Report - jugaarr.com/

Report Overview

Visited public
2024-07-21 08:00:30
Tags
Submit Tags
URL
jugaarr.com/
Finishing URL
jugaarr.com/
IP / ASN
156.67.72.57
#47583 Hostinger International Limited
Title
Jugaarr of Everything - Welcome to Jugaarr.com

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2024-07-20 18:17:52	2.7 kB	221 kB	216.58.207.227
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2024-07-20 19:58:07	485 B	12 kB	142.250.74.74
r10.o.lencr.org	unknown	2020-06-29	2024-06-06 21:45:11	2024-07-20 18:12:19	2.0 kB	5.3 kB	23.36.77.32
jugaarr.com	unknown	unknown	No data	No data	6.9 kB	2.7 MB	156.67.72.57
o.pki.goog	unknown	2016-06-13	2024-04-24 13:44:57	2024-07-20 18:15:09	2.0 kB	4.2 kB	142.250.74.131
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2024-07-21 03:31:11	418 B	90 kB	142.250.74.168

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-07-21	medium	jugaarr.com	Sinkholed
2024-07-21	medium	jugaarr.com	Sinkholed
2024-07-21	medium	jugaarr.com	Sinkholed
2024-07-21	medium	jugaarr.com	Sinkholed
2024-07-21	medium	jugaarr.com	Sinkholed
2024-07-21	medium	jugaarr.com	Sinkholed
2024-07-21	medium	jugaarr.com	Sinkholed
2024-07-21	medium	jugaarr.com	Sinkholed
2024-07-21	medium	jugaarr.com	Sinkholed
2024-07-21	medium	jugaarr.com	Sinkholed
2024-07-21	medium	jugaarr.com	Sinkholed
2024-07-21	medium	jugaarr.com	Sinkholed
2024-07-21	medium	jugaarr.com	Sinkholed
2024-07-21	medium	jugaarr.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (12)

	URL	From	Size	First Seen	Last Seen
	jugaarr.com/wp-content/themes/generatepress/assets/dist/modal.js?ver=3.4.0	ScriptElement	3.4 kB	2024-02-09	2025-07-12
Pretty URL jugaarr.com/wp-content/themes/generatepress/assets/dist/modal.js?ver=3.4.0 IP 156.67.72.57 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-09 15:13 Last Seen2025-07-12 00:01 Times Seen124 Hash 240fceffe2d443a2472854ee7d2e53d5 480337cfc727b896df5500d8e4108b09443b6235 91b2dc9cd7ac64ecf6e58b3a6929024bb30b9af8de18de40d63e10ec4fbb35ea Loading...

	jugaarr.com/	ScriptElement	6.7 kB	2024-08-19	2024-08-19
Pretty URL jugaarr.com/ IP 156.67.72.57 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-19 16:12 Last Seen2024-08-19 16:12 Times Seen1 Hash af698eed8c25d2a119e7d4e510c13b86 e160d21e2ff5233b392bbc9aeb2ef09b72a23952 f9e4cd636599e9eec4d5096678ca22f64e78ad3478d7c8914a4bf3218b0adfe0 Loading...

	jugaarr.com/	ScriptElement	3.2 kB	2024-08-19	2024-08-19
Pretty URL jugaarr.com/ IP 156.67.72.57 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-19 16:12 Last Seen2024-08-19 16:12 Times Seen1 Hash 651cf6d8ade14ca10e1fd73a8ba246a6 21341cd91f5eed057503d0e6faaa8e92ec65010f ea54f1eb39f374b3eb890ca085a24e61923088c5c56b7582a2ed28a936a50eff Loading...

	jugaarr.com/	ScriptElement	329 B	2024-08-19	2024-08-19
Pretty URL jugaarr.com/ IP 156.67.72.57 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-19 16:12 Last Seen2024-08-19 16:12 Times Seen1 Hash b14f4149f7074d0620004d23f65918b3 9f373d4b8ef9dd8fdda14e247080f183813eedb8 52bd79ba91a7df2d4cf365d106d44521fc90573e75f11eaf835df8c623fd3478 Loading...

	jugaarr.com/wp-includes/js/wp-emoji-release.min.js?ver=6.5.5	ScriptElement	19 kB	2024-03-13	2025-07-16
Pretty URL jugaarr.com/wp-includes/js/wp-emoji-release.min.js?ver=6.5.5 IP 156.67.72.57 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-13 16:02 Last Seen2025-07-16 09:56 Times Seen54256 Hash b976b651932bfd25b9ddb5b7693d88a7 7fcb7cb5c11227f9213b1e08a07d0212209e1432 4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3 Loading...

	jugaarr.com/	ScriptElement	57 B	2023-03-07	2025-07-16
Pretty URL jugaarr.com/ IP 156.67.72.57 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:06 Last Seen2025-07-16 08:28 Times Seen11901 Hash 2a2781f9bb6302c2f96df0d1e96ef524 796bb90146495848c0c479533c367edadb94f1a9 1b60af0ce49d65e8b1006457c16883d60e53a0054bb157c57c3b03a82ee9964d Loading...

