| hubiesoyler.life/index_files/css |  172.67.170.3 | 200 OK | 20 kB |
URL GET HTTP/3hubiesoyler.life/index_files/css IP172.67.170.3:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subjecthubiesoyler.life Fingerprint4F:43:E5:7F:CB:C3:34:00:24:96:FA:C0:11:70:1B:99:A5:B2:9A:8F ValidityTue, 16 Apr 2024 15:57:21 GMT - Mon, 15 Jul 2024 15:57:20 GMT
Hash90e11c859a1c71ab2eb5cf442f397298 3f82465cc7e12cf62888ebcbf77e2fc79bb30468 3a608b25f779183acbfa7ef4c353d4afabf1b587dbe6bc13b40a62fbf7ac7eff
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /index_files/css HTTP/1.1
Host: hubiesoyler.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Cookie: PHPSESSID=5fb17944a4ec0330df23ff3dfc4b78d2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 18:56:32 GMT
content-length: 19968
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4a2vA%2B%2B3MePYX%2FRxq03gFFOjAFcVQtXBhwGHUn4nmY30tm2us5DeLBMIqk4XmKxvpNIp43KrO1OoOHzfMqRUYiR2R67W1W8kiW5rfhqOQlP2Bk63EEjUXSFvgiGFI4CbPEbt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eab6177c765699-OSL
alt-svc: h3=":443"; ma=86400
|
|
| hubiesoyler.life/index_files/front-scripts.min.js | 172.67.170.3 | 200 OK | 673 B |
URL GET HTTP/3hubiesoyler.life/index_files/front-scripts.min.js IP172.67.170.3:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subjecthubiesoyler.life Fingerprint4F:43:E5:7F:CB:C3:34:00:24:96:FA:C0:11:70:1B:99:A5:B2:9A:8F ValidityTue, 16 Apr 2024 15:57:21 GMT - Mon, 15 Jul 2024 15:57:20 GMT
File typeJavaScript source, ASCII text, with very long lines (344), with no line terminators Hashad0af34ee472b7311217f496c54f44eb b3e6ecf79b7c84e35862d502cf71141a434a0bdc 5550f904be1dd8825d113db685b9c92507fa0087d414c6a1f64852d62758c0c4
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /index_files/front-scripts.min.js HTTP/1.1
Host: hubiesoyler.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Cookie: PHPSESSID=5fb17944a4ec0330df23ff3dfc4b78d2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 18:56:32 GMT
content-type: application/javascript
etag: W/"6570b23a-158"
last-modified: Wed, 06 Dec 2023 17:41:14 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gbweoNS3BCVh8cSZG9sMYOpjiYqNZkj4%2FGr3NxmV6mf%2B4OKYBVXriXMnOI%2BA2bv4pOFGHM3v6CqbSZWUEQVvEpaXMjObDNolgnASsqPheXjfXSYetalweRVFeEmQDcpj7EpF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eab6179cb05699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hubiesoyler.life/index_files/autoptimize_single_5baeb59adc1f30bd1f1a1d6973ed7f3f.js | 172.67.170.3 | 200 OK | 15 kB |
URL GET HTTP/3hubiesoyler.life/index_files/autoptimize_single_5baeb59adc1f30bd1f1a1d6973ed7f3f.js IP172.67.170.3:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subjecthubiesoyler.life Fingerprint4F:43:E5:7F:CB:C3:34:00:24:96:FA:C0:11:70:1B:99:A5:B2:9A:8F ValidityTue, 16 Apr 2024 15:57:21 GMT - Mon, 15 Jul 2024 15:57:20 GMT
File typeASCII text, with very long lines (1159) Hash34466d913c8ffdef2f2b236f626fb133 30aedd5a88386d24bedc98007bf4b8dddeabe632 2e947cc1796d55698e28de2f02b29eca49b2ed6ed3bd884e1e41cc4db7ccd613
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /index_files/autoptimize_single_5baeb59adc1f30bd1f1a1d6973ed7f3f.js HTTP/1.1
Host: hubiesoyler.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Cookie: PHPSESSID=5fb17944a4ec0330df23ff3dfc4b78d2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 18:56:32 GMT
content-type: application/javascript
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sat, 04 May 2024 18:56:32 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n8rZAsk73yx3Bf3Ew8dLPOBa5LdXn7x8PHK7IXSHnMUUAFNtYtgcyCBL8DdhNAthRtMfOscPCb0CuGO8WMfXFA1P2aQnGpMqsdQhQla7l%2Bxto0bsvHuGzdCILSonxPIUbq6q"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eab6179cd05699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/barlow/v12/7cHpv4kjgoGqM7E_DMs5ynghnQ.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/barlow/v12/7cHpv4kjgoGqM7E_DMs5ynghnQ.woff2 IP216.58.207.227:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 14736, version 1.0 Hashc27a2e28b3a242fa8ff8f98b497e77ab 82aa3d68bb1a3922ce860fc07336eb2ac77ceb6c 60cdff1621cd9803c61b2c7d010adcb8094f41fcab2da420f99dead9c097395f
GET /s/barlow/v12/7cHpv4kjgoGqM7E_DMs5ynghnQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hubiesoyler.life
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14736
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 22:03:28 GMT
expires: Fri, 02 May 2025 22:03:28 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 19:13:12 GMT
content-type: font/woff2
age: 161584
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| hubiesoyler.life/index_files/cart_widget.min.js | 172.67.170.3 | 200 OK | 8.9 kB |
URL GET HTTP/3hubiesoyler.life/index_files/cart_widget.min.js IP172.67.170.3:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subjecthubiesoyler.life Fingerprint4F:43:E5:7F:CB:C3:34:00:24:96:FA:C0:11:70:1B:99:A5:B2:9A:8F ValidityTue, 16 Apr 2024 15:57:21 GMT - Mon, 15 Jul 2024 15:57:20 GMT
File typeJavaScript source, ASCII text, with very long lines (364), with no line terminators Hashca73d10f3745efeaba4661f371be89f6 cbe4a7eeaa2e03fd5a106dca9d4f5466da51c867 00b55d4c2f81b6b53aa944b364b81ac1e1a3a4f3e94818b14eb270e5f156f24b
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /index_files/cart_widget.min.js HTTP/1.1
Host: hubiesoyler.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Cookie: PHPSESSID=5fb17944a4ec0330df23ff3dfc4b78d2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 18:56:32 GMT
content-type: application/javascript
etag: W/"6570b23a-16c"
last-modified: Wed, 06 Dec 2023 17:41:14 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=k6LG8L1cHNrB1gUnvMjoUxHhNwX1ixjT5amJcp1NFswMSNmQMFxu3b3%2Fwj6Bs77EwTYXIVGFBfMfjUOeAysSuMXZWUVPAOWfuQQUeVJ64HQnT4EcfGzo4uNRpnFwH9%2B5614G"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eab6179cb25699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hubiesoyler.life/index_files/wp-polyfill-inert.min.js | 172.67.170.3 | 200 OK | 11 kB |
