| wotheksu.com/favicon.ico | 104.21.82.96 | 204 No Content | 0 B |
IP104.21.82.96:443
CertificateIssuerGoogle Trust Services LLC Subjectwotheksu.com Fingerprint32:40:21:03:3D:3B:9B:BF:3C:7C:82:84:44:15:E4:46:64:F2:54:61 ValidityTue, 05 Mar 2024 10:38:45 GMT - Mon, 03 Jun 2024 10:38:44 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: wotheksu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wotheksu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Wed, 24 Apr 2024 12:59:37 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OgEp%2BmkxBLebPHx9bZ1KWyCKQESCLsuaJJPGOv%2Fg3DgJ%2B3uyZCJeUJESP%2BS0VexCTPHIXQ8jkqiAihsEeu45sJCGztzoEQ%2BquBmpBi2gi6Iou7JywXlhUAzW7ZF0MMk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879645883ebe7129-OSL
alt-svc: h3=":443"; ma=86400
|
|
| wotheksu.com/_next/static/chunks/main-beb6af9e60a8e042.js | 104.21.82.96 | 200 OK | 109 kB |
URL GET HTTP/3wotheksu.com/_next/static/chunks/main-beb6af9e60a8e042.js IP104.21.82.96:443
CertificateIssuerGoogle Trust Services LLC Subjectwotheksu.com Fingerprint32:40:21:03:3D:3B:9B:BF:3C:7C:82:84:44:15:E4:46:64:F2:54:61 ValidityTue, 05 Mar 2024 10:38:45 GMT - Mon, 03 Jun 2024 10:38:44 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size109 kB (108887 bytes) Hash44ec1451f689d71d5f33a10d4aa44658 0f7e72050b7bf72366d9463a16038ae94e232f46 1708144463d376da261c16eab17b1d2fe5c49351847f43a46c6ae4b347fd9304
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/main-beb6af9e60a8e042.js HTTP/1.1
Host: wotheksu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wotheksu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 12:59:37 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 10:48:07 GMT
vary: Accept-Encoding
etag: W/"6628e367-1a957"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=j2JKXai1s%2B5T8whDghfoAIaQFCb2PQuGwRfyzqoFj3gMA8RfxQedrF3%2BngROvgU6NjG4MdHt0WT9RbOOktEAWynD7OGTiZbPGuS9rNEI39gVEgclmKOpwIZTWsbXY4w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879645871d197129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| wotheksu.com/_next/static/chunks/pages/index-e56fa27d3c0234c6.js | 104.21.82.96 | 200 OK | 9.4 kB |
URL GET HTTP/3wotheksu.com/_next/static/chunks/pages/index-e56fa27d3c0234c6.js IP104.21.82.96:443
CertificateIssuerGoogle Trust Services LLC Subjectwotheksu.com Fingerprint32:40:21:03:3D:3B:9B:BF:3C:7C:82:84:44:15:E4:46:64:F2:54:61 ValidityTue, 05 Mar 2024 10:38:45 GMT - Mon, 03 Jun 2024 10:38:44 GMT
File typeJavaScript source, ASCII text, with very long lines (9665), with no line terminators Hashcfb9c27cc052b3614b681a763d188134 a968daa6705bd04b84ed5e9dd7aee41ba4ff218d 79b50ff6f603c1aa27cf161da8f3d138fed1d73e978b47b46aa631079ae074cd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/pages/index-e56fa27d3c0234c6.js HTTP/1.1
Host: wotheksu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wotheksu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 12:59:37 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 10:48:07 GMT
vary: Accept-Encoding
etag: W/"6628e367-24c4"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T6Zsy%2FeyY6YuPp%2F5SQjF4TKyuhJt6kmk7Y2sSooqherECYjH35Mn5Cr8nU%2BpYq2R17C6g35C6Dl0ZevldqwB9sXvg6sWzIYo%2FxLkCrt4gPEa1XeJk8F61wj06V%2BgVy8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879645871d267129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| wotheksu.com/_next/static/chunks/webpack-57d4eaea9c29e543.js | 104.21.82.96 | 200 OK | 6.1 kB |
URL GET HTTP/3wotheksu.com/_next/static/chunks/webpack-57d4eaea9c29e543.js IP104.21.82.96:443
CertificateIssuerGoogle Trust Services LLC Subjectwotheksu.com Fingerprint32:40:21:03:3D:3B:9B:BF:3C:7C:82:84:44:15:E4:46:64:F2:54:61 ValidityTue, 05 Mar 2024 10:38:45 GMT - Mon, 03 Jun 2024 10:38:44 GMT
File typeJavaScript source, ASCII text, with very long lines (6330), with no line terminators Hashce2d7f3bb6527a73bdcf4509639200fe afcc27a20cc5862367c93da14bd6635f1ff256b8 f222bd64c7fb8dfc6f0acec149111a95f2f715250bc8f463398dc9e5c16358c1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/webpack-57d4eaea9c29e543.js HTTP/1.1