	jugaarr.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.28.0	ScriptElement	12 kB	2023-11-14	2025-07-14
Pretty URL jugaarr.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.28.0 IP 156.67.72.57 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-14 00:53 Last Seen2025-07-14 17:18 Times Seen2928 Hash 9593c634b81c031342cbe0fa03903d47 dd68ee9d73731b22fb7252f66be8bea5d17227c7 d7bdba02afa8c04c13f280c71a50f8c8186c883711c5dabbd13566dd738bff0a Loading...

	jugaarr.com/	ScriptElement	260 B	2023-03-07	2025-07-16
Pretty URL jugaarr.com/ IP 156.67.72.57 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03 Last Seen2025-07-16 09:16 Times Seen3880 Hash 9b78b28b396646badfc6017235ee4be9 18103240bf0cb760cdf7febc628b56b8fca44319 215f517010a20f2f4c55d34dd3c574568bd0fb83662f0b915ddb6561f97c3904 Loading...

	jugaarr.com/wp-content/themes/generatepress/assets/js/menu.min.js?ver=3.4.0	ScriptElement	7.0 kB	2024-02-06	2025-07-14
Pretty URL jugaarr.com/wp-content/themes/generatepress/assets/js/menu.min.js?ver=3.4.0 IP 156.67.72.57 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-06 20:30 Last Seen2025-07-14 02:34 Times Seen927 Hash 70bb4fab119eb133cae33105b69f65cb 0c78a77e06be020674ca82d28b02a712615f7b35 395121e5b9981325951ef88bec68d065d23087b16a70d4459109e1dd84a10936 Loading...

	jugaarr.com/	ScriptElement	127 B	2023-03-07	2025-07-15
Pretty URL jugaarr.com/ IP 156.67.72.57 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03 Last Seen2025-07-15 16:16 Times Seen2697 Hash e891393f0be3a6ffaa3923b307180e7e bc0a7332b9846a5762a71b9b9811c1a8b19df194 2d1778345d3607ceb641cc5f21b0a2c045fa70052361ac91a17c39b2c9d96f71 Loading...

	jugaarr.com/	ScriptElement	82 kB	2024-04-02	2025-07-11
Pretty URL jugaarr.com/ IP 156.67.72.57 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-02 01:06 Last Seen2025-07-11 07:35 Times Seen704 Hash 918fdfeb208a2b48301982701469753b 1954ca532ba0d67d352dc1bef6ed8dfbd9deeec2 e1a664aa85bae6f0ab4da4acf77c76ca723410c18372d84df28439823d25e8f6 Loading...

	www.googletagmanager.com/gtag/js?id=G-9QM0FNHYX5	ScriptElement	254 kB	2024-08-19	2024-08-19
Pretty URL www.googletagmanager.com/gtag/js?id=G-9QM0FNHYX5 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 16:12 Last Seen2024-08-19 16:12 Times Seen1 Hash 366a1d08ceaa52d70d4d22df281f5be4 e3a943827392f4c0bbdb345dce2d12affc8a5d64 60df725aa76de49e8a9d71801926634d317ccea920408b64503acf74a3971ee8 Loading...

HTTP Transactions (33)

URL IP Response Size

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
3bd6a6d19bf0ab70e4e0cd3d2833afe1
0dd2ee68cf939d2482a9b30bf767f412eb97e492
23c60c02f8a6f1f7fe01f9f4661cf04a03c046522201927dfa7c51ceba6c5449

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "23C60C02F8A6F1F7FE01F9F4661CF04A03C046522201927DFA7C51CEBA6C5449"
Last-Modified: Sat, 20 Jul 2024 20:21:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19225
Expires: Sun, 21 Jul 2024 13:20:28 GMT
Date: Sun, 21 Jul 2024 08:00:03 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
c7f6de9d4ccb60f56a555de6134b5b77
4b9e75fa3da17c1584a3d87aec6afd7d8da41d16
55db53ef70b6bfeb3c259dbe5d0ac0e6625898a3ac37d7e200253c03979e2cf7

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "55DB53EF70B6BFEB3C259DBE5D0AC0E6625898A3AC37D7E200253C03979E2CF7"
Last-Modified: Sat, 20 Jul 2024 20:21:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20114
Expires: Sun, 21 Jul 2024 13:35:17 GMT
Date: Sun, 21 Jul 2024 08:00:03 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
85a291090b5db764a5b5f1487dcb958f
9dadf7a0a7d6be86e491a10bbbc72c84f798cab9
60c84bb6c568871d3febe1e58c6aedf398fa06f5f7afc3e6087200be0a25ad3f

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "60C84BB6C568871D3FEBE1E58C6AEDF398FA06F5F7AFC3E6087200BE0A25AD3F"
Last-Modified: Sat, 20 Jul 2024 19:16:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18574
Expires: Sun, 21 Jul 2024 13:09:37 GMT
Date: Sun, 21 Jul 2024 08:00:03 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
41b470cfcb4d809b7689783076e07c76
919b05dba2523cc4b8e9a6e873fe777fd753ee1b
951ae19e1eb066355bf55ff2163f6d14b689088fa3dd443fb01d889bb28fe095

