Report - skillexchange.xyz/job/brand-designer/51189

Report Overview

Submitted URL
skillexchange.xyz/job/brand-designer/51189
IP
104.21.15.39
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-24 04:09:29
Access
public
Website Title
Brand Designer at Flowcode — Skill Exchange XYZ
Final URL
skillexchange.xyz/job/brand-designer/51189
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
168

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
m.stripe.com	1092	1995-09-12	2017-01-30	2024-04-23	482 B	909 B	52.10.82.34
r.stripe.com	5180	1995-09-12	2021-03-08	2024-04-22	444 B	451 B	54.186.23.98
cdn.jsdelivr.net	439	2012-05-16	2012-09-30	2024-04-23	381 B	138 kB	151.101.65.229
skillexchange.xyz	unknown	unknown	No data	No data	49 kB	4.0 MB	104.21.15.39
o4506217851322368.ingest.sentry.io	unknown	unknown	No data	No data	643 B	518 B	34.120.195.249
cdn.skillexchange.xyz	unknown	2022-11-24	2023-10-18	2024-04-14	4.0 kB	120 kB	104.21.15.39
js.stripe.com	1149	1995-09-12	2012-09-30	2024-04-22	4.6 kB	944 kB	151.101.192.176
static.cloudflareinsights.com	1294	2019-08-30	2019-09-24	2024-04-23	463 B	20 kB	104.16.80.73
hatscripts.github.io	393062	2013-03-08	2019-11-29	2024-03-05	2.1 kB	4.5 kB	185.199.110.153
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-04-22	387 B	101 kB	142.250.74.40
m.stripe.network	1204	2017-03-16	2017-05-17	2024-04-23	1.5 kB	93 kB	151.101.192.176
cdn.tolt.io	unknown	2022-03-14	2022-12-09	2024-02-26	360 B	7.2 kB	143.204.55.99

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed
2024-04-24	medium	skillexchange.xyz	Sinkholed

ThreatFox

No alerts detected

JavaScript (55)

	URL	Size	First Seen	Last Seen
	skillexchange.xyz/_next/static/chunks/8352-5599abc12f16e448.js	94 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/8352-5599abc12f16e448.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:37 Last Seen2024-04-24 06:09:41 Times Seen2 Hash d0805f64b76886f0cf77c3992fb1d850 d5317fb8a221c466a94124ffbbfdf13c86d2dff2 cfe81e3a7eee0391b7c9f3a2731dd275e0ad19b56b73b6c0e7aab7c8db5aeb24 Loading...

	skillexchange.xyz/_next/static/chunks/8105-e10b45daca498019.js	7.9 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/8105-e10b45daca498019.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:37 Last Seen2024-04-24 06:09:37 Times Seen1 Hash b2f50fa370ae6ec2f947ecf6e20cdeb9 3a1cad5c2e4fc0fc1b759647748971149f416107 a4db8309bc5c70af2ccb643c2087a5186f341770a59a9b00447d2604cd944441 Loading...

	skillexchange.xyz/_next/static/chunks/pages/talent-0986d42246049bd9.js	15 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/pages/talent-0986d42246049bd9.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:37 Last Seen2024-04-24 06:09:42 Times Seen3 Hash 01496729d8fd99f87d5d82da22f95b09 cfa16150f6f3a881353171ba7799240ac44d6f05 b54eeed3fef41efcf6a4996889989d1aafc5bd7bb10af136c7433002deec9501 Loading...

	skillexchange.xyz/_next/static/chunks/5920-1410186be8ddda2a.js	32 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/5920-1410186be8ddda2a.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:37 Last Seen2024-04-24 06:09:41 Times Seen2 Hash 71eb8b609acac1f927680a4b02da5165 a35e6b49fd78c646689e042316895d070cc23626 b2bd38c7a6a7bcff21a33b0a5f3eba0dd6c6b42c0b266647c52ee76d336ea71c Loading...

	skillexchange.xyz/_next/static/chunks/6234-ba230d6f86aa7a15.js	9.5 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/6234-ba230d6f86aa7a15.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:37 Last Seen2024-04-24 06:09:41 Times Seen2 Hash bff6eea57a19b34a20c399afcee4db09 07e9aafb16982cc4995a50016125d7f1af0cc7f5 ff6a80df16b37f205858cf826bbd57cd55bbf731ff3204cda05b8becd51c4384 Loading...

	skillexchange.xyz/_next/static/chunks/5935-cfbb7c334a9ef714.js	33 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/5935-cfbb7c334a9ef714.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:38 Last Seen2024-04-24 06:09:41 Times Seen2 Hash 8c8e9347dcf28b016ee4c06a71a064f7 d9b8314258887ffb8df877d62b75b828e4e7d9ce 93db94b193824e4abfc3a4e9b708a7dfc968a94437aff65ff3a08b3788007d2f Loading...

	skillexchange.xyz/_next/static/chunks/pages/job/%5Brole%5D/%5BslugId%5D-cba9064d19c1fe94.js	12 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/pages/job/%5Brole%5D/%5BslugId%5D-cba9064d19c1fe94.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:38 Last Seen2024-04-24 06:09:42 Times Seen2 Hash 30630a76870d2c5d62e7c96a3971c206 4ca9c4309c030f6e578867abe68dcd66910f91eb 5973cec6d5ccb7647882ce19c735b21e633d664890ac5ebc480125bd0e5f0e84 Loading...

	skillexchange.xyz/_next/static/chunks/3280-641842fe7ccb1525.js	6.2 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/3280-641842fe7ccb1525.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:38 Last Seen2024-04-24 06:09:38 Times Seen1 Hash 8cca1a234bc341f8f78be96b08aa1225 a7d54bdb9f98fb007474ebb60dd4e756fd4f563c d2ce58d63f59b2d35dd92e8a4d03cb9467c2b694a3b6757941b7f2b137f3c127 Loading...

	js.stripe.com/v3/fingerprinted/js/shared-9fd521d80856a29744166bf66a6309fd.js	571 kB	2024-04-24	2024-04-24
Pretty URL js.stripe.com/v3/fingerprinted/js/shared-9fd521d80856a29744166bf66a6309fd.js IP 151.101.192.176 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:38 Last Seen2024-04-24 08:31:57 Times Seen4 Hash 893e4d3bc0ebce10df7a33e39668f60a 78254f8997380bb88189f11c1b79868d6e706858 8aeaef9e638de27e187f38fb5a530c66eeff29bf1fdeec30bfe1594311c18472 Loading...

	skillexchange.xyz/job/brand-designer/51189	451 B	2023-03-10	2024-05-04
Pretty URL skillexchange.xyz/job/brand-designer/51189 IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 15:50:13 Last Seen2024-05-04 23:09:37 Times Seen29 Hash 6fbc235591d1a9cacd7e215c7adef618 cc219857409468f46e2910953aa014704afe1891 ab5f83697b19527109b378e937d6685a9eb2a4ad710705e24711be0b7d713940 Loading...

	www.googletagmanager.com/gtag/js?id=G-55YTN90RVW	302 kB	2024-04-24	2024-04-24
Pretty URL www.googletagmanager.com/gtag/js?id=G-55YTN90RVW IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:38 Last Seen2024-04-24 06:09:41 Times Seen2 Hash 144bdf6c5a394fcc375d96f665a175a3 bbc4bca938e87844f2b88dab8c915a3dbe0d3a37 d15aca02de718e9652363a569233550760786d21daff913654e311bfc85f3a0a Loading...

	skillexchange.xyz/_next/static/chunks/5099-7849147e5b693118.js	14 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/5099-7849147e5b693118.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:38 Last Seen2024-04-24 06:09:41 Times Seen2 Hash 3db3b34acd892ee8eeab5bd9a3829c64 f0a70eae3d9999ae7319174c546c56a747958952 7b11b06ebacb31dc51684c62623357b8299350e4e6f23e82e152dea35ce66143 Loading...

	skillexchange.xyz/_next/static/chunks/5329-a5a5c9b7342529a7.js	13 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/5329-a5a5c9b7342529a7.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:38 Last Seen2024-04-24 06:09:41 Times Seen2 Hash c25e002e8293392b8a2bb82d3a817936 683dd7b57df53168756f26b303f1923150b4a43f 3c3a9cdebada4bef9ec5ac32a6a0e05792b15a3868d0aad9173b1ff170040585 Loading...

	skillexchange.xyz/_next/static/chunks/pages/_app-6ba8234dd4ec1463.js	617 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/pages/_app-6ba8234dd4ec1463.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:38 Last Seen2024-04-24 06:09:38 Times Seen1 Hash eb8c8c22c749347f4eb935ee3e3c81f2 f82ddc3572874c8810975b7438ed2ea6e900d316 28a00085d60d4021c5fff1e3b73161e734c480a87e4e1275534029a0ab7f7de5 Loading...

	skillexchange.xyz/_next/static/chunks/9270-854d1e8128cff2e4.js	68 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/9270-854d1e8128cff2e4.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:38 Last Seen2024-04-24 06:09:41 Times Seen2 Hash 8c7451affee06713a87fa6c7846a38cf 3e90762449107b2a0baea1b6608ce977f271b081 aa5fcdeb85868dde39b28c99ab68ce3a7d8f755b8ffffe6639aff81cb9afd829 Loading...

	skillexchange.xyz/_next/static/chunks/2175-8ed50ee19373c540.js	38 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/2175-8ed50ee19373c540.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:38 Last Seen2024-04-24 06:09:42 Times Seen3 Hash ac108a5504d64df5a1bd17a8042ee329 cc864c22f0a75d4adcc6670d68900cdb08d03ea4 9b260784036c1db097c0dde9d13162f828a265aaac989be34ff7c70947950e03 Loading...

	skillexchange.xyz/_next/static/chunks/7291-8f2725a1b372e9f6.js	53 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/7291-8f2725a1b372e9f6.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:38 Last Seen2024-04-24 06:09:42 Times Seen3 Hash e5e1bafbd585ec0378c461ed56ec8830 f6325640bc0e6f82ed0b18d985a1c08a45982d70 07efef8486428dee85ede815cbd870f0d1a46992c0a195c16ac32fb04447945d Loading...

	js.stripe.com/v3/fingerprinted/js/m-outer-15a2b40a058ddff1cffdb63779fe3de1.js	526 B	2023-03-07	2024-05-05
Pretty URL js.stripe.com/v3/fingerprinted/js/m-outer-15a2b40a058ddff1cffdb63779fe3de1.js IP 151.101.192.176 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:26 Last Seen2024-05-05 20:40:19 Times Seen3400 Hash d96c709017743c0759cf3853d1806ba5 72e21587610c49c8305a55e71f73fa88ed618205 ba2338aa6670580269c762f51c4291daef913201aa8f4d4fd166c1a878262652 Loading...

	skillexchange.xyz/_next/static/chunks/855-93c19a02b9f44e32.js	17 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/855-93c19a02b9f44e32.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:39 Last Seen2024-04-24 06:09:42 Times Seen3 Hash 16f278e38e80e76560bffd44f2e03691 9a3df159059abb5da0bb8a433eda73cf031aac99 e691d7405f0e6897b3c47ebb8c64a09ae933940f104c8b9cd5bc4e60dbc64f67 Loading...

	skillexchange.xyz/_next/static/chunks/6665-338f85a7c469018e.js	9.7 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/6665-338f85a7c469018e.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:39 Last Seen2024-04-24 06:09:39 Times Seen1 Hash 88d017367487b1ec02d00ef4ca0e7d61 fae3a1adabeacd97e059b874ffb844453afc0558 ec5830c13d69c0d7a57ba09d896602a54cc522b4ebe5724326ce6571cf2743a9 Loading...

	skillexchange.xyz/_next/static/chunks/2216.8804dc9fd6d2a3b3.js	734 B	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/2216.8804dc9fd6d2a3b3.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:39 Last Seen2024-04-24 06:09:39 Times Seen1 Hash 8401f308f26f0a007120730fd67404bc 19e2d2e4308a5e997a2bb97e3960910b69b08c21 ed7d908604055b1388cc6798992625dc60147bc187de1f66b00b09562e109504 Loading...

	skillexchange.xyz/_next/static/chunks/3492-31c5a4204ffdf16a.js	9.0 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/3492-31c5a4204ffdf16a.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:39 Last Seen2024-04-24 06:09:41 Times Seen2 Hash 38d0f826ad87901bc73f8fd5fbbd0e21 77dd5d0f8e2036a2fd5e5c05a2b78b570a4fc4d0 9c7a39a8f0c0b62da853e226d085b8f2ff5074c94a330def1ab045c867d3cd2d Loading...

	skillexchange.xyz/_next/static/chunks/pages/login-d50c8cfdf2a7f8f3.js	3.0 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/pages/login-d50c8cfdf2a7f8f3.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:39 Last Seen2024-04-24 06:09:39 Times Seen1 Hash 86a78495c9c2e9deb82f5270d6f50c0c b7abd616426093667778616a85b32aa5917e8dbf c6825b2c677eccc74668b65a696ee69db7a45c79b08fb0f4c9ddd24fc4d28c78 Loading...

	skillexchange.xyz/_next/static/chunks/2217-88c0056f7c1fd057.js	39 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/2217-88c0056f7c1fd057.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:39 Last Seen2024-04-24 06:09:39 Times Seen1 Hash 8af3cf474f0a4bb27a662b073b050775 244eb712beb647ea94447c3c75fcb59088a90783 c63d3dc88ad3d1fa06449e2bc02527425c4bdc5c0820ff5039c4765709c27cbb Loading...

	js.stripe.com/v3	618 kB	2024-04-23	2024-04-24
Pretty URL js.stripe.com/v3 IP 151.101.192.176 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-23 22:51:54 Last Seen2024-04-24 19:49:13 Times Seen18 Hash a1cdeec7da68498d54bc206d38ac663c caadff8e7c4178a8f02b1c5658b713473d3634b6 5833003146c1bdeda2a122332d3bfabd0bc3534cd9c02983bc0b2c5267bfe4f4 Loading...

	skillexchange.xyz/_next/static/chunks/framework-b78bc773b89d3272.js	141 kB	2023-10-22	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/framework-b78bc773b89d3272.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-22 05:44:39 Last Seen2024-04-24 06:09:42 Times Seen49 Hash f7b32674c1c449455d4e36f5fe6af1c3 3b0ef231655193ca69fa431b0d14ef07282f9726 2cb24c9f32190e6caac8287329265222fb8259cee1a26f41ac186c05bdb0687c Loading...

	skillexchange.xyz/_next/static/wi-DahJjgdATtn6S5I_k1/_buildManifest.js	5.0 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/wi-DahJjgdATtn6S5I_k1/_buildManifest.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:39 Last Seen2024-04-24 06:09:39 Times Seen1 Hash 26f5f63f4de07daed40d95eb3770100c 856c3a990322cd8dc2e43fa002dbabf35237300f b52d5e0499129523a685e58437a8f9b9d339e4525633901df8200ef0c56392ff Loading...

	skillexchange.xyz/_next/static/chunks/9802-cd18ef44ce03bad2.js	10 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/9802-cd18ef44ce03bad2.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:39 Last Seen2024-04-24 06:09:42 Times Seen3 Hash 21d8faf93de8bf488b94a87a0decdec0 727ec78a2038ae6f195ae88e1529cf905a2ad519 80e82d53797e044c655b7ddea804f9e70a5822a77f47929c39c932bd6013780d Loading...

	static.cloudflareinsights.com/beacon.min.js/v55bfa2fee65d44688e90c00735ed189a1713218998793	19 kB	2024-04-17	2024-05-03
Pretty URL static.cloudflareinsights.com/beacon.min.js/v55bfa2fee65d44688e90c00735ed189a1713218998793 IP 104.16.80.73 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 04:05:01 Last Seen2024-05-03 04:44:29 Times Seen1486 Hash 3be93fd15d2f7dee2fc0c8981c6fa5c6 8cd88c36fad3e96641dbc4d781f5ddbe5123312f 17106bf803d42bcf2f2bdf778ece084d3f91c68e7ea41dae7bff61fefa573dee Loading...

	unknown	192 B	2024-04-24	2024-04-24
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:39 Last Seen2024-04-24 06:09:39 Times Seen1 Hash d04ceddee57ba3ddbb7375281445670d 6ac6bf1d8580f0a52ce4035f1f790bc585ad1ffa 9502d60294017dff95107db3d19660c5e6267c3c8fc721f3d760ce5dab3a012e Loading...

	skillexchange.xyz/_next/static/chunks/368-01705248c511c25a.js	67 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/368-01705248c511c25a.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:39 Last Seen2024-04-24 06:09:42 Times Seen3 Hash c8b611e5a7d1ea48af0fc6e1e4d5a128 ede1c7d9af7b5c330deb1c4577225fdade6bef3c a159711f5302501108517d90c899dbb1117caade570d8a255f357db7e5186054 Loading...

	skillexchange.xyz/_next/static/chunks/main-1e44b94efc3603ef.js	132 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/main-1e44b94efc3603ef.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:39 Last Seen2024-04-24 06:09:42 Times Seen2 Hash d5cf3e6cdee52d4a9c679a738bfbe0df bfaad46f978d22211efaf3740e3ac49e6c9ceac2 91866559aa417227937a1486f007b62140ceeb9403c6f8691946642f08705b00 Loading...

	cdn.jsdelivr.net/npm/psl/dist/psl.min.js	137 kB	2023-08-25	2024-04-24
Pretty URL cdn.jsdelivr.net/npm/psl/dist/psl.min.js IP 151.101.65.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-25 11:17:50 Last Seen2024-04-24 06:09:39 Times Seen33 Hash b4df2cbfb6117e8c4de5d9c5098a7005 81b5dbba18192bf7fe2d03a531c1566b6a706a9d a465d8738f3558860d654b0ab9b2b10b1414c9d84dae53394bc83978c53c7ddc Loading...

	skillexchange.xyz/_next/static/chunks/pages/jobs-40bf8201ab269e60.js	5.7 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/pages/jobs-40bf8201ab269e60.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:39 Last Seen2024-04-24 06:09:41 Times Seen2 Hash a02097a3d618848a5598507e2efe8a73 79bcd6ca1bd096ac6615acfde244522ace9bc7cd 5d94d7b6a8a97de6d22cd8dd0e5b1a9eb85d1352e02571ea5af40e4deeade70c Loading...

	skillexchange.xyz/_next/static/chunks/42-2907775d64b2606c.js	7.9 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/42-2907775d64b2606c.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:39 Last Seen2024-04-24 06:09:41 Times Seen2 Hash 6b610ba9f3722f9e352df1d1f999d245 39c6caa40c574f0d41c1c5bd3a04e020a00e474c 75c6c74db753586785679d5ed6e3187d380d2d810224aa7078fbd3d65ad141d2 Loading...

	skillexchange.xyz/_next/static/chunks/3235-9745946da13270d6.js	32 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/3235-9745946da13270d6.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:39 Last Seen2024-04-24 06:09:39 Times Seen1 Hash 27a5d51b06f4d4f348492d1faa6eb0de 6d1d260f146ab1a35c17e46c498b46b9c44010c6 911eea2edcc8e63b5c73f709785ffd1a12f01a761e6c398366ce3c931a379c44 Loading...

	skillexchange.xyz/_next/static/wi-DahJjgdATtn6S5I_k1/_ssgManifest.js	143 B	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/wi-DahJjgdATtn6S5I_k1/_ssgManifest.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:39 Last Seen2024-04-24 06:09:39 Times Seen1 Hash cb2cef5d8b57a93c9134b11a39bcd892 a67782d4f91fd6c624caf6346029f56781ff410d 716c76dcddd27ae8aa543381bbeb6b9f7981be495a1901708149197532c110ba Loading...

	cdn.tolt.io/tolt.js	6.7 kB	2024-04-21	2024-04-24
Pretty URL cdn.tolt.io/tolt.js IP 143.204.55.99 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-21 18:43:10 Last Seen2024-04-24 06:09:40 Times Seen2 Hash 0136d5dfceeaaf12b1d76c4f2f2b1904 ef356f9bd1eef225f9f20afc42747ac11974bdac aebb93dab13b32e3b66ec76346e67796add4973bf6ae254d117be19b66b66f6c Loading...

	skillexchange.xyz/_next/static/chunks/pages/post-b0c1bf64f3b6a43c.js	2.7 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/pages/post-b0c1bf64f3b6a43c.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:40 Last Seen2024-04-24 06:09:40 Times Seen1 Hash 0da10df094a0b8f5750f03bf5a92427f 43775ba45027f58239f985d82e1e243bc668fdcb 46a3627f1f92653acca6c4c67195eff052d7438ba6a0dfaf4a80348f0d138185 Loading...

