r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 96defe1601ba891731eee83f0830649d
ba500679fd337488c3f60543561740ff0dfc1898
d2a320a9feb1a874af3da921db2a8619513968724ef8eb0715c010291c4cf8d9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2A320A9FEB1A874AF3DA921DB2A8619513968724EF8EB0715C010291C4CF8D9"
Last-Modified: Sun, 25 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9725
Expires: Mon, 26 Dec 2022 02:25:27 GMT
Date: Sun, 25 Dec 2022 23:43:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 9cce060ddc316540d079e6816a1e7412
709a74969d1996d2b35ef0f7f34ae18455169f1e
6d58b895476c9ab451d8fc51df98809adca445bc6e9d720430e80a0c85242879
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6D58B895476C9AB451D8FC51DF98809ADCA445BC6E9D720430E80A0C85242879"
Last-Modified: Sun, 25 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6874
Expires: Mon, 26 Dec 2022 01:37:56 GMT
Date: Sun, 25 Dec 2022 23:43:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 6b1d63d9d906daa309dc263b4991bbe9
04680ddd86781d46dfe6a9671571b3ad1f3758f3
46fff7230b88de4cd81dfb0feb783d2dec27e49041f9257d2fb891030781bf6c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "46FFF7230B88DE4CD81DFB0FEB783D2DEC27E49041F9257D2FB891030781BF6C"
Last-Modified: Fri, 23 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6726
Expires: Mon, 26 Dec 2022 01:35:28 GMT
Date: Sun, 25 Dec 2022 23:43:22 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 25 Dec 2022 23:35:00 GMT
content-type: application/json
age: 502
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: oSJd+HAXKVvl5IrpFVGCwqXDuFjGP8bImRbOXc4+tHB1TDzgGecsd1NDwnaZG7YpmJ/GJ2mg0ZyQtH/hgjhpOA==
x-amz-request-id: A2H7JC8SC4DWXDB1
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 25 Dec 2022 22:57:11 GMT
age: 2771
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 25 Dec 2022 23:43:22 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, ETag, Pragma, Last-Modified, Expires, Alert, Content-Type, Retry-After, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 25 Dec 2022 23:33:30 GMT
age: 593
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bdc6ddd27a64c85bd15f78b39a79874c
965b8f1b763483b4b4dfe35526d27393d1fdf05c
d2f4dee4d920109e0751634731bea278c9ea9e6c0120ac07969eba74ddbfe615
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5407
Cache-Control: max-age=125612
Content-Type: application/ocsp-response
Date: Sun, 25 Dec 2022 23:43:23 GMT
Etag: "63a812a8-1d7"
Expires: Tue, 27 Dec 2022 10:36:55 GMT
Last-Modified: Sun, 25 Dec 2022 09:06:48 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
stzengineers.com/
192.185.196.234301 Moved Permanently 21 B IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type very short file (no magic)
Hash 1a60c330fb42841e8dcf3cd507a70bfc
9ba9c8d18f6be7851b4d88e3b608a9979f56a083
7fa5a93246b84491c51c9c8b4493d30518932a2bb45d67df757bc8a332b1f2d1
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET / HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 25 Dec 2022 23:43:23 GMT
Server: nginx/1.23.2
Content-Type: text/html; charset=UTF-8
Content-Length: 21
Cache-Control: no-cache, no-store, must-revalidate
X-Redirect-By: WordPress
Location: https://stzengineers.com/
Vary: Accept-Encoding
Content-Encoding: gzip
X-Server-Cache: true
X-Proxy-Cache: EXPIRED
push.services.mozilla.com/
54.148.213.75101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.213.75:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: W6i6YGxgY+G/rCFIyIhtXw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: /Y7Tgkk2JW7kQ/Ab34bAathfFmc=
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 43d714f5a0f83b7922033c3365df770f
18c2ef40741f78b704101fbc7918f96226b7e10a
66c8d7495d3c1b914d3aac880ee1300a9cd79e2b1df97e377c71a12cfe33dc41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "66C8D7495D3C1B914D3AAC880EE1300A9CD79E2B1DF97E377C71A12CFE33DC41"
Last-Modified: Sat, 24 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21565
Expires: Mon, 26 Dec 2022 05:42:48 GMT
Date: Sun, 25 Dec 2022 23:43:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 5b2790419bb1f19fd29300d548278b98
64671f1c88a1271e9bcda28ac13a01e330a2a07e
1ce1ca2a9d6783fa668b57c8764e8c3a17fde26812161af8ce8096b3691b9279
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1CE1CA2A9D6783FA668B57C8764E8C3A17FDE26812161AF8CE8096B3691B9279"
Last-Modified: Sun, 25 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8962
Expires: Mon, 26 Dec 2022 02:12:46 GMT
Date: Sun, 25 Dec 2022 23:43:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 5b2790419bb1f19fd29300d548278b98
64671f1c88a1271e9bcda28ac13a01e330a2a07e
1ce1ca2a9d6783fa668b57c8764e8c3a17fde26812161af8ce8096b3691b9279
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1CE1CA2A9D6783FA668B57C8764E8C3A17FDE26812161AF8CE8096B3691B9279"
Last-Modified: Sun, 25 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8962
Expires: Mon, 26 Dec 2022 02:12:46 GMT
Date: Sun, 25 Dec 2022 23:43:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 5b2790419bb1f19fd29300d548278b98
64671f1c88a1271e9bcda28ac13a01e330a2a07e
1ce1ca2a9d6783fa668b57c8764e8c3a17fde26812161af8ce8096b3691b9279
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1CE1CA2A9D6783FA668B57C8764E8C3A17FDE26812161AF8CE8096B3691B9279"
Last-Modified: Sun, 25 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8962
Expires: Mon, 26 Dec 2022 02:12:46 GMT
Date: Sun, 25 Dec 2022 23:43:24 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8987286d-0da9-4e2a-a674-43d900e573e4.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8987286d-0da9-4e2a-a674-43d900e573e4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6e79b945cb70d09691397e022efa506b
ab355a55dadbdb52f57f2179bcb016cd4bbeff48
7d9ef5d21e701e90302a4c195cb84abb4419d2c5fada3878aea00a8fc9675685
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8987286d-0da9-4e2a-a674-43d900e573e4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8848
x-amzn-requestid: 0b602342-cbce-43d0-b9d3-6bd95221fb9b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: duO9oF1ioAMFwUw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a8c523-15e9ffaa144f9e001f19b3f4;Sampled=0
x-amzn-remapped-date: Sun, 25 Dec 2022 21:48:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XfAE8-I8KZDnzcB8lVz2buLE_9_sWPF_NVkt1xl-PNDyfKk_Tn6KFw==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Dec 2022 22:51:05 GMT
age: 3139
etag: "ab355a55dadbdb52f57f2179bcb016cd4bbeff48"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15ba8929-c657-48a6-a579-360324426927.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15ba8929-c657-48a6-a579-360324426927.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8403a671b2c4b3b2ce2f8a9eba9de2c0
5437391241a500b6b0d2118120e835d2673e7d39
1e52a144b08ff6efe2da52dfdfeccbc4cea9270536cf5e7a2a769bbff9cd7d2f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15ba8929-c657-48a6-a579-360324426927.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11249
x-amzn-requestid: 6fdd6489-ffea-400f-9199-a20789160ba8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dlFk6FvuoAMFYcQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a51c85-6805b25c54c3390e5c39c6e1;Sampled=0
x-amzn-remapped-date: Fri, 23 Dec 2022 03:12:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 20xO_1YbeDbKjQMmRf8eqDmtHgV5w5xmRhxGdfkOdgOwl8WRh2JaMQ==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Dec 2022 03:18:03 GMT
age: 73521
etag: "5437391241a500b6b0d2118120e835d2673e7d39"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0de44af9-689c-433b-9291-b5e6c980e352.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0de44af9-689c-433b-9291-b5e6c980e352.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba61b2beeb64bfb5c38d0c7fd7c82a32
6bdbfc5daa929523a27de45683928e742431d537
573288644cb5ec3f13d0d19b84dd1dabe7cb834ba87704593af63dbd5b9d4f07
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0de44af9-689c-433b-9291-b5e6c980e352.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10094
x-amzn-requestid: 6937578a-43e6-4c68-a953-5f457b3f70e5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: duNbuEXioAMFV8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a8c2b1-09b3de421c367dbd09f8cf7b;Sampled=0
x-amzn-remapped-date: Sun, 25 Dec 2022 21:37:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QMPD3U33gWb-LUXYnu6kfmGPFtst_gao0dNc1dvvsliZkTOyCO11tw==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Dec 2022 22:06:44 GMT
age: 5800
etag: "6bdbfc5daa929523a27de45683928e742431d537"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6124150-860a-4b19-b0d3-709cdb8451ef.webp
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6124150-860a-4b19-b0d3-709cdb8451ef.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 285c72f387148c98f89b7aeef0011318
db53cf1870083413ab96a4aa79ad4d2d39a4b0fb
5405f9f56d65b23d38214f286b312ec61e6981ef43e54facca39872c0f641a29
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6124150-860a-4b19-b0d3-709cdb8451ef.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4289
x-amzn-requestid: fc0c647a-aca7-4422-9707-0f955d1a4a0c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: duNcCEtsIAMFVgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a8c2b3-69d573194b74a38c592a8083;Sampled=0
x-amzn-remapped-date: Sun, 25 Dec 2022 21:37:55 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rLy2YUUeXEXsJx9LkgEGOx0KwINx048fIJUI8YkwO3bxdATBP_ldkw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Dec 2022 22:06:28 GMT