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "951AE19E1EB066355BF55FF2163F6D14B689088FA3DD443FB01D889BB28FE095"
Last-Modified: Sat, 20 Jul 2024 19:16:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10057
Expires: Sun, 21 Jul 2024 10:47:41 GMT
Date: Sun, 21 Jul 2024 08:00:04 GMT
Connection: keep-alive

GET jugaarr.com/

156.67.72.57

200 OK

61 kB

URL User Request GET HTTP/2
jugaarr.com/
IP
156.67.72.57:443
ASN
#47583 Hostinger International Limited

Certificate
IssuerLet's Encrypt
Subjectjugaarr.com
FingerprintCC:E6:D5:8A:74:AD:DC:67:B5:2E:F7:95:07:55:14:53:EB:27:06:1E
ValiditySun, 23 Jun 2024 12:05:24 GMT - Sat, 21 Sep 2024 12:05:23 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (10371), with CRLF, LF line terminators
Size
61 kB (60624 bytes)
Hash
c529b2cebc68e4e7be02286b525464e0
a937bd04a550d573773dbf03336705c91a96837b
ff7b191d066492cdbb44f9fd832cfdcea4839d3c2779c48e0f4c6ebc527eb412

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: jugaarr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-powered-by: PHP/8.1.27
content-type: text/html; charset=UTF-8
x-ua-compatible: IE=edge
link: <https://jugaarr.com/wp-json/>; rel="https://api.w.org/"
etag: "50790-1721491963;br"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding
content-length: 60624
date: Sun, 21 Jul 2024 08:00:04 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

o.pki.goog/wr2

142.250.74.131

471 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
518e6f4b653879f86c4dfbdfd3e37ccf
155ac7a6133ea7ecbc5d983e14c0d83369f6b662
2135725772ad516923a8d295f477d22cdf5317294615fcd8dc269a961601fa8d

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 21 Jul 2024 08:00:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

o.pki.goog/wr2

142.250.74.131

472 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
67db02be150b913e03c7ba9aafe6b5d3
c0902e2d45e7d3d3838a685e9344e17187474068
d5a1d2c4f560d5c431867f9e715ce4cde0e8f4641c1713316cb30b9e3424aee6

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 21 Jul 2024 08:00:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

GET www.googletagmanager.com/gtag/js?id=G-9QM0FNHYX5

142.250.74.168

200 OK

90 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-9QM0FNHYX5
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://jugaarr.com/
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintB3:23:88:EF:34:69:5A:0C:81:CE:02:E2:E3:19:FE:95:71:75:A1:14
ValidityMon, 24 Jun 2024 06:35:05 GMT - Mon, 16 Sep 2024 06:35:04 GMT

File type
JavaScript source, ASCII text, with very long lines (5945)
Size
90 kB (89762 bytes)
Hash
366a1d08ceaa52d70d4d22df281f5be4
e3a943827392f4c0bbdb345dce2d12affc8a5d64
60df725aa76de49e8a9d71801926634d317ccea920408b64503acf74a3971ee8

HTTP Headers

GET /gtag/js?id=G-9QM0FNHYX5 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jugaarr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 21 Jul 2024 08:00:04 GMT
expires: Sun, 21 Jul 2024 08:00:04 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 89762
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET jugaarr.com/wp-includes/css/dist/block-library/style.min.css?ver=6.5.5

156.67.72.57

200 OK

14 kB

URL GET HTTP/3
jugaarr.com/wp-includes/css/dist/block-library/style.min.css?ver=6.5.5
IP
156.67.72.57:443
ASN
#47583 Hostinger International Limited

Requested by
https://jugaarr.com/
Certificate
IssuerLet's Encrypt
Subjectjugaarr.com
FingerprintCC:E6:D5:8A:74:AD:DC:67:B5:2E:F7:95:07:55:14:53:EB:27:06:1E
ValiditySun, 23 Jun 2024 12:05:24 GMT - Sat, 21 Sep 2024 12:05:23 GMT

File type
ASCII text, with very long lines (59701)
Size
14 kB (13792 bytes)
Hash
51a8390b47aa0582cf2d9c96c5addee2
b16a640874025d085c38119a1a02a3460f83f2de
98cecf88a23542fa047ce46eedb650b5c5128761ed4386c0977b847094ddfa20

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.5.5 HTTP/1.1
Host: jugaarr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jugaarr.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sun, 28 Jul 2024 08:00:04 GMT
content-type: text/css
last-modified: Sun, 07 Jul 2024 01:25:50 GMT
etag: "1bae5-6689ee9e-228ff03d8e54ace1;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 13792
date: Sun, 21 Jul 2024 08:00:04 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"

GET jugaarr.com/wp-content/themes/generatepress/assets/css/components/widget-areas.min.css?ver=3.4.0

156.67.72.57

200 OK

622 B

URL GET HTTP/3
jugaarr.com/wp-content/themes/generatepress/assets/css/components/widget-areas.min.css?ver=3.4.0
IP
156.67.72.57:443
ASN
#47583 Hostinger International Limited

