200 OK 2.2 kB URL User Request GET HTTP/2 IP
ASN #20853 eTOP sp. z o.o.
Certificate IssuerLet's Encrypt
Subjectwebwave.dev
Fingerprint4D:F6:FF:A1:FD:67:1A:76:E7:44:89:6A:0B:55:10:3F:EF:A9:F2:C3
ValiditySat, 11 Nov 2023 01:27:10 GMT - Fri, 09 Feb 2024 01:27:09 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3018)
Hash 5e650acc416639098d662fdd7f8dd8b7
6696c191aa5da6a2d5c5664aa9a35325e93fac26
c43a5cf84cd8f9079e9264c91163f95bb32393f4936412ac5c1e6aeb7baca190
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET / HTTP/1.1
Host: xu3d0l.webwave.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 22:53:40 GMT
server: Apache/2.4.58 (Unix) OpenSSL/3.0.11
content-security-policy: frame-ancestors 'self' webwavecms.com webwave.me ro.webwave.me webwave.ro webwave.com.au szablony.webwavecms.com templates.webwave.me templates.webwave.com.au sabloane.webwave.ro ;
x-application-context: application:production
content-type: text/html;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
cacheable: true
x-varnish: 26645935 29400906
age: 15744
via: 1.1 varnish (Varnish/6.1)
set-cookie: cache-with-varnish=true
accept-ranges: bytes
content-length: 2215
X-Firefox-Spdy: h2
xu3d0l.webwave.dev/files/staticContent/5.68/websitesResources/unavailableWebsiteModule-2c90ec1d1522815b8cdc826cc432a7ab.css
200 OK 1.4 kB URL GET HTTP/2 xu3d0l.webwave.dev/files/staticContent/5.68/websitesResources/unavailableWebsiteModule-2c90ec1d1522815b8cdc826cc432a7ab.css
IP
ASN #20853 eTOP sp. z o.o.
Requested by https://xu3d0l.webwave.dev/
Certificate IssuerLet's Encrypt
Subjectwebwave.dev
Fingerprint4D:F6:FF:A1:FD:67:1A:76:E7:44:89:6A:0B:55:10:3F:EF:A9:F2:C3
ValiditySat, 11 Nov 2023 01:27:10 GMT - Fri, 09 Feb 2024 01:27:09 GMT
File type ASCII text, with very long lines (4382), with no line terminators
Hash e6deb197fa9397809811aa9a353f85f8
2ef87634a4ea353287bd361ae749cc4858eaef20
9fa62835b73c062897249d634ac4457312b9ca2fd754a14f836d3dd30a1e8572
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /files/staticContent/5.68/websitesResources/unavailableWebsiteModule-2c90ec1d1522815b8cdc826cc432a7ab.css HTTP/1.1
Host: xu3d0l.webwave.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xu3d0l.webwave.dev/
Cookie: cache-with-varnish=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 06 Dec 2023 03:16:05 GMT
server: Apache/2.4.58 (Unix) OpenSSL/3.0.11
content-security-policy: frame-ancestors 'self' webwavecms.com webwave.me ro.webwave.me webwave.ro webwave.com.au szablony.webwavecms.com templates.webwave.me templates.webwave.com.au sabloane.webwave.ro ;
last-modified: Fri, 01 Dec 2023 14:20:54 GMT
etag: "111e-60b7379ddfd80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-length: 1379
content-type: text/css
X-Firefox-Spdy: h2
xu3d0l.webwave.dev/files/assets/webpack/unavailableWebsite.bundle-27790af8e2c9b82f71cb339113ab9831.css
200 OK 54 kB URL GET HTTP/2 xu3d0l.webwave.dev/files/assets/webpack/unavailableWebsite.bundle-27790af8e2c9b82f71cb339113ab9831.css
IP
ASN #20853 eTOP sp. z o.o.