age: 5816
etag: "db53cf1870083413ab96a4aa79ad4d2d39a4b0fb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4202e798-ea02-47b7-a60c-abaacf6f94da.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4202e798-ea02-47b7-a60c-abaacf6f94da.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 68b2ed84d67beddfef011b88b3dd4815
a2b63df96a7d0e35e5e35b857dc8da2bd4c8c1d5
0f132fdf3778bf91796cd5d0058205e2b205549068238cb9b86ecf3e93f9843d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4202e798-ea02-47b7-a60c-abaacf6f94da.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8057
x-amzn-requestid: 491c7456-b849-4caa-a581-8d3846802f0f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: doXwiEZ1IAMFREA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a66cd0-7ab9dee859483ea1553fb869;Sampled=0
x-amzn-remapped-date: Sat, 24 Dec 2022 03:06:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vQtRvcZig9LvbFs5BnjuCNF3rHzoDIeZjG-wx_LSaX0M5BAzd5xNtg==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Dec 2022 04:13:14 GMT
age: 70210
etag: "a2b63df96a7d0e35e5e35b857dc8da2bd4c8c1d5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a394e27-3391-4992-8278-c17b6af6f6e6.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a394e27-3391-4992-8278-c17b6af6f6e6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b4c1c005f6a410f9a70bb3dfca6e3946
db8224a2f6a985ae37c1ba6b7edd669e8fd2b097
62018c535821be673031b5a9f48e0a208763ce2ba270cf1211b96a6bee950fbe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a394e27-3391-4992-8278-c17b6af6f6e6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5205
x-amzn-requestid: e77f5360-eb30-4e16-b481-e9823a2b94a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: duMunF_YIAMF_MA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a8c190-5727986253815e4d5fe64ee9;Sampled=0
x-amzn-remapped-date: Sun, 25 Dec 2022 21:33:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: hSuINwOLEb9yadXYM8-wjj5s50dflddwYw_WqqNuNiV7fUW0PUvRnw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Dec 2022 21:51:28 GMT
age: 6716
etag: "db8224a2f6a985ae37c1ba6b7edd669e8fd2b097"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 508c2c991a10f5f048c213f732698d4c
5a43bb96597ada2c1a16fb35c6cd74529bb306c4
bdf5e18cacb564fe4be4448d268ecee27b7139b91109b6d0727f2b809c6b5f3f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Dec 2022 23:43:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stzengineers.com/wp-content/plugins/lastudio-element-kit/assets/css/addons/css-transform.css?ver=1.1.5
192.185.196.234200 OK 307 B URL HTTP/2 stzengineers.com/wp-content/plugins/lastudio-element-kit/assets/css/addons/css-transform.css?ver=1.1.5
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (633)
Hash 943f2dcc704402c1c863a2361522d129
955668fac902ff45aaad9c06de58fd1511f072a4
6978fb484f32b93c4839276c8edabc87b30726bcc7e30ad0b3a3a99513076008
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/lastudio-element-kit/assets/css/addons/css-transform.css?ver=1.1.5 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 01 Dec 2022 09:22:39 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 307
content-type: text/css
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-includes/css/classic-themes.min.css?ver=1
192.185.196.234200 OK 189 B URL HTTP/2 stzengineers.com/wp-includes/css/classic-themes.min.css?ver=1
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 02:33:23 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 189
content-type: text/css
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
192.185.196.234200 OK 4.0 kB URL HTTP/2 stzengineers.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (19233)
Hash 2701214b028ad24fa347df8335b36d12
156bc8a7ad2657f00881890637f07c6052636499
9a6e62615ceeec7a9763e4f9614e4715d04fd87873b23db2b3ead06c996cad27
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Dec 2022 02:35:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4008
content-type: text/css
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Heebo%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
142.250.74.106200 OK 1.8 kB URL HTTP/2 fonts.googleapis.com/css?family=Heebo%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
IP 142.250.74.106:0
Hash 3cca509f24b9e516d1355c6a3a96b726
dcaf470bd6993e6fb1b2171259bece5101bc1533
ac03653b415f25ee45ed8dc3e6d4acbcabd4b6daed6c2916083f2e484dbe43cb
GET /css?family=Heebo%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 25 Dec 2022 23:43:25 GMT
date: Sun, 25 Dec 2022 23:43:25 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=6.1.1
192.185.196.234200 OK 13 kB URL HTTP/2 stzengineers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=6.1.1
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (59158)
Hash e6b67e11736ae36a062b381717f2ea9f
a663a79bc8d42aa58bfea1351cc27e0d0b09c9b2
a07a94d36246d0b3e5b9b18e274e31995d0e23cda955babf5e350e91a879523d
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=6.1.1 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Dec 2022 02:35:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12862
content-type: text/css
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13
192.185.196.234200 OK 323 B URL HTTP/2 stzengineers.com/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash b24c24b7da3ffeed6ae8ade102a4d317
c4445b3977ce704b927508108e100213eea67a3c
5421ad49b70f379553eaceec744d753e74d4b065966c08aa7c7dd949553ca9a8
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 01 Sep 2022 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 323
content-type: text/css
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=6.1.1
192.185.196.234200 OK 308 B URL HTTP/2 stzengineers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=6.1.1
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (491)
Hash 851fd514d412b7e854365f20a4227c8a
08bf47072f70af1816450cc85a5efb3b8f9114d2
a9449e3cc7c003e5ed6b93bae7b0bba3e4f1713c52214f41d3591692a759b9d7
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=6.1.1 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Dec 2022 02:35:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 308
content-type: text/css
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7
192.185.196.234409 Conflict 83 B URL HTTP/2 stzengineers.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
stzengineers.com/wp-content/themes/hello-elementor/style.min.css?ver=2.6.1
192.185.196.234200 OK 2.3 kB URL HTTP/2 stzengineers.com/wp-content/themes/hello-elementor/style.min.css?ver=2.6.1
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6051), with no line terminators
Hash c0a774e614f840a7f380a9aa68f16ac3
d42d9e9c586feba86b3accaf869ca2a365469b54
294b8486de91d8403977d27d636c158fe64ed0c93ce11902ed2f2b10f31d113f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/hello-elementor/style.min.css?ver=2.6.1 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Jul 2022 02:33:11 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2332
content-type: text/css
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/image-hover-effects-addon-for-elementor/assets/style.min.css?ver=1.3.7
192.185.196.234200 OK 4.6 kB URL HTTP/2 stzengineers.com/wp-content/plugins/image-hover-effects-addon-for-elementor/assets/style.min.css?ver=1.3.7
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (33951), with no line terminators
Hash a7b90f9f9059ca401e55f4dc64f5c37d
20a010557d8f02ab80688a2031ce659db1d5b49b
77ac8f932551519dd3416d5e52c8e9ba4045864d793ed7992ebce58191431959
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/image-hover-effects-addon-for-elementor/assets/style.min.css?ver=1.3.7 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 04 Jul 2022 14:33:46 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4633
content-type: text/css
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.9.0
192.185.196.234200 OK 4.4 kB URL HTTP/2 stzengineers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.9.0
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (26516)
Hash fdd462f58aee3f9349eabdefb5ca0b57
bb6e017d5537630516ccb98952593690a8c69864
ca51806fcedbe90dd613c4c28673af8693381806a5cb3b43dce2ea4f43e8b314
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.9.0 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Dec 2022 02:35:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4436
content-type: text/css
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/wpforms-lite/assets/css/wpforms-full.min.css?ver=1.7.8
192.185.196.234200 OK 8.0 kB URL HTTP/2 stzengineers.com/wp-content/plugins/wpforms-lite/assets/css/wpforms-full.min.css?ver=1.7.8
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (40956)
Hash 5d662b3be3845ab051c0924a3fc268c4
5e3235658979dbd821d71154feb09f78dacabd58
569f49a7f4035dddee5aa88d1813655a5e8b978b0f7ea9b55a2d667fd8fd96f0
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/wpforms-lite/assets/css/wpforms-full.min.css?ver=1.7.8 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 01 Dec 2022 09:22:46 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8038
content-type: text/css
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/uploads/elementor/css/post-728.css?ver=1638191210
192.185.196.234200 OK 2.5 kB URL HTTP/2 stzengineers.com/wp-content/uploads/elementor/css/post-728.css?ver=1638191210