Requested by
https://jugaarr.com/
Certificate
IssuerLet's Encrypt
Subjectjugaarr.com
FingerprintCC:E6:D5:8A:74:AD:DC:67:B5:2E:F7:95:07:55:14:53:EB:27:06:1E
ValiditySun, 23 Jun 2024 12:05:24 GMT - Sat, 21 Sep 2024 12:05:23 GMT

File type
ASCII text, with very long lines (3356), with no line terminators
Size
622 B (622 bytes)
Hash
f9b0b1948dca272b16005165ab098f29
6e6ae044e8392eb26831476b5340808d076ff76f
f67e99114807ecac9bba6fbb9f81eea467c50c9f03b59974fe696bdfab6ba227

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/generatepress/assets/css/components/widget-areas.min.css?ver=3.4.0 HTTP/1.1
Host: jugaarr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jugaarr.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sun, 28 Jul 2024 08:00:04 GMT
content-type: text/css
last-modified: Mon, 01 Jul 2024 10:24:59 GMT
etag: "d1c-668283fb-4ce1e2feb8bc3b3f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 622
date: Sun, 21 Jul 2024 08:00:04 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests

GET jugaarr.com/wp-content/themes/generatepress/assets/css/main.min.css?ver=3.4.0

156.67.72.57

200 OK

4.4 kB

URL GET HTTP/3
jugaarr.com/wp-content/themes/generatepress/assets/css/main.min.css?ver=3.4.0
IP
156.67.72.57:443
ASN
#47583 Hostinger International Limited

Requested by
https://jugaarr.com/
Certificate
IssuerLet's Encrypt
Subjectjugaarr.com
FingerprintCC:E6:D5:8A:74:AD:DC:67:B5:2E:F7:95:07:55:14:53:EB:27:06:1E
ValiditySun, 23 Jun 2024 12:05:24 GMT - Sat, 21 Sep 2024 12:05:23 GMT

File type
ASCII text, with very long lines (19564), with no line terminators
Size
4.4 kB (4356 bytes)
Hash
867585929ee8b21749cdefa675d9aa11
afbd7bc967068d4e804641f4b1df78ab37417144
bc3b2c1e618a27e485095a3c0db20da5ba2fbfaf3b872ccd6ca35cb19eb37b5d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/generatepress/assets/css/main.min.css?ver=3.4.0 HTTP/1.1
Host: jugaarr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jugaarr.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sun, 28 Jul 2024 08:00:04 GMT
content-type: text/css
last-modified: Mon, 01 Jul 2024 10:24:59 GMT
etag: "4c6c-668283fb-dc0eb7d04100edb2;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4356
date: Sun, 21 Jul 2024 08:00:04 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests

GET jugaarr.com/wp-content/themes/generatepress/assets/js/menu.min.js?ver=3.4.0

156.67.72.57

200 OK

1.5 kB

URL GET HTTP/3
jugaarr.com/wp-content/themes/generatepress/assets/js/menu.min.js?ver=3.4.0
IP
156.67.72.57:443
ASN
#47583 Hostinger International Limited

Requested by
https://jugaarr.com/
Certificate
IssuerLet's Encrypt
Subjectjugaarr.com
FingerprintCC:E6:D5:8A:74:AD:DC:67:B5:2E:F7:95:07:55:14:53:EB:27:06:1E
ValiditySun, 23 Jun 2024 12:05:24 GMT - Sat, 21 Sep 2024 12:05:23 GMT

File type
JavaScript source, ASCII text, with very long lines (6957), with no line terminators
Size
1.5 kB (1535 bytes)
Hash
70bb4fab119eb133cae33105b69f65cb
0c78a77e06be020674ca82d28b02a712615f7b35
395121e5b9981325951ef88bec68d065d23087b16a70d4459109e1dd84a10936

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/generatepress/assets/js/menu.min.js?ver=3.4.0 HTTP/1.1
Host: jugaarr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jugaarr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sun, 28 Jul 2024 08:00:04 GMT
content-type: application/x-javascript
last-modified: Mon, 01 Jul 2024 10:24:59 GMT
etag: "1b2d-668283fb-5c8235b4351f8ac4;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1535
date: Sun, 21 Jul 2024 08:00:04 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests

o.pki.goog/wr2

142.250.74.131

472 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
67db02be150b913e03c7ba9aafe6b5d3
c0902e2d45e7d3d3838a685e9344e17187474068
d5a1d2c4f560d5c431867f9e715ce4cde0e8f4641c1713316cb30b9e3424aee6

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 21 Jul 2024 08:00:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

o.pki.goog/wr2

142.250.74.131

471 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
518e6f4b653879f86c4dfbdfd3e37ccf
155ac7a6133ea7ecbc5d983e14c0d83369f6b662
2135725772ad516923a8d295f477d22cdf5317294615fcd8dc269a961601fa8d

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 21 Jul 2024 08:00:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