URL GET HTTP/3hubiesoyler.life/index_files/wp-polyfill-inert.min.js IP172.67.170.3:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subjecthubiesoyler.life Fingerprint4F:43:E5:7F:CB:C3:34:00:24:96:FA:C0:11:70:1B:99:A5:B2:9A:8F ValidityTue, 16 Apr 2024 15:57:21 GMT - Mon, 15 Jul 2024 15:57:20 GMT
File typeJavaScript source, ASCII text, with very long lines (8171), with no line terminators Hashdda652db133fddb9b80a05c6d1b5c540 60c8514c57a5db2980c4b046b0dd479bd427357b c1a9a3e223bad631dff12d33b5499eb145cb08d8621c20d9d73870e78d97afe4
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /index_files/wp-polyfill-inert.min.js HTTP/1.1
Host: hubiesoyler.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Cookie: PHPSESSID=5fb17944a4ec0330df23ff3dfc4b78d2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 18:56:31 GMT
content-type: application/javascript
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sat, 04 May 2024 18:56:31 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AzXVXSVSNHRS8zc5u8QeRfOCCoC9ksdrQ8jaqZCr3IyBOQpC72s4Z0tvgbJP2fgfBEkK%2Fr8zOELpxFZimIgC11TR9KuFArCR%2BRbX7Vy6PBcmEUCKbMBPUoVk2bHGrCCo3G7%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eab6179cb65699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dnarynkow.pl/wp-content/uploads/2020/07/DNA-343-mini-www.jpg |  51.75.42.99 | 200 OK | 96 kB |
URL GET HTTP/2dnarynkow.pl/wp-content/uploads/2020/07/DNA-343-mini-www.jpg IP51.75.42.99:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerLet's Encrypt Subjectdnarynkow.pl Fingerprint0F:CE:A2:A9:A6:5B:53:78:4C:ED:7C:2C:26:F9:CD:C1:96:56:36:A3 ValiditySun, 28 Apr 2024 09:06:14 GMT - Sat, 27 Jul 2024 09:06:13 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x450, components 3 Hashffa21116e0d99b3d0d603e65576d0523 73c4442c208d03c0744fea797ca5ab14af921ef4 bd7cdd59d7fe9bddb35c341d008f724b0cbf069a97b13c655e38fd5970375a59
GET /wp-content/uploads/2020/07/DNA-343-mini-www.jpg HTTP/1.1
Host: dnarynkow.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 18:56:32 GMT
content-type: image/jpeg
content-length: 96387
last-modified: Fri, 13 Aug 2021 11:40:48 GMT
etag: "61165a40-17883"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__ru.js | 142.250.74.35 | 404 Not Found | 1.6 kB |
URL GET HTTP/2www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__ru.js IP142.250.74.35:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1136) Hash101b66a0ba279fa06cee4000f5a01614 5a7cce34f98eee488808f59be03f9c5a83715fd6 73efbf234efc68aef341924f9bb54aaa22741894c203d16a1820b5ee8533485d
GET /recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__ru.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hubiesoyler.life
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
date: Sat, 04 May 2024 18:56:33 GMT
content-type: text/html; charset=UTF-8
server: sffe
content-length: 1621
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| hubiesoyler.life/index_files/swiper.min.js | 172.67.170.3 | 200 OK | 36 kB |
URL GET HTTP/3hubiesoyler.life/index_files/swiper.min.js IP172.67.170.3:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subjecthubiesoyler.life Fingerprint4F:43:E5:7F:CB:C3:34:00:24:96:FA:C0:11:70:1B:99:A5:B2:9A:8F ValidityTue, 16 Apr 2024 15:57:21 GMT - Mon, 15 Jul 2024 15:57:20 GMT
File typeJavaScript source, ASCII text, with very long lines (65281) Hash4c8bfd0c56d228fdebb049644b330191 946713309eb5e2857cae15a066577328ee49f1c0 6404c2c4781c6da96a8b70311e6eec3e6c1b7ecde86787de1a60804550e65e28
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /index_files/swiper.min.js HTTP/1.1
Host: hubiesoyler.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Cookie: PHPSESSID=5fb17944a4ec0330df23ff3dfc4b78d2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 18:56:32 GMT
content-type: application/javascript
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sat, 04 May 2024 18:56:32 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pWDnrRZQFO7XSWvuWL%2B3CaRDbD2NqIV1cLpCCowC%2B%2Fl161PQNvZQsYvJUoQW86ad6W20v2HNq20ZF%2F3QhFYuZtnjz0po%2FVNQ1U6otTpK83snUqSWibZD2ZiWTQaTTob3BNR7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eab6178c9b5699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hubiesoyler.life/index_files/autoptimize_single_a53a916adf48efefd5a2aa0861ebbc07.js | 172.67.170.3 | 200 OK | 11 kB |
URL GET HTTP/3hubiesoyler.life/index_files/autoptimize_single_a53a916adf48efefd5a2aa0861ebbc07.js IP172.67.170.3:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subjecthubiesoyler.life Fingerprint4F:43:E5:7F:CB:C3:34:00:24:96:FA:C0:11:70:1B:99:A5:B2:9A:8F ValidityTue, 16 Apr 2024 15:57:21 GMT - Mon, 15 Jul 2024 15:57:20 GMT
File typeJavaScript source, ASCII text, with very long lines (11117), with no line terminators Hasha53a916adf48efefd5a2aa0861ebbc07 46acfa0be9dd623a7aa9bceb1344c152a8adc13b 9c1989ecd392a0c54fb799409154242706940a8e6d800542ba579dfda576bb9d
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /index_files/autoptimize_single_a53a916adf48efefd5a2aa0861ebbc07.js HTTP/1.1
Host: hubiesoyler.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Cookie: PHPSESSID=5fb17944a4ec0330df23ff3dfc4b78d2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 18:56:32 GMT
content-type: application/javascript
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sat, 04 May 2024 18:56:32 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1l%2F4qnwrRN62myj8NVEhfqPL1%2BUUwIE12b%2BefaASfwRd0zUBVIoHhE7dKIvFs4cBIL4kCt98sWXkEY3ws6w6SAF0hBNbAi9EXSIJZwUkMHxt%2B95Cvt5BklP9eV3na0mIrV2x"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eab6177c815699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hubiesoyler.life/index_files/autoptimize_single_92a77854e7be2f0cf4350123adf6e4d2.js | 172.67.170.3 | 200 OK | 5.9 kB |
URL GET HTTP/3hubiesoyler.life/index_files/autoptimize_single_92a77854e7be2f0cf4350123adf6e4d2.js IP172.67.170.3:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subjecthubiesoyler.life Fingerprint4F:43:E5:7F:CB:C3:34:00:24:96:FA:C0:11:70:1B:99:A5:B2:9A:8F ValidityTue, 16 Apr 2024 15:57:21 GMT - Mon, 15 Jul 2024 15:57:20 GMT
