| |  216.219.87.98 | 200 OK | 795 B |
URL User Request GET HTTP/2IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash5d8d79c3cb9af023240b1be6f5057aaa df22980677b134e83d878893f7c7984e0d78a240 e8b101a7c7f64aad528cc734513cbeb02243c0af37930dc0f3239749cff184b6
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 795
date: Thu, 18 Apr 2024 07:43:26 GMT
server: LiteSpeed
location: https://kotadiainc.com/
vary: User-Agent
|
|
| kotadiainc.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.9 | 216.219.87.98 | 200 OK | 890 B |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.9 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
Hash3fd2afa98866679439097f4ab102fe0a dbc9c4139e49d0d9fb41b7191aad1a2db6c555fd ccd31ffa708d025833f954b3e0560cedd58df9a0d2706b2ccee5f501c5b2467b
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.9 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 13:47:55 GMT
etag: "b4e-65e5d10b-535dbb5a3224fb6c;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 890
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| kotadiainc.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.29.0 | 216.219.87.98 | 200 OK | 3.7 kB |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.29.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (19732) Hash45f978120a537b249dfac36306ed5471 9eebc1e6fe55d9737d0e91bdfa3976b344ea2a09 67ac597bed179b5842d996fad80472c6b9514edde408ade8b892161bcf9e9c88
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.29.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 13:48:06 GMT
etag: "4d42-65e5d116-ed59aa57a599178c;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3724
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.19.4 | 216.219.87.98 | 200 OK | 13 kB |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.19.4 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (65496) Hash788883fa142b0b5fdb6c795072ac213f 1a80f79f6e097bd2219a701f8eb7088f5be3687b 3c9ef71cb1059c3b6059b62872bb1cb9eaea460b73ecd5431a8b3fe719a131d7
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.19.4 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 13:48:00 GMT
etag: "1cf66-65e5d110-57ae3ee66b1e3084;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 13014
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/plugins/elementor/assets/lib/swiper/v8/css/swiper.min.css?ver=8.4.5 | 216.219.87.98 | 200 OK | 4.2 kB |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/elementor/assets/lib/swiper/v8/css/swiper.min.css?ver=8.4.5 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (16214) Hasha2431bc290cf34e330e11ec4cfce1247 32a53342901fef5f4f4dbb26a555e730f84437a4 c57e64fcb72bddafa9c38de574441c3e69ac6c961df96b0cad34da83658bd196
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/lib/swiper/v8/css/swiper.min.css?ver=8.4.5 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 13:48:08 GMT
etag: "4057-65e5d118-8b3d1286ffc6e2b5;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4248
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/uploads/elementor/css/post-8.css?ver=1703315912 | 216.219.87.98 | 200 OK | 350 B |
URL GET HTTP/3kotadiainc.com/wp-content/uploads/elementor/css/post-8.css?ver=1703315912 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (1206), with no line terminators Hash29a12645d412172dbb3f12df6b91775c 95e8aad1b6d0b22b943f58ad67c087160ed50781 77b7e0ae234de21116488754266cb0f4907c890f2c8732c541ee405c343fa101
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/elementor/css/post-8.css?ver=1703315912 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: text/css
last-modified: Sat, 23 Dec 2023 07:18:32 GMT
etag: "4b6-658689c8-705967a6e8f25db1;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 350
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/uploads/elementor/css/global.css?ver=1703315915 | 216.219.87.98 | 200 OK | 772 B |
URL GET HTTP/3kotadiainc.com/wp-content/uploads/elementor/css/global.css?ver=1703315915 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (6697) Hashe84bb42fcd9677d0514929e3bbb2d036 23d5a2b9b66bcce375fdf810e1ae26f1dc6edd23 cc708ca90d6ef93a3c6d497fbe68e7f2197e22da64951fa4abe7ff00cae63998
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/elementor/css/global.css?ver=1703315915 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: text/css
last-modified: Sat, 23 Dec 2023 07:18:35 GMT
etag: "25ea-658689cb-d6b1fa2915405a56;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 772
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/uploads/elementor/css/post-17.css?ver=1709561033 | 216.219.87.98 | 200 OK | 3.6 kB |
URL GET HTTP/3kotadiainc.com/wp-content/uploads/elementor/css/post-17.css?ver=1709561033 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (17145), with CRLF, LF line terminators Hashf6f861fa7cd10d325c3176154144e5d1 f968760e5aff518635adaccc4247944fa725b231 c5278c98f9675fd405ae988c9a7529adf1634173e4c0e7c2876d238c969a3698
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/elementor/css/post-17.css?ver=1709561033 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 14:03:53 GMT
etag: "76f2-65e5d4c9-fffc3f50a47d7d60;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3633
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/plugins/theme-builder-for-elementor/assets/css/bootstrap.css?ver=1.2.2 | 216.219.87.98 | 200 OK | 597 B |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/theme-builder-for-elementor/assets/css/bootstrap.css?ver=1.2.2 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (540) Hashe31bd8fd453e2659211735bdfc891a78 ae36980cdf959379c4a29d850bd1294294275430 ef691c6c62214071358c46b41fd11504406dce463aa5b4b92ab13102beff957c
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/theme-builder-for-elementor/assets/css/bootstrap.css?ver=1.2.2 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: text/css
last-modified: Sun, 05 Nov 2023 07:07:14 GMT
etag: "e9c-65473f22-cf7a2bee270b14d3;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 597
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 | 216.219.87.98 | 200 OK | 284 B |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (489) Hash144e43c3b3d8ea5b278c062c202c92f2 3c037057a419245849747b4762d09d88cab66fc1 9cd63b8cea25045c14623c538d26752518a58c0c682795ce6ad3078976c65a37
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 13:48:06 GMT
etag: "2a3-65e5d116-7c2dbd9f73a9986b;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 284
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 | 216.219.87.98 | 200 OK | 2.3 kB |
URL GET HTTP/3kotadiainc.com/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (8171), with no line terminators Hashdda652db133fddb9b80a05c6d1b5c540 60c8514c57a5db2980c4b046b0dd479bd427357b c1a9a3e223bad631dff12d33b5499eb145cb08d8621c20d9d73870e78d97afe4
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: application/javascript
last-modified: Wed, 18 Jan 2023 16:46:32 GMT
etag: "1feb-63c82268-a908db3015e4bffe;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2320
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0 | 216.219.87.98 | 200 OK | 2.4 kB |
URL GET HTTP/3kotadiainc.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (6625), with no line terminators Hashfd7ef2e4737acd74fd0dcdc3b515e304 0d792b33f12a48ee8aaaf2560a63a5682470645b 1d52e1ac7d3bc25a8b0ffc257153f9dd50249f96fe9a4df5e0d771241a69062c
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: application/javascript
last-modified: Wed, 08 Nov 2023 05:03:52 GMT
etag: "19e1-654b16b8-81d617644a72e5a8;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2402
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/xstore.min.css?ver=1.0 | 216.219.87.98 | 200 OK | 37 kB |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/xstore.min.css?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (49271), with CRLF line terminators Hash5944be0551ac83cd47105a517c069d93 5e9ce4e994c5d84934b2be61b2e694593aed2e08 0bc25637032e880e8e56ec4ca0fb5cc980a70f78d4c3166e12b6893e503433f7
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/xstore.min.css?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 14:06:02 GMT
etag: "354f1-65e5d54a-4202981aa8747584;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 36661
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/css/modules/back-top.min.css?ver=1.0 | 216.219.87.98 | 200 OK | 451 B |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/css/modules/back-top.min.css?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (1596), with no line terminators Hash6d5b34600f57a4c789f0081ba5522f70 a4621449d3a8deed8dcadc30f903e77532a6f0de 3b4b12a9c3aa7c167570ccb69d58f283dac46d3307fe276c28cf3781e092270e
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/css/modules/back-top.min.css?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 14:06:03 GMT
etag: "63c-65e5d54b-4b8b5ec7cc0eee38;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 451
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/css/elementor.min.css?ver=1.0 | 216.219.87.98 | 200 OK | 7.2 kB |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/css/elementor.min.css?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (49276), with no line terminators Hash8cc9ea6e87446225c697a76a38457551 e2970ec52408d9dc30962b94fd8033315656859b e5a004bf96dbd9262b410ed6623987d4b67cdd80c6b02088dbe3e6d279ffc3e7
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/css/elementor.min.css?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 14:06:02 GMT
etag: "c07c-65e5d54a-ca73f008a40652f9;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 7232
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/css/modules/layout/mobile-panel.min.css?ver=1.0 | 216.219.87.98 | 200 OK | 1.1 kB |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/css/modules/layout/mobile-panel.min.css?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (4909), with no line terminators Hash64b030ba3988fdba482ea8490e3bdbfb 0740bbe7f4bbdd7ee7e9e05236321032d83f2a33 be1011afa67ac731e94f0e2beb18abe6b61dee6e11709e41d4743d0a100c9e6c
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/css/modules/layout/mobile-panel.min.css?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 14:06:04 GMT
etag: "132d-65e5d54c-da1ab36c74061448;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1118
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/css/modules/woocommerce/global.min.css?ver=1.0 | 216.219.87.98 | 200 OK | 2.6 kB |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/css/modules/woocommerce/global.min.css?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (15279), with no line terminators Hash150b11d56c3daa3467e96c1fcdd9efbc a2ef202e3377c864e640a8ff4562df24a63388fb bd23e2b21d37eb7ac2aee4afbf9346366a1e63e043b1a8b530b593f56daee924
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/css/modules/woocommerce/global.min.css?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 14:06:04 GMT