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (7467)
Hash a1771877b3692c1dfa0f5ffcbacb96a4
4f3276567f1f0c70c06ff4a2bfac472f4fa004c9
d9dbf7637165f55ac60f13f09da1b4aa1907c04917c9eeaadcf6a4235743f76b
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-728.css?ver=1638191210 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 29 Nov 2021 13:43:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2507
content-type: text/css
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1
192.185.196.234200 OK 3.7 kB URL HTTP/2 stzengineers.com/wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15672), with no line terminators
Hash 607799bfa5d48117a95cd9dda8a17c2b
9a969f06c70600b753b160db19a5d37c9d249d10
78f67e192604e0dca624c2dcc8ea7cd6c54e14fe15918e7c9586ec1a22775876
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Jul 2022 02:33:11 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3725
content-type: text/css
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13
192.185.196.234200 OK 12 kB URL HTTP/2 stzengineers.com/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (1646)
Hash e56098a703c5beb99abc9c3a870be594
76e54634e0628ab91310c760d619360151e26be1
0eb4438e57550f2c2a321d45a5cb1c92fb22d58f6dbcc9c189fc3bd1e4f78b8f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 01 Sep 2022 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 11654
content-type: text/css
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/uploads/elementor/css/post-724.css?ver=1638193485
192.185.196.234200 OK 697 B URL HTTP/2 stzengineers.com/wp-content/uploads/elementor/css/post-724.css?ver=1638193485
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2607), with no line terminators
Hash 1268582a389403d9ffb45c4daf60b753
45045af10cffa27222f2c4fdbef933fae6dcbb73
92495092bc6e79e90b7e1ed885e8d5cdea0df8194b059501fcda463afd84c9cd
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-724.css?ver=1638193485 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 29 Nov 2021 13:44:45 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 697
content-type: text/css
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7
192.185.196.234409 Conflict 83 B URL HTTP/2 stzengineers.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7
192.185.196.234409 Conflict 83 B URL HTTP/2 stzengineers.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
192.185.196.234200 OK 308 B URL HTTP/2 stzengineers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (491)
Hash 851fd514d412b7e854365f20a4227c8a
08bf47072f70af1816450cc85a5efb3b8f9114d2
a9449e3cc7c003e5ed6b93bae7b0bba3e4f1713c52214f41d3591692a759b9d7
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Dec 2022 02:35:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 308
content-type: text/css
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
192.185.196.234200 OK 309 B URL HTTP/2 stzengineers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (483)
Hash 0ea43e394ddaae5fdb710dbbc8869e58
3b0c93adc80720236096201db5cc2751e703996d
85225fffa21a94bfd954393d7471069ab227b98fd8b51cb5ab4af5488168a34e
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Dec 2022 02:35:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 309
content-type: text/css
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/uploads/elementor/css/post-762.css?ver=1638125972
192.185.196.234200 OK 1.4 kB URL HTTP/2 stzengineers.com/wp-content/uploads/elementor/css/post-762.css?ver=1638125972
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6980), with no line terminators
Hash 01088e0c9cd9b4d025f75cfeb3934122
8a85610429b21fe12f0fc847a50dcf5a6c861d60
27f52e5258b368b31f034b854a0afa70acd5cf5290712f3f2c46dd496bd84d80
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-762.css?ver=1638125972 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 28 Nov 2021 18:59:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1431
content-type: text/css
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/uploads/elementor/css/post-715.css?ver=1638198308
192.185.196.234200 OK 2.3 kB URL HTTP/2 stzengineers.com/wp-content/uploads/elementor/css/post-715.css?ver=1638198308
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (14359), with no line terminators
Hash 36c4a52336fca5f80639c350cd6f912c
e54f528063c8081787256509ed2a18fc185421fb
0d76b42d265dbd7ee3ee7aa7c50432ea32b44b9aa8bbcf50d799097177f9055c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-715.css?ver=1638198308 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 29 Nov 2021 15:05:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2335
content-type: text/css
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.7.5
192.185.196.234200 OK 4.4 kB URL HTTP/2 stzengineers.com/wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.7.5
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (30283), with no line terminators
Hash c2c381b76f533a3992b1060b1e8275ed
8441603d412df07e265d70d72569bd3ed90c51ee
6b1c02e5f7f5a04d0320c0a69a67651c6c322b81dfcf1ad9ca29e0f7374cf613
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.7.5 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 01 Dec 2022 09:22:37 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4436
content-type: text/css
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.4.1
192.185.196.234200 OK 11 kB URL HTTP/2 stzengineers.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.4.1
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (59487)
Hash 408983e01cf0f21047e69357b458bb30
e86c339e30effde7652ae74f6e6f43c6b973ef1b
44804344611a4715d2f41be51ecb2cfb84eba84e1a05e04ef8555e329493bd16
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.4.1 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 23 Sep 2021 14:48:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 10579
content-type: text/css
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.9.0
192.185.196.234200 OK 13 kB URL HTTP/2 stzengineers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.9.0
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (59158)
Hash e6b67e11736ae36a062b381717f2ea9f
a663a79bc8d42aa58bfea1351cc27e0d0b09c9b2
a07a94d36246d0b3e5b9b18e274e31995d0e23cda955babf5e350e91a879523d
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.9.0 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Dec 2022 02:35:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12862
content-type: text/css
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/lastudio-element-kit/includes/extensions/elementor/assets/css/icofont.css?ver=1.0.0
192.185.196.234200 OK 16 kB URL HTTP/2 stzengineers.com/wp-content/plugins/lastudio-element-kit/includes/extensions/elementor/assets/css/icofont.css?ver=1.0.0
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65364)
Hash 72c3837897b6e082fefccab78c0fe783
7ece696a0bb5878be6ebe1b6b155967889d7952e
6f292f492d3ae2bbde535eb06ff7a451c0c8335375356042f1d056000370e215
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/lastudio-element-kit/includes/extensions/elementor/assets/css/icofont.css?ver=1.0.0 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 01 Dec 2022 09:22:39 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 15603
content-type: text/css
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
192.185.196.234200 OK 4.6 kB URL HTTP/2 stzengineers.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 02:33:23 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4618
content-type: application/javascript
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.7.5
192.185.196.234200 OK 13 kB URL HTTP/2 stzengineers.com/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.7.5
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65536), with no line terminators
Hash 2586b72a57d56fcc09dfabcd84488de5
58d34cec79898ec005ba78f3b9cc600d1cd4ec96
21a7ae5c7541cd7322cdd1d73bcf1c5d1b47b830dd864079e6d8337a47d32839
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.7.5 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 01 Dec 2022 09:22:37 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12707
content-type: text/css
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/lastudio-element-kit/assets/css/lastudio-kit-base.css?ver=1.1.5
192.185.196.234200 OK 17 kB URL HTTP/2 stzengineers.com/wp-content/plugins/lastudio-element-kit/assets/css/lastudio-kit-base.css?ver=1.1.5
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65536), with no line terminators
Hash 0f306871204b15590a1ba780ffc0fcbe
1d0a10ad4054ad7f44678a0567a524396e18e8fa
f8509bbe7377f8e35cd34d090c8bbd14e7daf61ac5d752e49823aa0808a47c3d
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/lastudio-element-kit/assets/css/lastudio-kit-base.css?ver=1.1.5 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 01 Dec 2022 09:22:39 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 16719
content-type: text/css
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
192.185.196.234200 OK 13 kB URL HTTP/2 stzengineers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (57726)
Hash dc63c0a8e2d5857cc7a00a4b5456dabb
ee29df5eb2a4bf3eb805b160551c1afd84b42599
035ef40b1dd3df1eefb2dd3c8c2096425727fb939b06f3aa0bc6ef91dafd5441
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Dec 2022 02:35:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12577
content-type: text/css
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