GET jugaarr.com/wp-content/themes/generatepress/assets/dist/modal.js?ver=3.4.0

156.67.72.57

200 OK

1.3 kB

URL GET HTTP/3
jugaarr.com/wp-content/themes/generatepress/assets/dist/modal.js?ver=3.4.0
IP
156.67.72.57:443
ASN
#47583 Hostinger International Limited

Requested by
https://jugaarr.com/
Certificate
IssuerLet's Encrypt
Subjectjugaarr.com
FingerprintCC:E6:D5:8A:74:AD:DC:67:B5:2E:F7:95:07:55:14:53:EB:27:06:1E
ValiditySun, 23 Jun 2024 12:05:24 GMT - Sat, 21 Sep 2024 12:05:23 GMT

File type
JavaScript source, ASCII text, with very long lines (3429), with no line terminators
Size
1.3 kB (1279 bytes)
Hash
240fceffe2d443a2472854ee7d2e53d5
480337cfc727b896df5500d8e4108b09443b6235
91b2dc9cd7ac64ecf6e58b3a6929024bb30b9af8de18de40d63e10ec4fbb35ea

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/generatepress/assets/dist/modal.js?ver=3.4.0 HTTP/1.1
Host: jugaarr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jugaarr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sun, 28 Jul 2024 08:00:04 GMT
content-type: application/x-javascript
last-modified: Mon, 01 Jul 2024 10:24:59 GMT
etag: "d65-668283fb-533d864360dcdedf;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1279
date: Sun, 21 Jul 2024 08:00:04 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests

GET jugaarr.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.28.0

156.67.72.57

200 OK

3.0 kB

URL GET HTTP/3
jugaarr.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.28.0
IP
156.67.72.57:443
ASN
#47583 Hostinger International Limited

Requested by
https://jugaarr.com/
Certificate
IssuerLet's Encrypt
Subjectjugaarr.com
FingerprintCC:E6:D5:8A:74:AD:DC:67:B5:2E:F7:95:07:55:14:53:EB:27:06:1E
ValiditySun, 23 Jun 2024 12:05:24 GMT - Sat, 21 Sep 2024 12:05:23 GMT

File type
JavaScript source, ASCII text, with very long lines (1392)
Size
3.0 kB (3028 bytes)
Hash
9593c634b81c031342cbe0fa03903d47
dd68ee9d73731b22fb7252f66be8bea5d17227c7
d7bdba02afa8c04c13f280c71a50f8c8186c883711c5dabbd13566dd738bff0a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.28.0 HTTP/1.1
Host: jugaarr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jugaarr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sun, 28 Jul 2024 08:00:04 GMT
content-type: application/x-javascript
last-modified: Mon, 08 Jul 2024 22:33:48 GMT
etag: "2da9-668c694c-65ef88041691d5cc;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3028
date: Sun, 21 Jul 2024 08:00:04 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests

o.pki.goog/wr2

142.250.74.131

471 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e842acc46842711aadfb4131231d23ca
ddba9b8110e683f33d349d6d62e7395acec51c91
dab8c3fcf4468f2a8efd4f5fe388a44949e87d151153a6ba22f54323c7806958

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 21 Jul 2024 08:00:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

GET fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://jugaarr.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintEE:FE:75:C9:E5:09:76:EB:38:E8:5F:5F:31:DF:88:D1:BF:9A:93:09
ValidityMon, 24 Jun 2024 07:40:48 GMT - Mon, 16 Sep 2024 07:40:47 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jugaarr.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 19 Jul 2024 04:36:03 GMT
expires: Sat, 19 Jul 2025 04:36:03 GMT
cache-control: public, max-age=31536000
age: 185042
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://jugaarr.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintEE:FE:75:C9:E5:09:76:EB:38:E8:5F:5F:31:DF:88:D1:BF:9A:93:09
ValidityMon, 24 Jun 2024 07:40:48 GMT - Mon, 16 Sep 2024 07:40:47 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jugaarr.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 19 Jul 2024 04:36:03 GMT
expires: Sat, 19 Jul 2025 04:36:03 GMT
cache-control: public, max-age=31536000
age: 185042
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://jugaarr.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintEE:FE:75:C9:E5:09:76:EB:38:E8:5F:5F:31:DF:88:D1:BF:9A:93:09
ValidityMon, 24 Jun 2024 07:40:48 GMT - Mon, 16 Sep 2024 07:40:47 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jugaarr.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 19 Jul 2024 04:36:03 GMT
expires: Sat, 19 Jul 2025 04:36:03 GMT
cache-control: public, max-age=31536000
age: 185042
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu1aB.woff2

216.58.207.227

200 OK

25 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu1aB.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://jugaarr.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintEE:FE:75:C9:E5:09:76:EB:38:E8:5F:5F:31:DF:88:D1:BF:9A:93:09
ValidityMon, 24 Jun 2024 07:40:48 GMT - Mon, 16 Sep 2024 07:40:47 GMT

