uskitsolutions.com/lib/crgVzMrdz2.zip
92.204.185.20301 Moved Permanently 707 B URL HTTP/1.1 uskitsolutions.com/lib/crgVzMrdz2.zip
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Malware
GET /lib/crgVzMrdz2.zip HTTP/1.1
Host: uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Content-Type: text/html
Content-Length: 707
Date: Fri, 02 Dec 2022 02:41:29 GMT
Location: https://uskitsolutions.com/lib/crgVzMrdz2.zip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8582
Expires: Fri, 02 Dec 2022 05:04:31 GMT
Date: Fri, 02 Dec 2022 02:41:29 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1829
Cache-Control: max-age=116412
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 02:41:29 GMT
Etag: "63888270-1d7"
Expires: Sat, 03 Dec 2022 11:01:41 GMT
Last-Modified: Thu, 01 Dec 2022 10:31:12 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 02:19:50 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1299
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6500
Expires: Fri, 02 Dec 2022 04:29:49 GMT
Date: Fri, 02 Dec 2022 02:41:29 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: hwHBe0QmiNzFM0QOzyXKl3u9hm2G+rdjfMrGbQX3igjBRn3gQSRb4JX93xjiJs4DUIv7gO7LlAo=
x-amz-request-id: 0N5T1924E036P0JJ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 02 Dec 2022 01:46:31 GMT
age: 3298
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 02:41:29 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 02 Dec 2022 02:08:57 GMT
cache-control: public,max-age=3600
age: 1953
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1819
Cache-Control: max-age=111338
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 02:41:30 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 09:37:08 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.148.69.31101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.69.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: HXOKY/9NSmj5fVBCLczxuQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: s9U7Dc7VAeqzTTm8q3T0nUeqdH8=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15463
Expires: Fri, 02 Dec 2022 06:59:14 GMT
Date: Fri, 02 Dec 2022 02:41:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15463
Expires: Fri, 02 Dec 2022 06:59:14 GMT
Date: Fri, 02 Dec 2022 02:41:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15463
Expires: Fri, 02 Dec 2022 06:59:14 GMT
Date: Fri, 02 Dec 2022 02:41:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15463
Expires: Fri, 02 Dec 2022 06:59:14 GMT
Date: Fri, 02 Dec 2022 02:41:31 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
34.120.237.76200 OK 2.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Fw6nrporwF27NW0-vXpaolW79nDXLF2RyS-lqhhp1osHt7q98VpI3g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:49:56 GMT
age: 17495
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb30f254-1327-487b-a297-00361bfd5c02.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb30f254-1327-487b-a297-00361bfd5c02.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd78aa69439c995167f32b8a41a1f4f6
d07d6145182f312f3ed86ecf96b4ffa175416fa0
3b08cf3fad31ee0cf3ee25abc2484fb4283543865a42dfc568b14f9856fd3bb5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb30f254-1327-487b-a297-00361bfd5c02.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7722
x-amzn-requestid: 8d7c4800-6c06-43ed-afa1-94840d42f591
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGy2Gr1IAMFWeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e78-429ae3135d47e3b020c4c7a1;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Z8thSamrCRejcAcQEGAp4WpSMzMEvstuZtVpKAjiCH4dyJyf1yihBA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:50:11 GMT
age: 17480
etag: "d07d6145182f312f3ed86ecf96b4ffa175416fa0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb8ec880-52b8-4350-bb47-d051878e78f1.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb8ec880-52b8-4350-bb47-d051878e78f1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 25c68d8b1fae82820f93efca500fd848
45cf5e1a54ee491497ffe08a8e39fe97ba3c8a48
f0ec6b6f6ba0a931c9b71f5bc7ad1e5b89c8e4d8b7441f35eeebfba418d0e588
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb8ec880-52b8-4350-bb47-d051878e78f1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6882
x-amzn-requestid: 6b5f15a5-c15b-46bf-9fd5-5d013d37a0eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGfrG3WIAMFc9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891dfd-6038ca700dfb4489230c2683;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2O6x-8-ESFDtlhcjVyGxEXCZcLbbfhsCVQeX02lbNMupPWmM-fKuLA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:34:54 GMT
age: 18397
etag: "45cf5e1a54ee491497ffe08a8e39fe97ba3c8a48"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 156e9ea97b774cbd8361072e4041b6c8
fc71ae3cae92ed6011904bb2367f23bf4e69fab4
58d953c19ebbbdfc3965bbe3f52308d4702deaf4d0c029f4674bcb862da138af
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8863
x-amzn-requestid: 798d014b-0f9c-4787-a676-8f5e8fae3d11
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdG14HBNIAMFdWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851bf-7549feac6d476a8512676412;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: r_0F64VpyutAOJ9IcTWrs3Sv--fhKiwKsV1FW0fOMSRt1QLLPxvJzg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 07:43:11 GMT
age: 68300
etag: "fc71ae3cae92ed6011904bb2367f23bf4e69fab4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d147ccb10bda82b153a596c3c967cd6a
ffd0763f997e71a8c1458523fc17cafe8849dfdf
1cfeb90a4ba027195f903d938d4a0aac418a1c2f0b52215ec023263f15905971
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7591
x-amzn-requestid: e179862e-f840-4e50-a9dc-09f325479b9a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGgMFRZIAMFl7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e01-676a1571459f2d83488f2765;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: oB5K_ZCWWwCltMx8FQSjDdXRMzSTSyRLSYSLAooQXuCrUxadLUiWkA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:48:51 GMT
age: 17560
etag: "ffd0763f997e71a8c1458523fc17cafe8849dfdf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F092f8542-1ed2-47c2-82aa-d5ef970a77ca.png
34.120.237.76200 OK 3.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F092f8542-1ed2-47c2-82aa-d5ef970a77ca.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 89e1a735e16f55c78fa75ae434294029
6c56f4015305eff04a99cec9758cd40bf4e5f704
26e8b042c0bbef2c7f93f77451563cf6e12af282251ef864652574be2b2c5b15
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F092f8542-1ed2-47c2-82aa-d5ef970a77ca.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3711
x-amzn-requestid: 68772438-16c4-40ab-a40e-860425d8301c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGyhHVsIAMFmsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e76-21d27db6708228002e738938;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JOCSKxy4WUDbS22Gd9BlyN1gmcDsDNlNWnT57KITGlNwfOe_Iaco9g==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:48:59 GMT
age: 17552
etag: "6c56f4015305eff04a99cec9758cd40bf4e5f704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
92.204.185.20200 OK 11 kB URL HTTP/2 www.uskitsolutions.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (43771)
Hash d45207ee05c1f0c57dfa075e61405ccd
a8d35143a2d828a739ea0fdde75f97d33621e7ec
a9a4adbbcee31ec277f1bdd573eef97dc4341f29f2db3b5685a02dfe4d2fe9bb
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Tue, 04 Oct 2022 07:56:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10946
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/contact-form-7-multi-step-pro//assets/frontend/css/cf7mls.css?ver=2.5.4
92.204.185.20200 OK 1.7 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/contact-form-7-multi-step-pro//assets/frontend/css/cf7mls.css?ver=2.5.4
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash 5110ef1e6c80305c41265db90bfb65b4
1f3ee40ea84db55872f1649e4a68e91aca815ecb
4fad4d5089a889a0ec9bb1869773f90513c6f3e1e60a3a5c9c9411ac61da8ef5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7-multi-step-pro//assets/frontend/css/cf7mls.css?ver=2.5.4 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Sun, 24 Apr 2022 09:42:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1650
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/contact-form-7-multi-step-pro//assets/frontend/css/progress_bar.css?ver=2.5.4
92.204.185.20200 OK 4.6 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/contact-form-7-multi-step-pro//assets/frontend/css/progress_bar.css?ver=2.5.4
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash 5a0441ce175f60b5d36c3e5f8a1fd079
72d3495d023aac6c88e80568edab99529b43bb4e
e82219f75ee410e4739b8c9389555fed7164d3071287825106df8e65f5f16b58
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7-multi-step-pro//assets/frontend/css/progress_bar.css?ver=2.5.4 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Sun, 24 Apr 2022 09:42:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4588
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/contact-form-7-multi-step-pro//assets/frontend/animate/animate.min.css?ver=2.5.4
92.204.185.20200 OK 4.0 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/contact-form-7-multi-step-pro//assets/frontend/animate/animate.min.css?ver=2.5.4
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (57919), with CRLF line terminators
Hash 36b1561e37516ae95d7553d05808eb35