192.185.196.234200 OK 308 B URL HTTP/2 stzengineers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (489)
Hash 0a08469d24387f830bbaaa00b3c228ae
01f5dfeb8f93a32c9a8f66fe5940758109771fcd
3c7c29e5fc1193ff7ce24f72f77b2dc129e1a9434a97ef7b625f6f715531803c
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Dec 2022 02:35:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 308
content-type: text/css
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.9.0
192.185.196.234200 OK 4.4 kB URL HTTP/2 stzengineers.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.9.0
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (14869)
Hash 7bab7ad64ffbd7846dd6819250b93e2e
c924918d540389aff62220088b6761f38a5da272
045250efe67364c953a91f6a60cf407ebb5cfdb2da04e84c3d98e5bab5eca9ba
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.9.0 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Dec 2022 02:35:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4359
content-type: application/javascript
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/post-grid-elementor-addon/assets/css/main.css?ver=6.1.1
192.185.196.234200 OK 399 B URL HTTP/2 stzengineers.com/wp-content/plugins/post-grid-elementor-addon/assets/css/main.css?ver=6.1.1
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash fd8dd4ba3dc764dc5b288c0a1bcf775b
47810074687713cb5d7d4a222a467fac93065570
799cd26fc0c7504ce21e7b904b77fec1e44e86225ec440f59510a7aec939c5c2
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/post-grid-elementor-addon/assets/css/main.css?ver=6.1.1 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 10 Oct 2022 14:38:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 399
content-type: text/css
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.7.5
192.185.196.234200 OK 40 B URL HTTP/2 stzengineers.com/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.7.5
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with no line terminators
Hash 94d041d462db321cdb888066586f2068
717d2f9da7fb9f9e2bf2058a8177a0344f8a8647
b8166c5475df6a64ab2456e95f64564164ed697d258e8bfed8cebca40efd6fa5
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.7.5 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 01 Dec 2022 09:22:37 GMT
accept-ranges: bytes
content-length: 40
content-type: application/javascript
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/elementor/assets/images/placeholder.png
192.185.196.234200 OK 6.1 kB URL HTTP/2 stzengineers.com/wp-content/plugins/elementor/assets/images/placeholder.png
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1200 x 800, 8-bit colormap, non-interlaced\012- data
Hash 1632e46a5c79d43f3125ca62c54189cb
0897f3db9a66f710a4975dbdcc5fed765b62be0f
1a8352b9372452ab024b5dfd3c74cd8fac2c84e7ff152879f83949c4707fd87e
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/images/placeholder.png HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Dec 2022 02:35:32 GMT
accept-ranges: bytes
content-length: 6146
content-type: image/png
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/uploads/2021/11/output-onlinepngtools.png
192.185.196.234200 OK 14 kB URL HTTP/2 stzengineers.com/wp-content/uploads/2021/11/output-onlinepngtools.png
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 300 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 19d8ebed904bb6fe2d5f7ea26474a211
dac31620beafa997fe27491d539872b8db99f4f4
c3d995b71ca824940fa02d93f89f578d2251dbf3fdecc2ad92dd04b9bb459c20
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/11/output-onlinepngtools.png HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 24 Nov 2021 08:29:19 GMT
accept-ranges: bytes
content-length: 13777
content-type: image/png
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/uploads/2021/11/Untitled-design-5.png
192.185.196.234200 OK 104 kB URL HTTP/2 stzengineers.com/wp-content/uploads/2021/11/Untitled-design-5.png
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Size 104 kB (104077 bytes)
Hash d42e0d0d966b7a1e12056c4710ef6cea
52513e3346466b814a525f27af69a93a9ce54a8c
ac4bc3e0aef49bd2249ba62f31147665736f6f9732d7b2e092c690f3de502a41
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/11/Untitled-design-5.png HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 26 Nov 2021 20:43:29 GMT
accept-ranges: bytes
content-length: 104077
content-type: image/png
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
192.185.196.234200 OK 1.4 kB URL HTTP/2 stzengineers.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (9804)
Hash cfe1081b733080fd8c2a12f47226cc36
5b5e15e6842432281b78a5cf3ae365166451a5db
dbf83e478d2dd8c6b05e6c01844dccb902a5b384c3e4dc72e3685d999001a493
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/css/widget-icon-list.min.css HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Dec 2022 02:35:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1441
content-type: text/css
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0
192.185.196.234200 OK 1.0 kB URL HTTP/2 stzengineers.com/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3164), with no line terminators
Hash b61faf78df8ff0e5446c7fe2b070b144
d98140a3225bbade0a77d7d6001e65148a7ec6b8
3bb0086b96f0d58dc01f13c3d0055c3fe41a4e79e2d1461641ada355763c77c2
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Jul 2022 02:33:11 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1048
content-type: application/javascript
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-includes/js/wp-util.min.js?ver=6.1.1
192.185.196.234200 OK 758 B URL HTTP/2 stzengineers.com/wp-includes/js/wp-util.min.js?ver=6.1.1
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1391)
Hash 60bc75e3b14030c62d9fd3a3d317d8a8
6d919bbd05a3984a8e5e67b693e6d5d41cc885f9
e22df84be1a3ffe3b54352a4a39e14adb3fac69f2ce755e4c7babbc243c5bb4b
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/wp-util.min.js?ver=6.1.1 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 02:33:23 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 758
content-type: application/javascript
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8
192.185.196.234200 OK 374 B URL HTTP/2 stzengineers.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (754), with no line terminators
Hash ef785f463505633971eae5c08ad626d4
624e22257f386801822229db3a4bbd2e24b25e2f
b2a0dc77f0f79d81698a7e3893e16ecba7b0d980b80a5233656d9b11f1d8160d
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 01 Dec 2022 09:22:46 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 374
content-type: application/javascript
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.js?ver=2.7.5
192.185.196.234200 OK 442 B URL HTTP/2 stzengineers.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.js?ver=2.7.5
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (810), with no line terminators
Hash b96c7d958b2c4a3ff7e92608615daeb0
6e95b60a83d06479921cefd745c4dd058842604e
5176a7109dc14142199bbc99ce78c5c6536812d06562b1d300b283bd26849d2f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.js?ver=2.7.5 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 01 Dec 2022 09:22:37 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 442
content-type: application/javascript
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/themesflat-addons-for-elementor/assets/js/textanimation.js?ver=6.1.1
192.185.196.234200 OK 1.8 kB URL HTTP/2 stzengineers.com/wp-content/plugins/themesflat-addons-for-elementor/assets/js/textanimation.js?ver=6.1.1
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 9dc391696f30c16e2b481eca00b1c54e
89a88f7b48eef3e83586441fbea08f569a6a5686
ebb1719a9a3e7f5a71000b1f1b6266d163f18af1b221f7cbb0624215f23feeff
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/themesflat-addons-for-elementor/assets/js/textanimation.js?ver=6.1.1 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 30 May 2022 14:41:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1751
content-type: application/javascript
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.9.0
192.185.196.234200 OK 2.3 kB URL HTTP/2 stzengineers.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.9.0
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4918)
Hash 8b4e5bacf8735b48a5a99ac865f13d1d
226218a9bfa21241d4a0b4a2bfeabba6005f8340
c0c62f489fb622426561179e8dbe5237e6a38864302eb72b02cfb53a3f858813
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.9.0 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Dec 2022 02:35:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2312
content-type: application/javascript
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.4.1
192.185.196.234200 OK 2.2 kB URL HTTP/2 stzengineers.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.4.1
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4659)
Hash ede8244c1fb33ab1b16ff0f74aff2408
2bd7c3537edf0ccc1a1365e1de7d9c597bd9746a
82e594828887fa576c88bc8fe56d5cdfd1048fa4303898875e9f5d57d9c13470
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.4.1 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 23 Sep 2021 14:48:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2245
content-type: application/javascript
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
192.185.196.234200 OK 2.1 kB URL HTTP/2 stzengineers.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5477)
Hash f0bd7ad12acdee26cbb2701c1ba3610b
53c5d15129860868b60b74cb010b2c6050a64f69