File type
Web Open Font Format (Version 2), TrueType, length 24984, version 1.0
Size
25 kB (24984 bytes)
Hash
303a79d404d97ccbb3d803088fc387d8
66e3525b79a1a58a63fe0934f31676dd40c7f033
7e510e61c497d334da21eccda06df5d3a428c9ea94d6903b6138e7c7255aba0f

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jugaarr.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24984
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 19 Jul 2024 22:35:22 GMT
expires: Sat, 19 Jul 2025 22:35:22 GMT
cache-control: public, max-age=31536000
age: 120283
last-modified: Thu, 14 Dec 2023 02:04:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET jugaarr.com/wp-includes/js/wp-emoji-release.min.js?ver=6.5.5

156.67.72.57

200 OK

4.6 kB

URL GET HTTP/3
jugaarr.com/wp-includes/js/wp-emoji-release.min.js?ver=6.5.5
IP
156.67.72.57:443
ASN
#47583 Hostinger International Limited

Requested by
https://jugaarr.com/
Certificate
IssuerLet's Encrypt
Subjectjugaarr.com
FingerprintCC:E6:D5:8A:74:AD:DC:67:B5:2E:F7:95:07:55:14:53:EB:27:06:1E
ValiditySun, 23 Jun 2024 12:05:24 GMT - Sat, 21 Sep 2024 12:05:23 GMT

File type
JavaScript source, ASCII text, with very long lines (15752)
Size
4.6 kB (4619 bytes)
Hash
b976b651932bfd25b9ddb5b7693d88a7
7fcb7cb5c11227f9213b1e08a07d0212209e1432
4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.5.5 HTTP/1.1
Host: jugaarr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jugaarr.com/
Cookie: _ga_9QM0FNHYX5=GS1.1.1721548805.1.0.1721548805.0.0.0; _ga=GA1.1.703808283.1721548805
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sun, 28 Jul 2024 08:00:05 GMT
content-type: application/x-javascript
last-modified: Sun, 07 Jul 2024 01:25:47 GMT
etag: "4926-6689ee9b-de89ba882a80f124;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4619
date: Sun, 21 Jul 2024 08:00:05 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests

o.pki.goog/wr2

142.250.74.131

471 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e842acc46842711aadfb4131231d23ca
ddba9b8110e683f33d349d6d62e7395acec51c91
dab8c3fcf4468f2a8efd4f5fe388a44949e87d151153a6ba22f54323c7806958

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 21 Jul 2024 08:00:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

GET fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTVOmu1aB.woff2

216.58.207.227

200 OK

47 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTVOmu1aB.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://jugaarr.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintEE:FE:75:C9:E5:09:76:EB:38:E8:5F:5F:31:DF:88:D1:BF:9A:93:09
ValidityMon, 24 Jun 2024 07:40:48 GMT - Mon, 16 Sep 2024 07:40:47 GMT

File type
Web Open Font Format (Version 2), TrueType, length 47136, version 1.0
Size
47 kB (47136 bytes)
Hash
a47c3355aae82555f7ca3c38e8a4c1d6
c57e17bd233d69f67ec6ede882e7932cdc02d56d
6b0dab5300943d98f4f20de9d48a49e0186441f6fb8b5e95a9635a30c0b60e72

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTVOmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jugaarr.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47136
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 19 Jul 2024 22:47:50 GMT
expires: Sat, 19 Jul 2025 22:47:50 GMT
cache-control: public, max-age=31536000
age: 119535
last-modified: Thu, 14 Dec 2023 02:04:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
abdbb83f974102baaaa6f77ee331d442
053c22e9dce284413f8a2d4433748edbdd91b77b
23a21016e52b76d94858b277e1a729969fc7f0f66b9212013f3b1cd64fc2591c

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "23A21016E52B76D94858B277E1A729969FC7F0F66B9212013F3B1CD64FC2591C"
Last-Modified: Sat, 20 Jul 2024 19:17:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14656
Expires: Sun, 21 Jul 2024 12:04:21 GMT
Date: Sun, 21 Jul 2024 08:00:05 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
abdbb83f974102baaaa6f77ee331d442
053c22e9dce284413f8a2d4433748edbdd91b77b
23a21016e52b76d94858b277e1a729969fc7f0f66b9212013f3b1cd64fc2591c

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "23A21016E52B76D94858B277E1A729969FC7F0F66B9212013F3B1CD64FC2591C"
Last-Modified: Sat, 20 Jul 2024 19:17:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14656
Expires: Sun, 21 Jul 2024 12:04:21 GMT
Date: Sun, 21 Jul 2024 08:00:05 GMT
Connection: keep-alive

GET fonts.googleapis.com/css?family=Open+Sans%3A300%2Cregular%2Citalic%2C600%2C700&display=auto&ver=3.4.0

142.250.74.74

200 OK

12 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Open+Sans%3A300%2Cregular%2Citalic%2C600%2C700&display=auto&ver=3.4.0
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://jugaarr.com/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint8F:1C:80:D7:A7:FA:04:F3:EE:EF:70:FD:56:35:32:FD:55:AB:63:5F
ValidityMon, 24 Jun 2024 07:40:53 GMT - Mon, 16 Sep 2024 07:40:52 GMT

