| | 199.36.158.100 | 200 OK | 278 B |
URL User Request GET HTTP/2IP199.36.158.100:443
CertificateIssuerGoogle Trust Services LLC Subjectwww.noahlyk.com FingerprintD4:FD:49:CA:8C:AF:B8:F6:C6:75:FC:9F:B4:79:40:6B:E2:FA:C6:04 ValidityThu, 21 Mar 2024 00:56:33 GMT - Wed, 19 Jun 2024 01:53:18 GMT
File typeHTML document, ASCII text, with very long lines (753), with no line terminators Hash338a4a9c9b33298bb8c8c2f80cbfc494 89a4cc883913f7c0a14ba5118703b8dd321a26bb 8b434eae400ac2e4ea8a8a9cad808f0d7234272953342666494f098847ae7038
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /kHNb6dNxX HTTP/1.1
Host: wix-l.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: text/html; charset=utf-8
etag: "89b51eb62d5d436489232a0fb7387937ae6cfb81d5fa0b9aea68c696bab5824a-br"
last-modified: Fri, 26 Apr 2024 14:05:33 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Fri, 26 Apr 2024 15:24:52 GMT
x-served-by: cache-hel1410020-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1714145092.085929,VS0,VE58
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 278
X-Firefox-Spdy: h2
|
|
| wix-l.in/static/css/main.e3e0a556.css | 199.36.158.100 | 200 OK | 34 kB |
URL GET HTTP/2wix-l.in/static/css/main.e3e0a556.css IP199.36.158.100:443
Requested byhttps://wix-l.in/kHNb6dNxX CertificateIssuerGoogle Trust Services LLC Subjectwww.noahlyk.com FingerprintD4:FD:49:CA:8C:AF:B8:F6:C6:75:FC:9F:B4:79:40:6B:E2:FA:C6:04 ValidityThu, 21 Mar 2024 00:56:33 GMT - Wed, 19 Jun 2024 01:53:18 GMT
File typeUnicode text, UTF-8 text, with very long lines (65074) Hashc49267a9d157fb2ac4f3ab27b9c97c29 a4d569ac6288abad7187a117c8e01ca3e259cb29 75f09506a8f8fca2b3b1e223ca7b08d3ba8ba6c414172429632c6b875fc5bf72
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/css/main.e3e0a556.css HTTP/1.1
Host: wix-l.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wix-l.in/kHNb6dNxX
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: text/css; charset=utf-8
etag: "ad31acfd2b36a76542435e2a7fdb007d4b54fb28f3541b5bdbd4a9705364454f-br"
last-modified: Fri, 26 Apr 2024 14:05:33 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Fri, 26 Apr 2024 15:24:52 GMT
x-served-by: cache-hel1410020-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1714145092.474799,VS0,VE82
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 34055
X-Firefox-Spdy: h2
|
|
| static.parastorage.com/services/js-sdk/1.537.0/js/wix.min.js | 34.49.229.81 | 200 OK | 23 kB |
URL GET HTTP/2static.parastorage.com/services/js-sdk/1.537.0/js/wix.min.js IP34.49.229.81:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://wix-l.in/kHNb6dNxX CertificateIssuerSectigo Limited Subject*.parastorage.com Fingerprint3E:4F:6D:DF:8A:5E:B5:38:95:74:55:29:88:20:6B:DB:31:89:EC:D3 ValidityThu, 11 Jan 2024 00:00:00 GMT - Tue, 09 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash7712dcae0e50b7d91fac1fd1dffe0568 771e0da78eca596ae3a3cc158d7a5afcfef2e8f0 365c579b5f25a1b0157ae3ec0a4849dc364d141a641c5e3aa3a8267286b8aae5
GET /services/js-sdk/1.537.0/js/wix.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wix-l.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 22871
x-amz-replication-status: REPLICA
x-amz-version-id: ys3LzRDsOQzzQWt5vTQtKJmH6kA1.Q2c
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
x-varnish: 705552949 502926017
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrcgzV1/Iq9lbjXhgOeY1i+yl,aVxMblM8KFG3we5NLvyVc7tnpyQ/1ThW8d6OVxL3lam8ZDY613cHYLbuhNMgAom1
accept-ranges: bytes
server: Pepyaka/1.21.6
x-wix-request-id: 1713709653.5523753873470241035932
via: 1.1 varnish (Varnish/6.0), 1.1 google
date: Sun, 21 Apr 2024 14:27:33 GMT
cache-control: public, max-age=7776000, immutable
age: 435439
last-modified: Wed, 29 Jul 2020 09:34:49 GMT
etag: W/"7712dcae0e50b7d91fac1fd1dffe0568"
content-type: application/javascript
vary: Accept-Encoding
x-cache: hit
glb-x-seen-by: qhk2IXhXaFW+ScoHjRxEUvX1Zxk6j9wOS6tQMkUbOP0=
x-gcp-cdn-pop: ARN-26bba172
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| wix-l.in/static/js/main.36546580.js | 199.36.158.100 | 200 OK | 311 kB |
URL GET HTTP/2wix-l.in/static/js/main.36546580.js IP199.36.158.100:443
Requested byhttps://wix-l.in/kHNb6dNxX CertificateIssuerGoogle Trust Services LLC Subjectwww.noahlyk.com FingerprintD4:FD:49:CA:8C:AF:B8:F6:C6:75:FC:9F:B4:79:40:6B:E2:FA:C6:04 ValidityThu, 21 Mar 2024 00:56:33 GMT - Wed, 19 Jun 2024 01:53:18 GMT