Host: wotheksu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wotheksu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 12:59:37 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 10:48:07 GMT
vary: Accept-Encoding
etag: W/"6628e367-17d2"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=s8rqUrEZSkx6duOoc4Y4Sw2S8IME4ekJbI9jTUh08nlANH%2FP9p5xFjCpwmYvCBikMjKQwSiwdO%2BLJ%2BHcChrYLCTUKkrAhuFXlNdOvHNPwIjkK%2BufKEe5%2BelAREI8huo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879645870d127129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| wotheksu.com/_next/static/chunks/framework-3281cb961088a9a3.js | 104.21.82.96 | 200 OK | 26 kB |
URL GET HTTP/3wotheksu.com/_next/static/chunks/framework-3281cb961088a9a3.js IP104.21.82.96:443
CertificateIssuerGoogle Trust Services LLC Subjectwotheksu.com Fingerprint32:40:21:03:3D:3B:9B:BF:3C:7C:82:84:44:15:E4:46:64:F2:54:61 ValidityTue, 05 Mar 2024 10:38:45 GMT - Mon, 03 Jun 2024 10:38:44 GMT
File typeJavaScript source, ASCII text, with very long lines (26042), with no line terminators Hash499fb17b15c09c2d76681f27dde9a031 5564d317c33112db56918ec372d392caabec70f2 9350c53e2fe847ec629962106d01d6af28a0d9c69feb57e7609b3c096935cdb2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/framework-3281cb961088a9a3.js HTTP/1.1
Host: wotheksu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wotheksu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 12:59:37 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 10:48:07 GMT
vary: Accept-Encoding
etag: W/"6628e367-65ba"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0QIyeeQG88SsQTUBNQOkFUG%2FGCYZ%2Brokjy93IDsth8S6FGTwY8nk9SrlqLG73DydT7l5c9hDoJc0zR3hgaa35a8EQCSiN2tkYHsIYUUeteIy6b9nZyTFJp3M%2FiY8kmY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879645870d187129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| wotheksu.com/_next/static/chunks/pages/_app-300835a4e9aacf9c.js | 104.21.82.96 | 200 OK | 40 kB |
URL GET HTTP/3wotheksu.com/_next/static/chunks/pages/_app-300835a4e9aacf9c.js IP104.21.82.96:443
CertificateIssuerGoogle Trust Services LLC Subjectwotheksu.com Fingerprint32:40:21:03:3D:3B:9B:BF:3C:7C:82:84:44:15:E4:46:64:F2:54:61 ValidityTue, 05 Mar 2024 10:38:45 GMT - Mon, 03 Jun 2024 10:38:44 GMT
File typeJavaScript source, ASCII text, with very long lines (39993), with no line terminators Hashf3f209219f0234d519122940ffe82866 201086702881a34037583c151ad307c1f0ea5586 d74e2249aae2b85293388cb3577f6932e60bea804e7a1615a0204b9e4f707d1e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/pages/_app-300835a4e9aacf9c.js HTTP/1.1
Host: wotheksu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wotheksu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 12:59:37 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 10:48:07 GMT
vary: Accept-Encoding
etag: W/"6628e367-9c39"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zGUKuO1aVzU19XYdZ8F52pfi4LUa16f6TNqM4cIIx0fTx2TNh%2FuDFFooTGHhOt5t%2FGaVl5YnN0M6O%2Bbx%2BYEjO%2BU0OuFjo5NWnj125IxBkBrOxF7VegrYjXehxuD7M3c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879645871d1d7129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| wotheksu.com/_next/static/chunks/7903-dd238946c7924507.js | 104.21.82.96 | 200 OK | 32 kB |
URL GET HTTP/3wotheksu.com/_next/static/chunks/7903-dd238946c7924507.js IP104.21.82.96:443
CertificateIssuerGoogle Trust Services LLC Subjectwotheksu.com Fingerprint32:40:21:03:3D:3B:9B:BF:3C:7C:82:84:44:15:E4:46:64:F2:54:61 ValidityTue, 05 Mar 2024 10:38:45 GMT - Mon, 03 Jun 2024 10:38:44 GMT
File typeJavaScript source, ASCII text, with very long lines (31896), with no line terminators Hashb5dd343db67bd22544d11da18268f5c3 069b5b221dd75af58d93192460778b3d07835e74 6347f1d4083f7a0a2ac3d8b12aae8832d9ea6914aa6e137d16a4d41869d14ea5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/7903-dd238946c7924507.js HTTP/1.1