3c3986d0a60ebbfa15fc549dfd597a09d616b5b6
bd6dcd6a112d7139ae70a8ca3b03ad12902db738d85fa02dc3efa9b74b25d42e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7-multi-step-pro//assets/frontend/animate/animate.min.css?ver=2.5.4 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Sun, 24 Apr 2022 09:42:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4011
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6
92.204.185.20200 OK 848 B URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
Hash c962ba8e7d42ff9da18392b41dad5151
7b89bc5e6ad161df2e6d7f7fb3ad894aa04b827f
322a4949c5bdd82eb80c13bbbd407ce30a7ad226685c54270d246cb6960e524e
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Fri, 06 May 2022 14:17:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 848
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
uskitsolutions.com/lib/crgVzMrdz2.zip
92.204.185.20301 Moved Permanently 1.7 kB URL HTTP/2 uskitsolutions.com/lib/crgVzMrdz2.zip
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
Hash cffe94caeaa4e3112d15f42ce5290539
d23a5417522f33dd739847808fdec3c1293214e7
2b833d77c843fb073f75dcf1350b0de0e3740d32cb6728d3b5a96eba5da3ffcc
Analyzer Verdict Alert fortinet Malware
GET /lib/crgVzMrdz2.zip HTTP/1.1
Host: uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
x-powered-by: PHP/8.0.24
set-cookie: PHPSESSID=esja5ercpbcguo2mnlpgf41958; path=/; secure; HttpOnly
PHPSESSID=esja5ercpbcguo2mnlpgf41958; expires=Sat, 02-Dec-2023 02:41:32 GMT; Max-Age=31536000; secure
pragma: no-cache
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
location: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
vary: Accept-Encoding
content-encoding: gzip
date: Fri, 02 Dec 2022 02:41:32 GMT
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/dpc-pwa-for-wp/assets/styles/ui.css?ver=3.0
92.204.185.20200 OK 1.1 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/dpc-pwa-for-wp/assets/styles/ui.css?ver=3.0
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
Hash 5303acf84f542116165f61400c9e0e11
4f11e6db38ae1cdf12990426ff20335ebaa3fac3
1ec76eee6e17169fdea21c792f8a51d2a6d381ebab331f479f18bdf7cf7d4ea4
GET /wp-content/plugins/dpc-pwa-for-wp/assets/styles/ui.css?ver=3.0 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Sun, 24 Oct 2021 06:21:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1103
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/internet-connection-status/assets/css/language/offline-language-english.min.css?ver=1.4.3
92.204.185.20200 OK 392 B URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/internet-connection-status/assets/css/language/offline-language-english.min.css?ver=1.4.3
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (3567)
Hash 7057e57d6c1d3e9bd0123f99ec246c71
eb7b2350700a4d8392031b70806dd39b3fefece1
721e74279e5c955a7da8919bb98cb54301533b94cc482fd29d510183b05355d1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/internet-connection-status/assets/css/language/offline-language-english.min.css?ver=1.4.3 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Thu, 03 Jun 2021 12:49:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 392
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/internet-connection-status/assets/css/theme/offline-theme-default.css?ver=1.4.3
92.204.185.20200 OK 1.0 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/internet-connection-status/assets/css/theme/offline-theme-default.css?ver=1.4.3
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
Hash 546dcc2e2f6fc1dfc870ea013581a61a
8017d7432153c19bb4d9d8af67eb0c3ae3a2f196
2fbc284dc53b599aa7de02ad6b991c889ec754686317e9348dcbc0abe55e7299
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/internet-connection-status/assets/css/theme/offline-theme-default.css?ver=1.4.3 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Thu, 03 Jun 2021 12:49:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1036
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.11
92.204.185.20200 OK 12 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.11
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash dc07606c6f1719f22e60b5a66b6c83ee
0007da6b48940b57407d4345d997cdea4b062fc4
dfc4458610794e60eb66675406a99ffbfc5ece7ac2b6cc172050c32621aaf31a
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.11 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Sun, 23 May 2021 10:13:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12482
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/theplus_elementor_addon/assets/css/main/pre-loader/plus-pre-loader.min.css?ver=5.1.2
92.204.185.20200 OK 4.9 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/theplus_elementor_addon/assets/css/main/pre-loader/plus-pre-loader.min.css?ver=5.1.2
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (43830), with no line terminators
Hash d82d2c007358f588f4585278474aecdc
4d3cdd5b99c26952012efddc65b3ac1c2f31d2c0
1f271d87b415415646a5a47f82fd122c1e9c48e3984b89914a1c31bcad204a9f
GET /wp-content/plugins/theplus_elementor_addon/assets/css/main/pre-loader/plus-pre-loader.min.css?ver=5.1.2 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Tue, 27 Sep 2022 17:30:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4853
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/themes/hello-elementor/style.min.css?ver=2.5.0
92.204.185.20200 OK 1.6 kB URL HTTP/2 www.uskitsolutions.com/wp-content/themes/hello-elementor/style.min.css?ver=2.5.0
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (5839), with no line terminators
Hash 08fe917f551e32fa4ab5b1ceccdcc2d7
3e86daa678614747403d8d705356551125006c0e
ec1acffe0c49d1390ecd4c2c45a9c4c83c77c15647a913a3743e68db28cf5d0e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/hello-elementor/style.min.css?ver=2.5.0 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Thu, 05 May 2022 14:24:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1642
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/themes/hello-elementor/theme.min.css?ver=2.5.0
92.204.185.20200 OK 2.4 kB URL HTTP/2 www.uskitsolutions.com/wp-content/themes/hello-elementor/theme.min.css?ver=2.5.0
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (15346), with no line terminators
Hash 57f34dcdda03a6a2183bed143c0c7b56
c85c6c33b32da0ec69682ca1760b1b76c3541ac4
7527161470ac12e46917139afa93a518019df198ece9ba2d408538a8adc2bc1e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/hello-elementor/theme.min.css?ver=2.5.0 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Thu, 05 May 2022 14:24:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2370
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0
92.204.185.20200 OK 3.6 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (19082)
Hash c54194973223c8fb2d65ff2f82892361
5eb520a61c4848ce45e75ae155b9c1c06450dfce
fd060c3033814417ed00d38431de738a353b3af24b3774afb848c157827c13b1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Sat, 07 May 2022 17:49:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3603
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/uploads/elementor/css/post-10.css?ver=1668427493
92.204.185.20200 OK 349 B URL HTTP/2 www.uskitsolutions.com/wp-content/uploads/elementor/css/post-10.css?ver=1668427493
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (1567), with no line terminators
Hash e416773edeceb7de9279cac1dcf00e2c
7fb6e9b22d2836bf69944a60da1533707f7ed84e
99e18371f0833a6330b934680da073b9d78d03604759ddec118ab821f5b80abf
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-10.css?ver=1668427493 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Mon, 14 Nov 2022 12:04:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 349
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/ameliabooking/public/css/frontend/elementor.css?ver=5.3
92.204.185.20200 OK 338 B URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/ameliabooking/public/css/frontend/elementor.css?ver=5.3
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (1289), with no line terminators
Hash 52b512c0243e504cb4798cea78ea9525
9816fbf3c2534211101b6963208132cfe36f2d10
08a261948377dce3eaeadbee6a440158438dd740f003ff485c3320f9b3d7ec52
GET /wp-content/plugins/ameliabooking/public/css/frontend/elementor.css?ver=5.3 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Tue, 04 Oct 2022 16:30:41 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 338
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/full-screen-menu-for-elementor/assets/css/frontend.min.css?ver=1.0.6
92.204.185.20200 OK 439 B URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/full-screen-menu-for-elementor/assets/css/frontend.min.css?ver=1.0.6
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (1594), with no line terminators
Hash 2b6ab2f140fd9aeaa9f489f12fd321ff
89064eaebf9fa953abd4a4c7413eccfb3c0d89b3
e5da6d0f9694b9a41131151b1e9b0ec16cf1d27a65eeb9f05cf0ab6c49eb406f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/full-screen-menu-for-elementor/assets/css/frontend.min.css?ver=1.0.6 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Thu, 06 Oct 2022 07:49:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 439
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.6.5
92.204.185.20200 OK 12 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.6.5
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (59158)
Hash 178f113615fea1b059cb42a9fcc9bb3d
a309d33fbab460ecc17467c18f99825c03ce039c