	skillexchange.xyz/_next/static/chunks/9439-289e6ed3142e3538.js	88 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/9439-289e6ed3142e3538.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:40 Last Seen2024-04-24 06:09:40 Times Seen1 Hash ff2860670459bd1614129fe48ee8c45b 04d74f6499fc3cfa177cc5cbcd02d4b49c7a4425 a365b41f7d364f2008294f194ac1babf491e77cbdf53720e3f0a694c93b5f76a Loading...

	skillexchange.xyz/_next/static/chunks/8695-ded1f0415e8cc3d8.js	66 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/8695-ded1f0415e8cc3d8.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:40 Last Seen2024-04-24 06:09:42 Times Seen3 Hash 167caceb4871a0dfa4c86648afd02d01 088704b7c12369925d2069520dc618cfb1379e7c bac2acf1f88aaf661df2b7d5cf17fe0e076cf1b2fb6369fcd1273286e13c44d5 Loading...

	skillexchange.xyz/job/brand-designer/51189	840 B	2024-01-20	2024-04-24
Pretty URL skillexchange.xyz/job/brand-designer/51189 IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-20 06:29:25 Last Seen2024-04-24 06:09:40 Times Seen4 Hash e17d5a1da497158c1bc4ac647699ac2c 6cb6ac0ac76ec273c664cd52c569a5dbaa3a01fd effbc4b37d7f4720171dba4287c2aeda571b482f53f4cb7cb28ea8e6d42e8c69 Loading...

	skillexchange.xyz/_next/static/chunks/4686-ff5c98395a19282d.js	14 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/4686-ff5c98395a19282d.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:40 Last Seen2024-04-24 06:09:40 Times Seen1 Hash ef9cdc26f475bfc24a1417352dc9b061 eadaf479b5ee099c71d68b273279b8113063b208 042887b318cd4eb54865dd915edc8e57a1c3d6aa96c32140e57784ce2fc1fbf9 Loading...

	m.stripe.network/inner.html#url=https%3A%2F%2Fskillexchange.xyz%2Fjob%2Fbrand-designer%2F51189&title=Brand%20Designer%20at%20Flowcode%20%E2%80%94%20Skill%20Exchange%20XYZ&referrer=&muid=NA&sid=NA&version=6&preview=false	827 B	2023-06-30	2024-05-05
Pretty URL m.stripe.network/inner.html#url=https%3A%2F%2Fskillexchange.xyz%2Fjob%2Fbrand-designer%2F51189&title=Brand%20Designer%20at%20Flowcode%20%E2%80%94%20Skill%20Exchange%20XYZ&referrer=&muid=NA&sid=NA&version=6&preview=false IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-30 16:45:34 Last Seen2024-05-05 20:40:19 Times Seen5705 Hash 1f54cecc3b769967137af0567a96ec3d bda8188907959253112d6639984e671ede889b41 0ea22f8a5f8ae43c169a5bf57522c356130b13eaab2629ff5712a9af29118a40 Loading...

	skillexchange.xyz/_next/static/chunks/7258-31b07618d6f5363f.js	11 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/7258-31b07618d6f5363f.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:40 Last Seen2024-04-24 06:09:41 Times Seen2 Hash 4e4512e1eb3732e3930212647869d74e bb277bab692166e8b01628ef98853538d3240611 2a37e7c704eb57bfec6bcb0c49811c53f1decc3cff65c6c6d2b704a5ff13acf6 Loading...

	skillexchange.xyz/_next/static/chunks/pages/advertise-57c85a1bd8729a26.js	2.7 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/pages/advertise-57c85a1bd8729a26.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:40 Last Seen2024-04-24 06:09:40 Times Seen1 Hash e9a5b4ea755b140133f6539f5bae3d9c 3330076f5876256fe9eb10223e8230d2cb175243 d6e1061afb86dbbb425c029238b4c6aa25b4979699df7b2d67aa27c87fe2e129 Loading...

	skillexchange.xyz/_next/static/chunks/1353-0f48a581af50d43d.js	8.3 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/1353-0f48a581af50d43d.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:40 Last Seen2024-04-24 06:09:40 Times Seen1 Hash a5c5857767694fb09dad8a37f53d1856 1ad24d482dd11aed68b3cebf6f75536c8d1ff38e 0bf83ba99716d713fa8b2fdda5f28864d09c201bddacb60ff4947edd2b0686e2 Loading...

	m.stripe.network/out-4.5.43.js	89 kB	2023-06-30	2024-05-05
Pretty URL m.stripe.network/out-4.5.43.js IP 151.101.192.176 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-30 16:45:34 Last Seen2024-05-05 20:40:21 Times Seen9887 Hash 69cb7809b5011312e716f29b3d19dce6 833dabfb546d57065aeba7190b5ee5a2428dfa47 e039e607c78306c7e029a7fd0ecdb14f86456f16e1a5ce65aa26b4fdf1d38a3c Loading...

	skillexchange.xyz/_next/static/chunks/webpack-7b975cab4da41331.js	8.0 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/webpack-7b975cab4da41331.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:40 Last Seen2024-04-24 06:09:40 Times Seen1 Hash 69a82b34adf65c2ae43402f8b70b2eec c0d85e086635b8b175eeb560030563e3ecf8361e 3a9d9a3e27c5f6a4395cc6308dc50783d0afbc5a55b81e744738286474f1bac5 Loading...

	js.stripe.com/v3/fingerprinted/js/controller-394d17cb94c1e18dca2bbd72b2ab02f2.js	738 kB	2024-04-24	2024-04-24
Pretty URL js.stripe.com/v3/fingerprinted/js/controller-394d17cb94c1e18dca2bbd72b2ab02f2.js IP 151.101.192.176 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:40 Last Seen2024-04-24 08:31:57 Times Seen6 Hash 0a43e06db78fd44476d94b1b8c623ce2 3231d3bd61cce2b40e222e56db2556f7f52b0c76 999aa463e13004f85d27e944c20c4787aee911beedda38df3764b862b0b73118 Loading...

	skillexchange.xyz/_next/static/chunks/4975-23319e3f45e4a260.js	612 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/4975-23319e3f45e4a260.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:40 Last Seen2024-04-24 06:09:40 Times Seen1 Hash 5a4dcc58e6f1779283ff91aafc24ad09 8c8779c7d4918e30db700c29a4af90fb45f45aa6 1df8f26f3950cc18e23ff54f0df85c20d75b188bb013f3a9a3a06a23f0e9ba90 Loading...

	skillexchange.xyz/_next/static/chunks/9076-b73548c8ad7997d1.js	8.4 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/9076-b73548c8ad7997d1.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:40 Last Seen2024-04-24 06:09:41 Times Seen2 Hash 2bb1317eb66af95ee05de74358c17ee6 6117711bee05b3a5fc721935ad7f0fed1a07f92a 3607dd2a65e41fef79f36015aaea61090df07419e031131fa1401da8a240ecc7 Loading...

	skillexchange.xyz/_next/static/chunks/9962-47972af646274f05.js	7.4 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/9962-47972af646274f05.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:41 Last Seen2024-04-24 06:09:41 Times Seen1 Hash 0f8d3defffd6bc00da3e7816633c7d82 5a1f08792f5074c42b19f66265273e261e035b6f bb362b994b59267d62823e45424c08625ad915bf56280fcd2ff402dccd6a4fa6 Loading...

	skillexchange.xyz/_next/static/chunks/8405-d3dd5934a9d81199.js	7.1 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/8405-d3dd5934a9d81199.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:41 Last Seen2024-04-24 06:09:41 Times Seen1 Hash 0fcd77101f68ed7901cbbb406392b54d d92b213ba6181ca5e94cba95772302b6e22de291 98066af38509a5bdfccf78a3e746c7bd80a8adfa6d06fa5b4ae345ef41013689 Loading...

	skillexchange.xyz/_next/static/chunks/pages/index-6ca516263c23ec3d.js	4.7 kB	2024-04-24	2024-04-24
Pretty URL skillexchange.xyz/_next/static/chunks/pages/index-6ca516263c23ec3d.js IP 104.21.15.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:09:41 Last Seen2024-04-24 06:09:41 Times Seen2 Hash 046acc8481bf5b15f39bc9905ad76858 bc655b78bfc2c568865f8108320308eeb4363963 14a24533a80bfb3720109788c8860bf0842308a44fcdba2c86a533d839b3d8ad Loading...

HTTP Transactions (108)

URL IP Response Size

skillexchange.xyz/_next/static/media/7b136104a2a71fbf-s.p.woff2

104.21.15.39

200 OK

32 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/media/7b136104a2a71fbf-s.p.woff2
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
Web Open Font Format (Version 2), TrueType, length 31536, version 1.0
Size
32 kB (31536 bytes)
Hash
47c535886cd2b5fd3a53069d0de8e426
dff685f68d037aae703334e80a0793a01d1e6a13
1b6d16387e72a270a080c43ebc4283698918b733bb3bbf2b39696bf87da3e47a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/media/7b136104a2a71fbf-s.p.woff2 HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:08:59 GMT
content-type: font/woff2
content-length: 31536
access-control-allow-origin: *
age: 341942
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="7b136104a2a71fbf-s.p.woff2"
etag: "47c535886cd2b5fd3a53069d0de8e426"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/media/7b136104a2a71fbf-s.p.woff2
x-vercel-cache: HIT
x-vercel-id: arn1::ftm4m-1713589797303-de42206cd9c7
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=q7Q9Gi9dnKCfEUMmp9kqEh6tIXvQFyOmaWGGjir6QtmeJEkXPYs%2BWqMHwOFTEeI1Q8C48rdGExq8JrECNmtlZ3ySUxnXa%2Bf8mT37UlPMQMzgQ5GKuRZw%2BFodfpAbnl%2B%2Bb4z5jA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c3d19cab518-OSL
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/media/efde53139f501ff8-s.p.woff2

104.21.15.39

200 OK

32 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/media/efde53139f501ff8-s.p.woff2
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
Web Open Font Format (Version 2), TrueType, length 31600, version 1.0
Size
32 kB (31600 bytes)
Hash
b94249a70fac0d4a01b0ccde2d1f6473
be3bd537a6e8fcec45deabc14e84941e89c1a7be
7b1a781082ca2f8d4425b7e0aafb88bf95f5b2d72808a2bfc8627d0bf2a45c12

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/media/efde53139f501ff8-s.p.woff2 HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:08:59 GMT
content-type: font/woff2
content-length: 31600
access-control-allow-origin: *
age: 341942
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="efde53139f501ff8-s.p.woff2"
etag: "b94249a70fac0d4a01b0ccde2d1f6473"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/media/efde53139f501ff8-s.p.woff2
x-vercel-cache: HIT
x-vercel-id: arn1::gntcm-1713589797299-ed266651aafb
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=g9zmkeCS4n05GrgLI2VJOjeLuobBbIxRN06xSHF5gLyafuOkXv4JNZsSo5asMbUjY1sVPUH1%2FhnBzeU5%2BRx8GdZa3Q%2ByUz2U9sJt1E8UC%2BL5gxmZBFXVbRucji1JK7ENNsRujA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c3d19cbb518-OSL
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/media/50a1ac001c493371-s.p.woff2

104.21.15.39

200 OK

32 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/media/50a1ac001c493371-s.p.woff2
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
Web Open Font Format (Version 2), TrueType, length 31576, version 1.0
Size
32 kB (31576 bytes)
Hash
137dd6918268a0487ff9e89c09e399eb
865d62b03029c76881a7789dfad96f82fb3346ad
1a0790124c08966e048f8ee4fa5dd4ac61c84fe63f5ab9c6506cba7186131b97

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/media/50a1ac001c493371-s.p.woff2 HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:08:59 GMT
content-type: font/woff2
content-length: 31576
access-control-allow-origin: *
age: 341942
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="50a1ac001c493371-s.p.woff2"
etag: "137dd6918268a0487ff9e89c09e399eb"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/media/50a1ac001c493371-s.p.woff2
x-vercel-cache: HIT
x-vercel-id: arn1::gcn6c-1713589797304-e1e4bb97ff84
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tGWmlNlZzEu%2BnxOL2C2yZu02K0pa8Z%2Bcj0gYSJ3J2bAe6zOggVJCR%2BQLKQ07hQJuPVXTMF70C6ExMEJ8O%2BkcjSZrZtsIb%2BO5ypVMdLfsxPByeJgsUiH51mSpL7J%2BJ8slbrHg%2BA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c3d19ccb518-OSL
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/media/de7031659c50cb93-s.p.woff2

104.21.15.39

200 OK

31 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/media/de7031659c50cb93-s.p.woff2
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
Web Open Font Format (Version 2), TrueType, length 31396, version 1.0
Size
31 kB (31396 bytes)
Hash
888a8a674af767c3c1505dbc13e83826
495b08783bdecf6d0c3fda107439a7d256542122
eb7350a88921cc445d1865fce2c7679181c40676f5ec0b851a113f32ae6b0ec6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/media/de7031659c50cb93-s.p.woff2 HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:08:59 GMT
content-type: font/woff2
content-length: 31396
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="de7031659c50cb93-s.p.woff2"
etag: "888a8a674af767c3c1505dbc13e83826"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/media/de7031659c50cb93-s.p.woff2
x-vercel-cache: HIT
x-vercel-id: arn1::chvts-1713931739728-09c9185b717e
x-xss-protection: 1; mode=block
cf-cache-status: MISS
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JgypDqtu06R6uRKdYt8pZhATwlExgICOPwmn%2Bi0niYe2B6SV347ZzDUSnhQx2l6t72Q5nGRTGR44ZhSl5l5DU0AYrsMUIwONZJtqXu7rRK4ZfasVIIRV4q0HqGJq%2F4FzjUYeyw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c3d19cdb518-OSL
alt-svc: h3=":443"; ma=86400

o4506217851322368.ingest.sentry.io/api/4506217881534464/envelope/?sentry_key=9dd78d4d667d765254fde269034f7e0a&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.80.0

34.120.195.249

429 Too Many Requests

2 B

URL POST HTTP/2
o4506217851322368.ingest.sentry.io/api/4506217881534464/envelope/?sentry_key=9dd78d4d667d765254fde269034f7e0a&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.80.0
IP
34.120.195.249:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerDigiCert Inc
Subjectingest.sentry.io
Fingerprint60:82:0B:58:64:CD:37:FD:3F:C0:84:4F:0B:69:CF:58:05:15:97:9A
ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT

File type
JSON text data
Size
2 B (2 bytes)
Hash
99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

HTTP Headers

POST /api/4506217881534464/envelope/?sentry_key=9dd78d4d667d765254fde269034f7e0a&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.80.0 HTTP/1.1
Host: o4506217851322368.ingest.sentry.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/
Content-Type: text/plain;charset=UTF-8
Content-Length: 455
Origin: https://skillexchange.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 04:09:00 GMT
content-type: application/json
content-length: 2
access-control-allow-origin: *
vary: origin,access-control-request-method,access-control-request-headers
access-control-expose-headers: x-sentry-error,x-sentry-rate-limits,retry-after
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

skillexchange.xyz/_next/static/chunks/9270-854d1e8128cff2e4.js

104.21.15.39

200 OK

27 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/9270-854d1e8128cff2e4.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (42805)
Size
27 kB (26756 bytes)
Hash
8c7451affee06713a87fa6c7846a38cf
3e90762449107b2a0baea1b6608ce977f271b081
aa5fcdeb85868dde39b28c99ab68ce3a7d8f755b8ffffe6639aff81cb9afd829

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/9270-854d1e8128cff2e4.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:08:59 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 429857
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="9270-854d1e8128cff2e4.js"
etag: W/"8c7451affee06713a87fa6c7846a38cf"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/9270-854d1e8128cff2e4.js
x-vercel-cache: HIT
x-vercel-id: arn1::qg8vn-1713501882800-1673bd32d9b1
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RA9PZktl4PrgRBwj%2FT1OL9PUmojx4iQpAwhg%2BIHjnU6Sbqp8lxOqmzEz675ZJOrxwZdjTCBcA4NNOZ3oxUPXwEl%2FnyMA3GKQ6s4zc%2F0Z9aAfjmtINYDmsUWIaBYamM7OkmLGBA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c3d19d9b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

hatscripts.github.io/circle-flags/flags/de.svg

185.199.110.153

200 OK

236 B

URL GET HTTP/2
hatscripts.github.io/circle-flags/flags/de.svg
IP
185.199.110.153:443
ASN
#54113 FASTLY

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
236 B (236 bytes)
Hash
e5476a0d42d2c69a20fa0ec8decaed25
07f83f1293b81d803af6c043f369614806c49056
3f6dc3fa445f3225e6ed2a1b4bcdb6b74684b5804e6bb2cb6b50aa0325b8d81a

HTTP Headers

GET /circle-flags/flags/de.svg HTTP/1.1
Host: hatscripts.github.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Wed, 03 Apr 2024 02:01:27 GMT
access-control-allow-origin: *
etag: W/"660cb877-14e"
expires: Thu, 18 Apr 2024 02:06:14 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: C3B6:353B0D:7FC565A:82852EB:66207DBC
accept-ranges: bytes
date: Wed, 24 Apr 2024 04:09:00 GMT
via: 1.1 varnish
age: 529
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 4
x-timer: S1713931740.367295,VS0,VE0
vary: Accept-Encoding
x-fastly-request-id: 8c068c1bba9538316845ee47dd4e580ca4d52ab3
content-length: 236
X-Firefox-Spdy: h2

hatscripts.github.io/circle-flags/flags/hk.svg

185.199.110.153

427 B

URL GET
hatscripts.github.io/circle-flags/flags/hk.svg
IP
185.199.110.153:0
ASN
#54113 FASTLY

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
427 B (427 bytes)
Hash
7667be2ebe66da6b43405536358a48dc
154321526da2ec89bf0d184f4d0718995275c64d
050572c4702c51dd080efe7c0d3860163d6784e16216cb4df9cfb9b1d212d87d

HTTP Headers

GET /circle-flags/flags/hk.svg HTTP/1.1
Host: hatscripts.github.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Wed, 03 Apr 2024 02:01:27 GMT
access-control-allow-origin: *
etag: W/"660cb877-2c0"
expires: Tue, 23 Apr 2024 03:59:42 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: HIT
x-github-request-id: A1CE:22C6DD:637EAD1:65A8536:66272FFE
accept-ranges: bytes
date: Wed, 24 Apr 2024 04:09:00 GMT
via: 1.1 varnish
age: 325
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713931740.368701,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 67b909e3889922c59598c0f2b784b9329448d7c2
content-length: 427
X-Firefox-Spdy: h2

hatscripts.github.io/circle-flags/flags/cr.svg

185.199.110.153

271 B

URL GET
hatscripts.github.io/circle-flags/flags/cr.svg
IP
185.199.110.153:0
ASN
#54113 FASTLY

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
271 B (271 bytes)
Hash
2c8a0b157da53116fa90ba3424e7a386
d03f9c5011a3d01c0b0bf9f6de2315d3b6bc663d
eb87dc49a738d5d194843be5aec90acde0799531f8572a96d5d5e7ff4e8806a9

HTTP Headers

GET /circle-flags/flags/cr.svg HTTP/1.1
Host: hatscripts.github.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Wed, 03 Apr 2024 02:01:27 GMT
access-control-allow-origin: *
etag: W/"660cb877-187"
expires: Wed, 17 Apr 2024 01:47:02 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 3324:29EF9F:2C4B4F4:2D446CB:661F27BE
accept-ranges: bytes
date: Wed, 24 Apr 2024 04:09:00 GMT
via: 1.1 varnish
age: 325
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713931740.370196,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 5cf40a42fdf965005ecbed795d97afff6b0f8a8c
content-length: 271
X-Firefox-Spdy: h2

skillexchange.xyz/api/auth/session

104.21.15.39

200 OK

2 B

URL GET HTTP/3
skillexchange.xyz/api/auth/session
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JSON text data
Size
2 B (2 bytes)
Hash
99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /api/auth/session HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
Content-Type: application/json
sentry-trace: c9f892f73e6143d8879f2d6cffbce5cf-af24b3a425ce1473-1
baggage: sentry-environment=vercel-production,sentry-release=50171528281f3e5193fe8f1d6d9959ffbe59ef67,sentry-public_key=9dd78d4d667d765254fde269034f7e0a,sentry-trace_id=c9f892f73e6143d8879f2d6cffbce5cf,sentry-sample_rate=1,sentry-transaction=%2Fjob%2F%5Brole%5D%2F%5BslugId%5D,sentry-sampled=true
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:00 GMT
content-type: application/json; charset=utf-8
content-length: 2
age: 0
cache-control: public, max-age=0, must-revalidate
etag: "bwc9mymkdm2"
referrer-policy: same-origin
set-cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; Path=/; HttpOnly; Secure; SameSite=Lax
__Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz; Path=/; HttpOnly; Secure; SameSite=Lax
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /api/auth/[...nextauth]
x-vercel-cache: MISS
x-vercel-id: arn1::iad1::f9dk7-1713931740066-d0010948e2ea
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yN9PS8RJmCB5bGHb3olGXftUTuIgH6rSjfv%2BoYwFnX1EnGoe2P9WtixZ7WD7BLAHrUEi2cdc4%2F7fhuaIzVR%2FfnVCiGrcDD5IBkyb7bLXnbGNuy3stWzUoYqkPi3vDCM0ur5KAQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87933c3f3bbbb518-OSL
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/api/jobs/view

104.21.15.39

200 OK

16 B

URL POST HTTP/3
skillexchange.xyz/api/jobs/view
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JSON text data
Size
16 B (16 bytes)
Hash
7363e85fe9edee6f053a4b319588c086
a15e2127145548437173fc17f3e980e3f3dee2d0
c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /api/jobs/view HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
Content-Type: application/json
sentry-trace: c9f892f73e6143d8879f2d6cffbce5cf-94794bf03e610eb6-1
baggage: sentry-environment=vercel-production,sentry-release=50171528281f3e5193fe8f1d6d9959ffbe59ef67,sentry-public_key=9dd78d4d667d765254fde269034f7e0a,sentry-trace_id=c9f892f73e6143d8879f2d6cffbce5cf,sentry-sample_rate=1,sentry-transaction=%2Fjob%2F%5Brole%5D%2F%5BslugId%5D,sentry-sampled=true
Content-Length: 33
Origin: https://skillexchange.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:00 GMT
content-type: application/json; charset=utf-8
content-length: 16
cache-control: public, max-age=0, must-revalidate
etag: "17a6zzdutk1g"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /api/jobs/view
x-vercel-cache: MISS
x-vercel-id: arn1::iad1::mh4ts-1713931740042-46433fd73f24
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lkM0nl0izGI6bhJYdEWi4mfmcQsyyRisTMhE6VXME3Ci0jzVP7ljhjR60YtUYc%2B7cYuFERzXc47LvjTnzZfnYOhcyq6Xv86XND7wn0pfZVa83EcTUjX1wgUh2SQrLHC6qaGJrg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87933c3f2bb5b518-OSL
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/cdn-cgi/rum?