e6d0cb19e56d22e8e511c23ca2bd233bedb40e3c7cf4ff38fe6f059bc7e0c64f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Jun 2020 05:23:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2103
content-type: application/javascript
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
192.185.196.234200 OK 3.7 kB URL HTTP/2 stzengineers.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (12198), with no line terminators
Hash e2a8decccf4d0a6b925af707a36077a9
26a0febc9c3d91e75410f74b9ec62099ba1cbe90
09e0e638a6f53c0fdcfeeb8ae91f3a404bef47b471324e335e29be14a2aa87f7
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Dec 2022 02:35:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3747
content-type: application/javascript
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/powerpack-lite-for-elementor/assets/js/min/frontend.min.js?ver=2.7.1
192.185.196.234200 OK 4.7 kB URL HTTP/2 stzengineers.com/wp-content/plugins/powerpack-lite-for-elementor/assets/js/min/frontend.min.js?ver=2.7.1
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (14099), with no line terminators
Hash 66e24dc03d2cfc9209aa4d8c14860502
2c80a4b191139816186b03f56628314e57e02bdc
6572e6c3197c3d82f7e50179163cf0e091e76b674b036df12d3a5a1529a305cb
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/powerpack-lite-for-elementor/assets/js/min/frontend.min.js?ver=2.7.1 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 10 Dec 2022 14:36:25 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4711
content-type: application/javascript
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/themesflat-addons-for-elementor/assets/js/anime.min.js?ver=6.1.1
192.185.196.234200 OK 5.3 kB URL HTTP/2 stzengineers.com/wp-content/plugins/themesflat-addons-for-elementor/assets/js/anime.min.js?ver=6.1.1
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (532)
Hash 6aae3aa1a4a82798f3d0d2663c6e7c03
c63af32c8f4a0f5e4caa4666ec49437a6ac488de
21c2c79790c303d36532771b7e72a2c4666fe8e4d640912d013d888b6e6490a8
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/themesflat-addons-for-elementor/assets/js/anime.min.js?ver=6.1.1 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 30 May 2022 14:41:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5283
content-type: application/javascript
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13
192.185.196.234200 OK 6.4 kB URL HTTP/2 stzengineers.com/wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 1a7cae61a8acbbcbd0eee38e317f0252
9234b65965a461535a05fc527c9ab420d13e5da0
54e1cad5404f393f2edf04a7c90a79acdec2eeaae6d7cf167701f952dc8d7e9b
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 01 Sep 2022 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6389
content-type: application/javascript
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.7.5
192.185.196.234200 OK 6.0 kB URL HTTP/2 stzengineers.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.7.5
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (17948), with no line terminators
Hash aad24bfb1effbb2666b3ae0b63250010
a0bccf4c48990fba25fb33a5226f33cd3240e6cd
0a4d91682a1f0fcb8e807f558cd7cf720bd43b0af087d1b4dd25328a8f3a7c7b
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.7.5 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 01 Dec 2022 09:22:37 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6018
content-type: application/javascript
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
192.185.196.234200 OK 5.3 kB URL HTTP/2 stzengineers.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15660)
Hash 710f8b142ea44c0682dc2c30f318f065
49144e9b3a76d3d383b1d4359cf7a25e947f4233
708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 25 May 2022 04:08:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5321
content-type: application/javascript
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.4.1
192.185.196.234200 OK 7.1 kB URL HTTP/2 stzengineers.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.4.1
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (19857)
Hash 041d758e51b753f06d44d4d2e73f9f7e
91b95175f14806033a33dbe13b4dd4f754903743
18d554c76b2644e6ed6aa534639d8275fd797855aee8164bc4b69689f31e5b4f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.4.1 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 23 Sep 2021 14:48:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7073
content-type: application/javascript
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.4.1
192.185.196.234200 OK 6.7 kB URL HTTP/2 stzengineers.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.4.1
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (23736)
Hash 0684727f7bbf4ab1f3354e4caf925233
9fc54566e05fb57a789fd567566ce5f83e2cbd8e
c6f265b8c53a57f7155adbc18a11ab38a2c7252f8f0b02dcb650dfd4e7cb157b
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.4.1 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 23 Sep 2021 14:48:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6718
content-type: application/javascript
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-includes/js/underscore.min.js?ver=1.13.4
192.185.196.234200 OK 8.3 kB URL HTTP/2 stzengineers.com/wp-includes/js/underscore.min.js?ver=1.13.4
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (18798)
Hash ac9c7baaab74ef2576932d5798161987
fa202113e12b09696788a7024984879bddd29143
c03d52f8f157e9209646e3e696e9845d7d2b3cf3e73c8204f371b7393e738026
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 02:33:23 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8305
content-type: application/javascript
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/themesflat-addons-for-elementor/post-format/assets/js/iziModal.js?ver=6.1.1
192.185.196.234200 OK 8.7 kB URL HTTP/2 stzengineers.com/wp-content/plugins/themesflat-addons-for-elementor/post-format/assets/js/iziModal.js?ver=6.1.1
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with very long lines (25741), with no line terminators
Hash a0054a3a7b37041e160feddce1237cd8
edd7cef558e33926a9cc7d35d695c60b5681a16d
0ce341f2b68f06acd3bcec6cb2cdcf81d571cc0b37d82f2d5af1e174c036214d
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/themesflat-addons-for-elementor/post-format/assets/js/iziModal.js?ver=6.1.1 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 30 May 2022 14:41:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8651
content-type: application/javascript
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
192.185.196.234200 OK 8.3 kB URL HTTP/2 stzengineers.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 838560e989767f2ef5951b9eeee20352
6bf8419cb4d68d9beced9e4b79b22b347ae16a46
72e6d275c5229613a59aef94523fc6a96330553976aee003d8544d5806fa0c3d
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 02:33:23 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8344
content-type: application/javascript
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/themesflat-addons-for-elementor/assets/js/tf-main.js?ver=6.1.1
192.185.196.234200 OK 12 kB URL HTTP/2 stzengineers.com/wp-content/plugins/themesflat-addons-for-elementor/assets/js/tf-main.js?ver=6.1.1
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash c9cb3d4fe438d08e4b3b68be5a16e0ce
1dc821df8e3ab626b4bd945782bdc25ff30fefc3
46da4eff671f89445265c5edd6e167fdb0a1f05a6a5bf9cc03e7d05892ff37f5
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/themesflat-addons-for-elementor/assets/js/tf-main.js?ver=6.1.1 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 30 May 2022 14:41:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12054
content-type: application/javascript
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.9.0
192.185.196.234200 OK 13 kB URL HTTP/2 stzengineers.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.9.0
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (31482)
Hash 447816e4964272534cffa05f02291fd3
2ccd2ee4ee652f2e28ab889fddd157235b125448
0bff82a08902e59459b45cc4a710732663e05d76f01b3c4cc09dcde06deaba6f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.9.0 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Dec 2022 02:35:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12651
content-type: application/javascript
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.9.0
192.185.196.234200 OK 16 kB URL HTTP/2 stzengineers.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.9.0
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (40657)
Hash fc46b8e71dddbc6885eeac17b9201b32
75d0570a188e2643c7b56c310ff264f24191efa7
b0ed52b3247a487d72c753f21a7464c1b12bfa605c58c82aa22e6e1a0e4dcc83
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.9.0 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Dec 2022 02:35:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 16214
content-type: application/javascript
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a4887aa0a07d726c889d8dfbddc359c6
83658ae9db1abb14fb2b869bf451caa97ef58e4d
085603732bde2eb04b81ae99e116350593ad282d21e81bfd624c0f9543247cd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Dec 2022 23:43:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://stzengineers.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Dec 2022 19:33:54 GMT
expires: Thu, 21 Dec 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 360572
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a4887aa0a07d726c889d8dfbddc359c6