etag: "3baf-65e5d54c-53225d3296a18673;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2590
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/css/modules/contact-forms.min.css?ver=1.0 | 216.219.87.98 | 200 OK | 1.0 kB |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/css/modules/contact-forms.min.css?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (4381), with no line terminators Hashb66fbd069defe01b816f0257b75bed46 ec658862eb698463dd563f126dbe7621b7c61044 1a38472d43b9550fcff5191b88476776c236d22202628ed4405d65a051858eb7
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/css/modules/contact-forms.min.css?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 14:06:03 GMT
etag: "111d-65e5d54b-2b2a25ee47d0ff85;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1026
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/css/modules/layout/header/parts/menu.min.css?ver=1.0 | 216.219.87.98 | 200 OK | 1.9 kB |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/css/modules/layout/header/parts/menu.min.css?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (14314), with no line terminators Hashcdffa12c66ee1f76ef867142ac1c10b3 da93511f58804236b539a9252b9b0f9b25f04001 53b3e246cd192fe5c5fb8bab6f0554d08da1475ffeeec5fb6d6455b33212c28f
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/css/modules/layout/header/parts/menu.min.css?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 14:06:09 GMT
etag: "37ea-65e5d551-51c926d2953d23b3;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1885
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/css/modules/layout/header/parts/search.min.css?ver=1.0 | 216.219.87.98 | 200 OK | 1.7 kB |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/css/modules/layout/header/parts/search.min.css?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (6331), with no line terminators Hasheb4c292dd41072efef63c2ded08c914c 200688df50b5dacdc57c3048f819247df22ef784 6443537c4f5244fded423630616de7388a0c9c48ce35ba1d66dfe51848e234fe
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/css/modules/layout/header/parts/search.min.css?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 14:06:09 GMT
etag: "18bb-65e5d551-d90639c001ca2225;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1737
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/uploads/xstore/kirki-styles.css?ver=1709559269920 | 216.219.87.98 | 200 OK | 7.3 kB |
URL GET HTTP/3kotadiainc.com/wp-content/uploads/xstore/kirki-styles.css?ver=1709559269920 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (64893), with no line terminators Hashcb6044072117b53875eb37ad85d9eb56 0a3ceeaaac8a229220d2e6c3f02bd5711278409c cfd53bf436976831d121e9483b21cae98034557a81d14ece4bb40ac03a0ef989
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/xstore/kirki-styles.css?ver=1709559269920 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 13:34:29 GMT
etag: "fd7d-65e5cde5-b1a8b340ad18953d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 7257
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/kotadiainc_new/style.css?ver=1.0 | 216.219.87.98 | 200 OK | 1.2 kB |
URL GET HTTP/3kotadiainc.com/wp-content/themes/kotadiainc_new/style.css?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
Hash78968799ea91f3abe156a2da598c3cc3 cb30260d2d22b16a86ed960be757bba3fd247d40 7468bb839d1b448daba5be40bc34f2535585238d653d9a727b0c7082ea3f759d
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/kotadiainc_new/style.css?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: text/css
last-modified: Sat, 23 Dec 2023 10:33:05 GMT
etag: "105f-6586b761-d0d7556cc970761;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1172
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 | 216.219.87.98 | 200 OK | 12 kB |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (57726) Hasheeb705d0bdccfd645d3bbd46dd1fbab3 066def290f42ed8c00860e573cc880bd46e9ced4 d01a2ba2805c78957e15a2958135de0f3cb88e95159dd0f6c0a032bd76b1b0e9
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 13:48:06 GMT
etag: "e238-65e5d116-1eec8a773875f218;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 12133
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 | 216.219.87.98 | 200 OK | 14 kB |
URL GET HTTP/3kotadiainc.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (38582), with no line terminators Hash92f8c01350c630f414f5d0b015ad6864 eab40ab4e77f92f2fb17684aaf44b579a51b8034 17b79ece7ef9d1454a90156690d33d64387b67a7a7548fc826012512e287a937
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: application/javascript
last-modified: Wed, 03 Apr 2024 05:03:53 GMT
etag: "96be-660ce339-b524ac0e1456975d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 13501
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-includes/js/dist/hooks.min.js?ver=2810c76e705dd1a53b18 | 216.219.87.98 | 200 OK | 1.5 kB |
URL GET HTTP/3kotadiainc.com/wp-includes/js/dist/hooks.min.js?ver=2810c76e705dd1a53b18 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (4272) Hash072d3f6e5c446f57d5c544f9931860e2 ee6aa3d65b474309376468b24bb6f829a4514809 2cb546fbdda7995d374fffa4b2f6530bbcf57d014639ddf76de45df43d593045
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/dist/hooks.min.js?ver=2810c76e705dd1a53b18 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: application/javascript
last-modified: Wed, 03 Apr 2024 05:03:55 GMT
etag: "10d3-660ce33b-57af4912a64e591c;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1460
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 | 216.219.87.98 | 200 OK | 30 kB |
URL GET HTTP/3kotadiainc.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: application/javascript
last-modified: Wed, 08 Nov 2023 05:03:57 GMT
etag: "15601-654b16bd-10cade0443cfc355;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 29744
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.6.1 | 216.219.87.98 | 200 OK | 893 B |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.6.1 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (1679) Hash53e07784d8fab2f50b99ff9868124992 d8739feb2845a3fa4a8c085aeabc4eb0e6945590 1533d5bc82424a9a3ac37a7fe543925909d25715d16938b9e02c728c86fd86e8
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.6.1 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: application/javascript
last-modified: Mon, 04 Mar 2024 13:48:29 GMT
etag: "735-65e5d12d-2ec8cc9edbed8a35;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 893
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/plugins/captcha-for-contact-form-7/compatibility/elementor/assets/f12-cf7-captcha-elementor.js?ver=6.5.2 | 216.219.87.98 | 200 OK | 424 B |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/captcha-for-contact-form-7/compatibility/elementor/assets/f12-cf7-captcha-elementor.js?ver=6.5.2 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text Hash0cec8bb8f9f364e7c3a2282abf20ee5e de92e057b5f201a2750ee1e58000de195845a24c 174fad0ee088b0d09a71172093ec7f7bcaa91379d2763135e9355bfa9bf8e882
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/captcha-for-contact-form-7/compatibility/elementor/assets/f12-cf7-captcha-elementor.js?ver=6.5.2 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: application/javascript
last-modified: Fri, 09 Feb 2024 16:20:50 GMT
etag: "481-65c650e2-4e500fe010271aed;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 424
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 | 216.219.87.98 | 200 OK | 4.7 kB |
URL GET HTTP/3kotadiainc.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (13479) Hash9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: application/javascript
last-modified: Fri, 09 Jun 2023 11:19:24 GMT
etag: "3509-64830abc-e9a64979c19d8eea;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4678
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/js/etheme-scripts.min.js?ver=1.0 | 216.219.87.98 | 200 OK | 14 kB |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/js/etheme-scripts.min.js?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (26600), with CRLF line terminators Hash7668b4c16e642db1f99cf3a6f87372fd 02c9be8791c34ca723eda360306b5030fd29081c f0d8627dfe2df62c1a4a060e290979778e303b2d5b1ce921a9de07b3410c4218
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/js/etheme-scripts.min.js?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: application/javascript
last-modified: Mon, 04 Mar 2024 14:06:03 GMT
etag: "b9da-65e5d54b-7a727665ac8ec8aa;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 13879
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/plugins/et-core-plugin/packages/st-woo-swatches/public/js/frontend.min.js?ver=1.0 | 216.219.87.98 | 200 OK | 5.6 kB |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/et-core-plugin/packages/st-woo-swatches/public/js/frontend.min.js?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (25908), with no line terminators Hash2d7f5bdce0e6acf5b1bc5cdf5b3b522b f773b069012811759ff79f9aa2633e8136e41995 3d220561841ec2514eabb2ff6b7f1527663078f82b1b493dec4222e3dc41cfeb
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/et-core-plugin/packages/st-woo-swatches/public/js/frontend.min.js?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: application/javascript
last-modified: Mon, 04 Mar 2024 13:48:42 GMT
etag: "6534-65e5d13a-4c3e4a02c7b3a45;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5643
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/plugins/et-core-plugin/packages/xstore-wishlist/assets/js/script.min.js?ver=1.0 | 216.219.87.98 | 200 OK | 3.4 kB |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/et-core-plugin/packages/xstore-wishlist/assets/js/script.min.js?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (10606) Hash0f3e55864511c76d08e11299eb91232d 2d06d0137f6092f78e3160eca0cb4fe93cad961e d31921f9cf7afaece566d6dfcef69c43d69e8480f3a4037c548a93c1c2027f78
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/et-core-plugin/packages/xstore-wishlist/assets/js/script.min.js?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: application/javascript
last-modified: Mon, 04 Mar 2024 13:48:43 GMT
etag: "379a-65e5d13b-99c1691e5d17b027;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3413
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/plugins/et-core-plugin/packages/xstore-compare/assets/js/script.min.js?ver=1.0 | 216.219.87.98 | 200 OK | 3.6 kB |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/et-core-plugin/packages/xstore-compare/assets/js/script.min.js?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (14792), with no line terminators Hasha72b9a595549b54dc97b24ee7b2acd6e a3fa994484e59596ad3dc45edeb87665f3a3ddea dbf3040a0e86954d6ae9b9c82cff2603dd57f689eb4bd96426fc64fbf20b42a0
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/et-core-plugin/packages/xstore-compare/assets/js/script.min.js?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: application/javascript
last-modified: Mon, 04 Mar 2024 13:48:43 GMT