104.21.15.39

204 No Content

0 B

URL POST HTTP/3
skillexchange.xyz/cdn-cgi/rum?
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
content-type: application/json
sentry-trace: c9f892f73e6143d8879f2d6cffbce5cf-b6e840b59dc11cb7-1
baggage: sentry-environment=vercel-production,sentry-release=50171528281f3e5193fe8f1d6d9959ffbe59ef67,sentry-public_key=9dd78d4d667d765254fde269034f7e0a,sentry-trace_id=c9f892f73e6143d8879f2d6cffbce5cf,sentry-sample_rate=1,sentry-transaction=%2Fjob%2F%5Brole%5D%2F%5BslugId%5D,sentry-sampled=true
Content-Length: 1080
Origin: https://skillexchange.xyz
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
date: Wed, 24 Apr 2024 04:09:00 GMT
access-control-allow-origin: https://skillexchange.xyz
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 87933c432decb518-OSL
x-frame-options: DENY
x-content-type-options: nosniff

cdn.skillexchange.xyz/images/1b9e4bd8-ae2c-4b42-9bc5-9cc394398a11

104.21.15.39

200 OK

7.5 kB

URL GET HTTP/3
cdn.skillexchange.xyz/images/1b9e4bd8-ae2c-4b42-9bc5-9cc394398a11
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
PNG image data, 659 x 659, 4-bit colormap, non-interlaced
Size
7.5 kB (7546 bytes)
Hash
100421cfcca58e2507e767e6d714641f
3ca5c8ae56dec2237ed0505f25bc27bea78072f7
7cc2e6aa5934592044674161b74837792d9bf80f59c15f22e83c60d26d87cac2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/1b9e4bd8-ae2c-4b42-9bc5-9cc394398a11 HTTP/1.1
Host: cdn.skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:00 GMT
content-type: image/png
content-length: 7546
etag: "100421cfcca58e2507e767e6d714641f"
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=w%2BcpKy%2FXfkcCxIueaSW3zKL0k5T%2FDQFS1uQ3aNzHkI8u%2BisXKQ2MgjvtZ3KLSKp3UnHRVEiYV1lQdh22KQ6VUhAhb63wXOOPuJlLQdRwq5YupQG1dtuxZsFzGd9GwoVDMLYjctTz5Mk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c409c88b518-OSL
alt-svc: h3=":443"; ma=86400

cdn.skillexchange.xyz/images/dfd75f6b-afad-4770-b42b-adf92d27bee8

104.21.15.39

200 OK

11 kB

URL GET HTTP/3
cdn.skillexchange.xyz/images/dfd75f6b-afad-4770-b42b-adf92d27bee8
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JPEG image data, baseline, precision 8, 400x400, components 3
Size
11 kB (10677 bytes)
Hash
53c067554ccb3c806fb5c5d756e7d5d1
b5a8edb84ce1bca3498f73af38cf42b2a772eb36
c4b95ab9b7ac427fb07de1177f0afde3e953359364d1942050f0b80bab9070ec

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/dfd75f6b-afad-4770-b42b-adf92d27bee8 HTTP/1.1
Host: cdn.skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:00 GMT
content-type: image/jpeg
content-length: 10677
etag: "53c067554ccb3c806fb5c5d756e7d5d1"
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=M4LOFpBB%2Ftvj1gkKd6DbqF0pV2nsgKioNkyp9%2B9nPNrjVG%2Fd1n%2FVAVnO4xsnFGevC0Oiy9%2F5I5268kSIoCN5CEEMPynkxq8UxkYSyDOTbPcGOgXGHSJBmK%2B2GphCNeQ6A84LT2oR%2BGk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c413ccab518-OSL
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/media/efde53139f501ff8-s.p.woff2

104.21.15.39

200 OK

32 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/media/efde53139f501ff8-s.p.woff2
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
Web Open Font Format (Version 2), TrueType, length 31600, version 1.0
Size
32 kB (31600 bytes)
Hash
b94249a70fac0d4a01b0ccde2d1f6473
be3bd537a6e8fcec45deabc14e84941e89c1a7be
7b1a781082ca2f8d4425b7e0aafb88bf95f5b2d72808a2bfc8627d0bf2a45c12

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/media/efde53139f501ff8-s.p.woff2 HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://skillexchange.xyz/_next/static/css/e585d38c456d28d2.css
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:00 GMT
content-type: font/woff2
content-length: 31600
access-control-allow-origin: *
age: 341943
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="efde53139f501ff8-s.p.woff2"
etag: "b94249a70fac0d4a01b0ccde2d1f6473"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/media/efde53139f501ff8-s.p.woff2
x-vercel-cache: HIT
x-vercel-id: arn1::gntcm-1713589797299-ed266651aafb
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MaMcV8exvf4XBWz1XUN7p8AcP8X5TdfU4d5vgGxPEChGfbMAHo8PyQwOfBg3V4NcK6NTNQAJk4dgWyMF1AZnUuCSKxKMPTCvJFrXUyyOkDG%2FCAxtXhV%2FLuICLPSJHZ8wPXofUg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c43ae2cb518-OSL
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/3492-31c5a4204ffdf16a.js

104.21.15.39

200 OK

35 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/3492-31c5a4204ffdf16a.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (8964)
Size
35 kB (34972 bytes)
Hash
38d0f826ad87901bc73f8fd5fbbd0e21
77dd5d0f8e2036a2fd5e5c05a2b78b570a4fc4d0
9c7a39a8f0c0b62da853e226d085b8f2ff5074c94a330def1ab045c867d3cd2d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/3492-31c5a4204ffdf16a.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:00 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="3492-31c5a4204ffdf16a.js"
etag: W/"38d0f826ad87901bc73f8fd5fbbd0e21"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/3492-31c5a4204ffdf16a.js
x-vercel-cache: HIT
x-vercel-id: arn1::tntgm-1713931740725-bfa98c3bb101
x-xss-protection: 1; mode=block
cf-cache-status: MISS
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wnvOdiEZhZQp2E4w8q3%2BcHJ%2B%2F8yHYvervDxXtWr4bIwPHtodzLSP8oBoH3KYJNaqC9iNQXSW7XUyrTrMGoJ8lu67%2B5b%2FkRRTBYX0kJfA02UDCnQk5Bp%2F9wvpyOp%2FKEAx9yBv6w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c435df9b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/media/7b136104a2a71fbf-s.p.woff2

104.21.15.39

200 OK

32 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/media/7b136104a2a71fbf-s.p.woff2
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
Web Open Font Format (Version 2), TrueType, length 31536, version 1.0
Size
32 kB (31536 bytes)
Hash
47c535886cd2b5fd3a53069d0de8e426
dff685f68d037aae703334e80a0793a01d1e6a13
1b6d16387e72a270a080c43ebc4283698918b733bb3bbf2b39696bf87da3e47a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/media/7b136104a2a71fbf-s.p.woff2 HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://skillexchange.xyz/_next/static/css/e585d38c456d28d2.css
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:00 GMT
content-type: font/woff2
content-length: 31536
access-control-allow-origin: *
age: 341943
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="7b136104a2a71fbf-s.p.woff2"
etag: "47c535886cd2b5fd3a53069d0de8e426"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/media/7b136104a2a71fbf-s.p.woff2
x-vercel-cache: HIT
x-vercel-id: arn1::ftm4m-1713589797303-de42206cd9c7
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SB7rUDvb9v%2Bg06jLokN3LjsfVuKGMe%2Ftxyah5TS9gnogPTr6j83fmGOchAuwrQSPZKo2cIyjydHXctqtCW67SsYiA0IicgSWxA%2B4QsX3dIPNUHwWkWvQQCvJTPrK78KD%2Bjieyw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c43ae2eb518-OSL
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/media/de7031659c50cb93-s.p.woff2

104.21.15.39

200 OK

31 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/media/de7031659c50cb93-s.p.woff2
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
Web Open Font Format (Version 2), TrueType, length 31396, version 1.0
Size
31 kB (31396 bytes)
Hash
888a8a674af767c3c1505dbc13e83826
495b08783bdecf6d0c3fda107439a7d256542122
eb7350a88921cc445d1865fce2c7679181c40676f5ec0b851a113f32ae6b0ec6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/media/de7031659c50cb93-s.p.woff2 HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://skillexchange.xyz/_next/static/css/e585d38c456d28d2.css
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:00 GMT
content-type: font/woff2
content-length: 31396
access-control-allow-origin: *
age: 1
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="de7031659c50cb93-s.p.woff2"
etag: "888a8a674af767c3c1505dbc13e83826"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/media/de7031659c50cb93-s.p.woff2
x-vercel-cache: HIT
x-vercel-id: arn1::chvts-1713931739728-09c9185b717e
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Q41rEJ8XO8ijIKiJPmYH9JKbpIGkkRy5R2QPZaUycgsvs9UvW9Ob8%2FWEqhNqALoxo%2Bagl2RpF%2BrO%2FcF5JjzjePVbug7iMVND3S0nlvCGNMSWMjTuUxjfHsWxrt%2B9XLgw1mbfUg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c43ce37b518-OSL
alt-svc: h3=":443"; ma=86400

cdn.skillexchange.xyz/images/978c4ec1-c267-4f15-bf3d-34d150234d84

104.21.15.39

200 OK

4.8 kB

URL GET HTTP/3
cdn.skillexchange.xyz/images/978c4ec1-c267-4f15-bf3d-34d150234d84
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
PNG image data, 75 x 75, 8-bit/color RGBA, non-interlaced
Size
4.8 kB (4801 bytes)
Hash
7f8c0c3d50293a0aa2ec62b058f693df
b256f7b71f496b3181aefa598e61279670708f27
802748fe1be16d1b7aa4087c9562bdd8143c3b7baf67d02fca4b811223f2b727

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/978c4ec1-c267-4f15-bf3d-34d150234d84 HTTP/1.1
Host: cdn.skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:00 GMT
content-type: image/png
content-length: 4801
etag: "7f8c0c3d50293a0aa2ec62b058f693df"
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OBAfpsGMmeIPVh0TuH5H8TM4L%2F3DshNAgVXK%2BVeeTs%2FZUQl1Rz6KCvZjO1SdbMRQzKXYe63ZsM0WfzpFIBL7Kkp9bFjy7hhwWhOC9UDGp%2FKvg5Hnw7kFgEpd7W1VN8BON9htVAYfBMA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c414ccfb518-OSL
alt-svc: h3=":443"; ma=86400

cdn.skillexchange.xyz/images/9fe61339-577c-4db1-ad8d-b3f20bb8fcd6

104.21.15.39

200 OK

3.5 kB

URL GET HTTP/3
cdn.skillexchange.xyz/images/9fe61339-577c-4db1-ad8d-b3f20bb8fcd6
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 200x200, components 3
Size
3.5 kB (3471 bytes)
Hash
324a9fcba248c5b48134b48be27d6938
7435a184dde3350fd272ba256d5ee15e8e200235
11fbf620f473e23e8d41906f7978e8cbc2f285201bb5f139975a164006ce9dbd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/9fe61339-577c-4db1-ad8d-b3f20bb8fcd6 HTTP/1.1
Host: cdn.skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:00 GMT
content-type: image/jpeg
content-length: 3471
etag: "324a9fcba248c5b48134b48be27d6938"
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QFdNKFYhRIv2DYjnUs3QW%2Bzf4gqyEY0Bo3TrBc578%2F8ycvSUCYOFM%2FJcAhnBDOF47D5ZmZh2OLu9%2Bn8MGzPUAOcBabWnchhY8s1E%2Bk7xVOKkrz86nTr9vssmaBYCchW59O29X%2FeZIPY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c413cc7b518-OSL
alt-svc: h3=":443"; ma=86400

cdn.skillexchange.xyz/images/a748cf92-54fe-49ea-9f41-aa9830ca2670

104.21.15.39

200 OK

3.2 kB

URL GET HTTP/3
cdn.skillexchange.xyz/images/a748cf92-54fe-49ea-9f41-aa9830ca2670
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JPEG image data, baseline, precision 8, 160x160, components 3
Size
3.2 kB (3216 bytes)
Hash
02583a26538b9c077425a59a5d167964
994c9dfad0dfb6322585d6198724b55cdc8ec63a
2a5ea3e77d4989b805d776ab14c40fcac425590d87f38d11725f38242d98b882

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/a748cf92-54fe-49ea-9f41-aa9830ca2670 HTTP/1.1
Host: cdn.skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:00 GMT
content-type: image/jpeg
content-length: 3216
etag: "02583a26538b9c077425a59a5d167964"
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BCFBBbl%2F10qhbWM4RaVZQ5qZvpkdWDjR4gT5Q39%2FdPuZv8UpYbzZkSbo6cSq%2Bybs4y511A3D2L%2F0o627IFIU2nWB1Ie6poKtKA%2FjovRBdfHsbVR3psGwtn%2FiStSG34%2B5%2BojPS9tO9JI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c414cccb518-OSL
alt-svc: h3=":443"; ma=86400

cdn.skillexchange.xyz/images/74fee12a-ad43-483c-8a6c-6410b0158d40

104.21.15.39

200 OK

9.5 kB

URL GET HTTP/3
cdn.skillexchange.xyz/images/74fee12a-ad43-483c-8a6c-6410b0158d40
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
PNG image data, 500 x 167, 4-bit colormap, non-interlaced
Size
9.5 kB (9512 bytes)
Hash
cc5515980d116b73ecb049198db22914
448cb1c7cac5b7a5c3a08a458dee68dda65755e2
5f35d0390dddf6820d30a1c7b36baa88ff7a2bec2a2abdff63ebaec91602d268

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/74fee12a-ad43-483c-8a6c-6410b0158d40 HTTP/1.1
Host: cdn.skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:00 GMT
content-type: image/png
content-length: 9512
etag: "cc5515980d116b73ecb049198db22914"
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7uly3lX9%2BmcvUKTgXyWEeiLqDJF4RX1YgBoQSzKyTMASzzc5PNmYBc2bXxf9QNcR9YdFLQyeCSTbb3yoy%2BludO7uBFFEGkIxQVAw%2FdCTeejOfdQHY9Hb0zSv64TIdAQ7R4QWbG%2BHDtE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c414cd0b518-OSL
alt-svc: h3=":443"; ma=86400

cdn.skillexchange.xyz/images/85fed459-68ae-4ee5-a30c-635f30f1b130

104.21.15.39

200 OK

22 kB

URL GET HTTP/3
cdn.skillexchange.xyz/images/85fed459-68ae-4ee5-a30c-635f30f1b130
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JPEG image data, baseline, precision 8, 401x401, components 3
Size
22 kB (22255 bytes)
Hash
2323d83d8bbccdd68c4e0aa84e853ca3
c408b332b7296fe8d6eb3a2bc75f7bc5cc9000da
b0cdd45e1ab81ca52fd83c31362f505d20db0226bebc33f90b58dc4a87ecbcf7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/85fed459-68ae-4ee5-a30c-635f30f1b130 HTTP/1.1
Host: cdn.skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: image/jpeg
content-length: 22255
etag: "2323d83d8bbccdd68c4e0aa84e853ca3"
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YyS83jIjmOieMa6TbfHGVtYBA3Jb7VHsHjxmcMZgmvGSCBS50uT%2BI0KamwJ7eTMeRj6Y9uLFmUGp80nZnpImdjwyJxM%2BS%2Fr7DY8cPEunQ2Gjy3HWWTKfVVeU17Le%2FewNgXP8%2BLgJ49k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c413cc5b518-OSL
alt-svc: h3=":443"; ma=86400

www.googletagmanager.com/gtag/js?id=G-55YTN90RVW

142.250.74.40

200 OK

101 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-55YTN90RVW
IP
142.250.74.40:443
ASN
#15169 GOOGLE

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type
JavaScript source, ASCII text, with very long lines (5945)
Size
101 kB (100589 bytes)
Hash
144bdf6c5a394fcc375d96f665a175a3
bbc4bca938e87844f2b88dab8c915a3dbe0d3a37
d15aca02de718e9652363a569233550760786d21daff913654e311bfc85f3a0a

HTTP Headers

GET /gtag/js?id=G-55YTN90RVW HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 Apr 2024 04:09:01 GMT
expires: Wed, 24 Apr 2024 04:09:01 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 100589
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

skillexchange.xyz/_next/static/chunks/5920-1410186be8ddda2a.js

104.21.15.39

200 OK

54 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/5920-1410186be8ddda2a.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (13208)
Size
54 kB (53550 bytes)
Hash
71eb8b609acac1f927680a4b02da5165
a35e6b49fd78c646689e042316895d070cc23626
b2bd38c7a6a7bcff21a33b0a5f3eba0dd6c6b42c0b266647c52ee76d336ea71c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/5920-1410186be8ddda2a.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 429859
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="5920-1410186be8ddda2a.js"
etag: W/"71eb8b609acac1f927680a4b02da5165"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/5920-1410186be8ddda2a.js
x-vercel-cache: HIT
x-vercel-id: arn1::9jk4b-1713501882826-9f58a1d8b96f
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=k6DjT8gd7ldHeX%2Fymcg%2FNw4HMNpoHMhjWODMVIifO6eZB3brO%2Bj4mTRJew3XqUCEAzGjy7LynJxkaFVMe4Paz1J0JY%2FXYE9oVhQXchvzI11XubhPBno3JPyadD%2Bn7kp2A72zLA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c470fd1b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.skillexchange.xyz/images/b1a52a82-3b47-49d0-886a-1cafbbe86351

104.21.15.39

200 OK

53 kB

URL GET HTTP/3
cdn.skillexchange.xyz/images/b1a52a82-3b47-49d0-886a-1cafbbe86351
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JPEG image data, baseline, precision 8, 1500x1500, components 3
Size
53 kB (53143 bytes)
Hash
7236ff0c486f045f4a3cf5bc837f2971
3dff8312dcbb407f9b90b3dc453b7087f62bc250
4a1a546c29727e0bd710c70c3a5edc95804d3df921ab91cc95eac8fc31ff6105

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/b1a52a82-3b47-49d0-886a-1cafbbe86351 HTTP/1.1
Host: cdn.skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: image/jpeg
content-length: 53143
etag: "7236ff0c486f045f4a3cf5bc837f2971"
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0c%2F4xl83fY%2F8GOzhZnT6mo%2FmnmVPOPKiNNHkXWb9rvr58SyeMUDOpWFZjZ2IH%2BlcJlYDIX4lSvbvSKHaFM%2FWcIgDfo1U5cFnOpkk4pdnc4ZWrDDoKclff%2BINZQU1dF0Z6tGFxzc19Is%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c414cceb518-OSL
alt-svc: h3=":443"; ma=86400

js.stripe.com/v3

151.101.192.176

200 OK

171 kB

URL GET HTTP/2
js.stripe.com/v3
IP
151.101.192.176:443
ASN
#54113 FASTLY

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerDigiCert Inc
Subjecta.stripecdn.com
Fingerprint0C:7B:EC:2B:0B:A8:81:87:0C:D3:D8:55:B6:26:0F:CB:FA:28:ED:F8
ValidityWed, 27 Mar 2024 00:00:00 GMT - Thu, 27 Jun 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Size
171 kB (170567 bytes)
Hash
a1cdeec7da68498d54bc206d38ac663c
caadff8e7c4178a8f02b1c5658b713473d3634b6
5833003146c1bdeda2a122332d3bfabd0bc3534cd9c02983bc0b2c5267bfe4f4