File type
gzip compressed data, max compression
Size
12 kB (11510 bytes)
Hash
47f149e392e7ed0e0a52f5226bcf776a
575d89157552d5117d09e1c43816780baf722ce8
1bdd97afab881bcdc5171122dd508f2728e396b5739b0d1073980fc68ee9ac2b

HTTP Headers

GET /css?family=Open+Sans%3A300%2Cregular%2Citalic%2C600%2C700&display=auto&ver=3.4.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jugaarr.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 21 Jul 2024 08:00:04 GMT
date: Sun, 21 Jul 2024 08:00:04 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET jugaarr.com/wp-content/uploads/2024/07/www.Jugaarr.com_-1.png

156.67.72.57

200 OK

1.1 MB

URL GET HTTP/3
jugaarr.com/wp-content/uploads/2024/07/www.Jugaarr.com_-1.png
IP
156.67.72.57:443
ASN
#47583 Hostinger International Limited

Requested by
https://jugaarr.com/
Certificate
IssuerLet's Encrypt
Subjectjugaarr.com
FingerprintCC:E6:D5:8A:74:AD:DC:67:B5:2E:F7:95:07:55:14:53:EB:27:06:1E
ValiditySun, 23 Jun 2024 12:05:24 GMT - Sat, 21 Sep 2024 12:05:23 GMT

File type
PNG image data, 1366 x 768, 8-bit/color RGBA, non-interlaced
Size
1.1 MB (1135690 bytes)
Hash
10d59092bb7422a8d34a36e47f197f4a
c57d39c04db9f0391a89affe8daa9338ab646438
df85fc750cabcffa7cd86c6966fdf6ff98369ff7c6a37bda205fe70da1a9e60c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2024/07/www.Jugaarr.com_-1.png HTTP/1.1
Host: jugaarr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jugaarr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sun, 28 Jul 2024 08:00:04 GMT
content-type: image/png
last-modified: Sat, 20 Jul 2024 15:36:36 GMT
etag: "11544a-669bd984-ede25bdb3c038234;;;"
accept-ranges: bytes
content-length: 1135690
date: Sun, 21 Jul 2024 08:00:04 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests

GET jugaarr.com/wp-content/uploads/2024/07/cropped-icon-1-32x32.jpg

156.67.72.57

200 OK

2.6 kB

URL GET HTTP/3
jugaarr.com/wp-content/uploads/2024/07/cropped-icon-1-32x32.jpg
IP
156.67.72.57:443
ASN
#47583 Hostinger International Limited

Requested by
https://jugaarr.com/
Certificate
IssuerLet's Encrypt
Subjectjugaarr.com
FingerprintCC:E6:D5:8A:74:AD:DC:67:B5:2E:F7:95:07:55:14:53:EB:27:06:1E
ValiditySun, 23 Jun 2024 12:05:24 GMT - Sat, 21 Sep 2024 12:05:23 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 32x32, components 3
Size
2.6 kB (2558 bytes)
Hash
199f8bc7a7da139ea4cce4263aced0f9
ca67fa4bd59b4b1fb3132d8a8eef7b7ead3c0d94
2ca941550cb24f701adff2bfdaf386b46015784b0bae89a9d6249caf4529b0e2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2024/07/cropped-icon-1-32x32.jpg HTTP/1.1
Host: jugaarr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jugaarr.com/
Cookie: _ga_9QM0FNHYX5=GS1.1.1721548805.1.0.1721548805.0.0.0; _ga=GA1.1.703808283.1721548805
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sun, 28 Jul 2024 08:00:05 GMT
content-type: image/jpeg
last-modified: Fri, 19 Jul 2024 19:13:38 GMT
etag: "9fe-669abae2-8cc7fb063a0721cc;;;"
accept-ranges: bytes
content-length: 2558
date: Sun, 21 Jul 2024 08:00:05 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests

GET jugaarr.com/wp-content/uploads/2024/07/cropped-icon-1-192x192.jpg

156.67.72.57

200 OK

6.9 kB

URL GET HTTP/3
jugaarr.com/wp-content/uploads/2024/07/cropped-icon-1-192x192.jpg
IP
156.67.72.57:443
ASN
#47583 Hostinger International Limited

Requested by
https://jugaarr.com/
Certificate
IssuerLet's Encrypt
Subjectjugaarr.com
FingerprintCC:E6:D5:8A:74:AD:DC:67:B5:2E:F7:95:07:55:14:53:EB:27:06:1E
ValiditySun, 23 Jun 2024 12:05:24 GMT - Sat, 21 Sep 2024 12:05:23 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 192x192, components 3
Size
6.9 kB (6905 bytes)
Hash
c175341d29ba4535e0e670e63c0869c7
c9679f06b5aec463a8020c7e3c7b08c229145601
6944e5fa9c8d71f129c1edbf064284cbf98df34abf2f9c2de329f4db27815a54