etag: "39c8-65e5d13b-436129745b6101b4;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3573
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=8.6.1 | 216.219.87.98 | 200 OK | 989 B |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=8.6.1 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (3058), with no line terminators Hashe56bc891d47a0687c80dbe086a5b1e90 a9e643e186e62cbb3f0e518f473b8702c2945802 4f0a4e5ff7378b48f06c23a8ff4e52633c828fee56f2495085eeea5c1a7f8aba
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=8.6.1 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: application/javascript
last-modified: Mon, 04 Mar 2024 13:48:28 GMT
etag: "bf2-65e5d12c-f01ebd7e215b5af1;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 989
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.6.1 | 216.219.87.98 | 200 OK | 3.3 kB |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.6.1 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (9242) Hashef56117d1bb5cc41aa6bd127a49c7640 b9c2ed774177fc0fceba5cb58113024b23fe4fb7 d151f8c0b2659cfb63704d68654ad8d9437ae9da4410536f63ddec21689a0620
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.6.1 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: application/javascript
last-modified: Mon, 04 Mar 2024 13:48:28 GMT
etag: "25a4-65e5d12c-b8671f9ac7e28317;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3277
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=8.6.1 | 216.219.87.98 | 200 OK | 684 B |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=8.6.1 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (2139), with no line terminators Hash6d3b3d63df025e97f370c5efab2c96da 78c0c8e7504f9314b2e9fd714bbab530af52f2af 8c0b5e384ae00c512f4bb1ba5e2fe622fab4bfc541c99555df38c19c329d3fe6
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=8.6.1 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: application/javascript
last-modified: Mon, 04 Mar 2024 13:48:28 GMT
etag: "85b-65e5d12c-36536736941d5c98;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 684
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/uploads/2023/10/kotadia_logo.svg | 216.219.87.98 | 200 OK | 9.5 kB |
URL GET HTTP/3kotadiainc.com/wp-content/uploads/2023/10/kotadia_logo.svg IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeSVG Scalable Vector Graphics image Hashf202ab515d7e15e73fe2c0ae911e2721 b184ee468c880534515af6474a54fcafa2dceb34 7b79f3002454faae8314d179ed2c0fe12dbcdad216307fe9d905a5919bd72371
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/10/kotadia_logo.svg HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:39 GMT
content-type: image/svg+xml
last-modified: Sun, 15 Oct 2023 18:55:08 GMT
etag: "3154-652c358c-8c410f44c6f5e9ce;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 9516
date: Thu, 18 Apr 2024 07:43:39 GMT
server: LiteSpeed
|
|
| pixel.wp.com/g.gif?x_stats-initial-visibility=visible&v=wpcom-no-pv&rand=0.6811236818090196 | 192.0.76.3 | 200 OK | 50 B |
URL GET HTTP/3pixel.wp.com/g.gif?x_stats-initial-visibility=visible&v=wpcom-no-pv&rand=0.6811236818090196 IP192.0.76.3:443
CertificateIssuerSectigo Limited Subject*.wp.com Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2 ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT
File typeGIF image data, version 89a, 6 x 5 Hashe4d673a55c5656f19ef81563fb10884c 1f2d8ed221d39329251ad3a6ff1edb20b7219443 f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?x_stats-initial-visibility=visible&v=wpcom-no-pv&rand=0.6811236818090196 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: nginx
date: Thu, 18 Apr 2024 07:43:39 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
|
|
| kotadiainc.com/wp-content/uploads/custom-fonts/2023/10/Outfit-Regular.ttf | 216.219.87.98 | 200 OK | 20 kB |
URL GET HTTP/3kotadiainc.com/wp-content/uploads/custom-fonts/2023/10/Outfit-Regular.ttf IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeTrueType Font data, 16 tables, 1st "GDEF", 16 names, Microsoft, language 0x409, Copyright 2021 The Outfit Project Authors (https://github.com/Outfitio/Outfit-Fonts)OutfitRegula Hash8b7f83ac329f6b122ad42fe702a804ae bcb85df11636ccfe003e92f12515c29c3be865f5 3e2fc3e80b368b43a5db5fb7949ae99efb9b90e788dade231a00752a06c48a29
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/custom-fonts/2023/10/Outfit-Regular.ttf HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: application/x-font-ttf
last-modified: Sun, 29 Oct 2023 15:52:23 GMT
etag: "8de8-653e7fb7-6fdc30c4e0dc3ce1;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 20235
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/fonts/xstore-icons-bold.ttf | 216.219.87.98 | 200 OK | 26 kB |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/fonts/xstore-icons-bold.ttf IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeTrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, xstore-icons Hash9674edf5608b84811a6be3c68cc5c722 0ef336e5cc51d1389d8302a9d3c9ec64a99d904d a9c0245f2c528f9696bf0909d8e40f7a488437a1698cab01f479ac6b0f619f2f
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/fonts/xstore-icons-bold.ttf HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: application/x-font-ttf
last-modified: Mon, 04 Mar 2024 14:06:03 GMT
etag: "b958-65e5d54b-abcddab273d23c07;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 26272
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.5.2 | 142.250.74.106 | 200 OK | 78 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.5.2 IP142.250.74.106:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typegzip compressed data, max compression Hash9b42179d3406aa58cafe0674bf0904af 3cdfe98701fd62f626fe013c94229cc7bf17656b c64173c026f6e13d6768a8ff7cf08e1ee767068c2e6c3c1e1819eefa51983d58
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.5.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 18 Apr 2024 07:43:39 GMT
date: Thu, 18 Apr 2024 07:43:39 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| kotadiainc.com/wp-content/themes/xstore/css/modules/woocommerce/archive.min.css?ver=1.0 | 216.219.87.98 | 200 OK | 6.8 kB |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/css/modules/woocommerce/archive.min.css?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (46821), with no line terminators Hashd1f5e947475d99fda964c424fe43846f 7d94d32e5b4acb9d67d8c5a942068f89d04e7232 31668d5b7292abf1b3a3a630771181f1381190b20e3295d4e60e4f188d72f873
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/css/modules/woocommerce/archive.min.css?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 14:06:04 GMT
etag: "b6e5-65e5d54c-7c0a4788cd1c2c2a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6815
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/css/modules/builders/categories-carousel.min.css?ver=1.0 | 216.219.87.98 | 200 OK | 141 B |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/css/modules/builders/categories-carousel.min.css?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (357), with no line terminators Hash6fb301291d151c2ef4cf87277eee39c3 fc00852de5626528f50c49e4b120b9a802d26887 0d9d8e7aa309cb6efe70aff982c6a715a4358d9847b560e9b45140eb3f5751e1
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/css/modules/builders/categories-carousel.min.css?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 14:06:04 GMT
etag: "165-65e5d54c-1f10660307bd9e19;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 141
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/css/modules/builders/elementor/categories.min.css?ver=1.0 | 216.219.87.98 | 200 OK | 898 B |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/css/modules/builders/elementor/categories.min.css?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (4654), with no line terminators Hashfed609d91b54f1278b7106e51dca9a6a 2e46ecef084801e2d236297f19bb5061b6bbf8ac 28f775e3b3bab186a1206c6eb04eb0768d54b1d06801dae4f3287b24cff10718
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/css/modules/builders/elementor/categories.min.css?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 14:06:07 GMT
etag: "122e-65e5d54f-62b2433376e39966;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 898
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/uploads/2023/10/ifixit_manta_open_angled.webp | 216.219.87.98 | 200 OK | 6.3 kB |
URL GET HTTP/3kotadiainc.com/wp-content/uploads/2023/10/ifixit_manta_open_angled.webp IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 213x213, Scaling: [none]x[none], YUV color, decoders should clamp Hash4f9759802a8a8935ee432cb54fab94b6 fa9660085e0cf2d3e401685dc4173116c1cb5a6a 16d0298c03d4392a0a94284225d40c5aef86667cf31063e6389b2f1e2c942c6f
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/10/ifixit_manta_open_angled.webp HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: image/webp
last-modified: Tue, 11 Jul 2023 22:46:12 GMT
etag: "189c-64addbb4-76ad8c0b35c0e5f3;;;"
accept-ranges: bytes
content-length: 6300
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
vary: User-Agent
|
|
| kotadiainc.com/wp-content/uploads/2023/10/79_HUSC-PP-BL.jpg | 216.219.87.98 | 200 OK | 42 kB |
URL GET HTTP/3kotadiainc.com/wp-content/uploads/2023/10/79_HUSC-PP-BL.jpg IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=500, bps=0, PhotometricInterpretation=BlackIsZero, orientation=upper-left, width=500], progressive, precision 8, 500x500, components 1 Hashf565b8c68c93225785fcc19418cb74bb 6fdecdbf493011ab6fe65ea5f59e0da00946c28c a37483f7510e8284d05c7164a4f71ff9e3ebfd72cdfbee669a39d8dec7a92ea2
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/10/79_HUSC-PP-BL.jpg HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: image/jpeg
last-modified: Tue, 11 Jul 2023 22:46:14 GMT
etag: "a4bd-64addbb6-6ef984ce24526e3a;;;"
accept-ranges: bytes
content-length: 42173
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
vary: User-Agent
|
|
| wh1264048.ispot.cc/wp-content/uploads/custom-fonts/2023/11/Outfit-Regular.ttf | 216.219.87.98 | 200 OK | 20 kB |
URL GET HTTP/2wh1264048.ispot.cc/wp-content/uploads/custom-fonts/2023/11/Outfit-Regular.ttf IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subjectwh1264048.ispot.cc Fingerprint4E:C1:20:60:A2:B3:8A:21:5F:29:BC:5F:9C:95:FF:D7:44:13:93:FB ValidityWed, 20 Mar 2024 06:28:20 GMT - Tue, 18 Jun 2024 06:28:19 GMT
File typeTrueType Font data, 16 tables, 1st "GDEF", 16 names, Microsoft, language 0x409, Copyright 2021 The Outfit Project Authors (https://github.com/Outfitio/Outfit-Fonts)OutfitRegula Hash8b7f83ac329f6b122ad42fe702a804ae bcb85df11636ccfe003e92f12515c29c3be865f5 3e2fc3e80b368b43a5db5fb7949ae99efb9b90e788dade231a00752a06c48a29
GET /wp-content/uploads/custom-fonts/2023/11/Outfit-Regular.ttf HTTP/1.1
Host: wh1264048.ispot.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kotadiainc.com
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: application/x-font-ttf
last-modified: Thu, 02 Nov 2023 17:27:35 GMT
etag: "8de8-6543dc07-205b95f69e7c97f6;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 20235