File typeJavaScript source, ASCII text, with very long lines (3242), with no line terminators Hash92a77854e7be2f0cf4350123adf6e4d2 8ac459501bf94deb660ddd844ac0b825f169b9ae 03d87f337bb68d971d9fdb8ed746c0ab6f4008e6060e63ed67057f444a05a6a6
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /index_files/autoptimize_single_92a77854e7be2f0cf4350123adf6e4d2.js HTTP/1.1
Host: hubiesoyler.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Cookie: PHPSESSID=5fb17944a4ec0330df23ff3dfc4b78d2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 18:56:33 GMT
content-type: application/javascript
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sat, 04 May 2024 18:56:32 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=53nkmzl8e4up3wYP45We5nGEhdShzT747S6jhKprPCdCPMcbfjbhGCKs2COLNSQRAhSHQy3XsLZc48sOa7Lqd%2FgBImjEe8fXZ58PBjbvYnr2xxMoJGPvk7ARAG0v9U5G1iZ5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eab6178c975699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| | 172.67.170.3 | 200 OK | 84 kB |
URL User Request GET HTTP/2IP172.67.170.3:443
CertificateIssuerGoogle Trust Services LLC Subjecthubiesoyler.life Fingerprint4F:43:E5:7F:CB:C3:34:00:24:96:FA:C0:11:70:1B:99:A5:B2:9A:8F ValidityTue, 16 Apr 2024 15:57:21 GMT - Mon, 15 Jul 2024 15:57:20 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (2108) Hash2f41e65bae816327e634e3e236713305 bba0b18435e799b7e75efa1d3311cb6d04480b0f cb9c628cea80145f6ccffb1fe84d566b88a4bfb0ca25caad2a5cd1a4f6fbecd3
| Analyzer | Verdict | Alert |
|---|
| Public Nextron YARA rules | malware | Code and strings of plugins from the Tetris framework loaded by Swid | | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: hubiesoyler.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 18:56:31 GMT
content-type: text/html; charset=UTF-8
cache-control: no-store, no-cache, must-revalidate
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
set-cookie: PHPSESSID=5fb17944a4ec0330df23ff3dfc4b78d2; path=/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lMX5lZS31tgbbsbNhc2uKjuQUiTAU7EUuLYRo5d5BYZeqVX4rNv2e%2FRPI0g9Jv3wYO6PW2a26Xwo0%2Bi8DVXfSHWSfi73EIXYfwaD5r1un8q215UcCHhffcrwslx3v2uUKTck"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eab6147a64b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E30-8s6Vostz0rdom9.woff2 | 216.58.207.227 | 200 OK | 8.9 kB |
URL GET HTTP/2fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E30-8s6Vostz0rdom9.woff2 IP216.58.207.227:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 8868, version 1.0 Hashcd0b1b9c31ae4c0c45e400dfb83e8fb8 2f7ccdbe65e79512906a1be94232083f1d86d486 0965935a9af5b97e5ff4801d940d211923a6544f99d845886715f6252ba299a1
GET /s/barlow/v12/7cHqv4kjgoGqM7E30-8s6Vostz0rdom9.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hubiesoyler.life
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8868
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:46:12 GMT
expires: Fri, 02 May 2025 02:46:12 GMT
cache-control: public, max-age=31536000
age: 231020
last-modified: Tue, 19 Apr 2022 19:02:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| hubiesoyler.life/index_files/style(1).css | 172.67.170.3 | 200 OK | 152 kB |
URL GET HTTP/3hubiesoyler.life/index_files/style(1).css IP172.67.170.3:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subjecthubiesoyler.life Fingerprint4F:43:E5:7F:CB:C3:34:00:24:96:FA:C0:11:70:1B:99:A5:B2:9A:8F ValidityTue, 16 Apr 2024 15:57:21 GMT - Mon, 15 Jul 2024 15:57:20 GMT
Size152 kB (151958 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /index_files/style(1).css HTTP/1.1
Host: hubiesoyler.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Cookie: PHPSESSID=5fb17944a4ec0330df23ff3dfc4b78d2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:56:31 GMT
content-type: text/css
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sat, 04 May 2024 18:56:31 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XgSoTV8gJpXAbQY0TLzdtxpJ80eIFUVJ2fs2VRcOyji%2FEMgPXKOeIIDZ9jYmXYeE12x%2FXKUJejewwqnJVr99vuvWt%2FFlC5aFwZeaIuv2MjeZ9U8ETArvkRc78lf%2FC74YEP0b"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eab6177c7a5699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hubiesoyler.life/index_files/autoptimize_single_e3317d55ad904d30ea400a2da2a56686.js | 172.67.170.3 | 200 OK | 4.9 kB |
URL GET HTTP/3hubiesoyler.life/index_files/autoptimize_single_e3317d55ad904d30ea400a2da2a56686.js IP172.67.170.3:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subjecthubiesoyler.life Fingerprint4F:43:E5:7F:CB:C3:34:00:24:96:FA:C0:11:70:1B:99:A5:B2:9A:8F ValidityTue, 16 Apr 2024 15:57:21 GMT - Mon, 15 Jul 2024 15:57:20 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (4948), with no line terminators Hash7c6d12be3c46535b9365ee1f222dfe0e 748316b90c4123d71f1df1b8a9598bfb12ed9b27 5c79e9dbe67a829a3cc1a9c31d65091006dc4fdf18b72aedfe8a2ec90a8dcba9
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /index_files/autoptimize_single_e3317d55ad904d30ea400a2da2a56686.js HTTP/1.1
Host: hubiesoyler.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Cookie: PHPSESSID=5fb17944a4ec0330df23ff3dfc4b78d2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:56:31 GMT
content-type: application/javascript
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sat, 04 May 2024 18:56:31 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1%2B%2FjkVzqFOL6HNkmOYHHRThL5Vzm0QaEVixdzFVQkzPGvdCuCVZt0NR9QzcDTcYTLw004n7sO6o7iC96t%2Finhv%2Bm%2BvpC7H5tLGsy326HU3LxgI2rBquaHWP3MW44G42qG9ay"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eab6177c805699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hubiesoyler.life/index_files/wpdiscuz-combo.min.js | 172.67.170.3 | 200 OK | 315 kB |
URL GET HTTP/3hubiesoyler.life/index_files/wpdiscuz-combo.min.js IP172.67.170.3:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subjecthubiesoyler.life Fingerprint4F:43:E5:7F:CB:C3:34:00:24:96:FA:C0:11:70:1B:99:A5:B2:9A:8F ValidityTue, 16 Apr 2024 15:57:21 GMT - Mon, 15 Jul 2024 15:57:20 GMT
File typeJavaScript source, ASCII text, with very long lines (62916), with CRLF line terminators Size315 kB (314963 bytes) Hash4d9aeb39a049d8928e7e1c757bb0e8bc 7755470095bbb06a3fa688281f6d671923b78a9f 7bb6ae9eb40b95d99166b29f8b9831cbcc9836cb59257a1c9c2135dfedda5137