9fc6c8540b2078cfcec74cbd21ef6cedf7e2a4ec99d46a4868111eb601572859
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.6.5 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Sat, 07 May 2022 17:49:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12380
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.6.5
92.204.185.20200 OK 4.0 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.6.5
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (26516)
Hash 32699c444a181cd316ee6cb56688144a
1366537c3db165e86947a2e963407283a1ea5b58
6b6910bbb4dacf40ae040c445dd7dd1871097c97a1520b6d5f528d7d88c072a4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.6.5 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Sat, 07 May 2022 17:49:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3987
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/uploads/elementor/css/global.css?ver=1668427496
92.204.185.20200 OK 2.5 kB URL HTTP/2 www.uskitsolutions.com/wp-content/uploads/elementor/css/global.css?ver=1668427496
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (15771)
Hash 64c51f35adab2a5f3ac34e7a3379fe12
be37052758d1b2303a6a7a175bc7d8012961d5d4
d5568ecdf6e28173a1b3ebdabf269afd9cf52b46c1a8ad7245a0da6cd7d6e832
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/global.css?ver=1668427496 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Mon, 14 Nov 2022 12:04:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2471
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/uploads/elementor/css/post-11446.css?ver=1668427497
92.204.185.20200 OK 927 B URL HTTP/2 www.uskitsolutions.com/wp-content/uploads/elementor/css/post-11446.css?ver=1668427497
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (7130), with no line terminators
Hash b2824bbaf5be1c085eeb9eec8909c318
bfba04c917dee01dfad0f30b2bb957ccf70cc87c
1331139a536f718139db39377e08bd608ecc5fc9d383f7af5d8d3fdf025a488e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-11446.css?ver=1668427497 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Mon, 14 Nov 2022 12:04:57 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 927
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/uploads/elementor/css/post-61.css?ver=1668427497
92.204.185.20200 OK 927 B URL HTTP/2 www.uskitsolutions.com/wp-content/uploads/elementor/css/post-61.css?ver=1668427497
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (9074), with no line terminators
Hash b48e15806130890b0541334655045bb4
e2cec3859efc2851aed11654fa5b3ae112d11db0
396934b54a8e172fcbdd830c9aafc7299212fea305b14e86fc712c48177c9306
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-61.css?ver=1668427497 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Mon, 14 Nov 2022 12:04:57 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 927
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.6.5
92.204.185.20200 OK 18 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.6.5
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (65497)
Hash 908f4a90ed1ffb2cf556213246113b5e
9e28a3c358f60e96f98684497963789eac1a0e25
9ec20b0058b32f2f46186669c933481088e023098d8bf55cf953643fa51b5e3b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.6.5 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Sat, 07 May 2022 17:49:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 18387
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.2.0
92.204.185.20200 OK 22 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.2.0
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (65493)
Hash 085b2e76eaa469c471e2e72a7c0fd04b
4046cfad6fe0c87fa6f5de936e6ac4e5c14a6692
5aaa3e45858d0d12f3a17da22b81dcb4f5ef5e5c0dedc47fca51b7849f16f8d4
GET /wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.2.0 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Sun, 08 May 2022 11:22:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 21735
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/uploads/elementor/css/post-8906.css?ver=1668434763
92.204.185.20200 OK 300 B URL HTTP/2 www.uskitsolutions.com/wp-content/uploads/elementor/css/post-8906.css?ver=1668434763
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (1680), with no line terminators
Hash 2f23f1de729132b9a21854ee2f9b5457
0cc75ab2350727c03a6d2e9a33c750e75a9b79e7
ecc81ba6fa2481d26c0fdc18a44d1d8c26e459a554621877c7ac11ca18af446d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-8906.css?ver=1668434763 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Mon, 14 Nov 2022 14:06:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 300
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.6.3
92.204.185.20200 OK 11 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.6.3
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (65536), with no line terminators
Hash 893bb567fecd89ba9c5b5aa967854c7e
77508fc210165d72b24ef269389e4cce8221e25b
2362bcefbe7a9ecfc8b97c01f86f4ec93a5d89473bb60260b4bed870dffcba8b
GET /wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.6.3 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Sat, 13 Aug 2022 08:19:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11361
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/elementskit/modules/parallax/assets/css/style.css?ver=2.2.3
92.204.185.20200 OK 511 B URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementskit/modules/parallax/assets/css/style.css?ver=2.2.3
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (2891), with no line terminators
Hash ce1a21694ad059f57434d09f89a74423
81ce12432ea82df4dfb9de35d0f9eed9c10297d8
f429e679d2a3d79d3dac894ef64e02db179fbda1276a8a0533dffb3ea799a922
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementskit/modules/parallax/assets/css/style.css?ver=2.2.3 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Sat, 05 Jun 2021 06:38:37 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 511
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.6.3
92.204.185.20200 OK 2.9 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.6.3
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (30283), with no line terminators
Hash 1119301a85ab323270d853e94a9b2f2f
3bd61b9dd43e2e0166c4036273b4b02d50d3fec7
8cbeb42d6bac404c391197cf1f219086c8501143db7e4cfde22919d6124b3fc3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.6.3 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Sat, 13 Aug 2022 08:19:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2851
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/mailin/css/mailin-front.css?ver=6.0.3
92.204.185.20200 OK 642 B URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/mailin/css/mailin-front.css?ver=6.0.3
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash 4f2de4785c3c5c1d145f9b44390fb3a9
067e8721c73e3618ebe48e57f5d05a8968b9da6c
b68d43d358a175f10646cd0d79871527e41219dc679c1d1f8127bd8d73d6f328
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/mailin/css/mailin-front.css?ver=6.0.3 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Sat, 30 Apr 2022 04:06:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 642
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.6.3
92.204.185.20200 OK 47 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.6.3
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Hash 04b9328e1d14118ded78688462a24ce0
fb1726cb5b6b45e47f6f91657a04cedbe88ac74b
6a22a75af83c94bc6852fbabfefb34a0b0630d420594405d0da477040afe475b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.6.3 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Sat, 13 Aug 2022 08:19:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 47276
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
92.204.185.20200 OK 12 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (57726)
Hash f463afd8661ddc733305df1f0cbdaff2
77262f0209e75e340eb7014aba9cd8d69966032f
c4b6541be58a0ca61549cd4562850315077880c459c019f01e835cf2d7b764de
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Sat, 07 May 2022 17:49:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12133
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
92.204.185.20200 OK 286 B URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (483)
Hash 8828fa3c5bdcfa66615714a2b8c9d807
4f556d0b005ac7754af607418df445f8cf98e8b1
16950dcce60bc3ee2613b60439c99e7ed74d10245f59fe6f68346b7e72dd95e7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Sat, 07 May 2022 17:49:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 286
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
92.204.185.20200 OK 4.0 kB URL HTTP/2 www.uskitsolutions.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (11126)
Hash 7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Sat, 05 Jun 2021 16:24:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/trustpilot-reviews/review/assets/js/headerScript.min.js?ver=1.0
92.204.185.20200 OK 598 B URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/trustpilot-reviews/review/assets/js/headerScript.min.js?ver=1.0
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (1503)
Hash 42dbc5e0f047c3343618f03dace5130e
38061673e9e8a9633069e4734a869e897cd3d5f3
4f0f713f9728dc011c8353737a06f7b41bc62d957151b4ac08caa5dc38558b9f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/trustpilot-reviews/review/assets/js/headerScript.min.js?ver=1.0 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Mon, 28 Mar 2022 10:51:26 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 598