HTTP Headers

GET /v3 HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Tue, 23 Apr 2024 20:43:00 GMT
etag: "a1cdeec7da68498d54bc206d38ac663c"
cache-control: max-age=60
content-type: text/javascript; charset=utf-8
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Wed, 24 Apr 2024 04:09:01 GMT
via: 1.1 varnish
age: 48
x-request-id: 2177d6a6-104c-433f-a2f0-9af4a3cdc2be
x-served-by: cache-hel1410034-HEL
x-cache: HIT
x-cache-hits: 66
vary: Accept-Encoding
timing-allow-origin: *
content-length: 170567
X-Firefox-Spdy: h2

skillexchange.xyz/_next/static/chunks/5099-7849147e5b693118.js

104.21.15.39

200 OK

6.0 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/5099-7849147e5b693118.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (14053)
Size
6.0 kB (5973 bytes)
Hash
3db3b34acd892ee8eeab5bd9a3829c64
f0a70eae3d9999ae7319174c546c56a747958952
7b11b06ebacb31dc51684c62623357b8299350e4e6f23e82e152dea35ce66143

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/5099-7849147e5b693118.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 1
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="5099-7849147e5b693118.js"
etag: W/"3db3b34acd892ee8eeab5bd9a3829c64"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/5099-7849147e5b693118.js
x-vercel-cache: HIT
x-vercel-id: arn1::kzf6q-1713931740820-c6229ba745c3
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TrJXXZ6MZzXLPA46a6TzOLzpBsPhDgIRSbDj6LSwOBwMd0Ugko4F%2FUf6mTQfv1%2BMt9iFKxmKwFsrdDfp465K%2Bd46kSMUzMV8uyFvTu8sVZ3zx4OdiVHkdCJXfZ6VXoiK3QwK6g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c46dfadb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

js.stripe.com/v3/controller-with-preconnect-cf14f0445b2465f875a254c5cc9c4976.html

151.101.192.176

230 B

URL
js.stripe.com/v3/controller-with-preconnect-cf14f0445b2465f875a254c5cc9c4976.html
IP
151.101.192.176:0
ASN
#54113 FASTLY

Certificate
IssuerDigiCert Inc
Subjecta.stripecdn.com
Fingerprint0C:7B:EC:2B:0B:A8:81:87:0C:D3:D8:55:B6:26:0F:CB:FA:28:ED:F8
ValidityWed, 27 Mar 2024 00:00:00 GMT - Thu, 27 Jun 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (391), with no line terminators
Size
230 B (230 bytes)
Hash
cf14f0445b2465f875a254c5cc9c4976
e782c173a7c5b03731cc692df1a4d69ba102408f
8cb923ce9662e0921815c682edba5ce88fe656f51b41e3ca1b1706dab31c4673

HTTP Headers

GET /v3/controller-with-preconnect-cf14f0445b2465f875a254c5cc9c4976.html HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 23 Apr 2024 20:03:29 GMT
etag: "cf14f0445b2465f875a254c5cc9c4976"
cache-control: max-age=60, stale-while-revalidate=900
content-type: text/html; charset=utf-8
content-security-policy: base-uri 'none'; connect-src 'self' https://api.stripe.com https://merchant-ui-api.stripe.com https://stripe.com/cookie-settings/enforcement-mode https://errors.stripe.com https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src 'self'; img-src 'self' https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self' 'sha256-0hAheEzaMe6uXIKV4EehS9pu1am1lj/KnnzrOYqckXk='; worker-src 'none'; report-uri https://q.stripe.com/csp-report
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Wed, 24 Apr 2024 04:09:01 GMT
via: 1.1 varnish
age: 47
x-request-id: 00bec78d-ab8e-4535-a57f-658d1405df0b
x-served-by: cache-hel1410034-HEL
x-cache: HIT
x-cache-hits: 27
vary: Accept-Encoding
timing-allow-origin: *
content-length: 230
X-Firefox-Spdy: h2

js.stripe.com/v3/fingerprinted/js/m-outer-15a2b40a058ddff1cffdb63779fe3de1.js

151.101.192.176

200 OK

315 B

URL GET HTTP/2
js.stripe.com/v3/fingerprinted/js/m-outer-15a2b40a058ddff1cffdb63779fe3de1.js
IP
151.101.192.176:443
ASN
#54113 FASTLY

Requested by
https://js.stripe.com/v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html#url=https%3A%2F%2Fskillexchange.xyz%2Fjob%2Fbrand-designer%2F51189&title=Brand%20Designer%20at%20Flowcode%20%E2%80%94%20Skill%20Exchange%20XYZ&referrer=&muid=NA&sid=NA&version=6&preview=false
Certificate
IssuerDigiCert Inc
Subjecta.stripecdn.com
Fingerprint0C:7B:EC:2B:0B:A8:81:87:0C:D3:D8:55:B6:26:0F:CB:FA:28:ED:F8
ValidityWed, 27 Mar 2024 00:00:00 GMT - Thu, 27 Jun 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (526), with no line terminators
Size
315 B (315 bytes)
Hash
d96c709017743c0759cf3853d1806ba5
72e21587610c49c8305a55e71f73fa88ed618205
ba2338aa6670580269c762f51c4291daef913201aa8f4d4fd166c1a878262652

HTTP Headers

GET /v3/fingerprinted/js/m-outer-15a2b40a058ddff1cffdb63779fe3de1.js HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.stripe.com/v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 11 Nov 2022 20:25:36 GMT
etag: "d96c709017743c0759cf3853d1806ba5"
cache-control: max-age=31536000
content-type: text/javascript; charset=utf-8
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Wed, 24 Apr 2024 04:09:01 GMT
via: 1.1 varnish
age: 10835899
x-request-id: 8dd24e10-0573-48a6-827b-1236bfccad29
x-served-by: cache-hel1410034-HEL
x-cache: HIT
x-cache-hits: 833275
vary: Accept-Encoding
timing-allow-origin: *
content-length: 315
X-Firefox-Spdy: h2

skillexchange.xyz/_next/data/wi-DahJjgdATtn6S5I_k1/job/brand-designer/51189.json

104.21.15.39

200 OK

173 kB

URL GET HTTP/3
skillexchange.xyz/_next/data/wi-DahJjgdATtn6S5I_k1/job/brand-designer/51189.json
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JSON text data
Size
173 kB (172855 bytes)
Hash
0fdafcc0df24c748984a168f21ba01ce
ccd6f7a147b622e84d53db576357680d817f9af9
05df2ab893fe82a71bb78ec36c68e0f77a3fe784f3249f65811328c2188eebc1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/data/wi-DahJjgdATtn6S5I_k1/job/brand-designer/51189.json HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
purpose: prefetch
x-nextjs-data: 1
sentry-trace: c9f892f73e6143d8879f2d6cffbce5cf-b176f190859b364a-1
baggage: sentry-environment=vercel-production,sentry-release=50171528281f3e5193fe8f1d6d9959ffbe59ef67,sentry-public_key=9dd78d4d667d765254fde269034f7e0a,sentry-trace_id=c9f892f73e6143d8879f2d6cffbce5cf,sentry-sample_rate=1,sentry-transaction=%2Fjob%2F%5Brole%5D%2F%5BslugId%5D,sentry-sampled=true
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:00 GMT
content-type: application/json
age: 31
cache-control: public, max-age=0, must-revalidate
etag: W/"ncbytfkz8sgaj"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/data/wi-DahJjgdATtn6S5I_k1/job/brand-designer/51189.json
x-vercel-cache: HIT
x-vercel-id: arn1::iad1::6wf9v-1713931740595-cde8507fd848
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kYOhstoiGwZ6zZEK4FLcITtiyWM9qnoo0ADAvCG2%2F77VxZNR6FScsXroJqPujETiyDJem9iVWG%2BZ%2Fdam%2F6ja%2FPR16fFwh3p9%2FGF7vUGhULU7ASZVhA4AqZWgRIyHASpUAm2Umw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87933c428d63b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

js.stripe.com/v3/fingerprinted/js/controller-394d17cb94c1e18dca2bbd72b2ab02f2.js

151.101.192.176

200 OK

192 kB

URL GET HTTP/2
js.stripe.com/v3/fingerprinted/js/controller-394d17cb94c1e18dca2bbd72b2ab02f2.js
IP
151.101.192.176:443
ASN
#54113 FASTLY

Requested by
https://js.stripe.com/v3/controller-with-preconnect-cf14f0445b2465f875a254c5cc9c4976.html#apiKey=pk_live_aPl5laaldhvu7T1GoKj0iijn005mACPvlv&stripeJsId=c147206a-0ec6-4614-9e5a-04ab2610d0c5&controllerCount=1&isCheckout=false&stripeJsLoadTime=1713931741737&manualBrowserDeprecationRollout=false&referrer=https%3A%2F%2Fskillexchange.xyz%2Fjob%2Fbrand-designer%2F51189&controllerId=__privateStripeController2241
Certificate
IssuerDigiCert Inc
Subjecta.stripecdn.com
Fingerprint0C:7B:EC:2B:0B:A8:81:87:0C:D3:D8:55:B6:26:0F:CB:FA:28:ED:F8
ValidityWed, 27 Mar 2024 00:00:00 GMT - Thu, 27 Jun 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
192 kB (192469 bytes)
Hash
0a43e06db78fd44476d94b1b8c623ce2
3231d3bd61cce2b40e222e56db2556f7f52b0c76
999aa463e13004f85d27e944c20c4787aee911beedda38df3764b862b0b73118

HTTP Headers

GET /v3/fingerprinted/js/controller-394d17cb94c1e18dca2bbd72b2ab02f2.js HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.stripe.com/v3/controller-with-preconnect-cf14f0445b2465f875a254c5cc9c4976.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 23 Apr 2024 20:03:39 GMT
etag: "0a43e06db78fd44476d94b1b8c623ce2"
cache-control: max-age=31536000
content-type: text/javascript; charset=utf-8
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Wed, 24 Apr 2024 04:09:01 GMT
via: 1.1 varnish
age: 28948
x-request-id: 7692ba39-64ad-4db3-a9e9-e7a7550f7989
x-served-by: cache-hel1410034-HEL
x-cache: HIT
x-cache-hits: 9286
vary: Accept-Encoding
timing-allow-origin: *
content-length: 192469
X-Firefox-Spdy: h2

m.stripe.network/inner.html

151.101.192.176

540 B

URL
m.stripe.network/inner.html
IP
151.101.192.176:0
ASN
#54113 FASTLY

File type
HTML document, ASCII text, with very long lines (930), with no line terminators
Size
540 B (540 bytes)
Hash
06bfcd88af438673a8bf9b845a11aa6e
d024a745032cbe115526abe648d9fa0f0a10a681
947ac0903521f5eceefc90637c066306a8ca67466ccc188bb0107fb7cfb532d1

HTTP Headers

GET /inner.html HTTP/1.1
Host: m.stripe.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.stripe.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: max-age=300, public
content-type: text/html; charset=utf-8
content-security-policy: base-uri 'none'; connect-src https://m.stripe.network https://m.stripe.com; default-src 'none'; font-src https://m.stripe.network https://fonts.gstatic.com; form-action 'none'; frame-src https://m.stripe.network https://js.stripe.com; img-src https://m.stripe.network https://m.stripe.com https://b.stripecdn.com; script-src https://m.stripe.network 'sha256-/5Guo2nzv5n/w6ukZpOBZOtTJBJPSkJ6mhHpnBgm3Ls='; style-src https://m.stripe.network; report-uri https://q.stripe.com/csp-report
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Wed, 24 Apr 2024 04:09:01 GMT
via: 1.1 varnish
age: 203
x-request-id: f91b8a91-1f61-4beb-a49e-35c5cafd8516
x-served-by: cache-hel1410034-HEL
x-cache: HIT
x-cache-hits: 277
x-timer: S1713931742.938942,VS0,VE0
vary: Accept-Encoding, Origin
content-length: 540
X-Firefox-Spdy: h2

skillexchange.xyz/_next/static/chunks/5329-a5a5c9b7342529a7.js

104.21.15.39

200 OK

18 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/5329-a5a5c9b7342529a7.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (10099)
Size
18 kB (18501 bytes)
Hash
c25e002e8293392b8a2bb82d3a817936
683dd7b57df53168756f26b303f1923150b4a43f
3c3a9cdebada4bef9ec5ac32a6a0e05792b15a3868d0aad9173b1ff170040585

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/5329-a5a5c9b7342529a7.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 1
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="5329-a5a5c9b7342529a7.js"
etag: W/"c25e002e8293392b8a2bb82d3a817936"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/5329-a5a5c9b7342529a7.js
x-vercel-cache: HIT
x-vercel-id: arn1::cnkpc-1713931740859-bfa73630db67
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MC1LchoW%2F3r4B5TJIfeZdtZdFMPgh5dMp%2F1LnefQS4AUmXOXwxdZztHydByZKdhtVBZv9bLLQY%2BkrmhyfTjaxI%2B6FIk6KbGbmRdVlmZiDWUV%2FPxtYfVIQ5xwVVbxIG3txNDO5w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c46efbbb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/pages/jobs-40bf8201ab269e60.js

104.21.15.39

200 OK

18 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/pages/jobs-40bf8201ab269e60.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (5670)
Size
18 kB (17833 bytes)
Hash
a02097a3d618848a5598507e2efe8a73
79bcd6ca1bd096ac6615acfde244522ace9bc7cd
5d94d7b6a8a97de6d22cd8dd0e5b1a9eb85d1352e02571ea5af40e4deeade70c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/pages/jobs-40bf8201ab269e60.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 1
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="jobs-40bf8201ab269e60.js"
etag: W/"a02097a3d618848a5598507e2efe8a73"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/pages/jobs-40bf8201ab269e60.js
x-vercel-cache: HIT
x-vercel-id: arn1::jgkcj-1713931740704-a594368ed786
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8kACCQOxwkD0nMmGVXQziiaN0lB86g9uoyk5aXr9RTXDG3pbTGIe9DGjbi2ySOLajNyUvvr0d%2BPkg1ry9H35XbnKi5WoT%2BlyU76rMEgXO8BfMEtpdsI72gggW018T7nBCKH3Cg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c465f73b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/42-2907775d64b2606c.js

104.21.15.39

200 OK

3.4 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/42-2907775d64b2606c.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (7874)
Size
3.4 kB (3411 bytes)
Hash
6b610ba9f3722f9e352df1d1f999d245
39c6caa40c574f0d41c1c5bd3a04e020a00e474c
75c6c74db753586785679d5ed6e3187d380d2d810224aa7078fbd3d65ad141d2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/42-2907775d64b2606c.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 429859
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="42-2907775d64b2606c.js"
etag: W/"6b610ba9f3722f9e352df1d1f999d245"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/42-2907775d64b2606c.js
x-vercel-cache: HIT
x-vercel-id: arn1::l4p7b-1713501882828-248fa85c149c
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JEt%2FueMUxDaCFDxpt5b8JQZl4c63dhIhjEAAeAvLtlzKRuRs%2FgOaCl0q2yUBlyYGi9iTYvi02bSu%2Fb0UzDQWcVoq3vPACF5KN%2F3hr%2FNDP3MO%2FqgqfVmjrwnXcYdVBGQWHw7oSg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c455f0eb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/9076-b73548c8ad7997d1.js

104.21.15.39

200 OK

3.6 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/9076-b73548c8ad7997d1.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (8369)
Size
3.6 kB (3585 bytes)
Hash
2bb1317eb66af95ee05de74358c17ee6
6117711bee05b3a5fc721935ad7f0fed1a07f92a
3607dd2a65e41fef79f36015aaea61090df07419e031131fa1401da8a240ecc7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/9076-b73548c8ad7997d1.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 429859
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="9076-b73548c8ad7997d1.js"
etag: W/"2bb1317eb66af95ee05de74358c17ee6"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/9076-b73548c8ad7997d1.js
x-vercel-cache: HIT
x-vercel-id: arn1::tvqdw-1713501882833-d7b9d953a291
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=W%2BjG53DCBtvPge%2BuIdQ1rcXjLdX%2FGL0CwlH03T8OTkiiJ3F%2F5LaATY9pIYnDCqbNF3SG8jJqvRlnv5oG7yKCeTmf5XxPZ9PuXm6wC5x9G6z3KMp7LG%2Bdxqkb9TOrssEC9fK4rg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c477804b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/pages/index-6ca516263c23ec3d.js

104.21.15.39

200 OK

7.5 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/pages/index-6ca516263c23ec3d.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (4684)
Size
7.5 kB (7535 bytes)
Hash
046acc8481bf5b15f39bc9905ad76858
bc655b78bfc2c568865f8108320308eeb4363963
14a24533a80bfb3720109788c8860bf0842308a44fcdba2c86a533d839b3d8ad

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/pages/index-6ca516263c23ec3d.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:00 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="index-6ca516263c23ec3d.js"
etag: W/"046acc8481bf5b15f39bc9905ad76858"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/pages/index-6ca516263c23ec3d.js
x-vercel-cache: HIT
x-vercel-id: arn1::cnkpc-1713931740610-2750291f0e65
x-xss-protection: 1; mode=block
cf-cache-status: MISS
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=94MdubfJZIcUSs%2F19CxbviNZwPbw%2BhD6uI%2BDhLmV8lYHVt3Be5DPZYeyloMGbzkHxIFZ1iRYF4742tVjz2qVuI0R3ous%2FKPaz%2FHFl5MnZI5GQgA0CGFmq4YfHJmx3pY1VpO6JA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c429d72b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

m.stripe.com/6

52.10.82.34

200 OK

156 B

URL POST HTTP/2
m.stripe.com/6
IP
52.10.82.34:443
ASN
#16509 AMAZON-02

Requested by
https://m.stripe.network/inner.html#url=https%3A%2F%2Fskillexchange.xyz%2Fjob%2Fbrand-designer%2F51189&title=Brand%20Designer%20at%20Flowcode%20%E2%80%94%20Skill%20Exchange%20XYZ&referrer=&muid=NA&sid=NA&version=6&preview=false
Certificate
IssuerDigiCert Inc
Subjectm.stripe.com
Fingerprint1F:77:3A:2D:0A:6F:20:07:BB:34:22:BC:B6:D0:39:6D:93:AC:D5:DB
ValidityTue, 16 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT

File type
JSON text data
Size
156 B (156 bytes)
Hash
4ec8e63379af995469e733109a5cd412
35d1d9001e3eb1b8c89f609ae07cbc5c949582c3
71e2461eb9ea202e2d4be0507c04f466dac13d732c241712b87f180f972ecf82

HTTP Headers

POST /6 HTTP/1.1
Host: m.stripe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 3180
Origin: https://m.stripe.network
DNT: 1
Connection: keep-alive
Referer: https://m.stripe.network/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 04:09:02 GMT
content-length: 156
set-cookie: m=3ab3d87f-f58d-4c47-9425-04aae2e3e5be63e1aa;Expires=Fri, 24-Apr-2026 04:09:02 GMT;Secure;HttpOnly; SameSite=None
x-content-type-options: nosniff
x-stripe-server-envoy-start-time-us: 1713931742886748
x-stripe-server-envoy-upstream-service-time-ms: 3
x-envoy-attempt-count: 1
x-stripe-bg-intended-route-color: blue
x-stripe-client-envoy-start-time-us: 1713931742886539
access-control-allow-origin: https://m.stripe.network
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
strict-transport-security: max-age=31556926; includeSubDomains; preload
content-type: application/json;charset=utf-8
X-Firefox-Spdy: h2

r.stripe.com/b

54.186.23.98

200 OK

0 B

URL POST HTTP/2
r.stripe.com/b
IP
54.186.23.98:443
ASN
#16509 AMAZON-02

Requested by
https://js.stripe.com/v3/controller-with-preconnect-cf14f0445b2465f875a254c5cc9c4976.html#apiKey=pk_live_aPl5laaldhvu7T1GoKj0iijn005mACPvlv&stripeJsId=c147206a-0ec6-4614-9e5a-04ab2610d0c5&controllerCount=1&isCheckout=false&stripeJsLoadTime=1713931741737&manualBrowserDeprecationRollout=false&referrer=https%3A%2F%2Fskillexchange.xyz%2Fjob%2Fbrand-designer%2F51189&controllerId=__privateStripeController2241
Certificate
IssuerDigiCert Inc
Subject*.stripe.com
Fingerprint00:FD:0D:F7:FE:1A:8E:F9:34:AC:59:37:6C:A2:27:56:91:65:2E:66
ValidityWed, 06 Mar 2024 00:00:00 GMT - Thu, 06 Jun 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /b HTTP/1.1
Host: r.stripe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 6813
Origin: https://js.stripe.com
DNT: 1
Connection: keep-alive
Referer: https://js.stripe.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 04:09:03 GMT
content-length: 0
access-control-allow-origin: https://js.stripe.com
access-control-allow-credentials: true
x-stripe-server-envoy-start-time-us: 1713931743680482
x-stripe-server-envoy-upstream-service-time-ms: 3
x-envoy-attempt-count: 1
x-stripe-bg-intended-route-color: blue
x-stripe-client-envoy-start-time-us: 1713931743680201
content-type: text/plain
X-Firefox-Spdy: h2

skillexchange.xyz/_next/static/chunks/6234-ba230d6f86aa7a15.js

104.21.15.39

200 OK

4.1 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/6234-ba230d6f86aa7a15.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (5348)
Size
4.1 kB (4055 bytes)
Hash
bff6eea57a19b34a20c399afcee4db09
07e9aafb16982cc4995a50016125d7f1af0cc7f5
ff6a80df16b37f205858cf826bbd57cd55bbf731ff3204cda05b8becd51c4384