File typeJavaScript source, ASCII text, with very long lines (65465) Size311 kB (310882 bytes) Hash6b87136fb0e9ee86d61cd9388f92945c dabe40f114c6f45b97c5851c07cba183104be3c6 3319e85352adc5016504905c53bf2c0ef400f6df7b4f8083bf4cbe275e44cf54
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/js/main.36546580.js HTTP/1.1
Host: wix-l.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wix-l.in/kHNb6dNxX
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: "39523d89ee6c44eb39b0963ac37bbd41901ab1408ba9de0e2916e43d09ad911b-br"
last-modified: Fri, 26 Apr 2024 14:05:33 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Fri, 26 Apr 2024 15:24:52 GMT
x-served-by: cache-hel1410020-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1714145092.473674,VS0,VE178
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 310882
X-Firefox-Spdy: h2
|
|
| wix-l.in/logo192.png | 199.36.158.100 | 200 OK | 5.3 kB |
IP199.36.158.100:443
Requested byhttps://wix-l.in/kHNb6dNxX CertificateIssuerGoogle Trust Services LLC Subjectwww.noahlyk.com FingerprintD4:FD:49:CA:8C:AF:B8:F6:C6:75:FC:9F:B4:79:40:6B:E2:FA:C6:04 ValidityThu, 21 Mar 2024 00:56:33 GMT - Wed, 19 Jun 2024 01:53:18 GMT
File typePNG image data, 192 x 192, 8-bit colormap, non-interlaced Hash33dbdd0177549353eeeb785d02c294af 7f4f2d68782a7fafceda84554ecab9b489877500 c386396ec70db3608075b5fbfaac4ab1ccaa86ba05a68ab393ec551eb66c3e00
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /logo192.png HTTP/1.1
Host: wix-l.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wix-l.in/kHNb6dNxX
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 5291
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "76c449ccb9cd117c2f2338f091b18f7050f3210e249b2228f5c81b23f34377cd-br"
last-modified: Fri, 26 Apr 2024 14:05:33 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Fri, 26 Apr 2024 15:24:53 GMT
x-served-by: cache-hel1410026-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1714145093.125826,VS0,VE61
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
|
|
| wix-l.in/favicon.ico | 199.36.158.100 | 200 OK | 3.5 kB |
IP199.36.158.100:443
Requested byhttps://wix-l.in/kHNb6dNxX CertificateIssuerGoogle Trust Services LLC Subjectwww.noahlyk.com FingerprintD4:FD:49:CA:8C:AF:B8:F6:C6:75:FC:9F:B4:79:40:6B:E2:FA:C6:04 ValidityThu, 21 Mar 2024 00:56:33 GMT - Wed, 19 Jun 2024 01:53:18 GMT
File typeMS Windows icon resource - 4 icons, 16x16 with PNG image data, 16 x 16, 8-bit colormap, non-interlaced, 32 bits/pixel, 24x24 with
- PNG image data, 24 x 24, 8-bit colormap, non-interlaced, 32 bits/pixel Hashc92b85a5b907c70211f4ec25e29a8c4a 1120538c77ad1f28a89243b4b53fe2ac16cc3bc6 3d10f7da6c603178340081668c4ac5b3ae9743ca9a262ab0fcd312fbb9f48bdd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: wix-l.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wix-l.in/kHNb6dNxX
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 3460
cache-control: max-age=3600
content-encoding: gzip
content-type: image/x-icon
etag: "c599b7a91ab3627e3538125d9f40adc2d4bf949046984262670545dc7738af06"
last-modified: Fri, 26 Apr 2024 14:05:33 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Fri, 26 Apr 2024 15:24:53 GMT
x-served-by: cache-hel1410026-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1714145093.126191,VS0,VE63
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
|
|
| wix-l.in/sky.jpg | 199.36.158.100 | 200 OK | 4.5 MB |
IP199.36.158.100:443
Requested byhttps://wix-l.in/kHNb6dNxX CertificateIssuerGoogle Trust Services LLC Subjectwww.noahlyk.com FingerprintD4:FD:49:CA:8C:AF:B8:F6:C6:75:FC:9F:B4:79:40:6B:E2:FA:C6:04 ValidityThu, 21 Mar 2024 00:56:33 GMT - Wed, 19 Jun 2024 01:53:18 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 6000x4000, components 3 Size4.5 MB (4481449 bytes) Hash95dd871ef763bb1eb765df480bad7ed6 3280aabce005986e5adfc5d8ae6ce42a4e5d1475 e810e50b0d604fd045eeb369d913ad5de74ff9970fcbc884353c04e7ee25f080
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /sky.jpg HTTP/1.1
Host: wix-l.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wix-l.in/kHNb6dNxX
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 4481449
cache-control: max-age=3600
content-encoding: gzip
content-type: image/jpeg
etag: "5fd8c89155ada8d4da37c8aa2c68a215ee0bd2d241493e92503f728e7c96655c"
last-modified: Fri, 26 Apr 2024 14:05:33 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Fri, 26 Apr 2024 15:24:53 GMT
x-served-by: cache-hel1410026-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1714145093.010205,VS0,VE404
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
|
|