTP/2 mxcloud.services/wp-content/uploads/2021/04/Team-Member-02.jpg
IP 63.250.43.1:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 21.0 (Windows), datetime=2020:11:28 15:53:27], baseline, precision 8, 400x500, components 3\012- data
Size 125 kB (124980 bytes)
Hash 62da2928d8379f7e435f67327fcfadf4
8268ce77b89a23a55fdaea63b76dcf0198957a80
56d4de4c94111f8cbeb6d5a8c1d7f51194cc3fd654df67aa92779382cba1101a
GET /wp-content/uploads/2021/04/Team-Member-02.jpg HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxcloud.services/wp-content/uploads/elementor/css/post-12.css?ver=1634828163
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Thu, 29 Apr 2021 08:53:25 GMT
etag: "608a7405-1e834"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: image/jpeg
content-length: 124980
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/uploads/2021/04/Team-Member-03.jpg
63.250.43.1200 OK 127 kB URL HTTP/2 mxcloud.services/wp-content/uploads/2021/04/Team-Member-03.jpg
IP 63.250.43.1:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x500, components 3\012- data
Size 127 kB (126985 bytes)
Hash 7fe9698d5676b39f981d39a1b23b8873
fae6cecfc917d322c933211b7544eadad616f2df
86017d8bdf8a2a7b24c80465dbe8e2b31cca04367ebd795620b32e9d81f0abb3
GET /wp-content/uploads/2021/04/Team-Member-03.jpg HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxcloud.services/wp-content/uploads/elementor/css/post-12.css?ver=1634828163
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Thu, 29 Apr 2021 08:54:29 GMT
etag: "608a7445-1f009"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: image/jpeg
content-length: 126985
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/uploads/2021/04/Team-Member-01.jpg
63.250.43.1200 OK 211 kB URL HTTP/2 mxcloud.services/wp-content/uploads/2021/04/Team-Member-01.jpg
IP 63.250.43.1:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x500, components 3\012- data
Size 211 kB (211083 bytes)
Hash 1eec1ffcccae2d2476b53b6877036a58
9e907a814635ba563d6be7251cbba1fb8825cda1
7c48d2423215c3410b35560be22c50bf25f2bdb7b3e7c7b459d8bdb66f28b8c9
GET /wp-content/uploads/2021/04/Team-Member-01.jpg HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxcloud.services/wp-content/uploads/elementor/css/post-12.css?ver=1634828163
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Thu, 29 Apr 2021 08:54:59 GMT
etag: "608a7463-3388b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: image/jpeg
content-length: 211083
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
63.250.43.1200 OK 78 kB URL HTTP/2 mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP 63.250.43.1:0
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Hash e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Thu, 21 Oct 2021 14:29:20 GMT
etag: "61717940-13174"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: https://mxcloud.services
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: font/woff2
content-length: 78196
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/uploads/2021/04/ms-cloud-officeroom.jpg
63.250.43.1200 OK 185 kB URL HTTP/2 mxcloud.services/wp-content/uploads/2021/04/ms-cloud-officeroom.jpg
IP 63.250.43.1:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1920x1280, components 3\012- data
Size 185 kB (184904 bytes)
Hash b93a0f4ab8b9fd3122eb3091070934a9
c6fe6c5306fb3cbb2f8f098a816113184aa00b71
86180f7db1eb979589dea31e8324896dbd9ee39dab1921d020871a5b87e0fad3
GET /wp-content/uploads/2021/04/ms-cloud-officeroom.jpg HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxcloud.services/wp-content/uploads/elementor/css/post-12.css?ver=1634828163
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Thu, 29 Apr 2021 09:52:23 GMT
etag: "608a81d7-2d248"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: image/jpeg
content-length: 184904
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
63.250.43.1200 OK 77 kB URL HTTP/2 mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP 63.250.43.1:0
File type Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Hash f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://mxcloud.services/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Thu, 21 Oct 2021 14:29:20 GMT
etag: "61717940-12bdc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: https://mxcloud.services
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: font/woff2
content-length: 76764
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/uploads/2021/04/here-we-help-you-1536x864.jpg