Host: wotheksu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wotheksu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 12:59:37 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 10:48:07 GMT
vary: Accept-Encoding
etag: W/"6628e367-7c98"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=M%2Ftg0y5rYlSdlbL9cL67Ch%2Fia9NHZd7HFwpJoHg8qr%2FyI398vBOszx4GdVFbGm39mKv9GpJabkXfU%2FqOhw5uiHzNOt80DsxkwFs56QA%2BcxwWR544SFbZdPZQgtc2loY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879645871d1f7129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| wotheksu.com/_next/static/chunks/8550-084f8ef56ea2a7ad.js | 104.21.82.96 | 200 OK | 12 kB |
URL GET HTTP/3wotheksu.com/_next/static/chunks/8550-084f8ef56ea2a7ad.js IP104.21.82.96:443
CertificateIssuerGoogle Trust Services LLC Subjectwotheksu.com Fingerprint32:40:21:03:3D:3B:9B:BF:3C:7C:82:84:44:15:E4:46:64:F2:54:61 ValidityTue, 05 Mar 2024 10:38:45 GMT - Mon, 03 Jun 2024 10:38:44 GMT
File typeJavaScript source, ASCII text, with very long lines (12179), with no line terminators Hash99cedc315297bcdade48598c3f97d7d8 06bddf8f8305971fe0ac51163727a23e8181c296 8f3a92324a0f5a22aabddc3c838582e0110d1b7ba67b04f48682f9deff8f3e30
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/8550-084f8ef56ea2a7ad.js HTTP/1.1
Host: wotheksu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wotheksu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 12:59:37 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 10:48:07 GMT
vary: Accept-Encoding
etag: W/"6628e367-2f93"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qceGXrfSZfR2mYVsREcKsqm%2Bz15i2yd5KijxSmxBIFmnldTIP4VZ74Byd0AamDjYjRaqamvQ4XLdUNxiCp7G%2BevmmNecn6gzhmyDmYB4EYGH7VqUi4GQ%2BhUBaAbd5RA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879645871d227129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| wotheksu.com/_next/static/1w5THSqMV_0pobX8kitSq/_buildManifest.js | 104.21.82.96 | 200 OK | 1.6 kB |
URL GET HTTP/3wotheksu.com/_next/static/1w5THSqMV_0pobX8kitSq/_buildManifest.js IP104.21.82.96:443
CertificateIssuerGoogle Trust Services LLC Subjectwotheksu.com Fingerprint32:40:21:03:3D:3B:9B:BF:3C:7C:82:84:44:15:E4:46:64:F2:54:61 ValidityTue, 05 Mar 2024 10:38:45 GMT - Mon, 03 Jun 2024 10:38:44 GMT
File typeASCII text, with very long lines (1697), with no line terminators Hashfd03f965c4b94242b4f22bcea9e1a4c3 7f95d5118d098aed8ad0782b5ab51e191690ec4f 00c3ce472c689d3438d56d7217c50648f17aea9348f298b8cdb2fd18f9d78bfe
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/1w5THSqMV_0pobX8kitSq/_buildManifest.js HTTP/1.1
Host: wotheksu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wotheksu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 12:59:37 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 10:48:07 GMT
vary: Accept-Encoding
etag: W/"6628e367-645"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3lCVMOBb6uoKSpi%2FH7udVj2PsyM5kR%2F96kpvTiMp1I%2FW2bUxrYX%2FnhRPorgHxOkZ9VfzUBf4C%2F8sNusZi0WL%2FOSURDteeyR0ACEdXXXQl%2BkOzg6IF59v3sg9WygKmUc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879645871d297129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| | 104.21.82.96 | 200 OK | 2.2 kB |
URL User Request GET HTTP/2IP104.21.82.96:443
CertificateIssuerGoogle Trust Services LLC Subjectwotheksu.com Fingerprint32:40:21:03:3D:3B:9B:BF:3C:7C:82:84:44:15:E4:46:64:F2:54:61 ValidityTue, 05 Mar 2024 10:38:45 GMT - Mon, 03 Jun 2024 10:38:44 GMT
File typeHTML document, ASCII text, with very long lines (2340), with no line terminators Hash776eb8d5ef6690c02e0a96958d761b88 d2df3f724d1aa45405a4306fda8e800a556d8ab4 e82a0ee8deb4fd83786a7598d975e1d30ee66ca4d48eb9bd578d3d584ab2abc1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: wotheksu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 12:59:37 GMT
content-type: text/html
last-modified: Wed, 24 Apr 2024 10:48:08 GMT
vary: Accept-Encoding