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| kotadiainc.com/wp-content/themes/xstore/images/drag.png | 216.219.87.98 | 200 OK | 358 B |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/images/drag.png IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typePNG image data, 32 x 18, 8-bit colormap, non-interlaced Hash778591fc00cc3a820b03a74d73392ce0 c62cab9c2c5a46db32919f0a22c8938de86ab675 e934dcbb43671ccceb743e8ede2eb9ab38846a2836e07cf0d88d93aef510dab1
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/images/drag.png HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/wp-content/themes/xstore/xstore.min.css?ver=1.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: image/png
last-modified: Mon, 04 Mar 2024 14:06:03 GMT
etag: "166-65e5d54b-1c536fce100f2fe9;;;"
accept-ranges: bytes
content-length: 358
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
vary: User-Agent
|
|
| wh1264048.ispot.cc/wp-content/uploads/custom-fonts/2023/11/Outfit-Bold.ttf | 216.219.87.98 | 200 OK | 20 kB |
URL GET HTTP/2wh1264048.ispot.cc/wp-content/uploads/custom-fonts/2023/11/Outfit-Bold.ttf IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subjectwh1264048.ispot.cc Fingerprint4E:C1:20:60:A2:B3:8A:21:5F:29:BC:5F:9C:95:FF:D7:44:13:93:FB ValidityWed, 20 Mar 2024 06:28:20 GMT - Tue, 18 Jun 2024 06:28:19 GMT
File typeTrueType Font data, 16 tables, 1st "GDEF", 16 names, Microsoft, language 0x409, Copyright 2021 The Outfit Project Authors (https://github.com/Outfitio/Outfit-Fonts)OutfitBold1. Hashe788bf14fc28eda0d0c134438d5a99de dff38f4c216b9145d9dd284a78fce52e057e2194 d42cda279e8e51b8bdf4caf1924d2fd6a1cc11e61d896ff8bd85ce99b416c23f
GET /wp-content/uploads/custom-fonts/2023/11/Outfit-Bold.ttf HTTP/1.1
Host: wh1264048.ispot.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kotadiainc.com
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: application/x-font-ttf
last-modified: Thu, 02 Nov 2023 17:28:03 GMT
etag: "8de0-6543dc23-427c9dd20345e302;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 20233
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| kotadiainc.com/wp-content/uploads/custom-fonts/2023/10/Outfit-Bold.ttf | 216.219.87.98 | 200 OK | 20 kB |
URL GET HTTP/3kotadiainc.com/wp-content/uploads/custom-fonts/2023/10/Outfit-Bold.ttf IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeTrueType Font data, 16 tables, 1st "GDEF", 16 names, Microsoft, language 0x409, Copyright 2021 The Outfit Project Authors (https://github.com/Outfitio/Outfit-Fonts)OutfitBold1. Hashe788bf14fc28eda0d0c134438d5a99de dff38f4c216b9145d9dd284a78fce52e057e2194 d42cda279e8e51b8bdf4caf1924d2fd6a1cc11e61d896ff8bd85ce99b416c23f
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/custom-fonts/2023/10/Outfit-Bold.ttf HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: application/x-font-ttf
last-modified: Sun, 29 Oct 2023 15:52:23 GMT
etag: "8de0-653e7fb7-2b4f37605d6b5d0e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 20233
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/uploads/2023/10/1632470364.jpg | 216.219.87.98 | 200 OK | 302 kB |
URL GET HTTP/3kotadiainc.com/wp-content/uploads/2023/10/1632470364.jpg IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 1920x910, components 3 Size302 kB (301996 bytes) Hashcf9072b817e064080a65a79e31eb6eac 02cf88eb57a85ffdef092aae39382ff3eaae6b92 74c95ad981c40ff884bb5c8d034bcc10856778286fcbdbaecbb485f8efc58bd1
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/10/1632470364.jpg HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: image/jpeg
last-modified: Sun, 08 Oct 2023 10:55:34 GMT
etag: "49bac-65228aa6-c8ba15a64b138635;;;"
accept-ranges: bytes
content-length: 301996
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
vary: User-Agent
|
|
| kotadiainc.com/wp-content/uploads/2023/10/6501-1.jpg | 216.219.87.98 | 200 OK | 188 kB |
URL GET HTTP/3kotadiainc.com/wp-content/uploads/2023/10/6501-1.jpg IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 1200x1200, components 3 Size188 kB (188490 bytes) Hash4280c4b6d7944b65b7e8afcee959b552 3d224c81f48bf4e833aea14b346dfccdfb2cf038 46c72b7bc0c81c34fd0c570ae9dd62aef198c194b9b3d8547264e880f7b776e6
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/10/6501-1.jpg HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/wp-content/uploads/elementor/css/post-17.css?ver=1709561033
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: image/jpeg
last-modified: Fri, 27 Oct 2023 17:17:27 GMT
etag: "2e04a-653bf0a7-4feb242aff516b57;;;"
accept-ranges: bytes
content-length: 188490
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
vary: User-Agent
|
|
| kotadiainc.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css | 216.219.87.98 | 200 OK | 861 B |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (9881) Hash175f14838f3c42d97ec8962091dfe893 13542f9c7072b24a964d5de871ca8e1b89b078fe 87b0c45fdb010bb2f95378bf714d2c82e60ba314dd9f8ef89cb813471110474f
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/css/widget-icon-list.min.css HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 13:48:01 GMT
etag: "26c1-65e5d111-cb8c134d09bbb768;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 861
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| stats.wp.com/w.js?ver=202416 | 192.0.76.3 | 200 OK | 229 kB |
URL GET HTTP/2stats.wp.com/w.js?ver=202416 IP192.0.76.3:443
CertificateIssuerSectigo Limited Subject*.wp.com Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2 ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (12788), with no line terminators Size229 kB (228678 bytes) Hashef880be61458e4e89c9cb9d99d2d300e c7740f6524cfab6084682b1ce320b2e5e9c4d4cc 79674b01741c3978417b6b9b4b98d125755e7bb468979d5cd593eac4b94cdb91
GET /w.js?ver=202416 HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 07:43:39 GMT
content-type: application/javascript
vary: Accept-Encoding
x-minify: t
x-minify-cache: hit
etag: W/12827-1705538370042.3745
content-encoding: br
expires: Tue, 08 Apr 2025 18:06:53 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| kotadiainc.com/wp-content/uploads/elementor/css/post-14741.css?ver=1703315912 | 216.219.87.98 | 200 OK | 757 B |
URL GET HTTP/3kotadiainc.com/wp-content/uploads/elementor/css/post-14741.css?ver=1703315912 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (7204), with no line terminators Hashdce9ef546c3786a6613c446ff70f9baf dcc7378de696210891344a10d4020f19e6db58de 9db431bc42a0e1602c1a12910d8720fafa0cd26e620c51115532c22ac589bc3d
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/elementor/css/post-14741.css?ver=1703315912 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: text/css
last-modified: Sat, 23 Dec 2023 07:18:32 GMT
etag: "1c24-658689c8-cc2500b1fe7b3f47;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 757
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/uploads/elementor/css/post-14792.css?ver=1703315910 | 216.219.87.98 | 200 OK | 410 B |
URL GET HTTP/3kotadiainc.com/wp-content/uploads/elementor/css/post-14792.css?ver=1703315910 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (1701), with no line terminators Hash938d30124d3f1cef0fd14014c2be812d c3f12830baa4717298d82e78706b4fae4cb19d02 a8aaa476c8737a6648788675e2dd43a375ae263599daefd9aa158dfe650e48ab
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/elementor/css/post-14792.css?ver=1703315910 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: text/css
last-modified: Sat, 23 Dec 2023 07:18:30 GMT
etag: "6a5-658689c6-6a4d8e89f0b1c86d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 410
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/css/modules/builders/elementor/etheme-icon-box.min.css?ver=1.0 | 216.219.87.98 | 200 OK | 515 B |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/css/modules/builders/elementor/etheme-icon-box.min.css?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (2840), with no line terminators Hash7d597a814d3f5b93c8b784f53c1d12b3 186b415a5b3ef2d64582066272fafb9fc597f58f d93bed462ca8a82826a955471397f5b6a7ab790eb22e02f9bdbca3d7580c491c
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/css/modules/builders/elementor/etheme-icon-box.min.css?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 14:06:07 GMT
etag: "b18-65e5d54f-594ccaeb846d2c42;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 515
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/css/modules/builders/elementor/etheme-text-button.min.css?ver=1.0 | 216.219.87.98 | 200 OK | 1.0 kB |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/css/modules/builders/elementor/etheme-text-button.min.css?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (6352), with no line terminators Hash903ae25205702d38ca579c148398ae32 06335bbcaefaea3ce82ecb8769144d7d7c95a9c5 a1538753fab8a1f9062c5dd9605b0872e06e1a87c67bacd9ab4278b1e36167bc
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/css/modules/builders/elementor/etheme-text-button.min.css?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 14:06:07 GMT
etag: "18d0-65e5d54f-337570748cb1c7e4;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1025
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/uploads/elementor/css/post-14807.css?ver=1703315910 | 216.219.87.98 | 200 OK | 299 B |
URL GET HTTP/3kotadiainc.com/wp-content/uploads/elementor/css/post-14807.css?ver=1703315910 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (1257), with no line terminators Hashca5740fe4b779a5ffc5b47d1bac45f0d 7dafe3ba425e82b44435a56fef9be05a8a9fabd6 da3a3538a85592a9ff4e5f1aeb2e0c0190b67c43349accd7e8656acfdab91359
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/elementor/css/post-14807.css?ver=1703315910 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: text/css
last-modified: Sat, 23 Dec 2023 07:18:30 GMT
etag: "4e9-658689c6-968c198bbf348b07;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 299
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/css/modules/layout/header/parts/ajax-search.min.css?ver=1.0 | 216.219.87.98 | 200 OK | 1.1 kB |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/css/modules/layout/header/parts/ajax-search.min.css?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (4498), with no line terminators Hashdd566cf64a2fdcc09f543e5c6eecec7a f40a7b93d32991304d6f0dfbd4545457b8f9c6fc 0bd1159c529b33b9e3291fa8f2fb183fc8dc60b1c5c2ef732e50d4614eb3e446
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/css/modules/layout/header/parts/ajax-search.min.css?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 14:06:09 GMT
etag: "1192-65e5d551-c8a57e836f72ecce;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1066
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/css/modules/layout/off-canvas.min.css?ver=1.0 | 216.219.87.98 | 200 OK | 1.4 kB |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/css/modules/layout/off-canvas.min.css?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (6398), with no line terminators Hash3aa9c1f542178d01da324a7f35f29826 10608b1bb16b0a1fe135db2dd530a2c4678fdcff 522e00cd4bc6c85cb96fdc55079f115efb57df19c5a7b57d19223b6ac71158e5