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/theplus_elementor_addon/assets/js/main/pre-loader/plus-pre-loader-extra-transition.min.js?ver=5.1.2
92.204.185.20200 OK 429 B URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/theplus_elementor_addon/assets/js/main/pre-loader/plus-pre-loader-extra-transition.min.js?ver=5.1.2
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (1674), with no line terminators
Hash 9c8d52ca10d195fd68b42c2d7e1a2992
515262550eb1616c0b1499ebaeeecd9ff631fce0
c103acbd53dfdcfd273b70541d3c0608bccd3f6728eb85f4ced58ca0e065c91a
GET /wp-content/plugins/theplus_elementor_addon/assets/js/main/pre-loader/plus-pre-loader-extra-transition.min.js?ver=5.1.2 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Tue, 27 Sep 2022 17:30:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 429
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/theplus_elementor_addon/assets/js/main/pre-loader/plus-pre-loader.min.js?ver=5.1.2
92.204.185.20200 OK 1.7 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/theplus_elementor_addon/assets/js/main/pre-loader/plus-pre-loader.min.js?ver=5.1.2
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (8338), with no line terminators
Hash a6ed467a6f888a79440d3a4d5ca1993c
19eb6a1e55ac9bf298f4a5a72c9ba184777e1bba
66dd22dbe190b21e8ac5ef8f7fab6d4072c507d7735368cdce2609dfb5b61e49
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/theplus_elementor_addon/assets/js/main/pre-loader/plus-pre-loader.min.js?ver=5.1.2 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Tue, 27 Sep 2022 17:30:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1679
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.6.5
92.204.185.20200 OK 4.0 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.6.5
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (14869)
Hash 564f097cf1c91789ede5935f27f4f879
7d08e220324006fe221bbc176df2051be8fc1f31
2de1ed7e80ab790199f4b3785fd3ac2494e039a96e55c67e76ea88244dfc93e4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.6.5 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Sat, 07 May 2022 17:49:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4035
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/elementskit/modules/parallax/assets/js/jarallax.js?ver=2.2.3
92.204.185.20200 OK 4.8 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementskit/modules/parallax/assets/js/jarallax.js?ver=2.2.3
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (15340)
Hash a1abf78e609c1fd62a312dd4018ad41e
c59afe295971dee21aa043a95db8de33c93bda21
0921313c6e91fa42fd663087d9c313c45c9659fc6c6908fc8b7a7e15af2f6ee1
GET /wp-content/plugins/elementskit/modules/parallax/assets/js/jarallax.js?ver=2.2.3 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Sat, 05 Jun 2021 06:38:37 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4815
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/pixelyoursite-pro/dist/scripts/js.cookie-2.1.3.min.js?ver=2.1.3
92.204.185.20200 OK 806 B URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/pixelyoursite-pro/dist/scripts/js.cookie-2.1.3.min.js?ver=2.1.3
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (1709)
Hash 941ba17a9db0ec9c8b878bdf9f8a1523
60404b654fae4cef6874b95dfa2f46a54dc7d452
da8251806970053a03f2e95f0640a5ba622db01e11ef20864e81b53bca148b43
GET /wp-content/plugins/pixelyoursite-pro/dist/scripts/js.cookie-2.1.3.min.js?ver=2.1.3 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Fri, 13 May 2022 04:02:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 806
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/pixelyoursite-pro/dist/scripts/jquery.bind-first-0.2.3.min.js?ver=6.0.3
92.204.185.20200 OK 625 B URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/pixelyoursite-pro/dist/scripts/jquery.bind-first-0.2.3.min.js?ver=6.0.3
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (1146)
Hash 79cefc4d3eed73de29fbf6d6e1167d23
e30a47623c3dd37dc1756dcaa3e439ee7369208f
72f679009b145c4d3ab957aaff6ea0a8c77377d40892ca1d870db15b196540c3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/pixelyoursite-pro/dist/scripts/jquery.bind-first-0.2.3.min.js?ver=6.0.3 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Fri, 13 May 2022 04:02:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 625
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 08a230d8f3ca4aa6208db099d2d7139e
c26e33b4b69de280bab2ed28de28f1b001af1eac
ba5ce06dc2eb41128df1d26af414e656d0ab0e768ad1becb255d98e28f42e29b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1489
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 02:41:36 GMT
Last-Modified: Fri, 02 Dec 2022 02:16:47 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 280
www.uskitsolutions.com/wp-content/plugins/elementskit/widgets/init/assets/css/widget-styles-pro.css?ver=2.2.3
92.204.185.20200 OK 26 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementskit/widgets/init/assets/css/widget-styles-pro.css?ver=2.2.3
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (65536), with no line terminators
Hash 81a91032997e44cb5818613519db1252
d8db853a039a9d18f31913ddb4d26e8cfcd625c3
364b4364a62830d4baa68818e00df167add5af539380e84374f051e8370391be
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementskit/widgets/init/assets/css/widget-styles-pro.css?ver=2.2.3 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Sat, 05 Jun 2021 06:38:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 25969
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
92.204.185.20200 OK 30 kB URL HTTP/2 www.uskitsolutions.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (65447)
Hash 34f918ada1fe4f01c5a4b90065bbc37a
a731f6ce2d413805e39ae45994012b1bd5ea1e2b
eba158d5ab26a5a54a3dcfcea1072c636f44e92fc2eb30a3f27cd5be3f891dfc
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Thu, 22 Jul 2021 17:50:33 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30273
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.8
92.204.185.20200 OK 46 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.8
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (42889)
Hash 7b6e082bde2cd00810b3413baa28da45
4b18394c3ab61e2dae4eae87b00cdc74f2339447
30fe548881461bdef9c96b8faf55eaeeb8759dcb83049beef418e939b9f965b0
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.8 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Sun, 23 May 2021 10:13:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 45472
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/pixelyoursite-pro/dist/scripts/vimeo.min.js?ver=6.0.3
92.204.185.20200 OK 5.0 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/pixelyoursite-pro/dist/scripts/vimeo.min.js?ver=6.0.3
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (16058)
Hash bcf44038dc98c435aa6248155fb98da8
b531117bc08a97bafd9c0a91eea3f8fede19189d
280408af75595218947b0dfb8e2ade351ccf2be6e70cd949151ef3939a0a6bef
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/pixelyoursite-pro/dist/scripts/vimeo.min.js?ver=6.0.3 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Fri, 13 May 2022 04:02:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4967
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/pixelyoursite-pro/dist/scripts/public.js?ver=9.0.0
92.204.185.20200 OK 24 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/pixelyoursite-pro/dist/scripts/public.js?ver=9.0.0
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
Hash 17891c63624af5d70c7dfd59f404f466
ba65cce12bf8714cdf1124afbc7ce3218968207a
ca419a47e936532b8d83493dbb98a3e9f192ff0f39916484978094971624b5f2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/pixelyoursite-pro/dist/scripts/public.js?ver=9.0.0 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Fri, 13 May 2022 04:02:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 24484
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/elementskit/widgets/chart/assets/js/chart.js?ver=6.0.3
92.204.185.20200 OK 46 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementskit/widgets/chart/assets/js/chart.js?ver=6.0.3
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (65336)
Hash 73341a353474e35746da0783d153b973
381f47d7b839cb1fdab151cc657098c16efe9f8a
537786552172b6d23f43125bd98cd9b12342cd846f4a81afedd296058855a923
GET /wp-content/plugins/elementskit/widgets/chart/assets/js/chart.js?ver=6.0.3 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Sat, 05 Jun 2021 06:38:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 46037
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/cf7-redirection/js/wpcf7-redirect-script.js
92.204.185.20200 OK 754 B URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/cf7-redirection/js/wpcf7-redirect-script.js
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
Hash b4dd8018079f410fa728229ca5b4ee3c
f95e4441735b1ecf383424b94b7401e44c5f87d5
641c10564abdf4698e2cec3710e52d068d12a55e0c4742b2c61c56b7c7a54437
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/cf7-redirection/js/wpcf7-redirect-script.js HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Mon, 09 May 2022 04:20:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 754
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/contact-form-7-multi-step-pro//assets/frontend/js/cf7mls.js?ver=2.5.4
92.204.185.20200 OK 7.6 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/contact-form-7-multi-step-pro//assets/frontend/js/cf7mls.js?ver=2.5.4