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/6234-ba230d6f86aa7a15.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 429818
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="6234-ba230d6f86aa7a15.js"
etag: W/"bff6eea57a19b34a20c399afcee4db09"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/6234-ba230d6f86aa7a15.js
x-vercel-cache: HIT
x-vercel-id: arn1::bbtwk-1713501923429-ce98bcc202ea
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DBhMdqXr03deRrhQOkK4RyfUWEViSVTNVXuIkOVpPgJtJAbzkhMuTsjFCBz0ZRS2IqUGCd1oyL26INlybKtI0DM5E%2FgV9lKkQIjRep8IESfbpTaQ2VH7ZwDFmBftYbHQA5jyGg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c478814b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/5935-cfbb7c334a9ef714.js

104.21.15.39

200 OK

33 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/5935-cfbb7c334a9ef714.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (32603)
Size
33 kB (32653 bytes)
Hash
8c8e9347dcf28b016ee4c06a71a064f7
d9b8314258887ffb8df877d62b75b828e4e7d9ce
93db94b193824e4abfc3a4e9b708a7dfc968a94437aff65ff3a08b3788007d2f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/5935-cfbb7c334a9ef714.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:08:59 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="5935-cfbb7c334a9ef714.js"
etag: W/"8c8e9347dcf28b016ee4c06a71a064f7"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/5935-cfbb7c334a9ef714.js
x-vercel-cache: HIT
x-vercel-id: arn1::52smm-1713931739734-991f8e1af3c4
x-xss-protection: 1; mode=block
cf-cache-status: MISS
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hlPIp7ahS0PuzNcBpdepOkOT9Oh%2FesOWPg4VbeoEBr5saiYbsdet3umdTXewt7H%2Fr%2BcVF6i0k5sJQv9gWgWpd5FcuBvB3onLJFiCZozij6xvnJiklabv42qf8Pkx6R8kzjmvHA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c3d19d7b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/3280-641842fe7ccb1525.js

104.21.15.39

200 OK

6.2 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/3280-641842fe7ccb1525.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (6276), with no line terminators
Size
6.2 kB (6239 bytes)
Hash
2238e33dccffe27e6d42b2eeee0a85c5
df5afbef99a51012cb83415f68fb4202eb3a74ad
c7ab40060d526690fd5b0574d70b26e0386e4c4476f028c52ea8d2bf1fa0aea7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/3280-641842fe7ccb1525.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:00 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="3280-641842fe7ccb1525.js"
etag: W/"8cca1a234bc341f8f78be96b08aa1225"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/3280-641842fe7ccb1525.js
x-vercel-cache: HIT
x-vercel-id: arn1::jgkcj-1713931740728-51a29201602b
x-xss-protection: 1; mode=block
cf-cache-status: MISS
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TA%2B4KVXRkfUr3YSoIRpjyNh%2BiW5YgLBt%2Bm7iVStTRvLei8ScmNgugsIFmyomeb5rNkLYuu7VmCZrvvLInZWc%2FdAt%2FoQ31I82wyYIjSRA%2Fb0LloZ0SBYHYae7QzwX7dDsbHXxKg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c435dfcb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/855-93c19a02b9f44e32.js

104.21.15.39

200 OK

17 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/855-93c19a02b9f44e32.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (17224)
Size
17 kB (17273 bytes)
Hash
16f278e38e80e76560bffd44f2e03691
9a3df159059abb5da0bb8a433eda73cf031aac99
e691d7405f0e6897b3c47ebb8c64a09ae933940f104c8b9cd5bc4e60dbc64f67

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/855-93c19a02b9f44e32.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 1
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="855-93c19a02b9f44e32.js"
etag: W/"16f278e38e80e76560bffd44f2e03691"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/855-93c19a02b9f44e32.js
x-vercel-cache: HIT
x-vercel-id: arn1::btclf-1713931740610-bcab72ccd0ba
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ghq%2FxAE7jTu%2B6Mlt96rIZ3Wo04WlIGe9VFMy%2BueOFyMTAr6QI9zcVyJOe5Ke6khr3dpde%2BHX9H1JFOt%2B2wkVXdWIaUdblFjxxQoPvocoBojSym0rGNcSOguVrRYuUs%2FL07cxRQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c461f58b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/css/53e2a3b31477ca62.css

104.21.15.39

200 OK

22 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/css/53e2a3b31477ca62.css
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
ASCII text, with very long lines (21927)
Size
22 kB (22098 bytes)
Hash
98659c2bbb62c957db74ead2fad8059f
6d15a43bf9bc45df0a7e572fe0b4900ad1d6644b
9b275670b144331bd76cede064643c01105f2b94d232ad0e409f2cabfd5e28a8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/css/53e2a3b31477ca62.css HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
sentry-trace: c9f892f73e6143d8879f2d6cffbce5cf-8a157563cb8a1cb4-1
baggage: sentry-environment=vercel-production,sentry-release=50171528281f3e5193fe8f1d6d9959ffbe59ef67,sentry-public_key=9dd78d4d667d765254fde269034f7e0a,sentry-trace_id=c9f892f73e6143d8879f2d6cffbce5cf,sentry-sample_rate=1,sentry-transaction=%2Fjob%2F%5Brole%5D%2F%5BslugId%5D,sentry-sampled=true
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
age: 429858
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="53e2a3b31477ca62.css"
etag: W/"98659c2bbb62c957db74ead2fad8059f"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/css/53e2a3b31477ca62.css
x-vercel-cache: HIT
x-vercel-id: arn1::zbnsz-1713501883218-1804a65f2e3a
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3PMj9IFHT3db0%2B%2BSxBen3vyjHUFAaRSR4ZtyntQM3zp5B1Gwq%2Fv5o%2BFRQeleS%2BRE%2Fa4aVzGiu96B97%2FtNSWa%2FlFvvXFNnIPwbCyWfJ%2FmlD%2B%2BYRLrX6vyggbYyBAB2MyBF8uihA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c477808b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/8352-5599abc12f16e448.js

104.21.15.39

200 OK

94 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/8352-5599abc12f16e448.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
94 kB (93996 bytes)
Hash
d0805f64b76886f0cf77c3992fb1d850
d5317fb8a221c466a94124ffbbfdf13c86d2dff2
cfe81e3a7eee0391b7c9f3a2731dd275e0ad19b56b73b6c0e7aab7c8db5aeb24

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/8352-5599abc12f16e448.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:08:59 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="8352-5599abc12f16e448.js"
etag: W/"d0805f64b76886f0cf77c3992fb1d850"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/8352-5599abc12f16e448.js
x-vercel-cache: HIT
x-vercel-id: arn1::v2kl5-1713931739739-31b34eddb15f
x-xss-protection: 1; mode=block
cf-cache-status: MISS
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OFmYHDtw9yxvqAfxtL1Eb73KEze1MJ5rqBXjgPPaFBSz2OST%2FiQNn1jg3bL%2F65GcHAnmPmGjftYDZ6wvQlh2Pjhesr%2FORFwSXeiuXOw8uSufXYniZzz%2Bl8DAYv3TxSOyQThAog%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c3d29dfb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/8695-ded1f0415e8cc3d8.js

104.21.15.39

200 OK

66 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/8695-ded1f0415e8cc3d8.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (65461)
Size
66 kB (65511 bytes)
Hash
167caceb4871a0dfa4c86648afd02d01
088704b7c12369925d2069520dc618cfb1379e7c
bac2acf1f88aaf661df2b7d5cf17fe0e076cf1b2fb6369fcd1273286e13c44d5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/8695-ded1f0415e8cc3d8.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="8695-ded1f0415e8cc3d8.js"
etag: W/"167caceb4871a0dfa4c86648afd02d01"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/8695-ded1f0415e8cc3d8.js
x-vercel-cache: HIT
x-vercel-id: arn1::62wz8-1713931741086-4216aa92c429
x-xss-protection: 1; mode=block
cf-cache-status: MISS
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZYRyNzTFS7CySMmUe1iRFhZdHykukzSSxXsh5gFz8SuZqkjIznQJKtay0u5eISs%2Fsgdxy7uCw4k2O%2BBfPOlFYi0LhsOFgrsc5EZM1Sc1WbwIQ5XYAheVOuEgVuyve8t8GIuNQw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c459f2ab518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/368-01705248c511c25a.js

104.21.15.39

200 OK

67 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/368-01705248c511c25a.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
67 kB (66929 bytes)
Hash
c8b611e5a7d1ea48af0fc6e1e4d5a128
ede1c7d9af7b5c330deb1c4577225fdade6bef3c
a159711f5302501108517d90c899dbb1117caade570d8a255f357db7e5186054

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/368-01705248c511c25a.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 1
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="368-01705248c511c25a.js"
etag: W/"c8b611e5a7d1ea48af0fc6e1e4d5a128"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/368-01705248c511c25a.js
x-vercel-cache: HIT
x-vercel-id: arn1::dh5j5-1713931740598-a24b94eef886
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=r7LBAyBhJFIYlVvR89xVNuFLzysWfz1EX3g8YAqgC6BZH7by3l4yqQ7sHWYJ8HP8ygYFwgsTwLQ8EJ4j7jSM9Z8FgQOVvmYOE7dNsNthM30B2BwKIyGALPcD3igTQ30diqUWtQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c460f51b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/9439-289e6ed3142e3538.js

104.21.15.39

200 OK

88 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/9439-289e6ed3142e3538.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type

Size
88 kB (88488 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/9439-289e6ed3142e3538.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 429859
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="9439-289e6ed3142e3538.js"
etag: W/"ff2860670459bd1614129fe48ee8c45b"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/9439-289e6ed3142e3538.js
x-vercel-cache: HIT
x-vercel-id: arn1::bbtwk-1713501882793-c5173a61cb06
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6t2JcQuYGoKJDjYByjz9V3GPPnqBalAAvuVw754Esqnk%2Fp6Z%2FesYZOxKElRlOzE%2FrodlTrpTIAByAdIuSvNXQPdxQ9U8816N8qmhpAUutaLAq%2BEU5QP6nS4V7LLNKzSUGlSuLQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c46ffccb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

js.stripe.com/v3/controller-with-preconnect-cf14f0445b2465f875a254c5cc9c4976.html

151.101.192.176

200 OK

391 B

URL GET HTTP/2
js.stripe.com/v3/controller-with-preconnect-cf14f0445b2465f875a254c5cc9c4976.html
IP
151.101.192.176:443
ASN
#54113 FASTLY

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerDigiCert Inc
Subjecta.stripecdn.com
Fingerprint0C:7B:EC:2B:0B:A8:81:87:0C:D3:D8:55:B6:26:0F:CB:FA:28:ED:F8
ValidityWed, 27 Mar 2024 00:00:00 GMT - Thu, 27 Jun 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (405), with no line terminators
Size
391 B (391 bytes)
Hash
8b01960da04282f8d9ee2bd5ade6399a
08eea0c30675270515596b132ad527b4044787b5
c9e5e033ca49aa9f333ab686e50f8154d9fb58f84be4b970a9f961743b16c328

HTTP Headers

GET /v3/controller-with-preconnect-cf14f0445b2465f875a254c5cc9c4976.html HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Tue, 23 Apr 2024 20:03:29 GMT
etag: "cf14f0445b2465f875a254c5cc9c4976"
cache-control: max-age=60, stale-while-revalidate=900
content-type: text/html; charset=utf-8
content-security-policy: base-uri 'none'; connect-src 'self' https://api.stripe.com https://merchant-ui-api.stripe.com https://stripe.com/cookie-settings/enforcement-mode https://errors.stripe.com https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src 'self'; img-src 'self' https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self' 'sha256-0hAheEzaMe6uXIKV4EehS9pu1am1lj/KnnzrOYqckXk='; worker-src 'none'; report-uri https://q.stripe.com/csp-report
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Wed, 24 Apr 2024 04:09:01 GMT
via: 1.1 varnish
age: 47
x-request-id: 00bec78d-ab8e-4535-a57f-658d1405df0b
x-served-by: cache-hel1410034-HEL
x-cache: HIT
x-cache-hits: 27
vary: Accept-Encoding
timing-allow-origin: *
content-length: 230
X-Firefox-Spdy: h2

hatscripts.github.io/circle-flags/flags/us.svg

0.0.0.0

0 B

URL GET
hatscripts.github.io/circle-flags/flags/us.svg
IP
0.0.0.0:0
ASN
#0

Requested by
https://skillexchange.xyz/job/brand-designer/51189

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /circle-flags/flags/us.svg HTTP/1.1
Host: hatscripts.github.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

cdn.tolt.io/tolt.js

143.204.55.99

200 OK

6.7 kB

URL GET HTTP/2
cdn.tolt.io/tolt.js
IP
143.204.55.99:443
ASN
#16509 AMAZON-02

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerAmazon
Subjectcdn.tolt.io
Fingerprint34:DF:27:74:72:54:8C:F8:6B:A4:8C:42:57:92:2E:E2:4E:61:38:E8
ValiditySun, 26 Nov 2023 00:00:00 GMT - Wed, 25 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (6662), with no line terminators
Size
6.7 kB (6652 bytes)
Hash
e0a206828130c59fb2f4efdb6e7fe5c8
4f3e269868ae1a7bcc30f77f0b34e9b044eb5e96
6a4861548f72cc5bfaa748738671a5e1f424b6a064549ca0b51c63f7291043bf

HTTP Headers

GET /tolt.js HTTP/1.1
Host: cdn.tolt.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 01 Apr 2024 15:56:25 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: nrgrOCCv82UT6V5ZxhqqRngDMcCQIG0J
server: AmazonS3
content-encoding: gzip
date: Wed, 24 Apr 2024 03:50:00 GMT
etag: W/"0136d5dfceeaaf12b1d76c4f2f2b1904"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7g3W21yi9uw0NxLzG1EUwMLDl6KwqQPZcpnfv71fr0P8ZW-XS35OzA==
age: 5507
X-Firefox-Spdy: h2

skillexchange.xyz/_next/static/chunks/4975-23319e3f45e4a260.js

104.21.15.39

200 OK

612 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/4975-23319e3f45e4a260.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type

Size
612 kB (612549 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/4975-23319e3f45e4a260.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 429859
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="4975-23319e3f45e4a260.js"
etag: W/"5a4dcc58e6f1779283ff91aafc24ad09"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/4975-23319e3f45e4a260.js
x-vercel-cache: HIT
x-vercel-id: arn1::ngtf9-1713501882825-0bb71a4ed7fb
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pxhdoW%2BKgdVcIayvU39kZBxe9sqkDVbG%2FtvezWq8la9V82yMPogr8BcWh9Pralm4VLcMkH1gp2Rj7T4KADTEA4eRGLET%2B5sPk%2FwXxD5plYrohYfSNWOhlGjJmoEQ46xAtWFVKA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c464f6eb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

js.stripe.com/v3/.deploy_status_henson.json

151.101.192.176

200 OK

474 B

URL GET HTTP/2
js.stripe.com/v3/.deploy_status_henson.json
IP
151.101.192.176:443
ASN
#54113 FASTLY

Requested by
https://js.stripe.com/v3/controller-with-preconnect-cf14f0445b2465f875a254c5cc9c4976.html#apiKey=pk_live_aPl5laaldhvu7T1GoKj0iijn005mACPvlv&stripeJsId=c147206a-0ec6-4614-9e5a-04ab2610d0c5&controllerCount=1&isCheckout=false&stripeJsLoadTime=1713931741737&manualBrowserDeprecationRollout=false&referrer=https%3A%2F%2Fskillexchange.xyz%2Fjob%2Fbrand-designer%2F51189&controllerId=__privateStripeController2241
Certificate
IssuerDigiCert Inc
Subjecta.stripecdn.com
Fingerprint0C:7B:EC:2B:0B:A8:81:87:0C:D3:D8:55:B6:26:0F:CB:FA:28:ED:F8
ValidityWed, 27 Mar 2024 00:00:00 GMT - Thu, 27 Jun 2024 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (498), with no line terminators
Size
474 B (474 bytes)
Hash
f855df062b473f51c057c577f48f0e07
40295458121295b678182a5ee83dd66b104a382b
730f308aaae79d1d4a0900d36af926350fc625bc34bd6b52085e8a6ba753ba29

HTTP Headers

GET /v3/.deploy_status_henson.json HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://js.stripe.com/v3/controller-with-preconnect-cf14f0445b2465f875a254c5cc9c4976.html
Content-Type: application/x-www-form-urlencoded
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Tue, 23 Apr 2024 20:43:00 GMT
etag: "fb43dadd2a7f6d46ab231c8298e6eaa5"
cache-control: max-age=60
content-type: application/json
access-control-allow-origin: *
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Wed, 24 Apr 2024 04:09:02 GMT
via: 1.1 varnish
age: 51
x-request-id: 798694a7-204a-4728-8768-0d9cd496c72c
x-served-by: cache-hel1410034-HEL
x-cache: HIT
x-cache-hits: 48
vary: Accept-Encoding
strict-transport-security: max-age=31556926; includeSubDomains; preload
timing-allow-origin: *
content-length: 298
X-Firefox-Spdy: h2

skillexchange.xyz/_next/static/chunks/pages/_app-6ba8234dd4ec1463.js

104.21.15.39

200 OK

617 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/pages/_app-6ba8234dd4ec1463.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type

Size
617 kB (616768 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/pages/_app-6ba8234dd4ec1463.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:08:59 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="_app-6ba8234dd4ec1463.js"
etag: W/"eb8c8c22c749347f4eb935ee3e3c81f2"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/pages/_app-6ba8234dd4ec1463.js
x-vercel-cache: HIT
x-vercel-id: arn1::kzf6q-1713931739735-30bb8229ad22
x-xss-protection: 1; mode=block
cf-cache-status: MISS
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bnln2cEhVulKX3Zf%2BWnQ9BWM8NyocintB2m20HYfdAFl0Hw86jySmIuQaWzuCss5Kw74FV6wdVHBXTKgHfD%2BatojdKORUqX%2Bi%2BZsCqr%2BL0LdkJ1qxUEHyqnXvqJC5gTz25Tz%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c3d19d6b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

hatscripts.github.io/circle-flags/flags/us.svg

185.199.110.153

200 OK

723 B

URL GET HTTP/2
hatscripts.github.io/circle-flags/flags/us.svg
IP
185.199.110.153:443
ASN
#54113 FASTLY

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
723 B (723 bytes)
Hash
004c449982ef3fe90b19dc8d8a489afb
b2d6a44da6449f3c6daf118556cd15864225e929
788cc3ad5ce3610d2b1915aa1e730483902f17db9a874afc1623fa63c82b2ca8

HTTP Headers

GET /circle-flags/flags/us.svg HTTP/1.1
Host: hatscripts.github.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Wed, 03 Apr 2024 02:01:27 GMT
access-control-allow-origin: *
etag: W/"660cb877-2d3"
expires: Sun, 07 Apr 2024 01:25:56 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: HIT
x-github-request-id: 989E:2D5720:E6712A:E972C1:6611F3FD
accept-ranges: bytes
date: Wed, 24 Apr 2024 04:09:00 GMT
via: 1.1 varnish
age: 416
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 3
x-timer: S1713931740.211902,VS0,VE0
vary: Accept-Encoding
x-fastly-request-id: ef438a962cb909cbed2a7f215be2b9f858ebd446
content-length: 326
X-Firefox-Spdy: h2

skillexchange.xyz/_next/static/chunks/8405-d3dd5934a9d81199.js

104.21.15.39

200 OK

7.1 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/8405-d3dd5934a9d81199.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (7161), with no line terminators
Size
7.1 kB (7088 bytes)
Hash
aa799589814bd99c8a493e75f1c3d7c5
afac6ccf40ef96f23d59914c733e470f870a93ec
9c275800928a4863007c6793ace077a4a1d27c5cd20f21c388929895869d273c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/8405-d3dd5934a9d81199.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:00 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 429858
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="8405-d3dd5934a9d81199.js"
etag: W/"0fcd77101f68ed7901cbbb406392b54d"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/8405-d3dd5934a9d81199.js
x-vercel-cache: HIT
x-vercel-id: arn1::l8clk-1713501882197-2838bcf19745
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=K6OmqwL9tzECstIy3HELdul2HLsU%2FZb7%2Biv90PhaTyBZ5J%2FGm8PgWE7GSbgV0d2ET0g8ASnLf6GBXd4oXGypjYgV0ypX826flm9rriB0fK7OFg7AZLNkgR5Dn9kPg9Fy47kp0Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c429d6fb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/4975-23319e3f45e4a260.js

