Report Overview
URL
wjidigitalmediadirectory.com
Finishing URL
wjidigitalmediadirectory.com/
IP / ASN
82.112.239.209
Title
WJI - Digital Media Directory
Malicious - Copy/Paste Social Engineering (ClickFix)
Detections
urlquery
2
Network Intrusion Detection
3
Threat Detection Systems
6
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
fonts.googleapis.com | 313 | 2005-01-25 | 2012-05-23 | 2026-04-05 | 1.3 kB | 124 kB |  142.251.38.106 | |
polygon-pokt.nodies.app | unknown | 2023-05-12 | 2025-08-27 | 2026-04-04 | 1.6 kB | 2.4 kB |  104.26.4.88 |  |
upload.wikimedia.org | 4329 | 2003-03-16 | 2012-05-21 | 2026-04-06 | 468 B | 65 kB | 185.15.59.240 |  |
polygon.lava.build | 7157037 | 2023-09-14 | 2025-08-27 | 2026-04-04 | 1.5 kB | 3.6 kB | 104.18.24.75 | |
wjidigitalmediadirectory.com 144 alert(s) on this Host | unknown | 2020-07-06 | 2020-09-08 | 2025-10-08 | 38 kB | 7.2 MB | 82.112.239.209 |          |
polygon.drpc.org | unknown | 2005-01-09 | 2023-12-16 | 2026-04-04 | 1.5 kB | 1.9 kB | 104.18.10.59 | |
krempie.xyz 26 alert(s) on this Host | unknown | 2026-04-03 | 2026-04-05 | 2026-04-05 | 3.1 kB | 442 kB | 172.67.178.32 | |
gateway.tenderly.co | 1960624 | 2020-05-11 | 2022-05-12 | 2026-04-04 | 491 B | 542 B | 35.227.193.242 |    |
polygon-bor-rpc.publicnode.com | 2163006 | 2016-08-16 | 2024-04-26 | 2026-04-04 | 1.6 kB | 2.1 kB | 172.66.150.162 | |
1rpc.io | 47066 | 2022-08-02 | 2022-08-18 | 2026-03-30 | 470 B | 304 B |  20.105.41.175 | |
polygon-public.nodies.app | unknown | 2023-05-12 | 2025-08-27 | 2026-04-04 | 1.6 kB | 2.4 kB | 104.26.4.88 | |
fonts.gstatic.com | unknown | 2008-02-11 | 2014-04-02 | 2026-04-05 | 4.5 kB | 250 kB | 172.217.19.227 | |
api.zan.top | 1528343 | 2023-03-24 | 2023-08-02 | 2026-04-04 | 484 B | 699 B |  8.222.235.176 | |
polygon.rpc.subquery.network | unknown | 2020-10-07 | 2025-08-27 | 2026-04-04 | 1.6 kB | 1.5 kB |  51.254.59.59 |   |
polygon.gateway.tenderly.co | unknown | 2020-05-11 | 2025-08-03 | 2026-04-04 | 485 B | 541 B | 35.227.193.242 | |
Cloudflare (CDN)
Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.Apache Traffic Server:9.2.11 (Web servers)
Apache Traffic Server is an open-source caching and proxying server that serves as an HTTP/1.1 and HTTP/2 reverse proxy with caching capabilities, load balancing, request routing, SSL termination, and support for advanced HTTP features.Cloudflare Bot Management (Security)
Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.Hostinger (Hosting)
Hostinger is an employee-owned Web hosting provider and internet domain registrar.LiteSpeed (Web servers)
LiteSpeed is a high-scalability web server.PHP:8.2.30 (Programming languages)
PHP is a general-purpose scripting language used for web development.All in One SEO:4.8.6.1 (SEO, WordPress plugins)
All in One SEO optimizes a WordPress website and its content for search engines.All in One SEO Pack:4.8.6.1 (SEO, WordPress plugins)
All in One SEO plugin optimizes WordPress website and its content for search engines.jQuery Migrate:3.4.1 (JavaScript libraries)
Query Migrate is a javascript library that allows you to preserve the compatibility of your jQuery code developed for versions of jQuery older than 1.9.Mailcheck:2.2.8 (JavaScript libraries)
Mailcheck is a JavaScript library designed to address the issue of misspelled email addresses during user input.MySQL (Databases)
MySQL is an open-source relational database management system.Elementor:3.26.3 (Page builders, WordPress plugins)
Elementor is a website builder platform for professionals on WordPress.jQuery (JavaScript libraries)
jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.WordPress:6.8.5 (CMS, Blogs)
WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.Envoy (Reverse proxies)
Envoy is an open-source edge and service proxy, designed for cloud-native applications.Google Cloud CDN (CDN)
Cloud CDN uses Google's global edge network to serve content closer to users.Google Cloud (IaaS)
Google Cloud is a suite of cloud computing services.Express (Web frameworks, Web servers)
Express is a web application framework for Node.js, released as free and open-source software under the MIT License. It is designed for building web applications and APIs.Node.js (Programming languages)
Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
| Timestamp | Severity | Source IP | Destination IP | Alert |
|---|---|---|---|---|
| low | Client IP | 20.105.41.175 | ET INFO Observed Smart Chain Domain in TLS SNI (1rpc .io) | |
| low | Client IP | 8.222.235.176 | ET INFO Observed Smart Chain Domain in TLS SNI (api .zan .top) | |
| low | Client IP | 8.222.235.176 | ET INFO Observed Smart Chain Domain in TLS SNI (api .zan .top) |
Threat Detection Systems
| Detection System | Indicator | Verdict | Alert |
|---|---|---|---|
| DigiCert UltraDNS | wjidigitalmediadirectory.com | malicious | Sinkholed |
| DNS4EU | wjidigitalmediadirectory.com | malicious | Sinkholed |
| DigiCert UltraDNS | krempie.xyz | malicious | Sinkholed |
| Hagezi Threat Feed | krempie.xyz | malicious | Sinkholed |
| Quad9 DNS | krempie.xyz | malicious | Sinkholed |
| DNS4EU | krempie.xyz | malicious | Sinkholed |
File detected
URL
wjidigitalmediadirectory.com/wp-content/uploads/2025/05/WJI-magzine-2025_compressed.pdf
IP / ASN
82.112.239.209
File Overview
File TypePDF document, version 1.6
Size524 kB (524288 bytes)
MD54fdb81ff8a1a2b17d3358c83707f7432
SHA10d70f4b040a7191fd5922706f8365709949efe32
URL
wjidigitalmediadirectory.com/wp-content/uploads/2025/05/WJI-magzine-2025_compressed.pdf
IP / ASN
82.112.239.209
File Overview
File TypePDF document, version 1.6
Size32 kB (31676 bytes)
MD57c1710a785bb4fd485c8375ff78346ea
SHA180265b21515ab4448bd198083e5dd0959221bbc1
JavaScript (104)
No JavaScripts
HTTP Transactions (111)
| URL | IP | Response | Size |
|---|