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2024/07/cropped-icon-1-192x192.jpg HTTP/1.1
Host: jugaarr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jugaarr.com/
Cookie: _ga_9QM0FNHYX5=GS1.1.1721548805.1.0.1721548805.0.0.0; _ga=GA1.1.703808283.1721548805
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sun, 28 Jul 2024 08:00:05 GMT
content-type: image/jpeg
last-modified: Fri, 19 Jul 2024 19:13:38 GMT
etag: "1af9-669abae2-eb5735d1b7052d19;;;"
accept-ranges: bytes
content-length: 6905
date: Sun, 21 Jul 2024 08:00:05 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests

GET jugaarr.com/wp-content/uploads/2024/07/Free-Visa-Apply-Now-Online-1.png

156.67.72.57

200 OK

1.1 MB

URL GET HTTP/3
jugaarr.com/wp-content/uploads/2024/07/Free-Visa-Apply-Now-Online-1.png
IP
156.67.72.57:443
ASN
#47583 Hostinger International Limited

Requested by
https://jugaarr.com/
Certificate
IssuerLet's Encrypt
Subjectjugaarr.com
FingerprintCC:E6:D5:8A:74:AD:DC:67:B5:2E:F7:95:07:55:14:53:EB:27:06:1E
ValiditySun, 23 Jun 2024 12:05:24 GMT - Sat, 21 Sep 2024 12:05:23 GMT

File type
PNG image data, 1366 x 768, 8-bit/color RGBA, non-interlaced
Size
1.1 MB (1109137 bytes)
Hash
2646e9077661e8b47524129904d891e5
9d09e45faffeceac596366d58b3e92fc38eb6356
c7b02937e8631cdeb4144ddd652356e2c716b8a9991b83f29d0425b4ec938e69

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2024/07/Free-Visa-Apply-Now-Online-1.png HTTP/1.1
Host: jugaarr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jugaarr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sun, 28 Jul 2024 08:00:04 GMT
content-type: image/png
last-modified: Sat, 20 Jul 2024 14:30:50 GMT
etag: "10ec91-669bca1a-6cbde3047ff0ea52;;;"
accept-ranges: bytes
content-length: 1109137
date: Sun, 21 Jul 2024 08:00:04 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests

GET jugaarr.com/wp-content/uploads/2024/07/Free-Visa-Apply-Now-Online.png

156.67.72.57

200 OK

349 kB

URL GET HTTP/3
jugaarr.com/wp-content/uploads/2024/07/Free-Visa-Apply-Now-Online.png
IP
156.67.72.57:443
ASN
#47583 Hostinger International Limited

Requested by
https://jugaarr.com/
Certificate
IssuerLet's Encrypt
Subjectjugaarr.com
FingerprintCC:E6:D5:8A:74:AD:DC:67:B5:2E:F7:95:07:55:14:53:EB:27:06:1E
ValiditySun, 23 Jun 2024 12:05:24 GMT - Sat, 21 Sep 2024 12:05:23 GMT

File type
PNG image data, 1366 x 768, 8-bit/color RGBA, non-interlaced
Size
349 kB (348746 bytes)
Hash
d91d94bbe87298b3921aca6b016cf4f1
fd660469fea1369ed97c2f030bbbc5483492d753
4e53265f93da52cfb93bd10979539e22831c3b99ff3497e72db2062e18d5303e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2024/07/Free-Visa-Apply-Now-Online.png HTTP/1.1
Host: jugaarr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jugaarr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sun, 28 Jul 2024 08:00:04 GMT
content-type: image/png
last-modified: Sat, 20 Jul 2024 14:07:37 GMT
etag: "5524a-669bc4a9-91fcc33576f6c5e7;;;"
accept-ranges: bytes
content-length: 348746
date: Sun, 21 Jul 2024 08:00:04 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests

GET jugaarr.com/page/2/

156.67.72.57

200 OK

974 B

URL GET HTTP/3
jugaarr.com/page/2/
IP
156.67.72.57:443
ASN
#47583 Hostinger International Limited

Requested by
https://jugaarr.com/
Certificate
IssuerLet's Encrypt
Subjectjugaarr.com
FingerprintCC:E6:D5:8A:74:AD:DC:67:B5:2E:F7:95:07:55:14:53:EB:27:06:1E
ValiditySun, 23 Jun 2024 12:05:24 GMT - Sat, 21 Sep 2024 12:05:23 GMT

File type
HTML document, ASCII text
Size
974 B (974 bytes)
Hash
1326c16a18441423830933fbb3a6a290
d62b5f0ec9ae7a82209938c347311519b9fc1084
3bb40456027c77d05b991e4686f10e51739a6ebdca3e33ec5edcd1e2c28b34cf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /page/2/ HTTP/1.1
Host: jugaarr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://jugaarr.com/
Cookie: _ga_9QM0FNHYX5=GS1.1.1721548805.1.0.1721548805.0.0.0; _ga=GA1.1.703808283.1721548805
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/html
content-length: 974
content-encoding: gzip
vary: Accept-Encoding
date: Sun, 21 Jul 2024 08:00:06 GMT
server: LiteSpeed
cache-control: no-cache,no-store
x-frame-options: SAMEORIGIN

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (12)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by