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/css/modules/layout/off-canvas.min.css?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 14:06:04 GMT
etag: "18fe-65e5d54c-eb4510d581a91fbd;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1425
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/css/modules/layout/header/parts/mobile-menu.min.css?ver=1.0 | 216.219.87.98 | 200 OK | 1.2 kB |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/css/modules/layout/header/parts/mobile-menu.min.css?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (6439), with no line terminators Hasheb8586f666022eb946a17d51cefcabee 0ae811675abde1c5300c8dc2f6498e3d1633bb02 d51a82971e2dee342d55dd7913db5e73e307dd06462a786000baa3c551af1a26
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/css/modules/layout/header/parts/mobile-menu.min.css?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 14:06:09 GMT
etag: "1927-65e5d551-77baa6a5372c66c7;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1173
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/css/modules/builders/elementor/etheme-posts.min.css?ver=1.0 | 216.219.87.98 | 200 OK | 1.7 kB |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/css/modules/builders/elementor/etheme-posts.min.css?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (9325), with no line terminators Hashf67baecc15ff903482737d98504e6f07 5cb99bc90764f2276b92de10185b2d536082215d 25af8f9f17e3d34a9e6c804d83a4ecd2201ed06bf586ab16a3421e9309e3c811
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/css/modules/builders/elementor/etheme-posts.min.css?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 14:06:07 GMT
etag: "246d-65e5d54f-d1b7bb4fe21354cb;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1674
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/css/modules/woocommerce/cart-widget.min.css?ver=1.0 | 216.219.87.98 | 200 OK | 2.1 kB |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/css/modules/woocommerce/cart-widget.min.css?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (10869), with no line terminators Hash62241db2948ba1d34e958d7536e90dab 5d75fcbbd8b185b315cd73700689583c79679cb8 5892c45a945749adf0022ce27db49deadf8ed8cb048016ee53b056eb848f2e66
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/css/modules/woocommerce/cart-widget.min.css?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 14:06:04 GMT
etag: "2a75-65e5d54c-d41dc6a51225327c;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2140
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/plugins/et-core-plugin/app/assets/lib/xstore-icons/css/xstore-icons.css?ver=1.4.0 | 216.219.87.98 | 200 OK | 995 B |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/et-core-plugin/app/assets/lib/xstore-icons/css/xstore-icons.css?ver=1.4.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with CRLF line terminators Hashd4bfe18083f2d4b53b4a9b8e800e1bb6 67eac97c9437fa0afa6d00a0e3ae1b1a4f8cae07 65911250a1c1f0333776e296afd91a7b10f9a5c866878669fedcc4611505130e
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/et-core-plugin/app/assets/lib/xstore-icons/css/xstore-icons.css?ver=1.4.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 13:48:43 GMT
etag: "198f-65e5d13b-90addf1ad9cb771e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 995
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/css/modules/layout/toggles-by-arrow.min.css?ver=1.0 | 216.219.87.98 | 200 OK | 294 B |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/css/modules/layout/toggles-by-arrow.min.css?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (1100), with no line terminators Hashb6f0dad1812b55065c4f3d3fe0fc8777 a03514833443ddf2f573d836049985efd51dd632 f65d55a310933bfc716e8b1bbe2d9058c48e258a0a0a83ab1eebe0daac83b319
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/css/modules/layout/toggles-by-arrow.min.css?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 14:06:04 GMT
etag: "44c-65e5d54c-bcdcc97dc7ffcdb6;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 294
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/plugins/et-core-plugin/app/assets/lib/xstore-icons/css/bold.css?ver=1.4.0 | 216.219.87.98 | 200 OK | 312 B |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/et-core-plugin/app/assets/lib/xstore-icons/css/bold.css?ver=1.4.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with CRLF line terminators Hash93bb05721f2da91e017ebaad33766dd6 8ddcf6bece73f13b4f5e242fbce7526b0c5e2fed bc4e6e7aaca0367b3e2c05c0c211ecbbfc041f8cee61b64dea40753e4e22c967
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/et-core-plugin/app/assets/lib/xstore-icons/css/bold.css?ver=1.4.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 13:48:43 GMT
etag: "339-65e5d13b-eb0b0ad8784cd26d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 312
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/css/modules/builders/elementor/etheme-slides.min.css?ver=1.0 | 216.219.87.98 | 200 OK | 339 B |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/css/modules/builders/elementor/etheme-slides.min.css?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (1385), with no line terminators Hash321f516af0d52182f8546664c6c04f72 56f942d87a7d0fb61319432543451569412d4d2d 75f89123e599f5721bf63246ea2484c7fa668ad1e7f309924ca850644e38eeec
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/css/modules/builders/elementor/etheme-slides.min.css?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 14:06:07 GMT
etag: "569-65e5d54f-7fdb43b8df6ec0e6;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 339
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 | 216.219.87.98 | 200 OK | 283 B |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (491) Hash3eef8c9e589a6fd58292e79bbac4ba5d d3ebdb629b8d9c92380b14b1676b123398f0841b eea3d6ccda7f6503078cce9dc41176c1357af1c93a5b3625131ef7cf21c9d7c4
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 13:48:06 GMT
etag: "2a5-65e5d116-7f10715c08159c03;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 283
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/css/modules/builders/elementor/etheme-advanced-headline.min.css?ver=1.0 | 216.219.87.98 | 200 OK | 675 B |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/css/modules/builders/elementor/etheme-advanced-headline.min.css?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (2749), with no line terminators Hash8880851bbb7a7cf55dafb3ad7da9bd69 bd8295438107c436387bccc31ec7e99ec3171742 b3fb64e99ab94eb31e5ce714ec7e13b739c00af26f34b98d4151088493bb68df
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/css/modules/builders/elementor/etheme-advanced-headline.min.css?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 14:06:07 GMT
etag: "abd-65e5d54f-ae71183c5f90c03d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 675
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.19.4 | 216.219.87.98 | 200 OK | 2.4 kB |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.19.4 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (10019) Hash4601ba55044413706c2022cb6c1c3d05 5103ec2fbb389568ebf5cfe4fd721f3df2ff7aec fe513ef974b767510d0a2b9f1b4d3afa53185b89ab617c869e5e3d6db960192c
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.19.4 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 13:48:06 GMT
etag: "4824-65e5d116-ed6e522672885f46;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2442
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/uploads/elementor/css/post-80.css?ver=1703315911 | 216.219.87.98 | 200 OK | 1.3 kB |
URL GET HTTP/3kotadiainc.com/wp-content/uploads/elementor/css/post-80.css?ver=1703315911 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (10817), with no line terminators Hashf4028d33541debe32b5bfc6d70affc5d 579ae4c03fee8241d8c1c11597c2e8dba5747533 db67d646e70c9c6c8296313e6e11d56e0e774664952b7d9a543c28dccf94249b
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/elementor/css/post-80.css?ver=1703315911 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: text/css
last-modified: Sat, 23 Dec 2023 07:18:31 GMT
etag: "2a41-658689c7-37f3c442d3eb2b96;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1320
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/css/modules/builders/elementor/etheme-modal-popup.min.css?ver=1.0 | 216.219.87.98 | 200 OK | 409 B |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/css/modules/builders/elementor/etheme-modal-popup.min.css?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (1413), with no line terminators Hashe4a91ead1d18fed262fffbd558d51d8e 63363d7f250aa9bb2ef5f4c5d254eb890339e9a7 6733696e64d8037ecc34df3c9ae52bf338fe7c83e0aa780425d0572615f3b738
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/css/modules/builders/elementor/etheme-modal-popup.min.css?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 14:06:07 GMT
etag: "585-65e5d54f-d767e12571518445;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 409
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 | 216.219.87.98 | 200 OK | 286 B |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (483) Hash9eb2d3c87feb6bb2ffa63b70532b1477 38f226335a05ab0e30497bc7419eb5e243a9e26c 37bab6cd583982e8eff58501a99d7c5c4d63664c1ca34f9e3b7cf526c5b73ae2
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2024 13:48:06 GMT
etag: "29d-65e5d116-3cf3f2dc99fbdbe4;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 286
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/js/modules/back-top.min.js?ver=1.0 | 216.219.87.98 | 200 OK | 348 B |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/js/modules/back-top.min.js?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (715), with no line terminators Hash0aa1a4cace5c6e5f8edbb33bab9cc1fe 2d7ce783d66420d02c5339e75291650233cbd333 7c642da9e520f1e6b74e1c88a30c3c4536ed63393c9149e1b2c00bf6574598c5
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/js/modules/back-top.min.js?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: application/javascript
last-modified: Mon, 04 Mar 2024 14:06:04 GMT
etag: "2cb-65e5d54c-51ec08080acb1d31;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 348
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/js/modules/ethemeModalPopup.min.js?ver=1.0 | 216.219.87.98 | 200 OK | 681 B |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/js/modules/ethemeModalPopup.min.js?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (2151), with no line terminators Hashc6b6318019dd35c3eb2a33ab8236bdc1 2aff856f84c2d1eb36ecf6360622d4a275dc764d 7d12f2c8ab51df600ad5ff67e8ad33439db5597758c1d88d450a25041e9533a2
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/js/modules/ethemeModalPopup.min.js?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: application/javascript
last-modified: Mon, 04 Mar 2024 14:06:04 GMT