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EJw1iDJtr7PUxNLwM%2BjPA9OHZcWbqq2M%2FQLUMXHc6FYMLftO367kVOo%2BRgXT05%2FZh1grpCjhXnGGCRme3gAIwC%2B9g0I6WDvZNRxlneHPgJcPPL1TrP4qKW8YlYTUhdc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879645847e4556c3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| wotheksu.com/_next/static/css/0bc0cde260d08b97.css | 104.21.82.96 | 200 OK | 1.8 kB |
URL GET HTTP/3wotheksu.com/_next/static/css/0bc0cde260d08b97.css IP104.21.82.96:443
CertificateIssuerGoogle Trust Services LLC Subjectwotheksu.com Fingerprint32:40:21:03:3D:3B:9B:BF:3C:7C:82:84:44:15:E4:46:64:F2:54:61 ValidityTue, 05 Mar 2024 10:38:45 GMT - Mon, 03 Jun 2024 10:38:44 GMT
File typeASCII text, with very long lines (1843), with no line terminators Hash64b2b4fa42c7d558d735e2cd28ecf88a 03d6da6e55b1201b51689590520da495a9233d67 2fdb3ce9ccba8355040e5ba3dfb2283194acba81858943b5d88f70030dbb71ea
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/css/0bc0cde260d08b97.css HTTP/1.1
Host: wotheksu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wotheksu.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 12:59:37 GMT
content-type: text/css
last-modified: Wed, 24 Apr 2024 10:48:07 GMT
vary: Accept-Encoding
etag: W/"6628e367-733"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zxBSoKrvJJl%2BRBjaiqBm7QYHBd9dAl%2Bwd5J91jigbye3GqfNADYElxvISy0lqm4MyPEZ8IToRu17qLgB6oDu7nTi4kGyTWtbKEtE0G5Y5YWlNmhth51EghUpW8zhu88%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879645870d107129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| wotheksu.com/_next/static/chunks/2090-5c4f654224750f4b.js | 104.21.82.96 | 200 OK | 11 kB |
URL GET HTTP/3wotheksu.com/_next/static/chunks/2090-5c4f654224750f4b.js IP104.21.82.96:443
CertificateIssuerGoogle Trust Services LLC Subjectwotheksu.com Fingerprint32:40:21:03:3D:3B:9B:BF:3C:7C:82:84:44:15:E4:46:64:F2:54:61 ValidityTue, 05 Mar 2024 10:38:45 GMT - Mon, 03 Jun 2024 10:38:44 GMT
File typeJavaScript source, ASCII text, with very long lines (10772), with no line terminators Hash48a7086ede3da4d57eaa11bf2ba435dd a58e6ce70f2675ce2fdcaff04a63d33c4bc0744d 59750f2431678c96646d026ec016eeeb91df7913acfe972f7e9a3110b302dc3f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/2090-5c4f654224750f4b.js HTTP/1.1
Host: wotheksu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wotheksu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 12:59:37 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 10:48:07 GMT
vary: Accept-Encoding
etag: W/"6628e367-2a14"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=q9zssTm%2Fjo9EIYyHf3XZGgU1aT%2FJaXZ4oriQ3neUz3KGTFmupRhzK8lw5geotpkId%2BlCmWz0esz1PNsKeINBnPzuDx9n6GISrH4SRJcrnscYvGnZx6%2FujVu%2FLy%2BdkrA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879645871d257129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| wotheksu.com/_next/static/1w5THSqMV_0pobX8kitSq/_ssgManifest.js | 104.21.82.96 | 200 OK | 182 B |
URL GET HTTP/3wotheksu.com/_next/static/1w5THSqMV_0pobX8kitSq/_ssgManifest.js IP104.21.82.96:443
CertificateIssuerGoogle Trust Services LLC Subjectwotheksu.com Fingerprint32:40:21:03:3D:3B:9B:BF:3C:7C:82:84:44:15:E4:46:64:F2:54:61 ValidityTue, 05 Mar 2024 10:38:45 GMT - Mon, 03 Jun 2024 10:38:44 GMT
File typeASCII text, with no line terminators Hashca6aa05f78eb6859347a61db067f16dc 444e70f53eb809f0920de921925d854baccdd251 11ca6f5cc9bc3b5e4021fe0fdad57091b6e8b54a5018672cf9d8b6a7e4f0e229
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/1w5THSqMV_0pobX8kitSq/_ssgManifest.js HTTP/1.1
Host: wotheksu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wotheksu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 12:59:37 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 10:48:07 GMT
vary: Accept-Encoding
etag: W/"6628e367-b6"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4xpeZ4iaTLQDYzKQyU4Uexf2QT%2Fj6Y1g2sUEozgTCMR4S5F8Bp6shsoO4ouKTPS5LtWSQr3utWDDTv%2FxltF%2Fpi3lZCR2rzserj%2BHDbqvxwJN1VK5bxJOvArn5sCL8Kg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879645871d2e7129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|