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type HTML document, ASCII text, with very long lines (576), with CRLF line terminators
Hash 677dd5be9bcc37aed97af66eaf4b0576
85fc8632771039f984fa3c5781999fd20bee4efc
478b01b5ef3a18bbb09e81ebf95f9cfeb379a32a24daaa83586223ba7a39c639
GET /wp-content/plugins/contact-form-7-multi-step-pro//assets/frontend/js/cf7mls.js?ver=2.5.4 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Sun, 24 Apr 2022 09:42:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7603
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
92.204.185.20200 OK 2.4 kB URL HTTP/2 www.uskitsolutions.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (6475), with no line terminators
Hash 4e773d7cec56bacab6d2db420be6f262
c95573d884c1caec0ec9c6f3e2a8c0fbf28d939a
5c8839d0b02f21e8d83d856bbf85a6b87fbedf9ba0b70711b11a1c378d5443e7
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Tue, 04 Oct 2022 07:56:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2354
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
92.204.185.20200 OK 6.9 kB URL HTTP/2 www.uskitsolutions.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Hash 1f5152610686781567fb3008c4429792
d0c0bddf5fb8603ed8e55c32f3093c2207f72471
75806ece853d0d76e655a433bd03548d3be6237ea1e4cacd5963f528bbe0d192
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Tue, 04 Oct 2022 07:56:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6872
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6
92.204.185.20200 OK 3.1 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type HTML document, ASCII text, with very long lines (9720), with no line terminators
Hash 7b3d5adb95a380672e7d5da68b57b3c0
58db2566c56407e29d4557d912663b36ec328b14
aaa8914b936896ede7bb53ba3a4273d63bf82ed918efe0cfac6f2b3f4641a423
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Fri, 06 May 2022 14:17:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3050
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/dpc-pwa-for-wp/assets/scripts/clientjs.js?ver=1.0.0
92.204.185.20200 OK 16 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/dpc-pwa-for-wp/assets/scripts/clientjs.js?ver=1.0.0
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (46330), with no line terminators
Hash bcbd2372d13708959e3203a54f41e7b5
648a0c8f261e71124cb9a507e37008c0d82b6b3c
b3c1ca50ce8871037caece60a1db47aa093e262bc76a410253d96542758fbab5
GET /wp-content/plugins/dpc-pwa-for-wp/assets/scripts/clientjs.js?ver=1.0.0 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Sun, 24 Oct 2021 06:21:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 15871
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/dpc-pwa-for-wp/assets/scripts/toast.js?ver=3.0
92.204.185.20200 OK 521 B URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/dpc-pwa-for-wp/assets/scripts/toast.js?ver=3.0
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (503)
Hash bded253ccd1b1db244028b6343f6199d
477f31d358ac6fa88a77e0858b1391ddacc5c79e
34f34e05706418de524ded339d9090cf4c0bdeb30be4ab3d3feaf5c2a3a370fb
GET /wp-content/plugins/dpc-pwa-for-wp/assets/scripts/toast.js?ver=3.0 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Sun, 24 Oct 2021 06:21:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 521
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/dpc-pwa-for-wp/assets/scripts/offlineforms.js?ver=3.0
92.204.185.20200 OK 1.4 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/dpc-pwa-for-wp/assets/scripts/offlineforms.js?ver=3.0
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash e6aae00808e9b217fe9f9e909bf268bb
d7b7c3ec241294dc7883a0685c4f84cd9b84da2d
b8cd71772b406661ff3ef520cfb5736a9949757c4878b68a57f18cb5fca20141
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/dpc-pwa-for-wp/assets/scripts/offlineforms.js?ver=3.0 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Sun, 24 Oct 2021 06:21:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1415
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/dpc-pwa-for-wp/assets/scripts/offline-indicator.js?ver=3.0
92.204.185.20200 OK 2.9 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/dpc-pwa-for-wp/assets/scripts/offline-indicator.js?ver=3.0
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (9656)
Hash b5cfa782cf7be7e070c1b2e2928178bb
140c04983ae9bbe1b2650bb6d6bbfebd9caf5a6a
c07af646b7d2a80d4c77c7e6b352013427bffd1aad6f9098224b8e6b968f990e
GET /wp-content/plugins/dpc-pwa-for-wp/assets/scripts/offline-indicator.js?ver=3.0 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Sun, 24 Oct 2021 06:21:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2948
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/dpc-pwa-for-wp/assets/scripts/ui.js?ver=3.0
92.204.185.20200 OK 2.0 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/dpc-pwa-for-wp/assets/scripts/ui.js?ver=3.0
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
Hash 6cc805f64bd19d7e4d554f69a87553c8
6d5d9cda587aae4a3c6273af09069e3c65e1f50f
b9e8f25621261e5df8ebbb4ab26aff46f2c9d741a797a51f889541ded39ea2d3
GET /wp-content/plugins/dpc-pwa-for-wp/assets/scripts/ui.js?ver=3.0 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Sun, 24 Oct 2021 06:21:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1970
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/internet-connection-status/assets/js/offline.js?ver=1.4.3
92.204.185.20200 OK 3.7 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/internet-connection-status/assets/js/offline.js?ver=1.4.3
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
Hash 453fb19838d6a4631b6d941d9728e61d
6c741515ffe30da5381c5009696a2fc32dfe67b6
867a31bd5c7ee6e7601cb6c78cd2eabe023cee7563c2b85c204b0888cf81e6a1
GET /wp-content/plugins/internet-connection-status/assets/js/offline.js?ver=1.4.3 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Thu, 03 Jun 2021 12:49:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3659
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 02:41:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.uskitsolutions.com/wp-content/plugins/internet-connection-status/assets/js/internet-connection.js?ver=1.4.3
92.204.185.20200 OK 376 B URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/internet-connection-status/assets/js/internet-connection.js?ver=1.4.3
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
Hash f8363fb9e787456dffa8fc4632c8acfc
802b4bbc3e14ed6b88fce1cd704816bf581a8aad
9166d268d5169f1bdf05a7cfc0f7484127c5957a7e05d03c10be6ba6ef43e4cb
GET /wp-content/plugins/internet-connection-status/assets/js/internet-connection.js?ver=1.4.3 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Thu, 03 Jun 2021 12:49:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 376
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.6.3
92.204.185.20200 OK 40 B URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.6.3
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with no line terminators
Hash 94d041d462db321cdb888066586f2068
717d2f9da7fb9f9e2bf2058a8177a0344f8a8647
b8166c5475df6a64ab2456e95f64564164ed697d258e8bfed8cebca40efd6fa5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.6.3 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Sat, 13 Aug 2022 08:19:23 GMT
accept-ranges: bytes
content-length: 40
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/elementskit/modules/parallax/assets/js/jquery.easing.1.3.js?ver=2.2.3
92.204.185.20200 OK 774 B URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementskit/modules/parallax/assets/js/jquery.easing.1.3.js?ver=2.2.3
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (3317), with no line terminators
Hash e70f744103133e9c313ef5ce02d968e7
606795fa1e4f7363fa2d89342e1e050839714e6c
043534b9019747e1c38a17fdaa0d604c98df6f2cf97994285f6776513741e62c
GET /wp-content/plugins/elementskit/modules/parallax/assets/js/jquery.easing.1.3.js?ver=2.2.3 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Sat, 05 Jun 2021 06:38:37 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 774
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/elementskit/modules/parallax/assets/js/tilt.jquery.min.js?ver=2.2.3
92.204.185.20200 OK 1.7 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementskit/modules/parallax/assets/js/tilt.jquery.min.js?ver=2.2.3
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (5616), with no line terminators
Hash b57373ce882c91914f58454b1bb9a3a6
6a2d7c647c801c06568c0d5da9963a573e40725c
69367838619a692dd9504d6b398586bfae8dd0db5fc2284882868ba91eaf63b3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementskit/modules/parallax/assets/js/tilt.jquery.min.js?ver=2.2.3 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Sat, 05 Jun 2021 06:38:37 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1660
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/elementskit/modules/parallax/assets/js/anime.js?ver=2.2.3
92.204.185.20200 OK 6.8 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementskit/modules/parallax/assets/js/anime.js?ver=2.2.3
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (17077), with no line terminators
Hash 8cbf89d28d300f1b8c6e36f380c435ec
6cb9a48b553e45a496ad35fba4d99a907ca938bd
68c1192b0319810eeba7f068b66e520d3bbe72113fcd8d9badeaf17d33f33cdb
GET /wp-content/plugins/elementskit/modules/parallax/assets/js/anime.js?ver=2.2.3 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Sat, 05 Jun 2021 06:38:37 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6841