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /index_files/wpdiscuz-combo.min.js HTTP/1.1
Host: hubiesoyler.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Cookie: PHPSESSID=5fb17944a4ec0330df23ff3dfc4b78d2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:56:32 GMT
content-type: application/javascript
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sat, 04 May 2024 18:56:32 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BOdwPc1XFxWler7kbVMCBjRRuashM0J%2BwsohVuawijDAdErZFFUukoJN0kMCuUo9NME0qygcTn2BTqplNciqMwN8h2NUUfEvbG3IHnzS3j9Aq5AXSfutCAkB%2FmtccBHIUOgU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eab6178c9a5699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hubiesoyler.life/index_files/navigation.min.js | 172.67.170.3 | 200 OK | 3.0 kB |
URL GET HTTP/3hubiesoyler.life/index_files/navigation.min.js IP172.67.170.3:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subjecthubiesoyler.life Fingerprint4F:43:E5:7F:CB:C3:34:00:24:96:FA:C0:11:70:1B:99:A5:B2:9A:8F ValidityTue, 16 Apr 2024 15:57:21 GMT - Mon, 15 Jul 2024 15:57:20 GMT
File typeASCII text, with very long lines (3129), with no line terminators Hash91c5d25cc4b2b0c6ff4c17ef6cbd6956 514a18fcd07fcd593562383ad23ec4755fb50496 4d29302f60c873101b91fc9fdc65d6c8e1ccfb0a7fb14756d7620f982a46710b
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /index_files/navigation.min.js HTTP/1.1
Host: hubiesoyler.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Cookie: PHPSESSID=5fb17944a4ec0330df23ff3dfc4b78d2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:56:32 GMT
content-type: application/javascript
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sat, 04 May 2024 18:56:31 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WhfaDsCi8v5ETCxuFpzIx7Kdn65uQwkbm1EysgkKvu6TunSKmKPUI4bPucMUVfzm82OeLdyK4rqH8QJ08bCZITikZmjrpcDmQZ9K9Lh8OZBTpZa%2BkibUKt640O9R9RZAHFKA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eab6178ca45699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hubiesoyler.life/index_files/footer.min.js | 172.67.170.3 | 200 OK | 746 B |
URL GET HTTP/3hubiesoyler.life/index_files/footer.min.js IP172.67.170.3:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subjecthubiesoyler.life Fingerprint4F:43:E5:7F:CB:C3:34:00:24:96:FA:C0:11:70:1B:99:A5:B2:9A:8F ValidityTue, 16 Apr 2024 15:57:21 GMT - Mon, 15 Jul 2024 15:57:20 GMT
File typeASCII text, with very long lines (766), with no line terminators Hash44f1b0345fb3ac8237e060ea81c68c99 15c589b4c4d1124208f6630f9dee776c5b0805ad e5ee0d5f0f941539280a1b2a0398273cd4cc7e382659f53753916a00fc378243
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /index_files/footer.min.js HTTP/1.1
Host: hubiesoyler.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Cookie: PHPSESSID=5fb17944a4ec0330df23ff3dfc4b78d2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:56:32 GMT
content-type: application/javascript
etag: W/"6570b23a-2ea"
last-modified: Wed, 06 Dec 2023 17:41:14 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nFv8OH%2FGIrRN0h5u5x%2FT2hKkhouj%2BqZfDFOmFFoh2q1TCbt%2FBkeGpj2YrT8w6ITJdlb0%2FVX%2BsAYbY%2BrNst8egBmoLmp%2FID0yw%2BzCuEpUoJTVFfv%2FDCusDNJAM77qDm11tVnV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eab6179cc85699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hubiesoyler.life/index_files/regenerator-runtime.min.js | 172.67.170.3 | 200 OK | 6.6 kB |
URL GET HTTP/3hubiesoyler.life/index_files/regenerator-runtime.min.js IP172.67.170.3:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subjecthubiesoyler.life Fingerprint4F:43:E5:7F:CB:C3:34:00:24:96:FA:C0:11:70:1B:99:A5:B2:9A:8F ValidityTue, 16 Apr 2024 15:57:21 GMT - Mon, 15 Jul 2024 15:57:20 GMT
File typeJavaScript source, ASCII text, with very long lines (6799), with no line terminators Hashccaa7ba23a1f74bc12d091b65b515c4f 26b795b942f321ee8237178a1fcc16f1cee5a99e daceae61a869247d42436998814874e2698dc5f4789c65cd9bad98da52276db1
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /index_files/regenerator-runtime.min.js HTTP/1.1
Host: hubiesoyler.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Cookie: PHPSESSID=5fb17944a4ec0330df23ff3dfc4b78d2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:56:32 GMT
content-type: application/javascript
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sat, 04 May 2024 18:56:32 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HlelOiGbOe9sbcWc4I8faJHk0swaSUTB%2Fm94VYYC1M96NHBe4n9uWMi4%2BErxinqvlXUu0UvGqFKUCwytDNHEaNgXmKM366%2BjhhMk%2Fo2AtlwvlWasGNJBj0EXjhb%2FDHK8dIGe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eab6179cba5699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hubiesoyler.life/index_files/autoptimize_single_7a1b2ad7b6cbeb3a0a2c86a7928eaf07.js | 172.67.170.3 | 200 OK | 23 kB |
URL GET HTTP/3hubiesoyler.life/index_files/autoptimize_single_7a1b2ad7b6cbeb3a0a2c86a7928eaf07.js IP172.67.170.3:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subjecthubiesoyler.life Fingerprint4F:43:E5:7F:CB:C3:34:00:24:96:FA:C0:11:70:1B:99:A5:B2:9A:8F ValidityTue, 16 Apr 2024 15:57:21 GMT - Mon, 15 Jul 2024 15:57:20 GMT
File typeJavaScript source, ASCII text, with very long lines (12195) Hashadbffe969fde3751da7e2e84c42b36ab 7239d59c213d1ed2260f6bea3cd5b9e87af1047e 7c807e7447aa84b97246576f719765b8010c99216a39063a4e393ca4c91de66a
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /index_files/autoptimize_single_7a1b2ad7b6cbeb3a0a2c86a7928eaf07.js HTTP/1.1
Host: hubiesoyler.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Cookie: PHPSESSID=5fb17944a4ec0330df23ff3dfc4b78d2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:56:31 GMT
content-type: application/javascript
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sat, 04 May 2024 18:56:31 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wJQVqCwMCakZKlD1M39riWWUl2MoIkTykde871%2FSf76WlGdaap9%2BglJP9j2jaCCZbTYDiZSukhCNPge8mCMOaajeqyY0YKNjtOfLYk%2FjeaOCveGk%2Fwuhj9sKS3FIreYInQFv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eab6178c875699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hubiesoyler.life/favicon.ico | 172.67.170.3 | 404 Not Found | 146 B |