63.250.43.1200 OK 90 kB URL HTTP/2 mxcloud.services/wp-content/uploads/2021/04/here-we-help-you-1536x864.jpg
IP 63.250.43.1:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1536x864, components 3\012- data
Hash e25669cc315d8013d19fa043b3a2c78d
f856a6896501c23c3f12f5453e8fe90a2031c77e
6cf2669b480ebad8ca537ef73a80f39d0a0b738ff8dba98b25be31e908864a0b
GET /wp-content/uploads/2021/04/here-we-help-you-1536x864.jpg HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 17 Jan 2023 06:58:34 GMT
content-type: image/jpeg
content-length: 89992
last-modified: Wed, 28 Apr 2021 14:22:06 GMT
etag: "60896f8e-15f88"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 87123
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js?version=5.4.8
63.250.43.1200 OK 6.9 kB URL HTTP/2 mxcloud.services/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js?version=5.4.8
IP 63.250.43.1:0
File type ASCII text, with very long lines (28818), with CRLF line terminators
Hash 4bae534f11358bf3fcb8d01e29a0b074
875654c48d33f88553af52c24cfe5810c010a679
486cd5be866f1c01208071d61d15712ad251940f6b592ab653819658ae871d9a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js?version=5.4.8 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Fri, 23 Apr 2021 18:48:20 GMT
etag: "60831674-718e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
content-length: 6878
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.actions.min.js?version=5.4.8
63.250.43.1200 OK 2.6 kB URL HTTP/2 mxcloud.services/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.actions.min.js?version=5.4.8
IP 63.250.43.1:0
File type ASCII text, with very long lines (8089), with CRLF line terminators
Hash 3beee57c4dde3e8b875c82beb77a7327
609461801b026559ca5787a2336b3aa3ee06e63b
7dfd42c3837c9db1531177fc4c6ca8f5f72d8c93d1f723599b9a950dd56f4977
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.actions.min.js?version=5.4.8 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Fri, 23 Apr 2021 18:48:20 GMT
etag: "60831674-2089"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
content-length: 2572
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.layeranimation.min.js?version=5.4.8
63.250.43.1200 OK 14 kB URL HTTP/2 mxcloud.services/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.layeranimation.min.js?version=5.4.8
IP 63.250.43.1:0
File type ASCII text, with very long lines (55556), with CRLF line terminators
Hash e007731397e9d481f295269a4d095a05
019d4c788790278b811023a9f995da5ae0557cb6
15275b1c5ad06a35899bb8ac2f54443a5465f690a28b9dada652e62699f8a8b3
GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.layeranimation.min.js?version=5.4.8 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Fri, 23 Apr 2021 18:48:20 GMT
etag: "60831674-da01"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
content-length: 14302
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.kenburn.min.js?version=5.4.8
63.250.43.1200 OK 1.6 kB URL HTTP/2 mxcloud.services/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.kenburn.min.js?version=5.4.8
IP 63.250.43.1:0
File type ASCII text, with very long lines (3515), with CRLF line terminators
Hash 6b3cd4d520d390aee1fe3b05956d9e69
60066a09a36237b87bbe5bdfb2480dc19b43d37e
7277571b56ceb5ba1e4a66fb840a941ab5b689c7264f4e4a5caadc148df22787
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.kenburn.min.js?version=5.4.8 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Fri, 23 Apr 2021 18:48:20 GMT
etag: "60831674-eaa"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
content-length: 1560
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.navigation.min.js?version=5.4.8
63.250.43.1200 OK 7.0 kB URL HTTP/2 mxcloud.services/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.navigation.min.js?version=5.4.8
IP 63.250.43.1:0
File type ASCII text, with very long lines (25862), with CRLF line terminators
Hash 9122842266e2b0bc42bd817dfbce915a
a428ffe75f21bf46f450c7e52aee57b6de993caa
81384d2f04b6874b0ceda2fb9f09b945150a28e5b998ff3a4324c58d1fe225a0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.navigation.min.js?version=5.4.8 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Fri, 23 Apr 2021 18:48:20 GMT
etag: "60831674-65f7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
content-length: 7041
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/revslider/public/assets/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