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/elementskit/modules/parallax/assets/js/magician.js?ver=2.2.3
92.204.185.20200 OK 1.3 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementskit/modules/parallax/assets/js/magician.js?ver=2.2.3
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (4395), with no line terminators
Hash 65da899b05e9a10295fce1570ff889aa
b77b8f8e047bb77c84eb14b58306b3babb8585a7
23a9df1678a0ac1fade1ce626a17b06f5ed3d8f0550db6b426d3337829be287e
GET /wp-content/plugins/elementskit/modules/parallax/assets/js/magician.js?ver=2.2.3 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Sat, 05 Jun 2021 06:38:37 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1312
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.2.0
92.204.185.20200 OK 2.3 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.2.0
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (5493)
Hash 0f6bf8ddc343c449fc0ddf85962ef718
304e95e58e79a9ba35ef7d3d1dc0ea8186a4c8c5
5556f34e643a9b44aeea8a4fc0b83b0f14f90505e8c873b763338b99d7fe4e58
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.2.0 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Sun, 08 May 2022 11:22:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2265
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.6.5
92.204.185.20200 OK 2.0 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.6.5
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (4921)
Hash 32abef53f15ac0efc7ced5dce432001d
50884eeebaee27983b59e4e6e4785fc527a00fa9
d1a9ece83d2edc531900ecd37539e2e4a55aef991bdcc895cb53037da1d83f63
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.6.5 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Sat, 07 May 2022 17:49:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2049
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.6.5
92.204.185.20200 OK 4.4 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.6.5
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (14238)
Hash 957cb30d36257e7f213ed36a4ca1ed55
c536cfb2b709ab8e9db695afa6057a23e654d9ef
b71b70ca2e98db78ce12c38327f32b0c673b5c332b2d141430805e59ce9977ea
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.6.5 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Sat, 07 May 2022 17:49:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4448
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.6.3
92.204.185.20200 OK 40 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.6.3
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (45047)
Hash 4b29f739d2f0c324f8fe0292072a0215
e5ed795866581ac6ad512a55e4ece20a235920b5
351aa10967750cc94c97b8ee2c44cd129b24d80497a8a8e5065b417f18834ff2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.6.3 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Sat, 13 Aug 2022 08:19:25 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 40424
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/elementskit/modules/parallax/assets/js/TweenMax.min.js?ver=2.2.3
92.204.185.20200 OK 39 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementskit/modules/parallax/assets/js/TweenMax.min.js?ver=2.2.3
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (64975)
Hash 384a08fa7642dd3a43eabbf9ffd8fd30
1c751a05ff856524300813eaa66c46a662b5e757
e5776fafbc2e4ddc081e15c506ef09d3ea633f3cdecf6b5fc4fb71657e446486
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementskit/modules/parallax/assets/js/TweenMax.min.js?ver=2.2.3 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Sat, 05 Jun 2021 06:38:37 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 38590
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.2.0
92.204.185.20200 OK 1.8 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.2.0
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (6595), with no line terminators
Hash bc7ad49bba8c6fece75cf20e318bde6d
329866570ac3995fb33f1f6b55e6ea3d3c85d25b
479c4099528678e6689805bc618a02c300d62a0f5b41800672c57fb1a458a50e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.2.0 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Sun, 08 May 2022 11:22:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1767
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.2.0
92.204.185.20200 OK 16 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.2.0
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (57080)
Hash 52b7311c0451a82388365d1ee5c699ba
eb9f62d4dca70d8012a8540345fc05a5b5774ab5
0ff94738b3614ed9ec2e363aace6f9e80e74dac3e6fc687de837984b0248ad40
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.2.0 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Sun, 08 May 2022 11:22:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 15489
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8cd876589951719c94a6d49d1494bdbd
01600c8bb95fac543696e509b3e452b90d844572
e03942321526a2303220b1abd51f82f1d4cf80e0dd22a2582cf809b8bd729521
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 02:41:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.uskitsolutions.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
92.204.185.20200 OK 6.6 kB URL HTTP/2 www.uskitsolutions.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 139a41f01d192d239e7dce15ca307983
62a3e7c0c77209832dc649bc5583e5e0b4918bf5
d796462a5d212cd93b315b43dafb6e77dbe1c3aa567964dc40c1ab0e2c28f405
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Tue, 04 Oct 2022 07:56:27 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6637
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.6.5
92.204.185.20200 OK 11 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.6.5
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (37702)
Hash 96890c935e40809980ba0930db51617e
7731a0fe098357b4750abd6a11e1b64cf31bb72c
d591d824768205c670553d172ded017a2978465e0f2081390d71e4283617ef5e
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.6.5 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Sat, 07 May 2022 17:49:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10643
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.6.3
92.204.185.20200 OK 4.4 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.6.3
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (16580), with no line terminators
Hash 004a078b485aaade4374a70baf6bbf17
a540fc3a4fadab1baf69661678f2de45fe9b944a
0bbb45bb2b4a2a8e5f7e8308a79dd9e770ac139e440e1de31eae49d1862793ea
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.6.3 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Sat, 13 Aug 2022 08:19:25 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4443
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/elementskit/widgets/init/assets/js/elementor.js?ver=2.2.3
92.204.185.20200 OK 5.0 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementskit/widgets/init/assets/js/elementor.js?ver=2.2.3
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (17532), with no line terminators
Hash 59f99d7ba9c24bc5ededf0fe108f2571
b9e2d5bb67f253946f8c97aeffea9ad21196ad6e
bce2c83ec02be9adcf14b6b202e628310259216e85f72e0a8edc3af3a5a07a93
GET /wp-content/plugins/elementskit/widgets/init/assets/js/elementor.js?ver=2.2.3 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Sat, 05 Jun 2021 06:38:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4986
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=2.6.3
92.204.185.20200 OK 34 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=2.6.3
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (65280)
Hash 83a90323ac82b98062b4b2c8ac8c5051
d7d376677e3546b756b4fec6219be72b85c4f8f5
7fd68e9ea0ebd35958da46d7373113d1a3646a671217cf2cf471c65c3d710613
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=2.6.3 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Sat, 07 May 2022 17:49:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 34004
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 08a230d8f3ca4aa6208db099d2d7139e
c26e33b4b69de280bab2ed28de28f1b001af1eac
ba5ce06dc2eb41128df1d26af414e656d0ab0e768ad1becb255d98e28f42e29b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1490
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 02:41:37 GMT
Last-Modified: Fri, 02 Dec 2022 02:16:47 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 280
www.uskitsolutions.com/wp-content/plugins/elementskit/modules/sticky-content/assets/js/jquery.sticky.js?ver=2.2.3
92.204.185.20200 OK 1.5 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementskit/modules/sticky-content/assets/js/jquery.sticky.js?ver=2.2.3
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (4012), with no line terminators
Hash e979bbe31419a5fe4ca4dde501f1d2ec
c53ec0bccb2b3c8e2882e5d147c323240bea9a9f
00b7e9b32caaa946ba626dbdda49a8cf5f9448bf747de90357f136d2bc914755
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementskit/modules/sticky-content/assets/js/jquery.sticky.js?ver=2.2.3 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Sat, 05 Jun 2021 06:38:37 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1535
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/elementskit/modules/sticky-content/assets/js/init.js?ver=2.2.3
92.204.185.20200 OK 836 B URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementskit/modules/sticky-content/assets/js/init.js?ver=2.2.3
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (2338), with no line terminators
Hash 50f41dd6f6675faa7423af1587c63177