etag: "867-65e5d54c-9220cf09b563a806;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 681
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.9 | 216.219.87.98 | 200 OK | 3.2 kB |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.9 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (11513), with no line terminators Hashefc27e253fae1b7b891fb5a40e687768 ad12044651ffac0badcd0e42f32edef91678b1ff 46e36dd6ca93014e4915c723632bf180d27cc96ccfb7c26e69213e1a82129a62
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.9 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: application/javascript
last-modified: Mon, 04 Mar 2024 13:47:55 GMT
etag: "2cf9-65e5d10b-cfaaa90c0808a270;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3228
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.9 | 216.219.87.98 | 200 OK | 3.9 kB |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.9 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (13054), with no line terminators Hash917602d642f84a211838f0c1757c4dc1 392df3fb4b0ec96ce4ebb5616e6b2a5c55a54bf8 d702e5ed1e573918d912775ac1e88987fc177aa51efe1253a08f71ab54f96516
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.9 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: application/javascript
last-modified: Mon, 04 Mar 2024 13:47:55 GMT
etag: "32fe-65e5d10b-de54c9820410ee59;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3919
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/plugins/woocommerce/assets/js/sourcebuster/sourcebuster.min.js?ver=8.6.1 | 216.219.87.98 | 200 OK | 4.3 kB |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/woocommerce/assets/js/sourcebuster/sourcebuster.min.js?ver=8.6.1 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (14500), with no line terminators Hashaf44f82a13e50f4ab09a194247ac71bc e1c921fa718e918e70a25cd278a9ff5b8be9c2bf 881f4e9fde0d4d4bdcf1eae9fd2d68378c5203969e6ceedf59b4e29567f238a9
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/sourcebuster/sourcebuster.min.js?ver=8.6.1 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: application/javascript
last-modified: Mon, 04 Mar 2024 13:48:29 GMT
etag: "38a4-65e5d12d-18287ef68e8405bf;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4348
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/js/modules/swiper.min.js?ver=1.0 | 216.219.87.98 | 200 OK | 37 kB |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/js/modules/swiper.min.js?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashd4e4f6c55c316a8bb916fef3acbe0eca 69ed474b90879bd072dcc818f40d0c0693bd7988 fdc177374ccb6e28e2d098109c99474e110973fb71b884780d201cacd3db0a48
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/js/modules/swiper.min.js?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: application/javascript
last-modified: Mon, 04 Mar 2024 14:06:04 GMT
etag: "237e9-65e5d54c-9ff65fc2c6bae32e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 36578
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/plugins/captcha-for-contact-form-7/core/assets/f12-cf7-captcha-cf7.js | 216.219.87.98 | 200 OK | 1.1 kB |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/captcha-for-contact-form-7/core/assets/f12-cf7-captcha-cf7.js IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text Hash66bbef44e4666775085d1369ed26858c 1382b0f833c1484b034e9cccf9a84a57385f6c16 65ada0fcc89c7384f197a3a7d9a70ae3a8a1dbc9993995129a5dbcbf79141239
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/captcha-for-contact-form-7/core/assets/f12-cf7-captcha-cf7.js HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: application/javascript
last-modified: Fri, 09 Feb 2024 16:20:50 GMT
etag: "12d4-65c650e2-1cb11ba0c99bda2a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1096
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/plugins/woocommerce/assets/js/frontend/order-attribution.min.js?ver=8.6.1 | 216.219.87.98 | 200 OK | 683 B |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/woocommerce/assets/js/frontend/order-attribution.min.js?ver=8.6.1 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (1509), with no line terminators Hashd135f91be7d973a9f688aae99ae5b86e 59c1a7ece70b5f3ded1cde917ac7991723964402 9d8a587ab4a60001f720cb0833192cccd56e583a8df7774c292acb907d6078fb
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/frontend/order-attribution.min.js?ver=8.6.1 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: application/javascript
last-modified: Mon, 04 Mar 2024 13:48:28 GMT
etag: "5e5-65e5d12c-f4300b4e35dade11;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 683
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-includes/js/comment-reply.min.js?ver=6.5.2 | 216.219.87.98 | 200 OK | 1.2 kB |
URL GET HTTP/3kotadiainc.com/wp-includes/js/comment-reply.min.js?ver=6.5.2 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeASCII text, with very long lines (2946) Hash492f2c1a7ea7eb83fe42e0ff7cb51aa2 db36a77f6aaa2063bfbec02c2c0e967438c5a245 e174a58a503ab84b3d1b9de12fd3895788204485170f1289e445f7b5b98ec789
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/comment-reply.min.js?ver=6.5.2 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: application/javascript
last-modified: Sat, 09 Apr 2022 01:37:18 GMT
etag: "ba5-6250e34e-810d902745ef1077;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1228
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/js/libs/imagesLoaded.js?ver=4.1.4 | 216.219.87.98 | 200 OK | 1.7 kB |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/js/libs/imagesLoaded.js?ver=4.1.4 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (5477), with CRLF line terminators Hash81545aed80e2c8b710b729bea178621b 049173b82e68c40492961bb95ddacefb44eab680 5a65b0ca177f1c0433c0ead611692521c23e6668846a2861fedc09ae11416ffc
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/js/libs/imagesLoaded.js?ver=4.1.4 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: application/javascript
last-modified: Mon, 04 Mar 2024 14:06:03 GMT
etag: "15e0-65e5d54b-8cdeea01f8d8b8ee;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1713
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/js/libs/jquery.lazyload.js?ver=2.0.0 | 216.219.87.98 | 200 OK | 2.1 kB |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/js/libs/jquery.lazyload.js?ver=2.0.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Hasheea132c6a183d646c042ce7792276831 add2129e1117f3517d5d92a8d237bbf85e33de6a c618ffc0c47323eba7bb7d2b5c215bd07d3b49ed989a749d281b595373b1a7ee
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/js/libs/jquery.lazyload.js?ver=2.0.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: application/javascript
last-modified: Mon, 04 Mar 2024 14:06:03 GMT
etag: "2906-65e5d54b-543c54551f1ce250;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2052
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/js/modules/tabs.min.js?ver=1.0 | 216.219.87.98 | 200 OK | 1.1 kB |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/js/modules/tabs.min.js?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (4544), with no line terminators Hash842c62508f6cb7dae199cbd86ae124af 41a991623e7b26ac9b5989f1d632bc555ed4e6f4 fa8d8a3913f433bed6a30c0fce717fd9bcc672cc023697de484f38d12a396533
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/js/modules/tabs.min.js?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: application/javascript
last-modified: Mon, 04 Mar 2024 14:06:04 GMT
etag: "11c0-65e5d54c-df81e94c87b1580a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1134
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/js/modules/woocommerce.min.js?ver=1.0 | 216.219.87.98 | 200 OK | 5.7 kB |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/js/modules/woocommerce.min.js?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (16413), with CRLF line terminators Hash3f133a49e55d8a756fb868d187692893 8dd064cb89cc861b92c96053da8b98f40b931681 080521f7ce939ff6bdcd4de7d1c440c6be68ff412cba26ba0980974404441a6b
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/js/modules/woocommerce.min.js?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: application/javascript
last-modified: Mon, 04 Mar 2024 14:06:04 GMT
etag: "5fc0-65e5d54c-22a6eb334622c3b;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5692
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.19.4 | 216.219.87.98 | 200 OK | 16 kB |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.19.4 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (60132) Hash728871a57decbd88958291fdbd4c1d2d 1257f88875d649a8165ef90e3fd7658eb070f48e 1f686850e2e1e05a883c0b5e32bc85a99a8dafb3d599bd79f95b585ba3a58556
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.19.4 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: application/javascript
last-modified: Mon, 04 Mar 2024 13:48:05 GMT
etag: "eb0d-65e5d115-312a8dd0e28abdb8;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 16458
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 | 216.219.87.98 | 200 OK | 2.9 kB |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (12198), with no line terminators Hash3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: application/javascript
last-modified: Mon, 04 Mar 2024 13:48:08 GMT
etag: "2fa6-65e5d118-e8e0425c68ee2fed;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2867
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 | 216.219.87.98 | 200 OK | 6.8 kB |
URL GET HTTP/3kotadiainc.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (8189) Hashc4e68a0f3463c0bd3c39eab38815e881 0ce58644e9f3c5063a11453ff287c5ec096465a7 ca7dce2391845e8aec7da135f33fabd10f74eed28a532ac66fd01f761fcfb42f
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 22:06:32 GMT
etag: "53be-63dc33e8-4509fcef9700da8f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6801
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.19.4 | 216.219.87.98 | 200 OK | 12 kB |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.19.4 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (40266) Hasha84c7dd3335b84fb93e1f170badf9172 9f32c3a804ecc3b26905428081e1c7cfd8a752f3 bd6a2cc187e662d9e3c3611f2b08353d237c05aff614342d26d978ab8b504976
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.19.4 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: application/javascript
last-modified: Mon, 04 Mar 2024 13:48:04 GMT
etag: "9d72-65e5d114-129e590a5210670;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 11876
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/js/modules/fixedHeader.min.js?ver=1.0 | 216.219.87.98 | 200 OK | 614 B |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/js/modules/fixedHeader.min.js?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (1824), with no line terminators Hash3a9c92b7efc67419f11743c8aa106033 a84a7190997690784439e279d5427cab8cb08b41 fd52fb01f3271f315691334de60b82741c3851b87ab3312bcba168501a301d2d