104.21.15.39

200 OK

612 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/4975-23319e3f45e4a260.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type

Size
612 kB (612549 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/4975-23319e3f45e4a260.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:00 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 429858
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="4975-23319e3f45e4a260.js"
etag: W/"5a4dcc58e6f1779283ff91aafc24ad09"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/4975-23319e3f45e4a260.js
x-vercel-cache: HIT
x-vercel-id: arn1::ngtf9-1713501882825-0bb71a4ed7fb
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iWVLskKlQQI0Cew53iJRF3ldrhR7xVIdpqV7P3EuNmhYRseECzOKG3zKQq8O0m1obgXa0OIy%2FVJNVJLLeahvTmOPFHWmtKX%2FZd7EENb8Pe1%2BS3VI3ePiYajPRKs5ghgEaV6vXw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c431de1b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/2216.8804dc9fd6d2a3b3.js

104.21.15.39

200 OK

734 B

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/2216.8804dc9fd6d2a3b3.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (749), with no line terminators
Size
734 B (734 bytes)
Hash
fd92a6c5a5eec5a797bb8ceee5489a32
1e8277436154f8a0ab0cb09138054a48c2ed7fe1
0ac9f9857ae401506c10892debacd79463ab32d44665e735c390e47665ef39a5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/2216.8804dc9fd6d2a3b3.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:00 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 429789
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="2216.8804dc9fd6d2a3b3.js"
etag: W/"8401f308f26f0a007120730fd67404bc"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/2216.8804dc9fd6d2a3b3.js
x-vercel-cache: HIT
x-vercel-id: arn1::l6rdr-1713501951807-b5431067e61d
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fkB6WIYvJR5cHd4tfokHnIznVelecqdQDUUwVNqWHhweMeT7NP%2BXc9Lhlc0gL5G3j2tzNJ1Hy6WJBqQaB7WO0z56uLA2Sj2y9htsefY3X60XTPODCOwAR0AhiE5FmUf1rlGi9A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c3fcc1eb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/7258-31b07618d6f5363f.js

104.21.15.39

200 OK

11 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/7258-31b07618d6f5363f.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (5323)
Size
11 kB (11420 bytes)
Hash
4e4512e1eb3732e3930212647869d74e
bb277bab692166e8b01628ef98853538d3240611
2a37e7c704eb57bfec6bcb0c49811c53f1decc3cff65c6c6d2b704a5ff13acf6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/7258-31b07618d6f5363f.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:08:59 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 429788
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="7258-31b07618d6f5363f.js"
etag: W/"4e4512e1eb3732e3930212647869d74e"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/7258-31b07618d6f5363f.js
x-vercel-cache: HIT
x-vercel-id: arn1::kmg8q-1713501951049-a9998b7950c9
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MzC5XEiF6qwZmaOF%2BuRcDln0OSH6b0A9%2BWlHlc9Yd4DMnEbwjiax6Twp6T1h7OazCLy422c8TvSzd%2FnTOLVEPdz2%2BIFFhLUulYjulhE%2F%2BDAp%2BTlXN0osawlhP9Vy%2FFBCGPZqaQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c3d29ddb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/4686-ff5c98395a19282d.js

104.21.15.39

200 OK

14 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/4686-ff5c98395a19282d.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type

Size
14 kB (13600 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/4686-ff5c98395a19282d.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:08:59 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 429857
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="4686-ff5c98395a19282d.js"
etag: W/"ef9cdc26f475bfc24a1417352dc9b061"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/4686-ff5c98395a19282d.js
x-vercel-cache: HIT
x-vercel-id: arn1::qxt2t-1713501882803-0b261a634428
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f1wD5%2Bu6x58qQBIcIVZB2aqapfzeJPNIGPmc41znW%2FndlC25rQeXFBfoYFcs7wSM31LapJmZWuIjOYGwhatmbyorX0jcVk5yqgD5qPQWy8pLmIdIJwX4EbAxVYTHWXdtJsDHwg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c3d29e0b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/2175-8ed50ee19373c540.js

104.21.15.39

200 OK

38 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/2175-8ed50ee19373c540.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (37928)
Size
38 kB (37978 bytes)
Hash
ac108a5504d64df5a1bd17a8042ee329
cc864c22f0a75d4adcc6670d68900cdb08d03ea4
9b260784036c1db097c0dde9d13162f828a265aaac989be34ff7c70947950e03

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/2175-8ed50ee19373c540.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:00 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="2175-8ed50ee19373c540.js"
etag: W/"ac108a5504d64df5a1bd17a8042ee329"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/2175-8ed50ee19373c540.js
x-vercel-cache: HIT
x-vercel-id: arn1::btclf-1713931740866-e20dba327a23
x-xss-protection: 1; mode=block
cf-cache-status: MISS
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J1A1YmTv1B6KYuaWxDeCGYF1dP9LPgNR4ad4ntjwWTWtCUmazIPxzSoreXvWmrJXzpK5WtN9zrXJ9IqmDilhIEIH6DciV7KVt2MrcGQIwRu60OpDP3wQr1%2FIupxXT1Z2oCeoZw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c443e91b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/7291-8f2725a1b372e9f6.js

104.21.15.39

200 OK

53 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/7291-8f2725a1b372e9f6.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (53065)
Size
53 kB (53115 bytes)
Hash
e5e1bafbd585ec0378c461ed56ec8830
f6325640bc0e6f82ed0b18d985a1c08a45982d70
07efef8486428dee85ede815cbd870f0d1a46992c0a195c16ac32fb04447945d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/7291-8f2725a1b372e9f6.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="7291-8f2725a1b372e9f6.js"
etag: W/"e5e1bafbd585ec0378c461ed56ec8830"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/7291-8f2725a1b372e9f6.js
x-vercel-cache: HIT
x-vercel-id: arn1::5k8ss-1713931741057-00f6e5fa136a
x-xss-protection: 1; mode=block
cf-cache-status: MISS
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KAKC6c%2Fus4JbqCFLj7jBiFTbYm54OaRsgn%2BG%2B7vIKMHH7LjWLWS%2Fx13bJBEvz9WcF4OiHUadcS9S7EUDmdfx6jiPftoGhCGv2Md5ozSZnERWWrGInMSin%2BgmMhHo6fn%2FSvMDFA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c456f15b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/9802-cd18ef44ce03bad2.js

104.21.15.39

200 OK

10 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/9802-cd18ef44ce03bad2.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (5965)
Size
10 kB (10165 bytes)
Hash
21d8faf93de8bf488b94a87a0decdec0
727ec78a2038ae6f195ae88e1529cf905a2ad519
80e82d53797e044c655b7ddea804f9e70a5822a77f47929c39c932bd6013780d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/9802-cd18ef44ce03bad2.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 429859
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="9802-cd18ef44ce03bad2.js"
etag: W/"21d8faf93de8bf488b94a87a0decdec0"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/9802-cd18ef44ce03bad2.js
x-vercel-cache: HIT
x-vercel-id: arn1::4kdj5-1713501882826-42c808fe33f2
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AOGpnIAHXxIO%2B4ZCpn%2FNU62ZzkRMmA27WL8608HQ9O6OAsSyTTCsEIkJeM%2B1vCpEI28q7tHxcXh0Ikazss2hJ0SAVXnPFOoOa%2FgknKp2Ux5ppC18Wuv3AdHPDcr9lWfqFlgyNQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c456f18b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/pages/post-b0c1bf64f3b6a43c.js

104.21.15.39

200 OK

2.7 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/pages/post-b0c1bf64f3b6a43c.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
ASCII text, with very long lines (2798), with no line terminators
Size
2.7 kB (2653 bytes)
Hash
961dae65064a8297082470427b569f86
d4f7bc0784ba04209908bf34fc64478ebcce3814
3fa4e6b7d253a881b6fab0d9c609447f0994e9eddbb5f547fac839372e4942c2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/pages/post-b0c1bf64f3b6a43c.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="post-b0c1bf64f3b6a43c.js"
etag: W/"0da10df094a0b8f5750f03bf5a92427f"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/pages/post-b0c1bf64f3b6a43c.js
x-vercel-cache: HIT
x-vercel-id: arn1::v2cmf-1713931741085-90982b9c014c
x-xss-protection: 1; mode=block
cf-cache-status: MISS
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u1YX9Ll9g35lfhr7DO3MxlZiC4rdflym0IV40QyfN3qMPsffb7VQzo9DB4cTeFwydY6blyn4WfkGt7JTPmp2iv%2FVuzkWXReXruSLbgk9bgb2TM9Dput9LO%2FSqaNZaqEU91101w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c459f2db518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/pages/login-d50c8cfdf2a7f8f3.js

104.21.15.39

200 OK

3.0 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/pages/login-d50c8cfdf2a7f8f3.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
ASCII text, with very long lines (3011), with no line terminators
Size
3.0 kB (2950 bytes)
Hash
f53a834d5f2df32c8efcd89bdabebc51
e924e135658b0ed2314af89c765ce1c46fb5063e
b621712d35442a31d9d5781c4951919c0590d5b29eec63c0d6c02848b584ed8b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/pages/login-d50c8cfdf2a7f8f3.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="login-d50c8cfdf2a7f8f3.js"
etag: W/"86a78495c9c2e9deb82f5270d6f50c0c"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/pages/login-d50c8cfdf2a7f8f3.js
x-vercel-cache: HIT
x-vercel-id: arn1::sf6xh-1713931741089-48e951483f80
x-xss-protection: 1; mode=block
cf-cache-status: MISS
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WUedZ96SX6b2pAhNzKsbILpAL8khwgTw6sdO1LrhWkVq09CU5k0J7JkgAYAiTSF16t%2BmYBjUUplnj7AVbd5u88EkhxsfsdT6SaBhgXv9268p%2BpoAsD9dI4YWFXf0AjNmok%2FxBQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c459f2fb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/2175-8ed50ee19373c540.js

104.21.15.39

200 OK

38 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/2175-8ed50ee19373c540.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (37928)
Size
38 kB (37978 bytes)
Hash
ac108a5504d64df5a1bd17a8042ee329
cc864c22f0a75d4adcc6670d68900cdb08d03ea4
9b260784036c1db097c0dde9d13162f828a265aaac989be34ff7c70947950e03

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/2175-8ed50ee19373c540.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 1
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="2175-8ed50ee19373c540.js"
etag: W/"ac108a5504d64df5a1bd17a8042ee329"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/2175-8ed50ee19373c540.js
x-vercel-cache: HIT
x-vercel-id: arn1::btclf-1713931740866-e20dba327a23
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CmtgXQKoO1FuTvxQiRFuKmKeFi5%2BvO00FHnQV9jWJeJNdJ%2BFXVx4cFqHeemcLgGLbt1Lgzg1tfUxE%2BShLdAAAuK6HG3nEaVbEtgXO4wVQLkBp%2FpG9AhT6t3NgqgSc1dS7Ic%2BcA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c46ffcfb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/wi-DahJjgdATtn6S5I_k1/_buildManifest.js

104.21.15.39

200 OK

5.0 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/wi-DahJjgdATtn6S5I_k1/_buildManifest.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
ASCII text, with very long lines (5294), with no line terminators
Size
5.0 kB (5010 bytes)
Hash
762c76665a32003c8051d4dd5ef03f2d
bf6983e6d53eed253110e52860010fd8c2a1df41
bb0e12c5df051b97c5ed8a167ae9d81c9f11525c911d1895fa37234f05506266

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/wi-DahJjgdATtn6S5I_k1/_buildManifest.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:08:59 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="_buildManifest.js"
etag: W/"26f5f63f4de07daed40d95eb3770100c"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/wi-DahJjgdATtn6S5I_k1/_buildManifest.js
x-vercel-cache: HIT
x-vercel-id: arn1::kht88-1713931739739-413b81aa1f10
x-xss-protection: 1; mode=block
cf-cache-status: MISS
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2Q8%2F%2FUCaUIpX1xv7x%2B0xdyT%2B5tDXG5CnhL6zKJz0oV8%2BankCraBPDlD2XTkhqpoBS5k70oRLBf2x62pLwrSRfH80OfEnSuVV3sFIfReEkoK0lQkhl1OuO225DN4482OAknCeyQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c3d29e7b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/1353-0f48a581af50d43d.js

104.21.15.39

200 OK

8.3 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/1353-0f48a581af50d43d.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (8412), with no line terminators
Size
8.3 kB (8296 bytes)
Hash
2827469e112b6076722bae5a07feb307
ccd5259ecdff61ff40df2ba5b51c1df83ca30e22
0c7a0c9d9a5cbf86046581e4c886b00e40251e1ebd8668726acbe2cabf322744

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/1353-0f48a581af50d43d.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:00 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 429858
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="1353-0f48a581af50d43d.js"
etag: W/"a5c5857767694fb09dad8a37f53d1856"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/1353-0f48a581af50d43d.js
x-vercel-cache: HIT
x-vercel-id: arn1::nbqlg-1713501882195-792d48b8a3d5
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aw5grXBln2jNRa4xlQkGdKZ1PuF79h9VNeKEaH0CuCQNvVvz%2FTTe%2FgbwZPikbOEUrRFVRSeHRrwAMUdGMHSZ21a%2Fow8n83xDfxRdhq0I3ipUxlLbNrukFWUK4JSPt8UKPWfVzQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c429d70b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/9802-cd18ef44ce03bad2.js

104.21.15.39

200 OK

10 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/9802-cd18ef44ce03bad2.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (5965)
Size
10 kB (10165 bytes)
Hash
21d8faf93de8bf488b94a87a0decdec0
727ec78a2038ae6f195ae88e1529cf905a2ad519
80e82d53797e044c655b7ddea804f9e70a5822a77f47929c39c932bd6013780d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/9802-cd18ef44ce03bad2.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 429859
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="9802-cd18ef44ce03bad2.js"
etag: W/"21d8faf93de8bf488b94a87a0decdec0"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/9802-cd18ef44ce03bad2.js
x-vercel-cache: HIT
x-vercel-id: arn1::4kdj5-1713501882826-42c808fe33f2
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KRaV8J0TIpSW6jNEiV5qF4hoWC3jpjdUcPdoD3AxZ%2Fl5g3JEJVqYgqkstodnJkliExPbRrHYQbb4%2FnhmM8vGizM3XZQtDgBCjitdayYTkNdmD3F1Now17wUIpsHgVcyVFTNhqQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c471fd4b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/pages/talent-0986d42246049bd9.js

104.21.15.39

200 OK

15 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/pages/talent-0986d42246049bd9.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (15046)
Size
15 kB (15098 bytes)
Hash
01496729d8fd99f87d5d82da22f95b09
cfa16150f6f3a881353171ba7799240ac44d6f05
b54eeed3fef41efcf6a4996889989d1aafc5bd7bb10af136c7433002deec9501

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/pages/talent-0986d42246049bd9.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:00 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="talent-0986d42246049bd9.js"
etag: W/"01496729d8fd99f87d5d82da22f95b09"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/pages/talent-0986d42246049bd9.js
x-vercel-cache: HIT
x-vercel-id: arn1::kzf6q-1713931740865-4663af52f800
x-xss-protection: 1; mode=block
cf-cache-status: MISS
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=L1C%2FOy377fPE3hgb%2FB4A80bYq%2BaTuT9pG58F%2FrdDax9G8wXKc6CvJK6nAofATFhd%2Fno1jcG0aBJObDEobuLAuUqec%2FzOCcGnOzti2bLM9OvI1jZqRDBNwb3RzyqgEtOVP9sNcw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c442e8eb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/3280-641842fe7ccb1525.js

104.21.15.39

200 OK

6.2 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/3280-641842fe7ccb1525.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (6276), with no line terminators
Size
6.2 kB (6239 bytes)
Hash
2238e33dccffe27e6d42b2eeee0a85c5
df5afbef99a51012cb83415f68fb4202eb3a74ad
c7ab40060d526690fd5b0574d70b26e0386e4c4476f028c52ea8d2bf1fa0aea7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/3280-641842fe7ccb1525.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 1
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="3280-641842fe7ccb1525.js"
etag: W/"8cca1a234bc341f8f78be96b08aa1225"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/3280-641842fe7ccb1525.js
x-vercel-cache: HIT
x-vercel-id: arn1::jgkcj-1713931740728-51a29201602b
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jxFVJaW6mIo1GnoeaYqjzezRoaZQr7QOcnUCEHlRl9012ZbLARUbS4U4WjX4%2FrO%2FCG7u3JsYW0P5mEio8vshJSZun22CMpNa7OhIHPQUpEmgODxqrwCIRWkVbiGxZDFLl0LJgg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c467f83b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/pages/job/%5Brole%5D/%5BslugId%5D-cba9064d19c1fe94.js

104.21.15.39

200 OK

12 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/pages/job/%5Brole%5D/%5BslugId%5D-cba9064d19c1fe94.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (12255)
Size
12 kB (12309 bytes)
Hash
30630a76870d2c5d62e7c96a3971c206
4ca9c4309c030f6e578867abe68dcd66910f91eb
5973cec6d5ccb7647882ce19c735b21e633d664890ac5ebc480125bd0e5f0e84

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/pages/job/%5Brole%5D/%5BslugId%5D-cba9064d19c1fe94.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:08:59 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 429788
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="[slugId]-cba9064d19c1fe94.js"
etag: W/"30630a76870d2c5d62e7c96a3971c206"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/pages/job/%5Brole%5D/%5BslugId%5D-cba9064d19c1fe94.js
x-vercel-cache: HIT
x-vercel-id: arn1::8z7nn-1713501951048-764eb6e32dad
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mGuHJWlTAKPzv74pJK6sqthnxQy4G4w%2B%2B%2FPgvdLGpRuLCu%2BsWMaphrxXah3w1cSZctjfnqmHsYvKbEGNv2kIOhzsDWozfF5MQUfDqbY2z7wyqm7450R9xwkLAM7z9VZaXS8sZA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c3d29e6b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/wi-DahJjgdATtn6S5I_k1/_ssgManifest.js

104.21.15.39

200 OK

143 B

URL GET HTTP/3
skillexchange.xyz/_next/static/wi-DahJjgdATtn6S5I_k1/_ssgManifest.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
ASCII text, with no line terminators
Size
143 B (143 bytes)
Hash
63815027a6ebf07ae558e2a5422d3822
16a7bae6e735287b413377e6c6b5c9b368305816
25b4ceb6b4811ac6fef1ffbf56deed85e9ce339a0a9125150a739d13326f34c8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/wi-DahJjgdATtn6S5I_k1/_ssgManifest.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:08:59 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="_ssgManifest.js"
etag: W/"cb2cef5d8b57a93c9134b11a39bcd892"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/wi-DahJjgdATtn6S5I_k1/_ssgManifest.js
x-vercel-cache: HIT
x-vercel-id: arn1::x44zz-1713931739737-95091644705e
x-xss-protection: 1; mode=block
cf-cache-status: MISS
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m52bVUYLMlpIMbz2%2B0ufy0Rv2tzmrvz36BUCCSfCjVnRletwQgj9s4zDYly65MCNGHtyiioSxuhX5IZBmprrqge8ocPqOxMsSwVLN%2FJy2Xpz7EEmQ5vx1ezpRfC%2BlEMQinwhMw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c3d29e9b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/9439-289e6ed3142e3538.js

104.21.15.39

200 OK

88 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/9439-289e6ed3142e3538.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type

Size
88 kB (88488 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/9439-289e6ed3142e3538.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:00 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 429858
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="9439-289e6ed3142e3538.js"
etag: W/"ff2860670459bd1614129fe48ee8c45b"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/9439-289e6ed3142e3538.js
x-vercel-cache: HIT
x-vercel-id: arn1::bbtwk-1713501882793-c5173a61cb06
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8d%2F9XMiJogpLiBlNBhTIOCsEIgjfO8D423qzjgYwx4DqU9SOzQNvcwWKoDPMM7BP%2FfvlFebvwxmGLgNXmtycObm190N8SjWsy0YNOeWYLHO6gvi6jmRpaEaBNDIcdCZmI0DG0Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c443e8fb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/pages/advertise-57c85a1bd8729a26.js