ca284f99085cfab0a3bc602164c865126a5550b5
f498891f5374f698728353753bc409f8a7c328c1ed80a2bad6dd53be7b8f2948
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementskit/modules/sticky-content/assets/js/init.js?ver=2.2.3 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Sat, 05 Jun 2021 06:38:37 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 836
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/elementskit/modules/parallax/assets/js/widget-init.js?ver=2.2.3
92.204.185.20200 OK 998 B URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementskit/modules/parallax/assets/js/widget-init.js?ver=2.2.3
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (3370), with no line terminators
Hash ef42b14246d6c5fceb4a7ef777ba6db6
08d8f370bfebf8ee64c338b2ee5b1ff5701b5439
ac1abf91f8af27d86e764aed207f8b00bb3e19aa381a9779dfa76b6c640ea88d
GET /wp-content/plugins/elementskit/modules/parallax/assets/js/widget-init.js?ver=2.2.3 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Sat, 05 Jun 2021 06:38:37 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 998
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/elementskit/modules/parallax/assets/js/section-init.js?ver=2.2.3
92.204.185.20200 OK 1.3 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementskit/modules/parallax/assets/js/section-init.js?ver=2.2.3
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (3569), with no line terminators
Hash de5a744c61575f898015512bc70c8ea5
fcce00ef0ec862ae027f328ae1271aa88ffbbf9a
38063a062038a2828929885e491f5bebbc1644e3cd8e438449478785f6a56157
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementskit/modules/parallax/assets/js/section-init.js?ver=2.2.3 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Sat, 05 Jun 2021 06:38:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1328
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-194002450-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-194002450-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 3d06f6d01953e2530cb366eb888975fd
11fdfd8630477174b91f608fa8c80717ba5afdeb
656907be4631ba77ce67c98ff9f6f870cdc28b5f24a504e91e3a3c1314fb1ec9
GET /gtag/js?id=UA-194002450-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 02 Dec 2022 02:41:37 GMT
expires: Fri, 02 Dec 2022 02:41:37 GMT
cache-control: private, max-age=900
last-modified: Fri, 02 Dec 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43577
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 02:41:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 188c50963e7939b1f26a31dbcb8c8200
859416e6148ea6618584e53604efcf072bb989cc
3a313cd3c1693a886bfbf6ffc6fbac78f87e6ded2b9a7749553444ada65ce36e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 02:41:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 02:41:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.onesignal.com/sdks/OneSignalSDK.js
104.18.226.52200 OK 447 kB URL HTTP/2 cdn.onesignal.com/sdks/OneSignalSDK.js
IP 104.18.226.52:0
File type ASCII text, with very long lines (9097)
Size 447 kB (447058 bytes)
Hash 0173a5b7e30330957d8a987994620d8c
fab0fe4a8ed3127b0156fa949c9af4d5660dd986
a86d6712f1c4d6d1a3dbd1452cb8c4b227a7c6e494ac51c99219f80a68c3feea
GET /sdks/OneSignalSDK.js HTTP/1.1
Host: cdn.onesignal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 02:41:36 GMT
content-type: application/javascript
etag: W/"ae63ef8ff03da61fffaa7f165729897a"
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 1952
expires: Mon, 05 Dec 2022 02:41:36 GMT
cache-control: public, max-age=259200
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains
server: cloudflare
cf-ray: 7730b45dac76b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
92.204.185.20200 OK 78 kB URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Hash e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.uskitsolutions.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/font-woff2
last-modified: Sat, 07 May 2022 17:49:20 GMT
accept-ranges: bytes
content-length: 78196
date: Fri, 02 Dec 2022 02:41:37 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 02:41:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 02:41:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
216.58.207.227200 OK 8.0 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Hash 72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.uskitsolutions.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:28:50 GMT
expires: Thu, 30 Nov 2023 19:28:50 GMT
cache-control: public, max-age=31536000
age: 112367
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 02:41:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 16980, version 1.0\012- data
Hash 8a97f720d330e75ccdbda9ae0e9f5e90
8e4fee916581ab48d385187705667cebc7500afe
97d5a594e7f76c7e50045b67667fd6b74b268515efe6425097be1b2647079787
GET /s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.uskitsolutions.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16980
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 15:43:01 GMT
expires: Wed, 29 Nov 2023 15:43:01 GMT
cache-control: public, max-age=31536000
age: 212316
last-modified: Mon, 09 May 2022 18:33:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc9iB85tU1E.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc9iB85tU1E.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 17156, version 1.0\012- data
Hash 7e344afc10a492d516789f072fa6edfd
f38bd0b4e9d0577528f533b8ecd80801a0c6340f
c84423c305779f2aab07847a2e3870ac1ea4072e470d5eb149c01e0e0497eae3
GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc9iB85tU1E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.uskitsolutions.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17156
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 21:12:20 GMT
expires: Tue, 28 Nov 2023 21:12:20 GMT
cache-control: public, max-age=31536000
age: 278957
last-modified: Mon, 09 May 2022 18:33:24 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 02:41:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 17116, version 1.0\012- data
Hash bcf3a3fb620dfbee774f84e2c8e71530
40a79d240acdd7e5a95e165515ac7c0958a37971
280aaa8929329764ac3213ca093c63505cfcc665347939c79905c426d33867c5
GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.uskitsolutions.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17116
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 15:42:48 GMT
expires: Wed, 29 Nov 2023 15:42:48 GMT
cache-control: public, max-age=31536000
age: 212329
last-modified: Mon, 09 May 2022 18:31:19 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8aBc5tU1E.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8aBc5tU1E.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 17324, version 1.0\012- data
Hash 51ca5ce70497b58a8cc96b2b26ce2e19
7eb7e4f38f8ebe09b504f6dcc3226a8de63a9042
6fce8ebc3557b63496f8fafe1c182f2aa8669550f9398b4d9beebddd43306ed3
GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8aBc5tU1E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.uskitsolutions.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17324
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 02:44:38 GMT
expires: Wed, 29 Nov 2023 02:44:38 GMT
cache-control: public, max-age=31536000
age: 259019
last-modified: Mon, 09 May 2022 18:31:14 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
216.58.207.227200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.uskitsolutions.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:28:50 GMT
expires: Thu, 30 Nov 2023 19:28:50 GMT
cache-control: public, max-age=31536000
age: 112367
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 02:41:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.uskitsolutions.com/wp-content/uploads/2020/12/usk-it-solutions-small-transparent-logo-300x150-01.png.webp
92.204.185.20200 OK 8.2 kB URL HTTP/2 www.uskitsolutions.com/wp-content/uploads/2020/12/usk-it-solutions-small-transparent-logo-300x150-01.png.webp
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type RIFF (little-endian) data, Web/P image\012- data
Hash b5fff3e07529ca9ff880c3ad09d3e6ea
2ff3c00175e9659e7f89f6036a3f1e5fb08c9c1f
fd306124d949b681374626ddafddc6bedd76d5a087a94e34958e6efd097160d3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2020/12/usk-it-solutions-small-transparent-logo-300x150-01.png.webp HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: image/webp
last-modified: Sat, 09 Apr 2022 05:33:25 GMT
accept-ranges: bytes
content-length: 8228
date: Fri, 02 Dec 2022 02:41:37 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/uploads/2020/12/usk-it-solutions-small-transparent-logo-300x150.png
92.204.185.20200 OK 5.9 kB URL HTTP/2 www.uskitsolutions.com/wp-content/uploads/2020/12/usk-it-solutions-small-transparent-logo-300x150.png
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type PNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 34f24384311b9e53de6f710afbb48ad6
26ad599e81323d0e359924d95caa682809c92795
bb5a47f3bdd7a92731fe359e8726129ff1be4a410175621a39d5df2551468b49
GET /wp-content/uploads/2020/12/usk-it-solutions-small-transparent-logo-300x150.png HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: image/png
last-modified: Wed, 14 Apr 2021 02:42:44 GMT
accept-ranges: bytes
content-length: 5870
date: Fri, 02 Dec 2022 02:41:37 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/uploads/2022/10/Top-Digital-Marketing-Agencies-For-Startups.png.webp