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/js/modules/fixedHeader.min.js?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: application/javascript
last-modified: Mon, 04 Mar 2024 14:06:04 GMT
etag: "720-65e5d54c-73ef31ab3513794;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 614
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/js/modules/ethemeElementorWrapperLink.min.js?ver=1.0 | 216.219.87.98 | 200 OK | 394 B |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/js/modules/ethemeElementorWrapperLink.min.js?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (848), with no line terminators Hashb669cdea3737858270de5bde6c122913 4669172487390a6d1891fdb83967e4795e302a30 7ba901554e690d9b58456bfc0a2149059b351128a319f42ab88987e1b2abb596
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/js/modules/ethemeElementorWrapperLink.min.js?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: application/javascript
last-modified: Mon, 04 Mar 2024 14:06:04 GMT
etag: "350-65e5d54c-eb04e31659f7112f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 394
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/js/modules/ajaxSearch.min.js?ver=1.0 | 216.219.87.98 | 200 OK | 6.4 kB |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/js/modules/ajaxSearch.min.js?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (24004), with no line terminators Hash127926ac7918adbc70efa11812e5bce9 d8dd4f6b765e4de36b9e69ffc0be755f69e65224 763d6f03fd5962629f514cd0c549d053d08c2b2bace31aa4df764e666963e045
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/js/modules/ajaxSearch.min.js?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: application/javascript
last-modified: Mon, 04 Mar 2024 14:06:04 GMT
etag: "5dc4-65e5d54c-3f01da889ca1e38d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6356
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/js/modules/mobileMenu.min.js?ver=1.0 | 216.219.87.98 | 200 OK | 397 B |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/js/modules/mobileMenu.min.js?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (1549), with no line terminators Hash13cdf9ab9f33f6019ec5ae27b2a7daa8 57e8da563c764f48e7898048183ad96f6fa0e70e 0dbcc01cc10bb138b6fe6712e56d932b6ab13b2227a7e8ab330cbf8230394cab
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/js/modules/mobileMenu.min.js?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: application/javascript
last-modified: Mon, 04 Mar 2024 14:06:04 GMT
etag: "60d-65e5d54c-ac309100fa1edf8e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 397
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=8.6.1 | 216.219.87.98 | 200 OK | 943 B |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=8.6.1 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (2939), with no line terminators Hashae52867db002b2f95a21b85b3b518a04 4b1615786f2e5240bec4229c7dc5c6f865c92ebe 592acc60b8eea94fc366110175d8406604a609201d6debe5eb008a6debfbdc3b
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=8.6.1 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: application/javascript
last-modified: Mon, 04 Mar 2024 13:48:28 GMT
etag: "b7b-65e5d12c-e8d58a25c391d8c2;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 943
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-includes/js/imagesloaded.min.js?ver=5.0.0 | 216.219.87.98 | 200 OK | 1.7 kB |
URL GET HTTP/3kotadiainc.com/wp-includes/js/imagesloaded.min.js?ver=5.0.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (4358) Hash6823120876c9afc8929418c9a6f8e343 90b0adb37d70ffec5f9189c36bb0027c310c9502 b65b3de1bc923b9355248a0d941a0eaee15dfb9a6b8eadb51323a8df6189dcd1
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/imagesloaded.min.js?ver=5.0.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: application/javascript
last-modified: Wed, 08 Nov 2023 05:03:57 GMT
etag: "1590-654b16bd-ca5591fba3fe83dd;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1687
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/js/modules/ethemeElementorSlider.min.js?ver=1.0 | 216.219.87.98 | 200 OK | 2.7 kB |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/js/modules/ethemeElementorSlider.min.js?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (10473), with no line terminators Hash2f273bf2bc55baeaab2a95529f6b0fb8 dc13ab5f9a01e3e1e30cfc7c65016501cadcfd20 9505b2816362e79f374d5cd2aa43d87ff8b36b9eecf4fa3a7b5e3259d7ab8fe6
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/js/modules/ethemeElementorSlider.min.js?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: application/javascript
last-modified: Mon, 04 Mar 2024 14:06:04 GMT
etag: "28e9-65e5d54c-cfc49f66f0eb687a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2710
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/themes/xstore/js/modules/mobilePanel.min.js?ver=1.0 | 216.219.87.98 | 200 OK | 535 B |
URL GET HTTP/3kotadiainc.com/wp-content/themes/xstore/js/modules/mobilePanel.min.js?ver=1.0 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (1660), with no line terminators Hash58b57e53dffc13e4b041589fe985cd69 b6cdb779f6403a933f8b1cd331d1b83728d8b925 2f66d64c16d96603cd79573905727ce6f1d319c7625896ca6d15f2823f14fb45
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/xstore/js/modules/mobilePanel.min.js?ver=1.0 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: application/javascript
last-modified: Mon, 04 Mar 2024 14:06:04 GMT
etag: "67c-65e5d54c-7709ebe93951d278;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 535
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.19.4 | 216.219.87.98 | 200 OK | 2.1 kB |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.19.4 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (4957) Hashddbc06b72901f5acd16e30cc4797e14f f6e09b2ecbc00b2395edac487fe1d9f01fd9de56 dc5c23d953f36b20f935cb682d82bff5ab44c7ddce00ed7187330bc2ec5e5a60
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.19.4 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: application/javascript
last-modified: Mon, 04 Mar 2024 13:48:06 GMT
etag: "1385-65e5d116-a7983b5ecbb80d96;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2071
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
|
|
| | 216.219.87.98 | 200 OK | 32 kB |
URL User Request GET HTTP/2IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeHTML document, ASCII text, with very long lines (9462), with CRLF, LF line terminators Hash3b0bf627789d65b6e50de012cf652794 b4465791cd9f6ed8281e7e0522aa3ccde5eb1e79 c7b6889bf7cb98029f2e2feeabf10d03557fc1193ce94c9f5e059b71374f7f25
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
link: <https://kotadiainc.com/wp-json/>; rel="https://api.w.org/", <https://kotadiainc.com/wp-json/wp/v2/pages/17>; rel="alternate"; type="application/json", <https://kotadiainc.com/>; rel=shortlink
content-encoding: br
vary: Accept-Encoding,User-Agent
date: Thu, 18 Apr 2024 07:43:38 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP216.58.207.227:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15920, version 1.0 Hash3a44e06eb954b96aa043227f3534189d 23cef6993ddb2b2979e8e7647fc3763694e2ba7d b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kotadiainc.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 13:20:56 GMT
expires: Fri, 11 Apr 2025 13:20:56 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 584565
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP216.58.207.227:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0 Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kotadiainc.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 01:54:31 GMT
expires: Wed, 16 Apr 2025 01:54:31 GMT
cache-control: public, max-age=31536000
age: 193750
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/outfit/v11/QGYvz_MVcBeNP4NJtEtq.woff2 | 216.58.207.227 | 200 OK | 32 kB |
URL GET HTTP/2fonts.gstatic.com/s/outfit/v11/QGYvz_MVcBeNP4NJtEtq.woff2 IP216.58.207.227:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 32272, version 1.0 Hash91c1abde26995ed2f211f73c11f96047 0b10cff8bdbcba61d5b6797214627912bca4ae45 45447a2b45991ea4e67ff0866444ca07fcf62c28dbfd5fa072ab76d3d0c46390
GET /s/outfit/v11/QGYvz_MVcBeNP4NJtEtq.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kotadiainc.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 32272
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 17:32:26 GMT
expires: Fri, 11 Apr 2025 17:32:26 GMT
cache-control: public, max-age=31536000
age: 569475
last-modified: Wed, 26 Apr 2023 23:30:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| kotadiainc.com/wp-content/uploads/2023/02/Group-2-1.jpg | 216.219.87.98 | 200 OK | 9.4 kB |
URL GET HTTP/3kotadiainc.com/wp-content/uploads/2023/02/Group-2-1.jpg IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1869x638, components 3 Hash221561fbe9631c04bc8de6454575bad2 8f27d0a5fe105b9336623a45422546d21e55938d cc55aeeb5e823e55ab886eb84e2d5cbe602a1bf51eb02f7efc0a7d607d0b17f6
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/02/Group-2-1.jpg HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/wp-content/uploads/elementor/css/post-80.css?ver=1703315911
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:41 GMT
content-type: image/jpeg
last-modified: Sun, 29 Oct 2023 15:51:21 GMT
etag: "248d-653e7f79-6f5056b2f0505d30;;;"
accept-ranges: bytes
content-length: 9357
date: Thu, 18 Apr 2024 07:43:41 GMT
server: LiteSpeed
vary: User-Agent
|
|
| kotadiainc.com/wp-content/plugins/et-core-plugin/app/assets/lib/xstore-icons/fonts/xstore-icons-bold.ttf | 216.219.87.98 | 200 OK | 26 kB |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/et-core-plugin/app/assets/lib/xstore-icons/fonts/xstore-icons-bold.ttf IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeTrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, xstore-icons Hash9674edf5608b84811a6be3c68cc5c722 0ef336e5cc51d1389d8302a9d3c9ec64a99d904d a9c0245f2c528f9696bf0909d8e40f7a488437a1698cab01f479ac6b0f619f2f
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/et-core-plugin/app/assets/lib/xstore-icons/fonts/xstore-icons-bold.ttf HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/wp-content/plugins/et-core-plugin/app/assets/lib/xstore-icons/css/bold.css?ver=1.4.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:41 GMT
content-type: application/x-font-ttf
last-modified: Mon, 04 Mar 2024 13:48:43 GMT
etag: "b958-65e5d13b-c0bc975a217860c1;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 26272
date: Thu, 18 Apr 2024 07:43:41 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 | 216.219.87.98 | 200 OK | 78 kB |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 78196, version 331.-31261 Hashe8a427e15cc502bef99cfd722b37ea98 a9922842a120a7f1eaced667480c5e185a106d69 d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:41 GMT
content-type: font/woff2
last-modified: Mon, 04 Mar 2024 13:48:08 GMT
etag: "13174-65e5d118-f14c888aa4d1cdf3;;;"
accept-ranges: bytes
content-length: 78196
date: Thu, 18 Apr 2024 07:43:41 GMT
server: LiteSpeed
vary: User-Agent