63.250.43.1200 OK 77 kB URL HTTP/2 mxcloud.services/wp-content/plugins/revslider/public/assets/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 63.250.43.1:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /wp-content/plugins/revslider/public/assets/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://mxcloud.services/wp-content/plugins/revslider/public/assets/fonts/font-awesome/css/font-awesome.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Fri, 23 Apr 2021 18:48:23 GMT
etag: "60831677-12d68"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: https://mxcloud.services
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: font/woff2
content-length: 77160
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/uploads/revslider/slide-home7/mx-cloud-services-home-slider-image-02.jpg
63.250.43.1200 OK 255 kB URL HTTP/2 mxcloud.services/wp-content/uploads/revslider/slide-home7/mx-cloud-services-home-slider-image-02.jpg
IP 63.250.43.1:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 240x240, segment length 16, baseline, precision 8, 1920x1277, components 3\012- data
Size 255 kB (254746 bytes)
Hash 912d0bbfc8830c00d589498cf3454fbe
842027b1897c0f13123b0f931a9433cbdc23351c
f7c0462f45aca0d495683bae121e76da3e0bb89243e2ea5d95d3221d8317d6fa
GET /wp-content/uploads/revslider/slide-home7/mx-cloud-services-home-slider-image-02.jpg HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 00:14:35 GMT
last-modified: Thu, 29 Apr 2021 03:32:40 GMT
etag: "608a28d8-3e31a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: image/jpeg
content-length: 254746
x-cacheable: YES
age: 24962
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.13.0
63.250.43.1200 OK 92 kB URL HTTP/2 mxcloud.services/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.13.0
IP 63.250.43.1:0
File type Web Open Font Format (Version 2), TrueType, length 91472, version 1.0\012- data
Hash f4f91f34f5cd97cb1fb1ff9de8cb1473
56eefd5e8875fd3a639a2e4c884f880fd1829525
3368bde807b9dc25e071e9d50a7f698b8788e5b12b7a967dd1efcffb8cc957ab
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.13.0 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://mxcloud.services/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.13.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Thu, 21 Oct 2021 14:29:20 GMT
etag: "61717940-16550"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: https://mxcloud.services
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: font/woff2
content-length: 91472
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/favicon.ico
63.250.43.1204 No Content 0 B URL HTTP/2 mxcloud.services/favicon.ico
IP 63.250.43.1:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Wed, 18 Jan 2023 01:56:06 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-type: image/png
age: 18872
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/revslider/public/assets/assets/loader.gif
63.250.43.1200 OK 2.5 kB URL HTTP/2 mxcloud.services/wp-content/plugins/revslider/public/assets/assets/loader.gif
IP 63.250.43.1:0
File type GIF image data, version 89a, 24 x 24\012- data
Hash 4b3afb84b2b71ef56df09997a350bd04
accdac8a7abeab0e21c49539aad0a973addb28ef
9034d5d34015e4b05d2c1d1a8dc9f6ec9d59bd96d305eb9e24e24e65c591a645
GET /wp-content/plugins/revslider/public/assets/assets/loader.gif HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxcloud.services/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8.3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:05 GMT
last-modified: Fri, 23 Apr 2021 18:48:20 GMT
etag: "60831674-9f1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: image/gif
content-length: 2545
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
mxcloud.services/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
63.250.43.1200 OK 7.5 kB URL HTTP/2 mxcloud.services/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
IP 63.250.43.1:0
File type Web Open Font Format, TrueType, length 7536, version 1.0\012- data
Hash 04eb8fc57f27498e5ae37523e3bfb2c7
d942ae11706c3f7e511e3c49b0e4574d7ad199c4
f7b9c3065e55fa3b9e320093612e7b30dcb14355a44ec461247b495a3e729686
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888 HTTP/1.1
Host: mxcloud.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://mxcloud.services/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 01:56:06 GMT
last-modified: Fri, 23 Apr 2021 18:48:23 GMT
etag: "60831677-1d70"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: https://mxcloud.services
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-type: font/woff