83658ae9db1abb14fb2b869bf451caa97ef58e4d
085603732bde2eb04b81ae99e116350593ad282d21e81bfd624c0f9543247cd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Dec 2022 23:43:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d87a680fee13f66e99db5704e6700cd3
373346b37aa676c70dcc2be7313cb4eeeec91492
43eb7a490fefe7ccefcbd23d7284ff229bb4d3f09aaca3f884c98a9e17522878
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Dec 2022 23:43:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a4887aa0a07d726c889d8dfbddc359c6
83658ae9db1abb14fb2b869bf451caa97ef58e4d
085603732bde2eb04b81ae99e116350593ad282d21e81bfd624c0f9543247cd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Dec 2022 23:43:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a4887aa0a07d726c889d8dfbddc359c6
83658ae9db1abb14fb2b869bf451caa97ef58e4d
085603732bde2eb04b81ae99e116350593ad282d21e81bfd624c0f9543247cd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Dec 2022 23:43:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://stzengineers.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Dec 2022 19:33:56 GMT
expires: Thu, 21 Dec 2023 19:33:56 GMT
cache-control: public, max-age=31536000
age: 360570
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Hash b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://stzengineers.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Dec 2022 19:42:34 GMT
expires: Thu, 21 Dec 2023 19:42:34 GMT
cache-control: public, max-age=31536000
age: 360052
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://stzengineers.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 23 Dec 2022 13:33:13 GMT
expires: Sat, 23 Dec 2023 13:33:13 GMT
cache-control: public, max-age=31536000
age: 209413
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
maps.google.com/maps?q=model%20town%20extension%20lahore&t=m&z=10&output=embed&iwloc=near
216.58.207.238301 Moved Permanently 296 B URL HTTP/2 maps.google.com/maps?q=model%20town%20extension%20lahore&t=m&z=10&output=embed&iwloc=near
IP 216.58.207.238:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 92dcc74790163f2a1f7e9ec1083c0edb
e30b767652820df2c51a1b67babcdd52c479d138
9e26d5460dad4d64883a5bac9db44feaa3297b4623c224edbbf812d08338535a
GET /maps?q=model%20town%20extension%20lahore&t=m&z=10&output=embed&iwloc=near HTTP/1.1
Host: maps.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sun, 25 Dec 2022 23:43:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1smodel+town+extension+lahore!5e0!6i10
content-type: text/html; charset=UTF-8
server: mafe
content-length: 296
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a4887aa0a07d726c889d8dfbddc359c6
83658ae9db1abb14fb2b869bf451caa97ef58e4d
085603732bde2eb04b81ae99e116350593ad282d21e81bfd624c0f9543247cd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Dec 2022 23:43:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d87a680fee13f66e99db5704e6700cd3
373346b37aa676c70dcc2be7313cb4eeeec91492
43eb7a490fefe7ccefcbd23d7284ff229bb4d3f09aaca3f884c98a9e17522878
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Dec 2022 23:43:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9fe005199dbfabe75a3a76101f6350ac
c0f4b84d6a715f64d3d5df00ead1e9e34dfb5ddf
42bfa8181326696656bc80d1ed096eab92cc91ee4ea8ff18bbdf4a09b9180961
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Dec 2022 23:43:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stzengineers.com/wp-content/uploads/2021/11/Electrical-Construction_11zon-2-1-scaled-1.jpg
192.185.196.234200 OK 345 kB URL HTTP/2 stzengineers.com/wp-content/uploads/2021/11/Electrical-Construction_11zon-2-1-scaled-1.jpg
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2560x1708, components 3\012- data
Size 345 kB (344895 bytes)
Hash a2b7e81672edd17f8082b85690a1f729
e266c592bc7937752b8ac101c5b3074b3ac74200
ffcfa4c6ad51a90e3de729dad57ad4199a7811c5b896e2e7e8712318d0e6109c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/11/Electrical-Construction_11zon-2-1-scaled-1.jpg HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/wp-content/uploads/elementor/css/post-715.css?ver=1638198308
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 26 Nov 2021 21:34:31 GMT
accept-ranges: bytes
content-length: 344895
content-type: image/jpeg
date: Sun, 25 Dec 2022 23:43:26 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/uploads/2021/11/mechanical-equipments-installation_11zon.jpg
192.185.196.234200 OK 249 kB URL HTTP/2 stzengineers.com/wp-content/uploads/2021/11/mechanical-equipments-installation_11zon.jpg
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 2500x1562, components 3\012- data
Size 249 kB (248589 bytes)
Hash 9eef2271c247fb1b3a0446dd76ac6fc4
3545b1da922c88a79f2346ffbdd2ebb35495bae3
3c3bf3c9e948cef771f53f679ac06efdf3c209314fb23ee50d75a45b8603b4af
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/11/mechanical-equipments-installation_11zon.jpg HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/wp-content/uploads/elementor/css/post-715.css?ver=1638198308
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 26 Nov 2021 21:27:52 GMT
accept-ranges: bytes
content-length: 248589
content-type: image/jpeg
date: Sun, 25 Dec 2022 23:43:26 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/uploads/2021/11/project-supply-solution-scaled-1.jpg
192.185.196.234200 OK 377 kB URL HTTP/2 stzengineers.com/wp-content/uploads/2021/11/project-supply-solution-scaled-1.jpg
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2560x1708, components 3\012- data
Size 377 kB (376675 bytes)
Hash 1fdb7d05a97bb993ff2344f74603a516
5604cd91bce855a290643790e9a1c27ae33ea2ff
c5347334b210156b0f1750525bbb1126e7f5f97a5f13df4fddcf2154e3302d42
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/11/project-supply-solution-scaled-1.jpg HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/wp-content/uploads/elementor/css/post-715.css?ver=1638198308
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 26 Nov 2021 21:36:13 GMT
accept-ranges: bytes
content-length: 376675
content-type: image/jpeg
date: Sun, 25 Dec 2022 23:43:26 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7
192.185.196.234409 Conflict 83 B URL HTTP/2 stzengineers.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Sun, 25 Dec 2022 23:43:26 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
stzengineers.com/wp-content/uploads/2021/11/Civil-Constrcution_11zon.jpg
192.185.196.234200 OK 186 kB URL HTTP/2 stzengineers.com/wp-content/uploads/2021/11/Civil-Constrcution_11zon.jpg
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1920x1080, components 3\012- data
Size 186 kB (185830 bytes)
Hash e1806e5575000811fc4361fc221218c7
14a868dd76cfc4e26ba68e102dc20816157fe6c5
d52301838e3afdcab796f31cdfed11c5d550201ab4331a7b3f009ee416307ec5
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/11/Civil-Constrcution_11zon.jpg HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/wp-content/uploads/elementor/css/post-715.css?ver=1638198308
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 26 Nov 2021 21:27:47 GMT
accept-ranges: bytes
content-length: 185830
content-type: image/jpeg
date: Sun, 25 Dec 2022 23:43:26 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
192.185.196.234200 OK 78 kB URL HTTP/2 stzengineers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Hash e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://stzengineers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Dec 2022 02:35:32 GMT
accept-ranges: bytes
content-length: 78196
content-type: font/woff2
date: Sun, 25 Dec 2022 23:43:26 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/uploads/2021/11/output-onlinepngtools-5.png
192.185.196.234200 OK 16 kB URL HTTP/2 stzengineers.com/wp-content/uploads/2021/11/output-onlinepngtools-5.png
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced\012- data
Hash 49cdf96aa56dfd270e17e86a1da0f7ed
01abd24d423cebf980c62608f593e689304bd3e2
24571626f94633906954183165d8329e6052541d43168037968531f53fca5996
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/11/output-onlinepngtools-5.png HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 24 Nov 2021 09:45:46 GMT
accept-ranges: bytes
content-length: 15743
content-type: image/png
date: Sun, 25 Dec 2022 23:43:26 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/uploads/2021/11/output-onlinepngtools-2.png
192.185.196.234200 OK 19 kB URL HTTP/2 stzengineers.com/wp-content/uploads/2021/11/output-onlinepngtools-2.png
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced\012- data
Hash f85966dfa7331fce9231cdcf0173f2e7
8a1756283097caa9724913188c990b2af3c61f42
edd206ad6d412f2e73611e48104f77eadab46bf5a6294092fb525801060e8f29
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/11/output-onlinepngtools-2.png HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 24 Nov 2021 09:30:31 GMT
accept-ranges: bytes
content-length: 18736
content-type: image/png
date: Sun, 25 Dec 2022 23:43:26 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/uploads/2021/11/output-onlinepngtools-7.png
192.185.196.234200 OK 21 kB URL HTTP/2 stzengineers.com/wp-content/uploads/2021/11/output-onlinepngtools-7.png
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced\012- data
Hash e2ec7e6aac202e93b1e60fe150adadbe
88e2c3717394495852292598754d3e7f4c1c59ff
25217806233bb85c97cbb07750b70e4789f536a228127655a1a8f6280f9b422f