Requested by https://xu3d0l.webwave.dev/
Certificate IssuerLet's Encrypt
Subjectwebwave.dev
Fingerprint4D:F6:FF:A1:FD:67:1A:76:E7:44:89:6A:0B:55:10:3F:EF:A9:F2:C3
ValiditySat, 11 Nov 2023 01:27:10 GMT - Fri, 09 Feb 2024 01:27:09 GMT
File type ASCII text, with very long lines (33295)
Hash 27790af8e2c9b82f71cb339113ab9831
bd334dcdddfdd820b3e31d67963b57b85d383549
305f85fbd85a267d465e4c255b8610097f18e7c60021ba69b552c5bcbacf3d91
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /files/assets/webpack/unavailableWebsite.bundle-27790af8e2c9b82f71cb339113ab9831.css HTTP/1.1
Host: xu3d0l.webwave.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xu3d0l.webwave.dev/
Cookie: cache-with-varnish=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 06 Dec 2023 03:16:05 GMT
server: Apache/2.4.58 (Unix) OpenSSL/3.0.11
content-security-policy: frame-ancestors 'self' webwavecms.com webwave.me ro.webwave.me webwave.ro webwave.com.au szablony.webwavecms.com templates.webwave.me templates.webwave.com.au sabloane.webwave.ro ;
last-modified: Fri, 01 Dec 2023 14:24:25 GMT
etag: "8eebd-60b7386789a26-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-length: 53762
content-type: text/css
X-Firefox-Spdy: h2
301 Moved Permanently 4.7 kB URL User Request GET HTTP/2 IP
Certificate IssuerGoogle Trust Services LLC
Subjectgo.ly
FingerprintA9:AB:3B:C3:95:C5:9B:66:A5:24:ED:ED:03:F8:81:CD:7F:8F:EA:F1
ValidityWed, 18 Oct 2023 04:24:21 GMT - Tue, 16 Jan 2024 04:24:20 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uzFJ3/ HTTP/1.1
Host: go.ly
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Wed, 06 Dec 2023 03:16:05 GMT
content-type: text/html; charset=utf-8
location: https://xu3d0l.webwave.dev/
x-powered-by: Express
access-control-allow-origin: *
vary: Accept
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Og10tAH16aBYhpmUKb7MwptllRlDKymzAOX%2BYNx5iHVTJd%2BQdnSuiVG%2Fkc54KlFqIK6P%2FUJnOMQnS6RDvTchbLiZmjCN%2Fh%2B8iEzmOJqDXcei%2Bmfi6jf%2BfQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 83115e3c1d6356ae-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
xu3d0l.webwave.dev/files/staticContent/5.68/websitesResources/unavailableWebsiteModule-4d05eecb4f28855370547f9ad086ff8e.js
200 OK 275 kB URL GET HTTP/2 xu3d0l.webwave.dev/files/staticContent/5.68/websitesResources/unavailableWebsiteModule-4d05eecb4f28855370547f9ad086ff8e.js
IP
ASN #20853 eTOP sp. z o.o.
Requested by https://xu3d0l.webwave.dev/
Certificate IssuerLet's Encrypt
Subjectwebwave.dev
Fingerprint4D:F6:FF:A1:FD:67:1A:76:E7:44:89:6A:0B:55:10:3F:EF:A9:F2:C3
ValiditySat, 11 Nov 2023 01:27:10 GMT - Fri, 09 Feb 2024 01:27:09 GMT
File type ASCII text, with very long lines (682)
Size 275 kB (274964 bytes)
Hash 680df62d0937de8ce4dd96f3949b48d5
cc50dafbc06b3ff11bd49ae5bd2ff3e2207cdeaf
66686e18a1b1aaea9ec94d990195f580e99b48dedf392f54916a7035711c7192
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /files/staticContent/5.68/websitesResources/unavailableWebsiteModule-4d05eecb4f28855370547f9ad086ff8e.js HTTP/1.1
Host: xu3d0l.webwave.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xu3d0l.webwave.dev/
Cookie: cache-with-varnish=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 03:16:05 GMT
server: Apache/2.4.58 (Unix) OpenSSL/3.0.11
content-security-policy: frame-ancestors 'self' webwavecms.com webwave.me ro.webwave.me webwave.ro webwave.com.au szablony.webwavecms.com templates.webwave.me templates.webwave.com.au sabloane.webwave.ro ;
last-modified: Fri, 01 Dec 2023 14:24:14 GMT
etag: "43214-60b7385c9bf80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-type: application/javascript
X-Firefox-Spdy: h2
xu3d0l.webwave.dev/favicon.ico
200 OK 4.7 kB URL GET HTTP/2 xu3d0l.webwave.dev/favicon.ico
IP
ASN #20853 eTOP sp. z o.o.
Requested by https://xu3d0l.webwave.dev/
Certificate IssuerLet's Encrypt
Subjectwebwave.dev
Fingerprint4D:F6:FF:A1:FD:67:1A:76:E7:44:89:6A:0B:55:10:3F:EF:A9:F2:C3
ValiditySat, 11 Nov 2023 01:27:10 GMT - Fri, 09 Feb 2024 01:27:09 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5019), with no line terminators
Hash 8996dfb0e86f1b3ca4bf77177d8999f4
17a96bc53859fb5cf3b7f30e4fb96b8ecbf08e1e
5c05ff1bd70fae10e50f61908064e07a7be0e0ae596ce903f4e45c4ae264beb3
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /favicon.ico HTTP/1.1
Host: xu3d0l.webwave.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xu3d0l.webwave.dev/
Cookie: cache-with-varnish=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 03:16:06 GMT
server: Apache/2.4.58 (Unix) OpenSSL/3.0.11
content-security-policy: frame-ancestors 'self' webwavecms.com webwave.me ro.webwave.me webwave.ro webwave.com.au szablony.webwavecms.com templates.webwave.me templates.webwave.com.au sabloane.webwave.ro ;
x-application-context: application:production
content-type: text/html;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
cacheable: true
x-varnish: 5016384
age: 0
via: 1.1 varnish (Varnish/6.1)
set-cookie: cache-with-varnish=true
accept-ranges: bytes
X-Firefox-Spdy: h2
172.67.181.177
185.73.228.142