URL GET HTTP/3hubiesoyler.life/favicon.ico IP172.67.170.3:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subjecthubiesoyler.life Fingerprint4F:43:E5:7F:CB:C3:34:00:24:96:FA:C0:11:70:1B:99:A5:B2:9A:8F ValidityTue, 16 Apr 2024 15:57:21 GMT - Mon, 15 Jul 2024 15:57:20 GMT
File typeHTML document, ASCII text, with no line terminators Hash40b3fc14254227ec5012d996bf90c4e1 b0dd06eb5a779151151101337889ff09953f8ac0 740816c1b61e4a8443c26d30d3eecfea04815fca8cd605a142f9d8a35f86ceca
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: hubiesoyler.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Cookie: PHPSESSID=5fb17944a4ec0330df23ff3dfc4b78d2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Sat, 04 May 2024 18:56:33 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rQiTnRX55sk2krsjr5RPhOrNij4UNTJYj7lg%2Bvg9DP20Ek1zKa8CmSnij10Pk0ChOUQRLox3DGDuvR2lR2VhCApjcU3UDVU9kBNOirNFQV77XdhcZsWZacUYhZxUrj8KHZDX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eab61f39185699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hubiesoyler.life/index_files/skip-link-focus-fix.min.js | 172.67.170.3 | 200 OK | 447 B |
URL GET HTTP/3hubiesoyler.life/index_files/skip-link-focus-fix.min.js IP172.67.170.3:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subjecthubiesoyler.life Fingerprint4F:43:E5:7F:CB:C3:34:00:24:96:FA:C0:11:70:1B:99:A5:B2:9A:8F ValidityTue, 16 Apr 2024 15:57:21 GMT - Mon, 15 Jul 2024 15:57:20 GMT
File typeASCII text, with very long lines (455), with no line terminators Hash3690a027782c6e11eb77be80e33cdb83 c95116cf8542f56de0e87ad29cd633649560c054 b551fa9e68c9e176101bbf375ea394a7c4f6ad99b9960481655cfa7d5c893e5f
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /index_files/skip-link-focus-fix.min.js HTTP/1.1
Host: hubiesoyler.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Cookie: PHPSESSID=5fb17944a4ec0330df23ff3dfc4b78d2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:56:32 GMT
content-type: application/javascript
etag: W/"6570b23a-1bf"
last-modified: Wed, 06 Dec 2023 17:41:14 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=L1Aqgj1qemcDP7km9WokBGjrC853OIbiGfcX9xKlfNe6%2FXsrL%2FGY8XHsS0OM0%2BHlt7UWytN7gJRr3J52pZXCJ6uAXZyW28T6yW4eyKONCbEDXjuPig2vyA0dih0ufFoZbZVk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eab6178ca65699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hubiesoyler.life/index_files/pep.min.js | 172.67.170.3 | 200 OK | 18 kB |
URL GET HTTP/3hubiesoyler.life/index_files/pep.min.js IP172.67.170.3:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subjecthubiesoyler.life Fingerprint4F:43:E5:7F:CB:C3:34:00:24:96:FA:C0:11:70:1B:99:A5:B2:9A:8F ValidityTue, 16 Apr 2024 15:57:21 GMT - Mon, 15 Jul 2024 15:57:20 GMT
File typeJavaScript source, ASCII text, with very long lines (17954) Hash17e609c1a0e26d6a24eb600ff4925de1 c0e7e2cde57cb587aa6ee37ee745fb5aadb0c86c d952e41a5ec72320f1e8660af9dc65a2a043467bc5a8d57b69422e740cc0b8b9
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /index_files/pep.min.js HTTP/1.1
Host: hubiesoyler.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Cookie: PHPSESSID=5fb17944a4ec0330df23ff3dfc4b78d2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:56:31 GMT
content-type: application/javascript
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sat, 04 May 2024 18:56:31 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=s7uLxKoMeQNmd8qcoWNCFdp1J2VxohsWzgjCs5hRc%2BcoDDfwNPwcKsZ3Spwc%2BpiDhFSgKM%2B5m1XBDoov9E2xHR5ym46HXgAaDG7%2F4BXbbriQGxvTAittvcVaXdS1hqxdcvTd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eab6178cae5699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hubiesoyler.life/index_files/autoptimize_single_ec0187677793456f98473f49d9e9b95f.js | 172.67.170.3 | 200 OK | 934 B |
URL GET HTTP/3hubiesoyler.life/index_files/autoptimize_single_ec0187677793456f98473f49d9e9b95f.js IP172.67.170.3:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subjecthubiesoyler.life Fingerprint4F:43:E5:7F:CB:C3:34:00:24:96:FA:C0:11:70:1B:99:A5:B2:9A:8F ValidityTue, 16 Apr 2024 15:57:21 GMT - Mon, 15 Jul 2024 15:57:20 GMT
File typeASCII text, with very long lines (952), with no line terminators Hasheb86d6ee40ff8f59e9aee0f33a01c49b 21ae101a9bea4243db19b29a61c8f31870bd90d3 df8e2b764d3a5820627caf1cfee219732dc3a12fc724149658d9f3a1d0e7d101
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /index_files/autoptimize_single_ec0187677793456f98473f49d9e9b95f.js HTTP/1.1
Host: hubiesoyler.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Cookie: PHPSESSID=5fb17944a4ec0330df23ff3dfc4b78d2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:56:32 GMT
content-type: application/javascript
etag: W/"6570b23a-3a6"
last-modified: Wed, 06 Dec 2023 17:41:14 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Xe8ORV6ltJsfYQrcSUhw2FKO7VFWJiLrR5LhpBp8CTuzu%2B5IRHMXeQtpdqlEZmxM5JH%2BYJjYK0GnO6KrhQNk0j%2F4%2F0cJ99LverYZl77ZshSOUsFO8t5NkO%2F03cuypW4Y4VGv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eab6179cc05699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hubiesoyler.life/index_files/autoptimize_single_83a062cf6545b990c13b4398035a29d0.js | 172.67.170.3 | 200 OK | 13 kB |
URL GET HTTP/3hubiesoyler.life/index_files/autoptimize_single_83a062cf6545b990c13b4398035a29d0.js IP172.67.170.3:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subjecthubiesoyler.life Fingerprint4F:43:E5:7F:CB:C3:34:00:24:96:FA:C0:11:70:1B:99:A5:B2:9A:8F ValidityTue, 16 Apr 2024 15:57:21 GMT - Mon, 15 Jul 2024 15:57:20 GMT
File typeJavaScript source, ASCII text, with very long lines (13182), with no line terminators Hash83a062cf6545b990c13b4398035a29d0 5cf24bc45fcbc6f416ea9671e089ca00ef0080d2 7ee08c60d39f5712a56938fda3e2ab10fe3ef23ec98aeb3c9a29e54f6f31ffe1
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /index_files/autoptimize_single_83a062cf6545b990c13b4398035a29d0.js HTTP/1.1
Host: hubiesoyler.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Cookie: PHPSESSID=5fb17944a4ec0330df23ff3dfc4b78d2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:56:32 GMT