content-length: 7536
x-cacheable: YES
age: 18872
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1983f844-6675-400d-b957-26ce8e636ae7.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1983f844-6675-400d-b957-26ce8e636ae7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 015e1f23253643036d718d5a785be61b
55b5ce93ba3ab53b227aa1fdb60b6062d35ae2f0
78045e55e5e9966b1fddb9e3f734972611ea78e7cb78b92beb2e4adf56f724ed
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1983f844-6675-400d-b957-26ce8e636ae7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8939
x-amzn-requestid: 5fbb2a5d-5731-4fb0-8b95-cc59338862de
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A1nGMvoAMFrQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714f0-14de6c94416a9ced1c284d5b;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xtPNgaK-8fYccAq_D-bA7rVmM2tq5-prvjbnn2yhlOVr_yT9uxYxdg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:10:07 GMT
age: 32437
etag: "55b5ce93ba3ab53b227aa1fdb60b6062d35ae2f0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
unpkg.com/@lottiefiles/lottie-interactivity@latest/dist/lottie-interactivity.min.js
104.16.124.175302 Found 0 B URL HTTP/2 unpkg.com/@lottiefiles/lottie-interactivity@latest/dist/lottie-interactivity.min.js
IP 104.16.124.175:0
GET /@lottiefiles/lottie-interactivity@latest/dist/lottie-interactivity.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 18 Jan 2023 07:10:36 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /@lottiefiles/lottie-interactivity@1.6.1/dist/lottie-interactivity.min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GQ1V40WMX8DH2JZCHN2Y68GV-fra
cf-cache-status: HIT
age: 335
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78b583077f57b523-OSL
X-Firefox-Spdy: h2
unpkg.com/@lottiefiles/lottie-player@latest/dist/lottie-player.js
104.16.124.175302 Found 0 B URL HTTP/2 unpkg.com/@lottiefiles/lottie-player@latest/dist/lottie-player.js
IP 104.16.124.175:0
GET /@lottiefiles/lottie-player@latest/dist/lottie-player.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 18 Jan 2023 07:10:36 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /@lottiefiles/lottie-player@1.6.3/dist/lottie-player.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GQ1VC3ZEN9ND1XR1AHHCP8PQ-fra
cf-cache-status: HIT
age: 68
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78b583077f59b523-OSL
X-Firefox-Spdy: h2
unpkg.com/@lottiefiles/lottie-player@1.6.3/dist/lottie-player.js
104.16.124.175200 OK 0 B URL HTTP/2 unpkg.com/@lottiefiles/lottie-player@1.6.3/dist/lottie-player.js
IP 104.16.124.175:0
GET /@lottiefiles/lottie-player@1.6.3/dist/lottie-player.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:10:36 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"5990b-1dRIRGIhtWDjvrShxjlC9DX1tDg"
via: 1.1 fly.io
fly-request-id: 01GPDFVHX23HXR3GS8BNMDB4M0-fra
cf-cache-status: HIT
age: 683177
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78b58307cfaeb523-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CHind%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.1.1
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CHind%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.1.1
IP 142.250.74.106:0
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CHind%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 18 Jan 2023 07:10:36 GMT
date: Wed, 18 Jan 2023 07:10:36 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Hind%3A400&subset=latin-ext
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Hind%3A400&subset=latin-ext
IP 142.250.74.106:0
GET /css?family=Hind%3A400&subset=latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 18 Jan 2023 07:10:36 GMT
date: Wed, 18 Jan 2023 07:10:36 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
unpkg.com/lottie-interactive@latest/dist/lottie-interactive.js
104.16.124.175302 Found 0 B URL HTTP/2 unpkg.com/lottie-interactive@latest/dist/lottie-interactive.js
IP 104.16.124.175:0
GET /lottie-interactive@latest/dist/lottie-interactive.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mxcloud.services/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 18 Jan 2023 07:10:36 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /lottie-interactive@1.3.2/dist/lottie-interactive.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GQ1VE85V2Q4M7JPPCY6846ZV-fra
cf-cache-status: EXPIRED
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78b583077f55b523-OSL
X-Firefox-Spdy: h2