92.204.185.20200 OK 7.4 kB URL HTTP/2 www.uskitsolutions.com/wp-content/uploads/2022/10/Top-Digital-Marketing-Agencies-For-Startups.png.webp
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type RIFF (little-endian) data, Web/P image\012- data
Hash 712b30b3e403d3c12439c1774ab3402f
3410d11267dd9c956da215cdd3413ed790e2ab0c
269854a76fd0b7f2ba5631d7ab7dc97ef777c2fc924f3f1c14b72a12147374cb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/10/Top-Digital-Marketing-Agencies-For-Startups.png.webp HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: image/webp
last-modified: Wed, 05 Oct 2022 07:37:22 GMT
accept-ranges: bytes
content-length: 7434
date: Fri, 02 Dec 2022 02:41:37 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/uploads/2020/12/cropped-usk-it-solutions-logo-transparent-1-192x192.png
92.204.185.20200 OK 9.4 kB URL HTTP/2 www.uskitsolutions.com/wp-content/uploads/2020/12/cropped-usk-it-solutions-logo-transparent-1-192x192.png
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 5816cec700ad077a6c399a8cb89f4e4a
0042a1519c6709e85950956e7291e1457a842f32
16dcc59105157ccf258ea646a020300db83caaedfa9f35ec412f6f5522d69072
GET /wp-content/uploads/2020/12/cropped-usk-it-solutions-logo-transparent-1-192x192.png HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs; pys_landing_page=https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: image/png
last-modified: Sat, 10 Apr 2021 09:48:49 GMT
accept-ranges: bytes
content-length: 9434
date: Fri, 02 Dec 2022 02:41:37 GMT
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/uploads/2020/12/cropped-usk-it-solutions-logo-transparent-1-32x32.png
92.204.185.20200 OK 1.1 kB URL HTTP/2 www.uskitsolutions.com/wp-content/uploads/2020/12/cropped-usk-it-solutions-logo-transparent-1-32x32.png
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash f9667c497670bed22e40c1f6d38cb0f3
49105c35edd9fceb700cb233dd3f564303a9b2db
fb04733580b171ae13829522060af71675119fc0d491ac1d54dda0c60179791b
GET /wp-content/uploads/2020/12/cropped-usk-it-solutions-logo-transparent-1-32x32.png HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs; pys_landing_page=https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: image/png
last-modified: Wed, 14 Apr 2021 02:43:18 GMT
accept-ranges: bytes
content-length: 1116
date: Fri, 02 Dec 2022 02:41:37 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a11a991958dbd78dfb3392214590ef38
c5fb54ce1ad1c51598623b66827af482c565e0d5
01d67dc39941deea93712fa87453fd27679357916ab856358e0bda7a63b2624d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4953
Cache-Control: max-age=167050
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 02:41:37 GMT
Etag: "63893c12-1d7"
Expires: Sun, 04 Dec 2022 01:05:47 GMT
Last-Modified: Thu, 01 Dec 2022 23:43:14 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a6ad57d839c4b452d7118cf2052f9d35
50afdbe46f04c7611c1a0111bce3a76775e50272
4c5c20573601bde0f5c3567e02d02d74ab22d4ffe12f632e1def1b87dc86ad3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 02:41:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: EiY/9fW4viDpS/09EqwtEByPW1ULIZls0KDb0HbWIkcdRXtdytpxYCpAl3wC3E48EyKu7YCaQCVgvlqr1WQY/A==
priority: u=3,i
content-length: 27340
x-fb-trip-id: 1904183273
date: Fri, 02 Dec 2022 02:41:37 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a11a991958dbd78dfb3392214590ef38
c5fb54ce1ad1c51598623b66827af482c565e0d5
01d67dc39941deea93712fa87453fd27679357916ab856358e0bda7a63b2624d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4953
Cache-Control: max-age=167050
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 02:41:37 GMT
Etag: "63893c12-1d7"
Expires: Sun, 04 Dec 2022 01:05:47 GMT
Last-Modified: Thu, 01 Dec 2022 23:43:14 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
www.youtube.com/iframe_api
142.250.74.46200 OK 1.6 kB URL HTTP/2 www.youtube.com/iframe_api
IP 142.250.74.46:0
File type ASCII text, with very long lines (509)
Hash ec00e48747b4c686bd00b2648e510cea
b1d5194c401639f2c302298a238e16e7e34a8fdb
0d17715940b3668a8b5716f15c1043945a38155bf5538e323d4d2b5a80472056
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Fri, 02 Dec 2022 02:41:37 GMT
date: Fri, 02 Dec 2022 02:41:37 GMT
cache-control: private, max-age=0
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=MMdOI4q5duA; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=Y0X0oOSAr-I; Domain=.youtube.com; Expires=Wed, 31-May-2023 02:41:37 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+118; expires=Sun, 01-Dec-2024 02:41:37 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a6ad57d839c4b452d7118cf2052f9d35
50afdbe46f04c7611c1a0111bce3a76775e50272
4c5c20573601bde0f5c3567e02d02d74ab22d4ffe12f632e1def1b87dc86ad3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 02:41:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
script.hotjar.com/modules.90de377b639fd5b933d2.js
143.204.55.96200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.90de377b639fd5b933d2.js
IP 143.204.55.96:0
File type Unicode text, UTF-8 text, with very long lines (48714)
Hash 8766036825574dfbddbfc197bd098f6b
3c6087743e1b23d7f071f66d65bec1fdb143a2c2
89c7cf4e7103f90d1cc059e02ac95e97a976de4867e6215945fa6046b04db0b8
GET /modules.90de377b639fd5b933d2.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68504
date: Thu, 01 Dec 2022 13:37:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "8766036825574dfbddbfc197bd098f6b"
last-modified: Thu, 01 Dec 2022 13:36:28 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: tMeKecEltW0ZjE2VOVzC-eEjoycz7SrJ1z3KHiAfdM-nfUQY_jE5lg==
age: 47072
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-0NCD2BPJTR>m=2oebu0&_p=110621517&gdid=dZTNiMT&cid=2042568852.1669948896&ul=en-us&sr=1280x1024&_s=1&sid=1669948896&sct=1&seg=0&dl=https%3A%2F%2Fwww.uskitsolutions.com%2Flib%2FcrgVzMrdz2.zip&dt=Page%20not%20found%20-%20USK%20IT%20SOLUTIONS&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-0NCD2BPJTR>m=2oebu0&_p=110621517&gdid=dZTNiMT&cid=2042568852.1669948896&ul=en-us&sr=1280x1024&_s=1&sid=1669948896&sct=1&seg=0&dl=https%3A%2F%2Fwww.uskitsolutions.com%2Flib%2FcrgVzMrdz2.zip&dt=Page%20not%20found%20-%20USK%20IT%20SOLUTIONS&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-0NCD2BPJTR>m=2oebu0&_p=110621517&gdid=dZTNiMT&cid=2042568852.1669948896&ul=en-us&sr=1280x1024&_s=1&sid=1669948896&sct=1&seg=0&dl=https%3A%2F%2Fwww.uskitsolutions.com%2Flib%2FcrgVzMrdz2.zip&dt=Page%20not%20found%20-%20USK%20IT%20SOLUTIONS&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.uskitsolutions.com
Connection: keep-alive
Referer: https://www.uskitsolutions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.uskitsolutions.com
date: Fri, 02 Dec 2022 02:41:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
invitejs.trustpilot.com/tp.min.js
54.230.111.68200 OK 0 B URL HTTP/2 invitejs.trustpilot.com/tp.min.js
IP 54.230.111.68:0
GET /tp.min.js HTTP/1.1
Host: invitejs.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
last-modified: Mon, 28 Nov 2022 07:41:17 GMT
content-encoding: gzip
cache-control: public, max-age=86400
date: Fri, 02 Dec 2022 01:06:29 GMT
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CZMAid7Kx-XI_xNNwRXpU4S4VEUEyzu7T5t-eAYUUYepa6SbHmJnWg==
age: 5708
X-Firefox-Spdy: h2
www.uskitsolutions.com/lib/crgVzMrdz2.zip
92.204.185.20404 Not Found 0 B URL HTTP/2 www.uskitsolutions.com/lib/crgVzMrdz2.zip
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
Analyzer Verdict Alert fortinet Malware
GET /lib/crgVzMrdz2.zip HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 404 Not Found
x-powered-by: PHP/8.0.24
set-cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs; path=/; secure; HttpOnly
PHPSESSID=342vqk7m41mc5uejl78v2s7hjs; expires=Sat, 02-Dec-2023 02:41:34 GMT; Max-Age=31536000; secure
pragma: no-cache
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.uskitsolutions.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
content-encoding: gzip
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Nunito+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Nunito+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3
IP 142.250.74.106:0
GET /css?family=Nunito+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Dec 2022 02:41:37 GMT
date: Fri, 02 Dec 2022 02:41:37 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-2670386.js?sv=5
54.230.111.8200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-2670386.js?sv=5
IP 54.230.111.8:0
GET /c/hotjar-2670386.js?sv=5 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Fri, 02 Dec 2022 02:41:37 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: W/71625094dbd12c8b6c78f1ed21a3be49
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: s_ycnupxfbICrpyJ5HK78DCjqjg_2xQjiiCXj-KcNqGelKKncJXIlg==
X-Firefox-Spdy: h2
www.uskitsolutions.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.11
92.204.185.20200 OK 0 B URL HTTP/2 www.uskitsolutions.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.11
IP 92.204.185.20:0
ASN #29066 Host Europe GmbH
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.11 HTTP/1.1
Host: www.uskitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uskitsolutions.com/lib/crgVzMrdz2.zip
Cookie: PHPSESSID=342vqk7m41mc5uejl78v2s7hjs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Sun, 23 May 2021 10:13:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 91616
date: Fri, 02 Dec 2022 02:41:36 GMT
X-Firefox-Spdy: h2