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/11/output-onlinepngtools-7.png HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 24 Nov 2021 09:51:21 GMT
accept-ranges: bytes
content-length: 21085
content-type: image/png
date: Sun, 25 Dec 2022 23:43:26 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/uploads/2021/11/output-onlinepngtools-3.png
192.185.196.234200 OK 30 kB URL HTTP/2 stzengineers.com/wp-content/uploads/2021/11/output-onlinepngtools-3.png
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced\012- data
Hash d82dc895c6fce40c91a7ea341cd1bcec
799f87f5e0f4257ccef4b83213379d515466aeff
b6a89a33a5a1459ff3a36efbf478479a33abc1b123d32d48eabb973ae13bab39
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/11/output-onlinepngtools-3.png HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 24 Nov 2021 09:38:55 GMT
accept-ranges: bytes
content-length: 29615
content-type: image/png
date: Sun, 25 Dec 2022 23:43:26 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/uploads/2021/11/input-onlinepngtools-2.png
192.185.196.234200 OK 28 kB URL HTTP/2 stzengineers.com/wp-content/uploads/2021/11/input-onlinepngtools-2.png
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced\012- data
Hash 97173cfd88264ac97ecd16e80ac0dd5b
8faadba3d319716ba9e642882fc47e716f935a29
24009ebc2aa931cb5f7daeec490a02b3757d4ca104d5e94f5ed13d904a99bc1a
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/11/input-onlinepngtools-2.png HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 24 Nov 2021 09:19:15 GMT
accept-ranges: bytes
content-length: 27584
content-type: image/png
date: Sun, 25 Dec 2022 23:43:26 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/uploads/2021/11/output-onlinepngtools-8.png
192.185.196.234200 OK 17 kB URL HTTP/2 stzengineers.com/wp-content/uploads/2021/11/output-onlinepngtools-8.png
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced\012- data
Hash de3228c8e506aff87f29f8c03db0752f
03049a23c624ea9a01ad0525d86c8a096abc07ac
3a8177d528e2109a54fb25670f886229f353de00587fa67bf0454cc60721cfe1
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/11/output-onlinepngtools-8.png HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 24 Nov 2021 09:53:12 GMT
accept-ranges: bytes
content-length: 17167
content-type: image/png
date: Sun, 25 Dec 2022 23:43:26 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/uploads/2021/11/output-onlinepngtools-6.png
192.185.196.234200 OK 23 kB URL HTTP/2 stzengineers.com/wp-content/uploads/2021/11/output-onlinepngtools-6.png
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced\012- data
Hash 9308a8aabfaff51aac09016141036db1
61bf51e5c8a06d2458b0d662c61355755a82b3a0
eb1ca024e88a7304a5d851689cce0312273f38c6f178e380446f032c81915bb2
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/11/output-onlinepngtools-6.png HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 24 Nov 2021 09:48:20 GMT
accept-ranges: bytes
content-length: 23290
content-type: image/png
date: Sun, 25 Dec 2022 23:43:26 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=6.1.1
192.185.196.234200 OK 124 kB URL HTTP/2 stzengineers.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=6.1.1
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
Size 124 kB (123934 bytes)
Hash 09cbc79e0f80cd88bd69783e3cd3deda
f37127ace55246de13443d6b130e7284a1d6037e
6707b4543ac9b41f571c9704cf81c89d290792867ec5c45adb47c9cc27045912
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=6.1.1 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Dec 2022 02:35:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0
192.185.196.234200 OK 93 kB URL HTTP/2 stzengineers.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 93372, version 1.0\012- data
Hash aab0bb3379e0eb7ebc26071db61fbd57
711c8d350c4192c2f1aa7f73551445b89fb4b161
691fa7d17effc7d303eda0ad7e4a1d91b2f375506cfc8a774480cc2b55f156ea
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://stzengineers.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Dec 2022 02:35:32 GMT
accept-ranges: bytes
content-length: 93372
content-type: font/woff2
date: Sun, 25 Dec 2022 23:43:26 GMT
server: Apache
X-Firefox-Spdy: h2
www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1smodel+town+extension+lahore!5e0!6i10
216.58.207.228200 OK 990 B URL HTTP/2 www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1smodel+town+extension+lahore!5e0!6i10
IP 216.58.207.228:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1620)
Hash 2c79f66a161bbba2fab50fc1f9271dcd
5adec04371ad1c9798d5322a8a21d49bcacd141c
ed5ae2d3c009c170c2b63e73194dd48a4ef4847d31e210f04e09d235802a1ba9
GET /maps/embed?origin=mfe&pb=!1m4!2m1!1smodel+town+extension+lahore!5e0!6i10 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://stzengineers.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Sun, 25 Dec 2022 23:43:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
vary: Accept-Language
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-b9mJhL7tgQpiNaAnOYZWIA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
content-encoding: gzip
server: mafe
content-length: 990
x-xss-protection: 0
server-timing: gfet4t7; dur=238
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/themesflat-addons-for-elementor/post-format/assets/css/iziModal.css?ver=6.1.1
192.185.196.234200 OK 102 kB URL HTTP/2 stzengineers.com/wp-content/plugins/themesflat-addons-for-elementor/post-format/assets/css/iziModal.css?ver=6.1.1
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
Size 102 kB (101796 bytes)
Hash e0398176db4123cfa0e2d9ebccb5b950
d6474773bc99aaf38bb9c03cdb61eec2e2f0ea95
d7a36296840ceb5da2e557aefeb8a47e5e4ccfddc792cfe1faaadce540b474cf
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/themesflat-addons-for-elementor/post-format/assets/css/iziModal.css?ver=6.1.1 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 30 May 2022 14:41:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/uploads/2021/11/input-onlinepngtools-3.png
192.185.196.234200 OK 73 kB URL HTTP/2 stzengineers.com/wp-content/uploads/2021/11/input-onlinepngtools-3.png
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 640 x 608, 8-bit/color RGBA, non-interlaced\012- data
Hash 6b8cb5d594e38b3454d8271946792376
50d072a7f1ea3fa9daf23c051d440545cf8e1610
9d75005b104672466338f2d7e969b8cc8fd1104c72ec349f6c56b3b44db221c3
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/11/input-onlinepngtools-3.png HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 24 Nov 2021 09:23:08 GMT
accept-ranges: bytes
content-length: 72822
content-type: image/png
date: Sun, 25 Dec 2022 23:43:26 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/themesflat-addons-for-elementor/assets/css/tf-style.css?ver=6.1.1
192.185.196.234200 OK 116 kB URL HTTP/2 stzengineers.com/wp-content/plugins/themesflat-addons-for-elementor/assets/css/tf-style.css?ver=6.1.1
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
Size 116 kB (116547 bytes)
Hash e8b1d1af845b002c5ab81be073ff4be3
99a441f6eb0d78da25c76e23de845be06e7def5e
923b1faeb72d0656bb9bd33c6b5270299f479ce0eb5b5a0abc583c0cd95d95fc
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/themesflat-addons-for-elementor/assets/css/tf-style.css?ver=6.1.1 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 30 May 2022 14:41:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/uploads/2021/11/input-onlinepngtools.png
192.185.196.234200 OK 87 kB URL HTTP/2 stzengineers.com/wp-content/uploads/2021/11/input-onlinepngtools.png
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced\012- data
Hash 01b40c5c4fd4de42d7f7d895c1fb29ba
ebcff0c5176d3599ba3c83efea0f75d394717f04
386cb5576f436712c458b96f33591f759c713662af68eedcd9add068caba5d73
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/11/input-onlinepngtools.png HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 24 Nov 2021 09:06:38 GMT
accept-ranges: bytes
content-length: 86895
content-type: image/png
date: Sun, 25 Dec 2022 23:43:26 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/uploads/2021/11/input-onlinepngtools-1.png
192.185.196.234200 OK 109 kB URL HTTP/2 stzengineers.com/wp-content/uploads/2021/11/input-onlinepngtools-1.png
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Size 109 kB (108757 bytes)
Hash 2fc3c33a2fd617d461a9b1ce1f7d4a51
3b30327bdb982aaabc0f9f685b1132ef579f14e8
56ec612b8296ed4f4c9e5ff00380872d12c430b68a25e99da9c8af095917365a
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/11/input-onlinepngtools-1.png HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 24 Nov 2021 09:09:54 GMT
accept-ranges: bytes
content-length: 108757
content-type: image/png
date: Sun, 25 Dec 2022 23:43:26 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/lastudio-element-kit/includes/extensions/elementor/assets/fonts/icofont.woff2
192.185.196.234200 OK 538 kB URL HTTP/2 stzengineers.com/wp-content/plugins/lastudio-element-kit/includes/extensions/elementor/assets/fonts/icofont.woff2
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 537868, version 1.0\012- data
Size 538 kB (537868 bytes)
Hash 50a4ab76e700a83e649be213f820fbbd
28ad9e9ac82f86c50eb4dd3d713a0698473bdbb3
242e542871bd77c8ff6375418e349ef6b3a32a208e15ca1441166641d212a6a1
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/lastudio-element-kit/includes/extensions/elementor/assets/fonts/icofont.woff2 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://stzengineers.com/wp-content/plugins/lastudio-element-kit/includes/extensions/elementor/assets/css/icofont.css?ver=1.0.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 01 Dec 2022 09:22:39 GMT