104.21.15.39

200 OK

2.7 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/pages/advertise-57c85a1bd8729a26.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
ASCII text, with very long lines (2844), with no line terminators
Size
2.7 kB (2699 bytes)
Hash
5cf3b316cd01b2e5a29d55d0bae11d03
8e8c6da0d09b17737f36b103921d153a82bdeef2
018b8165324553e2dd27999ce8124670e4a5e4bd0f04548cac13e10320fcdba6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/pages/advertise-57c85a1bd8729a26.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 0
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="advertise-57c85a1bd8729a26.js"
etag: W/"e9a5b4ea755b140133f6539f5bae3d9c"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/pages/advertise-57c85a1bd8729a26.js
x-vercel-cache: HIT
x-vercel-id: arn1::v2kl5-1713931741059-621fe226cc7d
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=H%2BCVc70PpYxcUBkGkROB8Qm6%2Bwq8xmc2mLxwmLJnyNiFWuuE7hLdfAR5gLJRsmK%2FtaDv2eJqzRekl%2Boxq%2BXXMTc%2FhqEFg9mt%2FVMCZqiRot5sbNB70oCCk8BMk%2FQEqsTXY2spZw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c478816b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.skillexchange.xyz/static/img/favicon.png

104.21.15.39

200 OK

411 B

URL GET HTTP/3
cdn.skillexchange.xyz/static/img/favicon.png
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
PNG image data, 128 x 128, 8-bit colormap, non-interlaced
Size
411 B (411 bytes)
Hash
35f48c1a82d57bc938ac4a23f15bbff9
a888d123cf468149133cdde50e44533e8334196f
92030f0577126659d45e239b1d2543c71c60766228c0d22b4efd5f84ff00f719

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/img/favicon.png HTTP/1.1
Host: cdn.skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: _ga_55YTN90RVW=GS1.1.1713931741.1.0.1713931741.0.0.0; _ga=GA1.1.1434919753.1713931741
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: image/png
content-length: 411
etag: "35f48c1a82d57bc938ac4a23f15bbff9"
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Y5nLoNNg9KQvwhcawABq%2FwT2aFRPkJ0ee0To%2F9ZUxwMysWE%2BBj7MKHNYi6eZHurOGiVKLzzkc3DcZlZmiQvgnPwcmyc3SJ%2FbkwGjJ%2B5Q7q6FVx9DKvol1zlweHA7lQpGmyhcdSk0KPY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c495923b518-OSL
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/8105-e10b45daca498019.js

104.21.15.39

200 OK

7.9 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/8105-e10b45daca498019.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (8020), with no line terminators
Size
7.9 kB (7948 bytes)
Hash
9ec0d9013743fc5597cab7c750c74362
c6772e62553ff6477661e092b319e04664d7f009
3e5de5a47914b8f70e9557ae819e32ce338eec99fb404ab1a660e34137f9491a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/8105-e10b45daca498019.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:00 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 429858
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="8105-e10b45daca498019.js"
etag: W/"b2f50fa370ae6ec2f947ecf6e20cdeb9"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/8105-e10b45daca498019.js
x-vercel-cache: HIT
x-vercel-id: arn1::gzfqg-1713501882805-4b5f4101ebec
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pbG6ToPZSa08dDcQHoYy0bFhdK6HHlx92wKZANEmvH6RWxM2oOFxTJ1PDpCWM5XYkOcWjYWBxtlnIHjrZPb4r8roVVSMsvja1cgicewtCvPQFsl3FSg%2F1DNUk4JYqZKYPBOc3A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c42ed91b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/pages/login-d50c8cfdf2a7f8f3.js

104.21.15.39

200 OK

3.0 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/pages/login-d50c8cfdf2a7f8f3.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
ASCII text, with very long lines (3011), with no line terminators
Size
3.0 kB (2950 bytes)
Hash
f53a834d5f2df32c8efcd89bdabebc51
e924e135658b0ed2314af89c765ce1c46fb5063e
b621712d35442a31d9d5781c4951919c0590d5b29eec63c0d6c02848b584ed8b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/pages/login-d50c8cfdf2a7f8f3.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 0
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="login-d50c8cfdf2a7f8f3.js"
etag: W/"86a78495c9c2e9deb82f5270d6f50c0c"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/pages/login-d50c8cfdf2a7f8f3.js
x-vercel-cache: HIT
x-vercel-id: arn1::sf6xh-1713931741089-48e951483f80
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8awWHqqxB%2BV%2Bi4hjx727CjLnNaZK%2FmqhX%2FGH7MuPskF942wcw%2F4dQTX0RHVge0Q2VC3eNmGK%2Bf8rpga8dhjmomh0GxTZsspV0GtztL%2F%2Bz2SbsR4ARYHkOglUQZUg8gj%2BH8fgvg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c478813b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

js.stripe.com/v3/.deploy_status_henson.json

151.101.192.176

200 OK

474 B

URL GET HTTP/2
js.stripe.com/v3/.deploy_status_henson.json
IP
151.101.192.176:443
ASN
#54113 FASTLY

Requested by
https://js.stripe.com/v3/controller-with-preconnect-cf14f0445b2465f875a254c5cc9c4976.html#apiKey=pk_live_aPl5laaldhvu7T1GoKj0iijn005mACPvlv&stripeJsId=c147206a-0ec6-4614-9e5a-04ab2610d0c5&controllerCount=1&isCheckout=false&stripeJsLoadTime=1713931741737&manualBrowserDeprecationRollout=false&referrer=https%3A%2F%2Fskillexchange.xyz%2Fjob%2Fbrand-designer%2F51189&controllerId=__privateStripeController2241
Certificate
IssuerDigiCert Inc
Subjecta.stripecdn.com
Fingerprint0C:7B:EC:2B:0B:A8:81:87:0C:D3:D8:55:B6:26:0F:CB:FA:28:ED:F8
ValidityWed, 27 Mar 2024 00:00:00 GMT - Thu, 27 Jun 2024 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (498), with no line terminators
Size
474 B (474 bytes)
Hash
f855df062b473f51c057c577f48f0e07
40295458121295b678182a5ee83dd66b104a382b
730f308aaae79d1d4a0900d36af926350fc625bc34bd6b52085e8a6ba753ba29

HTTP Headers

GET /v3/.deploy_status_henson.json HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://js.stripe.com/v3/controller-with-preconnect-cf14f0445b2465f875a254c5cc9c4976.html
Content-Type: application/x-www-form-urlencoded
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Tue, 23 Apr 2024 20:43:00 GMT
etag: "fb43dadd2a7f6d46ab231c8298e6eaa5"
cache-control: max-age=60
content-type: application/json
access-control-allow-origin: *
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Wed, 24 Apr 2024 04:09:02 GMT
via: 1.1 varnish
age: 51
x-request-id: 6f23f62c-0d5a-4934-9637-13fb6e631d96
x-served-by: cache-hel1410034-HEL
x-cache: HIT
x-cache-hits: 47
vary: Accept-Encoding
strict-transport-security: max-age=31556926; includeSubDomains; preload
timing-allow-origin: *
content-length: 298
X-Firefox-Spdy: h2

skillexchange.xyz/_next/static/chunks/framework-b78bc773b89d3272.js

104.21.15.39

200 OK

141 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/framework-b78bc773b89d3272.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (65200)
Size
141 kB (141125 bytes)
Hash
f7b32674c1c449455d4e36f5fe6af1c3
3b0ef231655193ca69fa431b0d14ef07282f9726
2cb24c9f32190e6caac8287329265222fb8259cee1a26f41ac186c05bdb0687c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/framework-b78bc773b89d3272.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:08:59 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 429857
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="framework-b78bc773b89d3272.js"
etag: W/"f7b32674c1c449455d4e36f5fe6af1c3"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/framework-b78bc773b89d3272.js
x-vercel-cache: HIT
x-vercel-id: arn1::vdxvc-1713501882195-cfd8bc276d26
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eytNvtQ5BKrbjiI9YlJWIohHBcYSReZEvwJA169AsF0QXF0etiIeWOQsapHIs3tNnM3wVZhZ9yFfHc3nYvmgtkkgiwl3oWeRhQ7rreGAp7B2TNrDzgpVM8XAAM3qJRQhPN%2BJwQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c3d19d3b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/1353-0f48a581af50d43d.js

104.21.15.39

200 OK

8.3 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/1353-0f48a581af50d43d.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (8412), with no line terminators
Size
8.3 kB (8296 bytes)
Hash
2827469e112b6076722bae5a07feb307
ccd5259ecdff61ff40df2ba5b51c1df83ca30e22
0c7a0c9d9a5cbf86046581e4c886b00e40251e1ebd8668726acbe2cabf322744

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/1353-0f48a581af50d43d.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 429859
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="1353-0f48a581af50d43d.js"
etag: W/"a5c5857767694fb09dad8a37f53d1856"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/1353-0f48a581af50d43d.js
x-vercel-cache: HIT
x-vercel-id: arn1::nbqlg-1713501882195-792d48b8a3d5
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1MfSUUxN1hDBsaxptuwptAzKbMkfL9zhIHsPyzoA3kU0hL4brHlHSzSFdSbJ%2BXXweZzKc8OOICE64Ezdq0f8c19FGBKB3ba926jzU9ccTlZYhZH2TDDrtaCrP40mjMM5lHGi1w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c461f57b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/6665-338f85a7c469018e.js

104.21.15.39

200 OK

9.7 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/6665-338f85a7c469018e.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (9990), with no line terminators
Size
9.7 kB (9696 bytes)
Hash
0b2c9d1ea3e7504f70147405bddd1754
de44549da166d5599f956d07a50213dc1ba3c286
bda4186691df2305d7396fe908bbc92adae8c12c5a5acfad585d164f7e705db7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/6665-338f85a7c469018e.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:00 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="6665-338f85a7c469018e.js"
etag: W/"88d017367487b1ec02d00ef4ca0e7d61"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/6665-338f85a7c469018e.js
x-vercel-cache: HIT
x-vercel-id: arn1::jgkcj-1713931740703-09b002d0c728
x-xss-protection: 1; mode=block
cf-cache-status: MISS
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d5lz9H59orAyNKJxBydT%2BWXR%2BJVVN7%2FWic8%2BM3ZWqPYxxgtQ6%2B41DpRS2%2BCAGo%2B0oWQxLOTi9hgEHFksNFbmTV0TPiX5f2oD9ezj9fe%2BNmVwvJdKWDavWINEZClNLpUCRyXoRw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c435dfab518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/8695-ded1f0415e8cc3d8.js

104.21.15.39

200 OK

66 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/8695-ded1f0415e8cc3d8.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (65461)
Size
66 kB (65511 bytes)
Hash
167caceb4871a0dfa4c86648afd02d01
088704b7c12369925d2069520dc618cfb1379e7c
bac2acf1f88aaf661df2b7d5cf17fe0e076cf1b2fb6369fcd1273286e13c44d5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/8695-ded1f0415e8cc3d8.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 0
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="8695-ded1f0415e8cc3d8.js"
etag: W/"167caceb4871a0dfa4c86648afd02d01"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/8695-ded1f0415e8cc3d8.js
x-vercel-cache: HIT
x-vercel-id: arn1::62wz8-1713931741086-4216aa92c429
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SW7Xpd3kika8UwyXISQJnpGNzF%2FGcSFQhDzB1qoTRezjRgJpY%2BfvXlv3PhBot1qPZbvAepYH8x4TO3zx4RCz9OIUZO4Cs91w4ReRJDYkI2ukWmMoLD9utIO8yvXzIMJ0jXSzZw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c477806b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/pages/advertise-57c85a1bd8729a26.js

104.21.15.39

200 OK

2.7 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/pages/advertise-57c85a1bd8729a26.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
ASCII text, with very long lines (2844), with no line terminators
Size
2.7 kB (2699 bytes)
Hash
5cf3b316cd01b2e5a29d55d0bae11d03
8e8c6da0d09b17737f36b103921d153a82bdeef2
018b8165324553e2dd27999ce8124670e4a5e4bd0f04548cac13e10320fcdba6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/pages/advertise-57c85a1bd8729a26.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="advertise-57c85a1bd8729a26.js"
etag: W/"e9a5b4ea755b140133f6539f5bae3d9c"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/pages/advertise-57c85a1bd8729a26.js
x-vercel-cache: HIT
x-vercel-id: arn1::v2kl5-1713931741059-621fe226cc7d
x-xss-protection: 1; mode=block
cf-cache-status: MISS
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f448zyOXuw6GWJgiF%2B1VaOSbDPMGfnYk1TedWT7dtPoGrQ4mk3umDXk0HkgDkBtVXtoIdM%2FhXtsWp3vig9vIVVmkUpPBrDOBYuWwp5HbsfdYeryO%2FebdS3PZQHDeXh0hQYbybQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c456f17b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/8405-d3dd5934a9d81199.js

104.21.15.39

200 OK

7.1 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/8405-d3dd5934a9d81199.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (7161), with no line terminators
Size
7.1 kB (7088 bytes)
Hash
aa799589814bd99c8a493e75f1c3d7c5
afac6ccf40ef96f23d59914c733e470f870a93ec
9c275800928a4863007c6793ace077a4a1d27c5cd20f21c388929895869d273c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/8405-d3dd5934a9d81199.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 429859
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="8405-d3dd5934a9d81199.js"
etag: W/"0fcd77101f68ed7901cbbb406392b54d"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/8405-d3dd5934a9d81199.js
x-vercel-cache: HIT
x-vercel-id: arn1::l8clk-1713501882197-2838bcf19745
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ERAD5JvQ4p0uVfNT%2F5iTanEULWBoYgnDjZj9iVcUuzNQWmaRuvK%2BYUQkVJYCzW8j3I9s%2FN5KryEEzZLRXzDg%2BKJ%2BcT8%2FaU3GUMm0zuBDE2qts2lglhGnnLuqtj6T%2FaSLuA5KXw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c460f56b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

m.stripe.network/out-4.5.43.js

151.101.192.176

200 OK

89 kB

URL GET HTTP/2
m.stripe.network/out-4.5.43.js
IP
151.101.192.176:443
ASN
#54113 FASTLY

Requested by
https://m.stripe.network/inner.html#url=https%3A%2F%2Fskillexchange.xyz%2Fjob%2Fbrand-designer%2F51189&title=Brand%20Designer%20at%20Flowcode%20%E2%80%94%20Skill%20Exchange%20XYZ&referrer=&muid=NA&sid=NA&version=6&preview=false
Certificate
IssuerDigiCert Inc
Subjecta.stripecdn.com
Fingerprint0C:7B:EC:2B:0B:A8:81:87:0C:D3:D8:55:B6:26:0F:CB:FA:28:ED:F8
ValidityWed, 27 Mar 2024 00:00:00 GMT - Thu, 27 Jun 2024 23:59:59 GMT

File type

Size
89 kB (88751 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /out-4.5.43.js HTTP/1.1
Host: m.stripe.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.stripe.network/inner.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: max-age=300, public
content-type: text/javascript; charset=utf-8
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Wed, 24 Apr 2024 04:09:02 GMT
via: 1.1 varnish
age: 238
x-request-id: d0f056ee-3cf5-469d-aee1-3a98c86cf125
x-served-by: cache-hel1410034-HEL
x-cache: HIT
x-cache-hits: 320
x-timer: S1713931742.058673,VS0,VE0
vary: Accept-Encoding, Origin
content-length: 15509
X-Firefox-Spdy: h2

skillexchange.xyz/_next/static/chunks/8105-e10b45daca498019.js

104.21.15.39

200 OK

7.9 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/8105-e10b45daca498019.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (8020), with no line terminators
Size
7.9 kB (7948 bytes)
Hash
9ec0d9013743fc5597cab7c750c74362
c6772e62553ff6477661e092b319e04664d7f009
3e5de5a47914b8f70e9557ae819e32ce338eec99fb404ab1a660e34137f9491a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/8105-e10b45daca498019.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 429859
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="8105-e10b45daca498019.js"
etag: W/"b2f50fa370ae6ec2f947ecf6e20cdeb9"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/8105-e10b45daca498019.js
x-vercel-cache: HIT
x-vercel-id: arn1::gzfqg-1713501882805-4b5f4101ebec
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BEmRYZaProHbttulH3LnImZyPvvxs5AI3GIs6CWW%2FpKBL6a9eJfBAy33uiU6HIPgzJwM5A8rR7HVld2Ksecde%2FkXSFbaB6a%2BLJK%2FvAMWtZgkY8NlFZKG9FtcZAVRQwrvKTpscw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c462f67b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/2217-88c0056f7c1fd057.js

104.21.15.39

200 OK

39 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/2217-88c0056f7c1fd057.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type

Size
39 kB (39188 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/2217-88c0056f7c1fd057.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 1
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="2217-88c0056f7c1fd057.js"
etag: W/"8af3cf474f0a4bb27a662b073b050775"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/2217-88c0056f7c1fd057.js
x-vercel-cache: HIT
x-vercel-id: arn1::hxxx9-1713931740869-1ab00f9cb26b
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KRfpOEeWPw1Y%2BDvdBZ79TechjITCTk5oPSLjDn61zZ7FDxyoBGfybkNOEc8OalPxC1D3%2FLc281Jm24CZrposGze5lgGH7%2FibZlfjhtk13%2FZnh6LoEQ%2BwT6Gn1c%2Bm2CTPmiVrVA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c470fd0b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.jsdelivr.net/npm/psl/dist/psl.min.js

151.101.65.229

200 OK

137 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/psl/dist/psl.min.js
IP
151.101.65.229:443
ASN
#54113 FASTLY

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type

Size
137 kB (136713 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /npm/psl/dist/psl.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.9.0
x-jsd-version-type: version
etag: W/"21609-gbXbuhgZK/f+LQOlMcFWa2pwap0"
content-encoding: br
accept-ranges: bytes
date: Wed, 24 Apr 2024 04:09:01 GMT
age: 5794
x-served-by: cache-fra-etou8220076-FRA, cache-hel1410030-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 43590
X-Firefox-Spdy: h2

js.stripe.com/v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html

151.101.192.176

200 OK

200 B

URL GET HTTP/2
js.stripe.com/v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html
IP
151.101.192.176:443
ASN
#54113 FASTLY

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerDigiCert Inc
Subjecta.stripecdn.com
Fingerprint0C:7B:EC:2B:0B:A8:81:87:0C:D3:D8:55:B6:26:0F:CB:FA:28:ED:F8
ValidityWed, 27 Mar 2024 00:00:00 GMT - Thu, 27 Jun 2024 23:59:59 GMT

File type
HTML document, ASCII text, with no line terminators
Size
200 B (200 bytes)
Hash
17d1120334cb0cb3cd8a62fc03671010
b40ef341ad651dcdb89d6a510fe324a79e18fc37
b37c9e71ffd7587b59be57d9644c546deae50598348d3f057ef3e971d2d7285c

HTTP Headers

GET /v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Fri, 11 Nov 2022 20:25:37 GMT
etag: "3437aaddcdf6922d623e172c2d6f9278"
cache-control: max-age=31536000
content-type: text/html; charset=utf-8
content-security-policy: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self'; report-uri https://q.stripe.com/csp-report
content-security-policy-report-only: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self'; report-uri https://q.stripe.com/csp-report
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Wed, 24 Apr 2024 04:09:01 GMT
via: 1.1 varnish
age: 11460556
x-request-id: 10a75ea4-458c-4c66-b879-a9a8dd985a21
x-served-by: cache-hel1410034-HEL
x-cache: HIT
x-cache-hits: 859005
vary: Accept-Encoding
timing-allow-origin: *
content-length: 154
X-Firefox-Spdy: h2

skillexchange.xyz/_next/static/chunks/368-01705248c511c25a.js

104.21.15.39

200 OK

67 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/368-01705248c511c25a.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
67 kB (66929 bytes)
Hash
c8b611e5a7d1ea48af0fc6e1e4d5a128
ede1c7d9af7b5c330deb1c4577225fdade6bef3c
a159711f5302501108517d90c899dbb1117caade570d8a255f357db7e5186054

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/368-01705248c511c25a.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:00 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="368-01705248c511c25a.js"
etag: W/"c8b611e5a7d1ea48af0fc6e1e4d5a128"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/368-01705248c511c25a.js
x-vercel-cache: HIT
x-vercel-id: arn1::dh5j5-1713931740598-a24b94eef886
x-xss-protection: 1; mode=block
cf-cache-status: MISS
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XwzXs9yKha4EW1rFEx9WgfqeZlgMDa2oB1UM1C34tciuObi%2BICnjcLebDINdG%2BtEQjpxIG6xMI6HbZoFdJP4srw%2BvPWXEU1lOBwB06DlSE55eVcBh8K%2BN3ISOwW3pKuQX%2BYnfg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c428d64b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/2217-88c0056f7c1fd057.js