content-type: application/javascript
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sat, 04 May 2024 18:56:32 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5KtrrBfYIAWE28PmzMQbb%2FWtfCpCJnXQeSDO%2B5mCd3VKGe8Pd%2Bhg2tCb3SOhbCvMOKZGdjWnUJ7bRi33um9SSpD5Im1VPFh6lCBrWg%2BKRiS%2FLR%2BR6nrTZzO%2BivjnRLMmizE6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eab6178c845699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hubiesoyler.life/index_files/autoptimize_single_956a1cbe59829a1b9ba6fdbb13f1c102.js | 172.67.170.3 | 200 OK | 7.8 kB |
URL GET HTTP/3hubiesoyler.life/index_files/autoptimize_single_956a1cbe59829a1b9ba6fdbb13f1c102.js IP172.67.170.3:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subjecthubiesoyler.life Fingerprint4F:43:E5:7F:CB:C3:34:00:24:96:FA:C0:11:70:1B:99:A5:B2:9A:8F ValidityTue, 16 Apr 2024 15:57:21 GMT - Mon, 15 Jul 2024 15:57:20 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (7804), with no line terminators Hashcc07b457b76b786ec251b88feaf717e8 8c4e108506f84d8e4f206be2fa2c077d054024fb 65268230a7b3d99022e81f64f98b0b99f385acdeb9d0846bfce389d60a0ad6bb
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /index_files/autoptimize_single_956a1cbe59829a1b9ba6fdbb13f1c102.js HTTP/1.1
Host: hubiesoyler.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Cookie: PHPSESSID=5fb17944a4ec0330df23ff3dfc4b78d2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:56:31 GMT
content-type: application/javascript
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sat, 04 May 2024 18:56:31 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WAyQxi%2F5X4y4Uj2FxY%2F1ASPlXu5Ec%2FX8c9LN6X24k4InTjNcSG2JkkoJ2cVcAwSpsbUyFcppJDcDTDeDD3xuNiIv6mgZiSMe6orCqtbPjCtIQ0i8uuYbetZ243F8Y%2B5mXAAq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eab6178c9f5699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hubiesoyler.life/index_files/autoptimize_single_256e4c831d031030eaf2fcaf546dfcec.js | 172.67.170.3 | 200 OK | 773 B |
URL GET HTTP/3hubiesoyler.life/index_files/autoptimize_single_256e4c831d031030eaf2fcaf546dfcec.js IP172.67.170.3:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subjecthubiesoyler.life Fingerprint4F:43:E5:7F:CB:C3:34:00:24:96:FA:C0:11:70:1B:99:A5:B2:9A:8F ValidityTue, 16 Apr 2024 15:57:21 GMT - Mon, 15 Jul 2024 15:57:20 GMT
File typeJavaScript source, ASCII text, with very long lines (791), with no line terminators Hashe8e91c056d4254a7166abb6afbcde9d7 9610f6ef396835efb31e54fd5c8d3ca8139a1e5d 65050ef803119399b18ad444b97b002c6fc6a73a5da6f76500c7ec06260e7f7d
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /index_files/autoptimize_single_256e4c831d031030eaf2fcaf546dfcec.js HTTP/1.1
Host: hubiesoyler.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Cookie: PHPSESSID=5fb17944a4ec0330df23ff3dfc4b78d2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:56:32 GMT
content-type: application/javascript
etag: W/"6570b23a-305"
last-modified: Wed, 06 Dec 2023 17:41:14 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lpzJr61HTZ5DC1dETJzpsRWEfR99t%2FKYNzv6P4tu5LDMDF%2F7bJ%2BfUFWZvFBFyRHQ0X%2Br%2BwWvRRQB8sceXzeKff2UAhZZb%2Bmyz8v6RNbeITg3FFL9vkqm6e4aS3xB1BQrd5kG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eab6178ca15699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hubiesoyler.life/index_files/iziModal.min.js | 172.67.170.3 | 200 OK | 26 kB |
URL GET HTTP/3hubiesoyler.life/index_files/iziModal.min.js IP172.67.170.3:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subjecthubiesoyler.life Fingerprint4F:43:E5:7F:CB:C3:34:00:24:96:FA:C0:11:70:1B:99:A5:B2:9A:8F ValidityTue, 16 Apr 2024 15:57:21 GMT - Mon, 15 Jul 2024 15:57:20 GMT
File typeJavaScript source, ASCII text, with very long lines (26183), with CRLF line terminators Hash78dd28862bc4ed3587455c8094286e94 76df34a97f6002efdf0cdcf3d9e976da843d17c2 7d9cb15c912bb80237603bdce7a565d9673294fa299190960f860537547b0700
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /index_files/iziModal.min.js HTTP/1.1
Host: hubiesoyler.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Cookie: PHPSESSID=5fb17944a4ec0330df23ff3dfc4b78d2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:56:32 GMT
content-type: application/javascript
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sat, 04 May 2024 18:56:32 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B%2Bruc%2F8sc%2FVXE41G52sireBnfEgSvlnIWU6NYrbM2nuxHk1FuItuoD0%2FlqC%2FTSONy2yU7324X%2Bk4%2F6dDltCSTm40FrJf8ehRaWZ9CmzTmNvZC3SuO%2FNWrdrm1apUuLsyvYu9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eab6179ccd5699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dnarynkow.pl/wp-content/uploads/complianz/css/banner-1-optin.css?v=16 | 51.75.42.99 | 200 OK | 15 kB |
URL GET HTTP/2dnarynkow.pl/wp-content/uploads/complianz/css/banner-1-optin.css?v=16 IP51.75.42.99:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerLet's Encrypt Subjectdnarynkow.pl Fingerprint0F:CE:A2:A9:A6:5B:53:78:4C:ED:7C:2C:26:F9:CD:C1:96:56:36:A3 ValiditySun, 28 Apr 2024 09:06:14 GMT - Sat, 27 Jul 2024 09:06:13 GMT
File typeASCII text, with very long lines (15285), with no line terminators Hashfca509b1cc9276844ba8a463f53016fb 8390b283b16a9de17bab6ff8e0857fbd8a56bff5 560af39cf7f734a724d205e591ed2e2229c2b248dc73b8515b17256815afbfcb
GET /wp-content/uploads/complianz/css/banner-1-optin.css?v=16 HTTP/1.1
Host: dnarynkow.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 18:56:33 GMT
content-type: text/css
last-modified: Mon, 06 Mar 2023 07:01:36 GMT
etag: W/"64058fd0-3bb5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| hubiesoyler.life/index_files/iziModal.min.css | 172.67.170.3 | 200 OK | 86 kB |
URL GET HTTP/3hubiesoyler.life/index_files/iziModal.min.css IP172.67.170.3:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subjecthubiesoyler.life Fingerprint4F:43:E5:7F:CB:C3:34:00:24:96:FA:C0:11:70:1B:99:A5:B2:9A:8F ValidityTue, 16 Apr 2024 15:57:21 GMT - Mon, 15 Jul 2024 15:57:20 GMT
File typeASCII text, with very long lines (65467), with CRLF line terminators Hashce13839e5d792103d5f97dc8687fb3ac b116f28f73a95204d42a92de0f7a020bd2f3750e 5a54b1ab4186830b6378172a60da4e8fbde7112e1662b84af8b1c89f4c0570a1
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /index_files/iziModal.min.css HTTP/1.1
Host: hubiesoyler.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Cookie: PHPSESSID=5fb17944a4ec0330df23ff3dfc4b78d2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:56:31 GMT
content-type: text/css
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sat, 04 May 2024 18:56:31 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=conVQn3uI%2BWyoofF%2BGbW4L%2Bv49Rrwc32%2FyLd0r4NyeY23pfBXN3nqEOUjfALg6ieFu43DccyW%2Ft0zasCCSkwsHLXUl9zeth3ZNro0NbXfcdxVFQoKkCdyK7BXLxJ%2BmQgoUTE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eab6177c7d5699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E30-8s51ostz0rdg.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E30-8s51ostz0rdg.woff2 IP216.58.207.227:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 14852, version 1.0 Hash96bae7b3e3968ac6352819fe91140292 9779e1f62f998aa5f4f19abd4764d6fc9db6bcef e56ce2a603fdf25710a1293732913a8bcf08133b741c987373863c0b54109d94
GET /s/barlow/v12/7cHqv4kjgoGqM7E30-8s51ostz0rdg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hubiesoyler.life
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14852
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 15:16:36 GMT
expires: Fri, 02 May 2025 15:16:36 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 19:02:36 GMT
content-type: font/woff2
age: 185996
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| hubiesoyler.life/index_files/api.js | 172.67.170.3 | 200 OK | 1.3 kB |
URL GET HTTP/3hubiesoyler.life/index_files/api.js IP172.67.170.3:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subjecthubiesoyler.life Fingerprint4F:43:E5:7F:CB:C3:34:00:24:96:FA:C0:11:70:1B:99:A5:B2:9A:8F ValidityTue, 16 Apr 2024 15:57:21 GMT - Mon, 15 Jul 2024 15:57:20 GMT
File typeJavaScript source, ASCII text, with very long lines (1256), with no line terminators Hash9a52d1f9c9924c12f502ed78d108b7d2 c87bd9b593b2b2f752a7ef3a021d4e21c381342d 4c46075cba59f6621a46319caf2703c2f70f969294f50c2a7faf0afa0273fca0
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /index_files/api.js HTTP/1.1
Host: hubiesoyler.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Cookie: PHPSESSID=5fb17944a4ec0330df23ff3dfc4b78d2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:56:32 GMT
content-type: application/javascript
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sat, 04 May 2024 18:56:32 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IehRY%2FKVOHQrVcdOM4DB6lurHIk0XbkauzCrIKQ2qR9jjEvyseoF4dh4AVn9bDP0brtJ6uEIGg8EAMwyIVyAXsObRrAXC%2FKWzdNCjt5R%2F3prLrmqObgbZU%2FROKmTeQCAA5Xg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eab6179cb45699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hubiesoyler.life/index_files/complianz.min.js | 172.67.170.3 | 200 OK | 41 kB |
URL GET HTTP/3hubiesoyler.life/index_files/complianz.min.js IP172.67.170.3:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subjecthubiesoyler.life Fingerprint4F:43:E5:7F:CB:C3:34:00:24:96:FA:C0:11:70:1B:99:A5:B2:9A:8F ValidityTue, 16 Apr 2024 15:57:21 GMT - Mon, 15 Jul 2024 15:57:20 GMT
File typeJavaScript source, ASCII text, with very long lines (40798), with no line terminators Hash846151606f99803ccd0437c41d9bafb2 425b373a644543d69f441f9c07107b165abf657d cdbe380b70423863a1d46b2cb49d1627a28efd29f2d7d7052e8a90ad61d1569a
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /index_files/complianz.min.js HTTP/1.1
Host: hubiesoyler.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Cookie: PHPSESSID=5fb17944a4ec0330df23ff3dfc4b78d2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:56:32 GMT
content-type: application/javascript
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sat, 04 May 2024 18:56:32 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jkIc7WWVQNiEWn2msGA9H%2BmMUNCfik0uNFopFOkmWWOp53A5U57x9%2BaYGG8I8ivTSqyEPpaFgIzH6q%2FTqYS1DRYcUdeTFxkx0CYDisnYB889xvx3q8VFUKJVeTnmbsNMWTgS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eab6179ccb5699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hubiesoyler.life/index_files/jquery.fancybox.min.js | 172.67.170.3 | 200 OK | 68 kB |
URL GET HTTP/3hubiesoyler.life/index_files/jquery.fancybox.min.js IP172.67.170.3:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subjecthubiesoyler.life Fingerprint4F:43:E5:7F:CB:C3:34:00:24:96:FA:C0:11:70:1B:99:A5:B2:9A:8F ValidityTue, 16 Apr 2024 15:57:21 GMT - Mon, 15 Jul 2024 15:57:20 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /index_files/jquery.fancybox.min.js HTTP/1.1
Host: hubiesoyler.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Cookie: PHPSESSID=5fb17944a4ec0330df23ff3dfc4b78d2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:56:32 GMT
content-type: application/javascript
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sat, 04 May 2024 18:56:32 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=584cRSBQpssSkP0dZ3iRbKEpf2UrtaGRjSKnFmUvNgYzdyPbjeW%2BnWKzGP%2F8JlrnTqB7kbl9P%2FTI%2FLMfv1CFOWKUKSqaWMDhorsSRWcJ2dK06I32l04tAyuhcDR4QdTbjCvB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eab6178c9e5699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hubiesoyler.life/index_files/comment-reply.min.js | 172.67.170.3 | 200 OK | 3.0 kB |
URL GET HTTP/3hubiesoyler.life/index_files/comment-reply.min.js IP172.67.170.3:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subjecthubiesoyler.life Fingerprint4F:43:E5:7F:CB:C3:34:00:24:96:FA:C0:11:70:1B:99:A5:B2:9A:8F ValidityTue, 16 Apr 2024 15:57:21 GMT - Mon, 15 Jul 2024 15:57:20 GMT
File typeASCII text, with very long lines (3056), with no line terminators Hashdc7f90d513295c29acc441fe114a2cab ca9e5069d9afc4aa13ab2e152313dfb476e842ef f87915c58d8c25473c726646b58d2fe0ba9a136987571e6c810aba3c67b4f74c
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /index_files/comment-reply.min.js HTTP/1.1
Host: hubiesoyler.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Cookie: PHPSESSID=5fb17944a4ec0330df23ff3dfc4b78d2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:56:31 GMT
content-type: application/javascript
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sat, 04 May 2024 18:56:31 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bl6ULe4pgQPffb7VfP9EKfh3Pv0k8OKS2WCwnN82nCXBZc%2F5o9vkNEQNENhFj1iMp%2B3LQ5e%2FLSpVUyfNVbqLE3qsdlW2a%2Ff976A9Yq5tX4Gx0jZZOyd6InHDSG0W1VvsHSCM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eab6178ca95699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hubiesoyler.life/index_files/header-cart.min.js | 172.67.170.3 | 200 OK | 531 B |
URL GET HTTP/3hubiesoyler.life/index_files/header-cart.min.js IP172.67.170.3:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subjecthubiesoyler.life Fingerprint4F:43:E5:7F:CB:C3:34:00:24:96:FA:C0:11:70:1B:99:A5:B2:9A:8F ValidityTue, 16 Apr 2024 15:57:21 GMT - Mon, 15 Jul 2024 15:57:20 GMT
File typeASCII text, with very long lines (551), with no line terminators Hash87cd46442bf8719de90e973897160b2c 292fa63f2921418db35662e50fc0e69f8d22f466 79084cda047c45aacbcd9f3e4e62b5513861cbb3811fb37477a527f59ce180fd
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /index_files/header-cart.min.js HTTP/1.1
Host: hubiesoyler.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Cookie: PHPSESSID=5fb17944a4ec0330df23ff3dfc4b78d2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:56:32 GMT
content-type: application/javascript
etag: W/"6570b23a-213"
last-modified: Wed, 06 Dec 2023 17:41:14 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WdmWJsIs1BGDmWIJvBNAOQlE4DjizXF4xzyGGnWPMX3sim8eDwZbOp%2F2JfmCk1z4XLJZO%2BFyBxncexwbTDqVtY7twler%2FWLOrsujl1bhPhcU6J6eI%2BArbPBgEWYssw5547Zh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eab6179cc45699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/barlow/v12/7cHpv4kjgoGqM7E_Ass5ynghnQci.woff2 | 216.58.207.227 | 200 OK | 8.7 kB |
URL GET HTTP/2fonts.gstatic.com/s/barlow/v12/7cHpv4kjgoGqM7E_Ass5ynghnQci.woff2 IP216.58.207.227:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 8680, version 1.0 Hashab395397a9e8090889f607b2e0c4e02e 41d4f47f8cba34e08817d2a14d7788f318eb1164 9dbec428d41b8778d42e265394be2ceeb8f240265aa5c82d85f1660126331d1b
GET /s/barlow/v12/7cHpv4kjgoGqM7E_Ass5ynghnQci.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hubiesoyler.life
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8680
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:58:34 GMT
expires: Fri, 02 May 2025 02:58:34 GMT
cache-control: public, max-age=31536000
age: 230278
last-modified: Tue, 19 Apr 2022 19:13:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| hubiesoyler.life/index_files/style.css | 172.67.170.3 | 200 OK | 58 kB |
URL GET HTTP/3hubiesoyler.life/index_files/style.css IP172.67.170.3:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subjecthubiesoyler.life Fingerprint4F:43:E5:7F:CB:C3:34:00:24:96:FA:C0:11:70:1B:99:A5:B2:9A:8F ValidityTue, 16 Apr 2024 15:57:21 GMT - Mon, 15 Jul 2024 15:57:20 GMT
File typeASCII text, with very long lines (535) Hashd5252402ce2aa357118e007f8b5152ae 0efd1ddb466db8e1ed67f8753542ad4b4b4a1cfb f26b3a3fd46f82c69e6ada484d33a6d33cdee665607da01cfea31509e5a28772
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /index_files/style.css HTTP/1.1
Host: hubiesoyler.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Cookie: PHPSESSID=5fb17944a4ec0330df23ff3dfc4b78d2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:56:31 GMT
content-type: text/css
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sat, 04 May 2024 18:56:31 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kyNR1nAY5kH3lweCUsJg6LPEkKAQsgLcP8TtD5vh05c4SsH6rOR2J0ocv9rqksDomFbuYtq%2FBmKuM6rusMkFTz0h0cjfandxU%2Bb02YEJqLkG2of4Pip4e%2BZApmLmL2Qhy9Un"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eab6177c785699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hubiesoyler.life/index_files/cvpro.min.js | 172.67.170.3 | 200 OK | 162 kB |
URL GET HTTP/3hubiesoyler.life/index_files/cvpro.min.js IP172.67.170.3:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subjecthubiesoyler.life Fingerprint4F:43:E5:7F:CB:C3:34:00:24:96:FA:C0:11:70:1B:99:A5:B2:9A:8F ValidityTue, 16 Apr 2024 15:57:21 GMT - Mon, 15 Jul 2024 15:57:20 GMT
Size162 kB (162353 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /index_files/cvpro.min.js HTTP/1.1
Host: hubiesoyler.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Cookie: PHPSESSID=5fb17944a4ec0330df23ff3dfc4b78d2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:56:32 GMT
content-type: application/javascript
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sat, 04 May 2024 18:56:31 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FdQ8jEk2%2BlYrlMndWDbNjMFyAxdo3xQURjrsmX8MSfaGEmt5EhE%2BuMmFgLXvRLl7gI15F%2FZ%2BnMa9%2FJtIMRZstPOMkera6ycWG9Ywn1xZYouZYh5OknqnWbK1tpLnKdyBor2g"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eab6178c8f5699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hubiesoyler.life/index_files/wp-polyfill.min.js | 172.67.170.3 | 200 OK | 115 kB |
URL GET HTTP/3hubiesoyler.life/index_files/wp-polyfill.min.js IP172.67.170.3:443
Requested byhttps://hubiesoyler.life/ CertificateIssuerGoogle Trust Services LLC Subjecthubiesoyler.life Fingerprint4F:43:E5:7F:CB:C3:34:00:24:96:FA:C0:11:70:1B:99:A5:B2:9A:8F ValidityTue, 16 Apr 2024 15:57:21 GMT - Mon, 15 Jul 2024 15:57:20 GMT
Size115 kB (115127 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /index_files/wp-polyfill.min.js HTTP/1.1
Host: hubiesoyler.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hubiesoyler.life/
Cookie: PHPSESSID=5fb17944a4ec0330df23ff3dfc4b78d2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:56:32 GMT
content-type: application/javascript
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sat, 04 May 2024 18:56:31 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OsXgNbJXPlj3C1NORRWkJp4J0CWwCkqtJDwZAyTIgXkNlzj4F7HgoV8kDBz%2FWSpudcycQNZYqRLmyTxO4C%2BgXQ2uVt64MwDXNkOLsEZ5b4WhT3%2FLEcDYKhxCrQ4FVIiccgX%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eab6179cbc5699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
0.0.0.0