accept-ranges: bytes
content-length: 537868
content-type: font/woff2
date: Sun, 25 Dec 2022 23:43:26 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7
192.185.196.234409 Conflict 83 B URL HTTP/2 stzengineers.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Sun, 25 Dec 2022 23:43:26 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
maps.gstatic.com/maps-api-v3/embed/js/51/3/init_embed.js
142.250.74.99200 OK 69 kB URL HTTP/2 maps.gstatic.com/maps-api-v3/embed/js/51/3/init_embed.js
IP 142.250.74.99:0
File type ASCII text, with very long lines (2669)
Hash 670da89542ecf04a8bbff2049748654f
2fcd2c31427edfd9b3180e233a009677b0d88973
d1bdcacb4973ce7c60a0f59144bf6fb699eea4fc016ca1780cdf61dbd9efb3bc
GET /maps-api-v3/embed/js/51/3/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 69327
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Dec 2022 10:36:14 GMT
expires: Mon, 25 Dec 2023 10:36:14 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 05 Dec 2022 18:55:12 GMT
content-type: text/javascript
age: 47232
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stzengineers.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
192.185.196.234200 OK 59 kB URL HTTP/2 stzengineers.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65447)
Hash 4b9355c207c0336e15cfa071171dcd9d
158aa612065bda825bd0c23aff01dee12bd7a9a6
d33f6fbdbe5424c012f4506a930a872944aafd4dd645ad405079a9716161f7ba
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 02:33:23 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/favicon.ico
192.185.196.234200 OK 21 B URL HTTP/2 stzengineers.com/favicon.ico
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type very short file (no magic)
Hash 1a60c330fb42841e8dcf3cd507a70bfc
9ba9c8d18f6be7851b4d88e3b608a9979f56a083
7fa5a93246b84491c51c9c8b4493d30518932a2bb45d67df757bc8a332b1f2d1
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Dec 2022 23:43:26 GMT
server: Apache
content-type: text/html; charset=UTF-8
content-length: 21
vary: Accept-Encoding
content-encoding: gzip
x-server-cache: true
x-proxy-cache: EXPIRED
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/elementor-pro/assets/js/slides.39da68ee3c8123589b2e.bundle.min.js
192.185.196.234200 OK 1.6 kB URL HTTP/2 stzengineers.com/wp-content/plugins/elementor-pro/assets/js/slides.39da68ee3c8123589b2e.bundle.min.js
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3787)
Hash 674c0b5ff3459ac028b58fe9140dc8b7
2f6bb2dcff702c71d693dabfbbba9f6b99bce057
763fddd2ea54835d25b3ba98902007f2d49e87e394f6c1e01ec1bd470b93381d
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor-pro/assets/js/slides.39da68ee3c8123589b2e.bundle.min.js HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 23 Sep 2021 14:48:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1581
content-type: application/javascript
date: Sun, 25 Dec 2022 23:43:27 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
192.185.196.234200 OK 672 B URL HTTP/2 stzengineers.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1320)
Hash ff9cc11909a17481c826408314e43cec
d8f54fccb0f0889001a2512bb5ea656b56b7ee95
1d1e352ea8a6fcf4cb656685d4e35efdc5c1165d183c22a5902489ed8997f50f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Dec 2022 02:35:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 672
content-type: application/javascript
date: Sun, 25 Dec 2022 23:43:27 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/uploads/2021/09/mail.png
192.185.196.234404 Not Found 30 kB URL HTTP/2 stzengineers.com/wp-content/uploads/2021/09/mail.png
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 5497957c151a03097e4c933d8087b7e8
ec8fded29e18e67a7177b34287234cf36051edb8
70e561a1702ab6fc73ef7b147c4e565f456f2ed7efeb41118fa5b65dc451a60a
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/09/mail.png HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/wp-content/uploads/elementor/css/post-762.css?ver=1638125972
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Sun, 25 Dec 2022 23:43:26 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/uploads/2021/09/Vector-1.png
192.185.196.234404 Not Found 34 kB URL HTTP/2 stzengineers.com/wp-content/uploads/2021/09/Vector-1.png
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 23183752f10f49cedab53f57c1e95f23
8696daf098515830ef60a90fca66609709d6c4e0
5779ae51551ab0f60a301defdb258d3520ec13e7a793148c134bca8f2bcf266d
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/09/Vector-1.png HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/wp-content/uploads/elementor/css/post-762.css?ver=1638125972
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Sun, 25 Dec 2022 23:43:26 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72a5f634-727e-4b8d-ab9e-15f34604a3d6.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72a5f634-727e-4b8d-ab9e-15f34604a3d6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4d56ed7f66802ac154bc856e5bb69c13
3fc1162af1229f939cc1253aa86d476da51950cd
e10eed5b4c912f9730169ac07f9ba6c471f1d27c8d0efdfed8bb4a6cb5880869
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72a5f634-727e-4b8d-ab9e-15f34604a3d6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6073
x-amzn-requestid: 69e21df1-a420-4ad7-b0bf-4d9eacb5bee3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: duOGEGvmIAMFoag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a8c3c0-6b8069e3057cf71d7284fbf7;Sampled=0
x-amzn-remapped-date: Sun, 25 Dec 2022 21:42:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cgxS2QNcD1b_3t2BTbbnUpDp8F9GM--NIw4cVzoKxXL3btqDf9h-9A==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Dec 2022 21:57:13 GMT
age: 6378
etag: "3fc1162af1229f939cc1253aa86d476da51950cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
stzengineers.com/
192.185.196.234200 OK 0 B IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET / HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sun, 25 Dec 2022 23:43:23 GMT
server: Apache
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, must-revalidate
link: <https://stzengineers.com/wp-json/>; rel="https://api.w.org/", <https://stzengineers.com/wp-json/wp/v2/pages/715>; rel="alternate"; type="application/json", <https://stzengineers.com/>; rel=shortlink
vary: Accept-Encoding
content-encoding: gzip
x-server-cache: true
x-proxy-cache: EXPIRED
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
192.185.196.234200 OK 0 B URL HTTP/2 stzengineers.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Dec 2022 02:35:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Sun, 25 Dec 2022 23:43:27 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.7.5
192.185.196.234200 OK 0 B URL HTTP/2 stzengineers.com/wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.7.5
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.7.5 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 01 Dec 2022 09:22:37 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.7.5
192.185.196.234200 OK 0 B URL HTTP/2 stzengineers.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.7.5
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.7.5 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 01 Dec 2022 09:22:37 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/themesflat-addons-for-elementor/post-format/assets/js/jquery.mb.YTPlayer.js?ver=6.1.1
192.185.196.234200 OK 0 B URL HTTP/2 stzengineers.com/wp-content/plugins/themesflat-addons-for-elementor/post-format/assets/js/jquery.mb.YTPlayer.js?ver=6.1.1
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/themesflat-addons-for-elementor/post-format/assets/js/jquery.mb.YTPlayer.js?ver=6.1.1 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 30 May 2022 14:41:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/powerpack-lite-for-elementor/assets/css/min/frontend.min.css?ver=2.7.1
192.185.196.234200 OK 0 B URL HTTP/2 stzengineers.com/wp-content/plugins/powerpack-lite-for-elementor/assets/css/min/frontend.min.css?ver=2.7.1
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/powerpack-lite-for-elementor/assets/css/min/frontend.min.css?ver=2.7.1 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 10 Dec 2022 14:36:25 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
192.185.196.234200 OK 0 B URL HTTP/2 stzengineers.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 01 Dec 2022 09:22:47 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=2.7.5
192.185.196.234200 OK 0 B URL HTTP/2 stzengineers.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=2.7.5
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=2.7.5 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Dec 2022 02:35:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
stzengineers.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.9.0
192.185.196.234200 OK 0 B URL HTTP/2 stzengineers.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.9.0
IP 192.185.196.234:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.9.0 HTTP/1.1
Host: stzengineers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stzengineers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Dec 2022 02:35:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Sun, 25 Dec 2022 23:43:25 GMT
server: Apache
X-Firefox-Spdy: h2