104.21.15.39

200 OK

39 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/2217-88c0056f7c1fd057.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type

Size
39 kB (39188 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/2217-88c0056f7c1fd057.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:00 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="2217-88c0056f7c1fd057.js"
etag: W/"8af3cf474f0a4bb27a662b073b050775"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/2217-88c0056f7c1fd057.js
x-vercel-cache: HIT
x-vercel-id: arn1::hxxx9-1713931740869-1ab00f9cb26b
x-xss-protection: 1; mode=block
cf-cache-status: MISS
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PQ%2FWmQnGpeQlvcURePTdPwmCqzfGaGTfx3ZoHaKFnJyl0P0JR5OxjGoY7QSV8DehI%2BtRXvmYsYdf8B%2Fnnw5hJ5D2quGAWZtjaySEpHkP%2FQiPMl2TSGANw6FNcJ1kO75L3myt8g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c443e92b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/7291-8f2725a1b372e9f6.js

104.21.15.39

200 OK

53 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/7291-8f2725a1b372e9f6.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (53065)
Size
53 kB (53115 bytes)
Hash
e5e1bafbd585ec0378c461ed56ec8830
f6325640bc0e6f82ed0b18d985a1c08a45982d70
07efef8486428dee85ede815cbd870f0d1a46992c0a195c16ac32fb04447945d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/7291-8f2725a1b372e9f6.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 0
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="7291-8f2725a1b372e9f6.js"
etag: W/"e5e1bafbd585ec0378c461ed56ec8830"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/7291-8f2725a1b372e9f6.js
x-vercel-cache: HIT
x-vercel-id: arn1::5k8ss-1713931741057-00f6e5fa136a
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0zdYITXYiATpIQ%2Fbn%2F%2Bk5p6H7rb%2F%2F4P6YOGvbqqboJhJJ8NZGgKYVi0Bn%2BqSzsMWy%2FdqQJVYm2DhM4HiENj5XTpDl0mQDd302RFrZLtXk9B7vgcEiBZ0dgn%2F949dWUuNhrN5Uw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c478815b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/855-93c19a02b9f44e32.js

104.21.15.39

200 OK

17 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/855-93c19a02b9f44e32.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (17224)
Size
17 kB (17273 bytes)
Hash
16f278e38e80e76560bffd44f2e03691
9a3df159059abb5da0bb8a433eda73cf031aac99
e691d7405f0e6897b3c47ebb8c64a09ae933940f104c8b9cd5bc4e60dbc64f67

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/855-93c19a02b9f44e32.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:00 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="855-93c19a02b9f44e32.js"
etag: W/"16f278e38e80e76560bffd44f2e03691"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/855-93c19a02b9f44e32.js
x-vercel-cache: HIT
x-vercel-id: arn1::btclf-1713931740610-bcab72ccd0ba
x-xss-protection: 1; mode=block
cf-cache-status: MISS
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=t8wHPD3CeET%2FsKHuETeQ9P0yNDwY0G%2BhXryX9nESQduIPeBYGxV55KQ1HOLN9iUBqWp%2BVNGfhN3OYF3sSeafNjveRrFRdBTkkwdzJ9uqJLxoO93mDGbMeYm%2FX8UBCnGx%2BiuD1A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c429d71b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/pages/talent-0986d42246049bd9.js

104.21.15.39

200 OK

15 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/pages/talent-0986d42246049bd9.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (15046)
Size
15 kB (15098 bytes)
Hash
01496729d8fd99f87d5d82da22f95b09
cfa16150f6f3a881353171ba7799240ac44d6f05
b54eeed3fef41efcf6a4996889989d1aafc5bd7bb10af136c7433002deec9501

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/pages/talent-0986d42246049bd9.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 1
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="talent-0986d42246049bd9.js"
etag: W/"01496729d8fd99f87d5d82da22f95b09"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/pages/talent-0986d42246049bd9.js
x-vercel-cache: HIT
x-vercel-id: arn1::kzf6q-1713931740865-4663af52f800
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VnTTB5OyGX9u4Cwy3Ij%2FIJ5NWZkRsXCRMhn6YVS5h51CSjUYfnwoecJhVffh%2BrJtwMfz1Zzl%2BBmtfjNwUdS9VEAU2BHRR9JjZmmnPmC%2FK5BkNbLvn9AMeq48Y5Q0sNIJ%2F8B1jA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c46efbfb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/pages/post-b0c1bf64f3b6a43c.js

104.21.15.39

200 OK

2.7 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/pages/post-b0c1bf64f3b6a43c.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
ASCII text, with very long lines (2798), with no line terminators
Size
2.7 kB (2653 bytes)
Hash
961dae65064a8297082470427b569f86
d4f7bc0784ba04209908bf34fc64478ebcce3814
3fa4e6b7d253a881b6fab0d9c609447f0994e9eddbb5f547fac839372e4942c2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/pages/post-b0c1bf64f3b6a43c.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 0
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="post-b0c1bf64f3b6a43c.js"
etag: W/"0da10df094a0b8f5750f03bf5a92427f"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/pages/post-b0c1bf64f3b6a43c.js
x-vercel-cache: HIT
x-vercel-id: arn1::v2cmf-1713931741085-90982b9c014c
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d1HuvuMgP1tdEJ6qXhHJ%2Bl1b2CwsIya0uF6wlOVNnsazMHQwYGrVg3bqtsGrP5vkSdBovBWsq3wgwUqRfyHDW7MvxIxARA14Yo08RXbD2HBlURaJJtU2jkfGkZ33ssImqTx%2F4Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c477807b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

js.stripe.com/v3/fingerprinted/js/shared-9fd521d80856a29744166bf66a6309fd.js

151.101.192.176

200 OK

571 kB

URL GET HTTP/2
js.stripe.com/v3/fingerprinted/js/shared-9fd521d80856a29744166bf66a6309fd.js
IP
151.101.192.176:443
ASN
#54113 FASTLY

Requested by
https://js.stripe.com/v3/controller-with-preconnect-cf14f0445b2465f875a254c5cc9c4976.html#apiKey=pk_live_aPl5laaldhvu7T1GoKj0iijn005mACPvlv&stripeJsId=c147206a-0ec6-4614-9e5a-04ab2610d0c5&controllerCount=1&isCheckout=false&stripeJsLoadTime=1713931741737&manualBrowserDeprecationRollout=false&referrer=https%3A%2F%2Fskillexchange.xyz%2Fjob%2Fbrand-designer%2F51189&controllerId=__privateStripeController2241
Certificate
IssuerDigiCert Inc
Subjecta.stripecdn.com
Fingerprint0C:7B:EC:2B:0B:A8:81:87:0C:D3:D8:55:B6:26:0F:CB:FA:28:ED:F8
ValidityWed, 27 Mar 2024 00:00:00 GMT - Thu, 27 Jun 2024 23:59:59 GMT

File type

Size
571 kB (571166 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /v3/fingerprinted/js/shared-9fd521d80856a29744166bf66a6309fd.js HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.stripe.com/v3/controller-with-preconnect-cf14f0445b2465f875a254c5cc9c4976.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Tue, 23 Apr 2024 20:03:41 GMT
etag: "893e4d3bc0ebce10df7a33e39668f60a"
cache-control: max-age=31536000
content-type: text/javascript; charset=utf-8
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Wed, 24 Apr 2024 04:09:01 GMT
via: 1.1 varnish
age: 28948
x-request-id: 369f032a-5dd2-442e-bd1a-2b79e3e20b3d
x-served-by: cache-hel1410034-HEL
x-cache: HIT
x-cache-hits: 9805
vary: Accept-Encoding
timing-allow-origin: *
content-length: 137246
X-Firefox-Spdy: h2

skillexchange.xyz/job/brand-designer/51189

104.21.15.39

200 OK

49 kB

URL User Request GET HTTP/2
skillexchange.xyz/job/brand-designer/51189
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type

Size
49 kB (48781 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /job/brand-designer/51189 HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:08:59 GMT
content-type: text/html; charset=utf-8
age: 30
cache-control: public, max-age=0, must-revalidate
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /job/brand-designer/51189
x-powered-by: Next.js
x-vercel-cache: HIT
x-vercel-id: arn1::iad1::6wf9v-1713931739294-36f47bb1d08f
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4HB8yOp8YnyeLdhEfQU7DDHgN%2FgL3zhC0JLrs6tPjYHzVIB30lxehGrNeBVQ%2BCmi0R1nbo8BPp54x%2BO3jhz0x7fbA7chY61ayx5NzFOab6FT98QFbshmej2zFcgfw7BXwOGBog%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87933c3a5f4d56cc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.cloudflareinsights.com/beacon.min.js/v55bfa2fee65d44688e90c00735ed189a1713218998793

104.16.80.73

200 OK

19 kB

URL GET HTTP/2
static.cloudflareinsights.com/beacon.min.js/v55bfa2fee65d44688e90c00735ed189a1713218998793
IP
104.16.80.73:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerGoogle Trust Services LLC
Subjectcloudflareinsights.com
Fingerprint73:92:5A:16:97:55:FC:A5:32:7C:F3:9D:0C:84:EF:F3:2F:AA:B5:00
ValiditySun, 10 Mar 2024 02:33:42 GMT - Sat, 08 Jun 2024 02:33:41 GMT

File type
JavaScript source, ASCII text, with very long lines (19261), with no line terminators
Size
19 kB (19261 bytes)
Hash
3be93fd15d2f7dee2fc0c8981c6fa5c6
8cd88c36fad3e96641dbc4d781f5ddbe5123312f
17106bf803d42bcf2f2bdf778ece084d3f91c68e7ea41dae7bff61fefa573dee

HTTP Headers

GET /beacon.min.js/v55bfa2fee65d44688e90c00735ed189a1713218998793 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://skillexchange.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:08:59 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2024.4.0"
last-modified: Tue, 23 Apr 2024 12:12:17 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c3d4912b529-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

skillexchange.xyz/_next/static/chunks/9962-47972af646274f05.js

104.21.15.39

200 OK

7.4 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/9962-47972af646274f05.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (7548), with no line terminators
Size
7.4 kB (7431 bytes)
Hash
d10aa732b8c0f7b5ae015699cd6f1d5b
5a5227fd13765175909de6467983d31894e0c0a5
d6537da99887ee04f17da457b9718a178bb4d80166c6b00e81ef2e364ca0f3ba

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/9962-47972af646274f05.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 1
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="9962-47972af646274f05.js"
etag: W/"0f8d3defffd6bc00da3e7816633c7d82"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/9962-47972af646274f05.js
x-vercel-cache: HIT
x-vercel-id: arn1::f9dk7-1713931740605-c559591e6afd
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0USRAq9E%2BaPE81H4UpLfPDRMJL62%2BuCvKRQBNLJbn8K2NWq27MdivkR3BXbVZPBfVI5BGMbec0%2FbhhT3h6KR9rM0svQw9MFxMksB2qFRGx49TtP5U9G%2FcO%2FnfDmQ1lZ8RrPFAA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c460f54b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/6665-338f85a7c469018e.js

104.21.15.39

200 OK

9.7 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/6665-338f85a7c469018e.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (9990), with no line terminators
Size
9.7 kB (9696 bytes)
Hash
0b2c9d1ea3e7504f70147405bddd1754
de44549da166d5599f956d07a50213dc1ba3c286
bda4186691df2305d7396fe908bbc92adae8c12c5a5acfad585d164f7e705db7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/6665-338f85a7c469018e.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Cookie: __Host-next-auth.csrf-token=778b8778d9f157ee73d7961287eb41c269000399457dbfb459311d8101fe6ed6%7C6aca2263324434e05a18160229678ef9b4ec5ab735e50eae0d7b194f6d17b14d; __Secure-next-auth.callback-url=https%3A%2F%2Fskillexchange.xyz
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 1
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="6665-338f85a7c469018e.js"
etag: W/"88d017367487b1ec02d00ef4ca0e7d61"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/6665-338f85a7c469018e.js
x-vercel-cache: HIT
x-vercel-id: arn1::jgkcj-1713931740703-09b002d0c728
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fA6FEhByAWlbKTnGK8SPzrXKfcNdW%2BZlkDoCdKX9oov0gmn3ktDOpQqkDGdGl3py4FM5iiRfHY%2FiIGKxLKQsDFTOw98aAkFUaqTa10C9IS9TukqWR03hLvbcXBYhdR3mNvvK1Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c465f72b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

m.stripe.network/inner.html

151.101.192.176

200 OK

930 B

URL GET HTTP/2
m.stripe.network/inner.html
IP
151.101.192.176:443
ASN
#54113 FASTLY

Requested by
https://js.stripe.com/v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html#url=https%3A%2F%2Fskillexchange.xyz%2Fjob%2Fbrand-designer%2F51189&title=Brand%20Designer%20at%20Flowcode%20%E2%80%94%20Skill%20Exchange%20XYZ&referrer=&muid=NA&sid=NA&version=6&preview=false
Certificate
IssuerDigiCert Inc
Subjecta.stripecdn.com
Fingerprint0C:7B:EC:2B:0B:A8:81:87:0C:D3:D8:55:B6:26:0F:CB:FA:28:ED:F8
ValidityWed, 27 Mar 2024 00:00:00 GMT - Thu, 27 Jun 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (950), with no line terminators
Size
930 B (930 bytes)
Hash
f965fbd577896cec85e53f8723dd00c1
8f1efde6d3060695e8c4b15570dcc602d5217836
8203a3820f68e42441db1690aee0059757efb30a2862add5dd250f106f1a08e2

HTTP Headers

GET /inner.html HTTP/1.1
Host: m.stripe.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.stripe.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: max-age=300, public
content-type: text/html; charset=utf-8
content-security-policy: base-uri 'none'; connect-src https://m.stripe.network https://m.stripe.com; default-src 'none'; font-src https://m.stripe.network https://fonts.gstatic.com; form-action 'none'; frame-src https://m.stripe.network https://js.stripe.com; img-src https://m.stripe.network https://m.stripe.com https://b.stripecdn.com; script-src https://m.stripe.network 'sha256-/5Guo2nzv5n/w6ukZpOBZOtTJBJPSkJ6mhHpnBgm3Ls='; style-src https://m.stripe.network; report-uri https://q.stripe.com/csp-report
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Wed, 24 Apr 2024 04:09:01 GMT
via: 1.1 varnish
age: 203
x-request-id: f91b8a91-1f61-4beb-a49e-35c5cafd8516
x-served-by: cache-hel1410034-HEL
x-cache: HIT
x-cache-hits: 277
x-timer: S1713931742.938942,VS0,VE0
vary: Accept-Encoding, Origin
content-length: 540
X-Firefox-Spdy: h2

skillexchange.xyz/_next/static/css/e585d38c456d28d2.css

104.21.15.39

200 OK

81 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/css/e585d38c456d28d2.css
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
ASCII text, with very long lines (65472)
Size
81 kB (80895 bytes)
Hash
d888d69452ef31409c7922f3ee758b25
35af346f4617a9d388113a1d254c2df2fb348216
a0374e382015412854832ab41faeb5647c41676758b440328da291483f65f32d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/css/e585d38c456d28d2.css HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:08:59 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
age: 429857
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="e585d38c456d28d2.css"
etag: W/"d888d69452ef31409c7922f3ee758b25"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/css/e585d38c456d28d2.css
x-vercel-cache: HIT
x-vercel-id: arn1::kmg8q-1713501882188-34ab1d38abdb
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XsRrywcvcYakwIo2OyV6yeEIw0Yspjjy9Cs2Wjo1Cbvq8%2FE5xKPK%2Fti8nM%2Bztt4FzIclZ0FlSzRI5cmrBZkF9XbhFXEn7UcojPyR2xi%2B%2BIqvTBDiGuQ%2FkEr4cHS69H%2BBr%2BpQ8g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c3d19d0b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/webpack-7b975cab4da41331.js

104.21.15.39

200 OK

8.0 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/webpack-7b975cab4da41331.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (8223), with no line terminators
Size
8.0 kB (8002 bytes)
Hash
a0cad1bc1641441faaaeceddf87d5b40
2bbda6b34470eaa61692127f7781bb1b79639fc3
abcccf7a0761b899c6e27e0a7fbdc4cdf69d96186e054bb0dc2a8bcf1ad96989

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/webpack-7b975cab4da41331.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:08:59 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="webpack-7b975cab4da41331.js"
etag: W/"69a82b34adf65c2ae43402f8b70b2eec"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/webpack-7b975cab4da41331.js
x-vercel-cache: HIT
x-vercel-id: arn1::2lpp7-1713931739731-89d0956a2283
x-xss-protection: 1; mode=block
cf-cache-status: MISS
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VIik1U7nwZSpQoAgr3nm6OXA6hNNCDTbXQkQsrq6uWfVwfVZB9ilpiRemu7WpSqPeqQLNUDapSH1g8nQxeHz1bF%2FvURaF3US3wq7it9YeCUFLDmHU5hehRBDYI7SNGKA%2FVF%2FRQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c3d19d1b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/main-1e44b94efc3603ef.js

104.21.15.39

200 OK

132 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/main-1e44b94efc3603ef.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
132 kB (131557 bytes)
Hash
d5cf3e6cdee52d4a9c679a738bfbe0df
bfaad46f978d22211efaf3740e3ac49e6c9ceac2
91866559aa417227937a1486f007b62140ceeb9403c6f8691946642f08705b00

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/main-1e44b94efc3603ef.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:08:59 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 429857
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="main-1e44b94efc3603ef.js"
etag: W/"d5cf3e6cdee52d4a9c679a738bfbe0df"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/main-1e44b94efc3603ef.js
x-vercel-cache: HIT
x-vercel-id: arn1::9c274-1713501882193-b00350c9deda
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N0NwbPF%2FdLCAzyA54tjU6ZZQ%2Bc%2BSLrAGNduop7mUtVYG%2BdCK2r%2Fq0memF5xjrnlnh18JJ%2BL5uvZHyCoLXZYWG5KJES38FMLLI4lNE04WRHAKWvkZ1xgjoe09pPns3WxLeYAAiA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c3d19d4b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/3235-9745946da13270d6.js

104.21.15.39

200 OK

32 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/3235-9745946da13270d6.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type

Size
32 kB (31591 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/3235-9745946da13270d6.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:08:59 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
age: 429857
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="3235-9745946da13270d6.js"
etag: W/"27a5d51b06f4d4f348492d1faa6eb0de"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/3235-9745946da13270d6.js
x-vercel-cache: HIT
x-vercel-id: arn1::8jrhn-1713501882831-049fc42de567
x-xss-protection: 1; mode=block
cf-cache-status: HIT
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cBeL2IZDEAegM6RdTkLF26z6yP6qEDAvLuTgUALs0lEKMbdUkVcJwWolRtXp6fTev1ILDTHwhXgmYxFLDZzrtcrt%2BC9N2mvRXKZ5OjgusoZMFFVj%2Bh44QndyYKjsy38%2Fvz6Ozw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c3d29e5b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skillexchange.xyz/_next/static/chunks/9962-47972af646274f05.js

104.21.15.39

200 OK

7.4 kB

URL GET HTTP/3
skillexchange.xyz/_next/static/chunks/9962-47972af646274f05.js
IP
104.21.15.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skillexchange.xyz/job/brand-designer/51189
Certificate
IssuerLet's Encrypt
Subjectskillexchange.xyz
Fingerprint67:C7:2B:D4:F7:35:64:35:5C:56:C4:9A:39:CA:84:F9:8D:86:AA:66
ValiditySat, 13 Apr 2024 18:56:22 GMT - Fri, 12 Jul 2024 18:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (7548), with no line terminators
Size
7.4 kB (7431 bytes)
Hash
d10aa732b8c0f7b5ae015699cd6f1d5b
5a5227fd13765175909de6467983d31894e0c0a5
d6537da99887ee04f17da457b9718a178bb4d80166c6b00e81ef2e364ca0f3ba

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/9962-47972af646274f05.js HTTP/1.1
Host: skillexchange.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skillexchange.xyz/job/brand-designer/51189
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:09:00 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="9962-47972af646274f05.js"
etag: W/"0f8d3defffd6bc00da3e7816633c7d82"
referrer-policy: same-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-frame-options: sameorigin
x-matched-path: /_next/static/chunks/9962-47972af646274f05.js
x-vercel-cache: HIT
x-vercel-id: arn1::f9dk7-1713931740605-c559591e6afd
x-xss-protection: 1; mode=block
cf-cache-status: MISS
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2l5U89L7mw1PFO9v3rCRoKkChMmVE6BAuXbcgy%2BlzoXzj1a%2B6XEFcQDxhxjV7PFRuNo9sHeA6NTvd39GrVjmZ904%2BRUIs4vEtEV0Tu0V4qFf9tiiaynNlqzyFFkY%2BHg8xQtUJA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87933c429d6eb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (55)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML