| oih8vkkz5jocg4.xyz/static/20240503173139/js/index.js | 104.21.12.227 | 200 OK | 19 kB |
URL GET HTTP/3oih8vkkz5jocg4.xyz/static/20240503173139/js/index.js IP104.21.12.227:443
Requested byhttps://oih8vkkz5jocg4.xyz/ CertificateIssuerLet's Encrypt Subjectoih8vkkz5jocg4.xyz Fingerprint1C:B1:02:3B:A4:85:8C:1E:37:D7:C2:9E:94:F2:04:FF:24:AD:6B:3E ValiditySat, 04 May 2024 06:52:27 GMT - Fri, 02 Aug 2024 06:52:26 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (31519), with no line terminators Hash6aa8f0861b9e4f7321a6e196c81b7472 c43b68dc6d893bde1d2e1ea88c5e0bdb2f9c173b cbd4ff499290d0b5effb5b1795c81c7fc3ff65f66c251a73cf0cdac70ccd7f63
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/20240503173139/js/index.js HTTP/1.1
Host: oih8vkkz5jocg4.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://oih8vkkz5jocg4.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 05 May 2024 22:45:26 GMT
content-type: application/javascript
last-modified: Fri, 03 May 2024 09:33:52 GMT
etag: W/"6634af80-7b2b"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MQeKuTln7cqRYz0rfcBJVsVBv9VzXeKSIqG7KYbFEbY%2Bimo4KIxMDRA2yQsRkZyIVfqg4OyjRDTAzOsFaFdl6DHzcqTZ60dqEjKbPOLYIdR0%2BhQuG8wQNq1B2EkpFvU0EqNbUSo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87f442c2ed9f56c5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| oih8vkkz5jocg4.xyz/static/20240503173139/css/chunk-vendors.css | 104.21.12.227 | 200 OK | 187 kB |
URL GET HTTP/3oih8vkkz5jocg4.xyz/static/20240503173139/css/chunk-vendors.css IP104.21.12.227:443
Requested byhttps://oih8vkkz5jocg4.xyz/ CertificateIssuerLet's Encrypt Subjectoih8vkkz5jocg4.xyz Fingerprint1C:B1:02:3B:A4:85:8C:1E:37:D7:C2:9E:94:F2:04:FF:24:AD:6B:3E ValiditySat, 04 May 2024 06:52:27 GMT - Fri, 02 Aug 2024 06:52:26 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size187 kB (186956 bytes) Hashddc43391b198c6de21ea9e7fc5f0352e 29ddd37a000206a3828f28f3cdedd6404a366daf d791a8aea8829f4e81caef657a18008255ec09e3d54758293f2ca790b26fe90c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/20240503173139/css/chunk-vendors.css HTTP/1.1
Host: oih8vkkz5jocg4.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://oih8vkkz5jocg4.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 22:45:26 GMT
content-type: text/css
last-modified: Fri, 03 May 2024 09:33:52 GMT
vary: Accept-Encoding
etag: W/"6634af80-2da4c"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CTlzM30EW%2F9i%2B%2F1G69m7M548bMMhhI86o1Ts3FDMkyIuNc647hn2hBkFqIAr1XWLov2bAVqK4Jbr3i8T4eqcumQqhjzlFGddXh4TWgWx9QlxsYUYgooqx5eKxDgG9xWpOYmsfn8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87f442c2ed9c56c5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| oih8vkkz5jocg4.xyz/static/20240503173139/css/index.css | 104.21.12.227 | 200 OK | 1.0 kB |
URL GET HTTP/3oih8vkkz5jocg4.xyz/static/20240503173139/css/index.css IP104.21.12.227:443
Requested byhttps://oih8vkkz5jocg4.xyz/ CertificateIssuerLet's Encrypt Subjectoih8vkkz5jocg4.xyz Fingerprint1C:B1:02:3B:A4:85:8C:1E:37:D7:C2:9E:94:F2:04:FF:24:AD:6B:3E ValiditySat, 04 May 2024 06:52:27 GMT - Fri, 02 Aug 2024 06:52:26 GMT
File typeASCII text, with very long lines (1004), with no line terminators Hash4848e8f8e923ad821ecf75fc736a042f d2b2cb87f7c8fbdebb3bdd6ab0d703fe06a5638d 46024eaad803f92a09daf66a706e0de7a2baa8e52866ab6375e659871f384664
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/20240503173139/css/index.css HTTP/1.1
Host: oih8vkkz5jocg4.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://oih8vkkz5jocg4.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 22:45:25 GMT
content-type: text/css
last-modified: Fri, 03 May 2024 09:33:52 GMT
vary: Accept-Encoding
etag: W/"6634af80-3ec"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oGJtRXeBhahy1Jq5ztlo4C27eSwyren%2FIx4Y%2FkZW%2BU9h%2BOsyCgLYR366qA%2Fi%2BqxeB5%2FCyaKvXQL4Zj4mi6pVD0SN4K64PTylWvLYUg%2FAoWQbjobls1UKqH4WUKFY74ss6sa39E0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87f442c2ed9d56c5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| oih8vkkz5jocg4.xyz/static/20240503173139/js/chunk-vendors.js | 104.21.12.227 | 200 OK | 776 kB |
URL GET HTTP/3oih8vkkz5jocg4.xyz/static/20240503173139/js/chunk-vendors.js IP104.21.12.227:443
Requested byhttps://oih8vkkz5jocg4.xyz/ CertificateIssuerLet's Encrypt Subjectoih8vkkz5jocg4.xyz Fingerprint1C:B1:02:3B:A4:85:8C:1E:37:D7:C2:9E:94:F2:04:FF:24:AD:6B:3E ValiditySat, 04 May 2024 06:52:27 GMT - Fri, 02 Aug 2024 06:52:26 GMT
Size776 kB (775839 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/20240503173139/js/chunk-vendors.js HTTP/1.1
Host: oih8vkkz5jocg4.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://oih8vkkz5jocg4.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 22:45:26 GMT
content-type: application/javascript
last-modified: Fri, 03 May 2024 09:33:52 GMT
etag: W/"6634af80-bd69f"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=g7GWocsLT4NAr811RfhK%2BY08FcglfvVXNvooYnYDfcaPkuHVJrG7VqZi6mFVXtHbV1V2vTCFjxIbXCt3cOil9xil0nbbTlFs%2F99qR4difa3H8WJFaX2bLIIoumVXS6HV%2BjLCAQA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87f442c2ed9e56c5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| oih8vkkz5jocg4.xyz/favicon.ico | 104.21.12.227 | 200 OK | 784 B |
URL GET HTTP/3oih8vkkz5jocg4.xyz/favicon.ico IP104.21.12.227:443
Requested byhttps://oih8vkkz5jocg4.xyz/ CertificateIssuerLet's Encrypt Subjectoih8vkkz5jocg4.xyz Fingerprint1C:B1:02:3B:A4:85:8C:1E:37:D7:C2:9E:94:F2:04:FF:24:AD:6B:3E ValiditySat, 04 May 2024 06:52:27 GMT - Fri, 02 Aug 2024 06:52:26 GMT
File typePNG image data, 22 x 22, 8-bit/color RGBA, non-interlaced Hashf01fe0b27ab5620848295331cd6e8eb0 dd9018d2711a9740e1395011e8623a04da3c0ff5 d1a6467455a3522674023766194f6629c36ca79020d9b8ee0c2ae93de5c0bee7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: oih8vkkz5jocg4.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://oih8vkkz5jocg4.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 22:45:27 GMT
content-type: image/x-icon
last-modified: Fri, 03 May 2024 09:33:52 GMT
etag: W/"6634af80-310"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OovDLCitdeB7RJIbi09KlDNvRPVyyE%2BfAd3RUIEfGzTJ5SeM9TaGpPtPf7lS81kfRZqpBuTRzwK5FhcTeOxi478o7CAGzBHS2r%2FAxdXUCT2bNmhY2qrH8eAUro3qpFuMC6M%2FOE4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87f442ce0b4556c5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| | 104.21.12.227 | 200 OK | 1.5 kB |
URL User Request GET HTTP/2IP104.21.12.227:443
CertificateIssuerLet's Encrypt Subjectoih8vkkz5jocg4.xyz Fingerprint1C:B1:02:3B:A4:85:8C:1E:37:D7:C2:9E:94:F2:04:FF:24:AD:6B:3E ValiditySat, 04 May 2024 06:52:27 GMT - Fri, 02 Aug 2024 06:52:26 GMT
File typeHTML document, ASCII text, with very long lines (1621), with no line terminators Hashd6d16c9074cac42e2e451f61b46a9107 068a0ce3bc212f2752ab95cf2824ccbd3f023f1c 05a5307f2846f4a2ac22c78390db98fd5759e5b3145fa7ee02b03658843ae959
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: oih8vkkz5jocg4.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 05 May 2024 22:45:25 GMT
content-type: text/html
last-modified: Fri, 03 May 2024 09:33:52 GMT
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EZQxmXM5sXcQcuropD7uPm%2Fn5ZaG9T0%2FVJbtlm97UQKresif57bvWPZELq5ZHl0Uq7OjXU%2BgP8NPixUbA6lb1f9S1Q1ciWZEzEGDMoNjhHh9kDqyH9A8dUTU0O7sb5ZNHXtXaT4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87f442bfa8c8b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|