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kotadiainc.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 16:27:38 GMT
expires: Wed, 16 Apr 2025 16:27:38 GMT
cache-control: public, max-age=31536000
age: 141363
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| kotadiainc.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 | 216.219.87.98 | 200 OK | 13 kB |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 13276, version 331.-31261 Hashf0f8230116992e521526097a28f54066 0447c6b10bbf73f97b23dcfd6e6a48510822cb6e 8afc6e5e842baab16010c2ce6fcf48ec4ded8e1579a37c1f1bc027e120d04951
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:41 GMT
content-type: font/woff2
last-modified: Mon, 04 Mar 2024 13:48:07 GMT
etag: "33dc-65e5d117-9f2ba1cc6dfa990d;;;"
accept-ranges: bytes
content-length: 13276
date: Thu, 18 Apr 2024 07:43:41 GMT
server: LiteSpeed
vary: User-Agent
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://www.youtube.com/embed/qyiPIBTEcgk CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:43:03 GMT
expires: Fri, 18 Apr 2025 02:43:03 GMT
cache-control: public, max-age=31536000
age: 18038
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP216.58.207.227:443
Requested byhttps://www.youtube.com/embed/qyiPIBTEcgk CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0 Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 17:25:07 GMT
expires: Fri, 11 Apr 2025 17:25:07 GMT
cache-control: public, max-age=31536000
age: 569914
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/f92087f2/player_ias.vflset/en_US/embed.js | 142.250.74.110 | 200 OK | 18 kB |
URL GET HTTP/3www.youtube.com/s/player/f92087f2/player_ias.vflset/en_US/embed.js IP142.250.74.110:443
Requested byhttps://www.youtube.com/embed/qyiPIBTEcgk CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (3391) Hash1acbd20b4a303a41bba4c1af0636abbe 21497b44dca32bad04a2abbba7dd517e8cc16055 760bcaf29c194cd5c63b59b29fef5bc7fa164c844152ff5eee8f7b97e84a38ac
GET /s/player/f92087f2/player_ias.vflset/en_US/embed.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/qyiPIBTEcgk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 18187
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:28:07 GMT
expires: Wed, 16 Apr 2025 07:28:07 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 16 Apr 2024 04:18:33 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 173734
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/s/player/f92087f2/www-player.css | 142.250.74.110 | 200 OK | 48 kB |
URL GET HTTP/3www.youtube.com/s/player/f92087f2/www-player.css IP142.250.74.110:443
Requested byhttps://www.youtube.com/embed/qyiPIBTEcgk CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hasheff7afac8f7ac0ed881f37ffd3eebcbe 21acf841f4603dbfaed62decef15175b5d68f20f ff1235e0e6c896931d1f31f618b35e68a469befd8c90d7a0da22f1d988b0bbc2
GET /s/player/f92087f2/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/qyiPIBTEcgk
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 48137
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:20:55 GMT
expires: Wed, 16 Apr 2025 07:20:55 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 16 Apr 2024 04:18:33 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 174166
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/s/player/f92087f2/www-embed-player.vflset/www-embed-player.js | 142.250.74.110 | 200 OK | 98 kB |
URL GET HTTP/3www.youtube.com/s/player/f92087f2/www-embed-player.vflset/www-embed-player.js IP142.250.74.110:443
Requested byhttps://www.youtube.com/embed/qyiPIBTEcgk CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (682) Hashb1882b5e3edaca0885f674750fe7bd88 b1c29c838ece05563e2ef1eb10cf7a986c588301 5a1b22f96bab9384df7827c7710b6477229500a6d2c0f6d8f9cff3d33d428894
GET /s/player/f92087f2/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/qyiPIBTEcgk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 97847
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:20:55 GMT
expires: Wed, 16 Apr 2025 07:20:55 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 16 Apr 2024 04:18:33 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 174166
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| secure.gravatar.com/avatar/7d2deb911fd8ac3120fcb11021c0bc4b?s=40&d=mm&r=g | 192.0.73.2 | 200 OK | 969 B |
URL GET HTTP/2secure.gravatar.com/avatar/7d2deb911fd8ac3120fcb11021c0bc4b?s=40&d=mm&r=g IP192.0.73.2:443
CertificateIssuerSectigo Limited Subject*.gravatar.com Fingerprint28:34:17:4E:69:95:4B:B9:70:DF:D4:0F:AA:2C:8D:60:F2:45:E7:D0 ValidityTue, 05 Dec 2023 00:00:00 GMT - Sat, 04 Jan 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 40x40, components 3 Hashc0e43183a78510581da82893ed758fb4 e7908ea4026876eab487c0ee4c411b9f468d5f48 dc15ed14c23ce1a976a7306db458305071c0a119026ecff8be8536f28684e391
GET /avatar/7d2deb911fd8ac3120fcb11021c0bc4b?s=40&d=mm&r=g HTTP/1.1
Host: secure.gravatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 07:43:41 GMT
content-type: image/jpeg
content-length: 969
last-modified: Wed, 11 Jan 1984 08:00:00 GMT
link: <https://gravatar.com/avatar/7d2deb911fd8ac3120fcb11021c0bc4b?s=40&d=mm&r=g>; rel="canonical"
access-control-allow-origin: *
content-disposition: inline; filename="7d2deb911fd8ac3120fcb11021c0bc4b.png"
expires: Thu, 18 Apr 2024 07:48:41 GMT
cache-control: max-age=300
x-nc: MISS arn 2
alt-svc: h3=":443"; ma=86400
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/f92087f2/player_ias.vflset/en_US/base.js | 142.250.74.110 | 200 OK | 809 kB |
URL GET HTTP/3www.youtube.com/s/player/f92087f2/player_ias.vflset/en_US/base.js IP142.250.74.110:443
Requested byhttps://www.youtube.com/embed/qyiPIBTEcgk CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (555) Size809 kB (809144 bytes) Hash0d2406f6a79bde4d11ad5f70b18ba433 699a5d887b0557a5f788fea125e4260cf41fdb55 001b4c1ed0ccce6c39372a81fc4e9464950f77c72fd53aea1f78f999c0dd9bd3
GET /s/player/f92087f2/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/qyiPIBTEcgk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-encoding: gzip
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 809144
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 18:56:43 GMT
expires: Wed, 16 Apr 2025 18:56:43 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 16 Apr 2024 04:18:33 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 132418
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| kotadiainc.com/wp-content/plugins/elementor/assets/lib/swiper/v8/swiper.min.js?ver=8.4.5 | 216.219.87.98 | 200 OK | 38 kB |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/elementor/assets/lib/swiper/v8/swiper.min.js?ver=8.4.5 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (65279) Hash83e9b29f0086bba50d653f1cb8dedc3c f8f89387c9aca9d524bb638eae457d4659efca52 2ac3af00c283c0b2ae6108fa83a2053e51274a2a812fb063916cbe19bc4f96b5
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/lib/swiper/v8/swiper.min.js?ver=8.4.5 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Cookie: sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2024-04-18%2007%3A43%3A41%7C%7C%7Cep%3Dhttps%3A%2F%2Fkotadiainc.com%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2024-04-18%2007%3A43%3A41%7C%7C%7Cep%3Dhttps%3A%2F%2Fkotadiainc.com%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fkotadiainc.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:41 GMT
content-type: application/javascript
last-modified: Mon, 04 Mar 2024 13:48:08 GMT
etag: "2315d-65e5d118-bd2dc8aca683f8e0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 38152
date: Thu, 18 Apr 2024 07:43:41 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js | 216.219.87.98 | 200 OK | 601 B |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeJavaScript source, ASCII text, with very long lines (1320) Hash571fe149d88abe85e612ad9bd20fb70b c0e20515caecc95d6dd7830d2222ea26aef10a3f 02c4864ae484a759fc717d7fa30d8c426f19c5747eb143d0495a15bc2f529494
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Cookie: sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2024-04-18%2007%3A43%3A41%7C%7C%7Cep%3Dhttps%3A%2F%2Fkotadiainc.com%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2024-04-18%2007%3A43%3A41%7C%7C%7Cep%3Dhttps%3A%2F%2Fkotadiainc.com%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fkotadiainc.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:41 GMT
content-type: application/javascript
last-modified: Mon, 04 Mar 2024 13:48:06 GMT
etag: "550-65e5d116-db49bcf2d8090c57;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 601
date: Thu, 18 Apr 2024 07:43:41 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/uploads/2023/10/kotadia_logo.svg | 216.219.87.98 | 200 OK | 9.5 kB |
URL GET HTTP/3kotadiainc.com/wp-content/uploads/2023/10/kotadia_logo.svg IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeSVG Scalable Vector Graphics image Hashf202ab515d7e15e73fe2c0ae911e2721 b184ee468c880534515af6474a54fcafa2dceb34 7b79f3002454faae8314d179ed2c0fe12dbcdad216307fe9d905a5919bd72371
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/10/kotadia_logo.svg HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Cookie: sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2024-04-18%2007%3A43%3A41%7C%7C%7Cep%3Dhttps%3A%2F%2Fkotadiainc.com%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2024-04-18%2007%3A43%3A41%7C%7C%7Cep%3Dhttps%3A%2F%2Fkotadiainc.com%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fkotadiainc.com%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:42 GMT
content-type: image/svg+xml
last-modified: Sun, 15 Oct 2023 18:55:08 GMT
etag: "3154-652c358c-8c410f44c6f5e9ce;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 9516
date: Thu, 18 Apr 2024 07:43:42 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-content/uploads/2023/10/kotadia_logo.svg | 216.219.87.98 | 200 OK | 9.5 kB |
URL GET HTTP/3kotadiainc.com/wp-content/uploads/2023/10/kotadia_logo.svg IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeSVG Scalable Vector Graphics image Hashf202ab515d7e15e73fe2c0ae911e2721 b184ee468c880534515af6474a54fcafa2dceb34 7b79f3002454faae8314d179ed2c0fe12dbcdad216307fe9d905a5919bd72371
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/10/kotadia_logo.svg HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Cookie: sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2024-04-18%2007%3A43%3A41%7C%7C%7Cep%3Dhttps%3A%2F%2Fkotadiainc.com%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2024-04-18%2007%3A43%3A41%7C%7C%7Cep%3Dhttps%3A%2F%2Fkotadiainc.com%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fkotadiainc.com%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:42 GMT
content-type: image/svg+xml
last-modified: Sun, 15 Oct 2023 18:55:08 GMT
etag: "3154-652c358c-8c410f44c6f5e9ce;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 9516
date: Thu, 18 Apr 2024 07:43:42 GMT
server: LiteSpeed
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.138 | 200 OK | 0 B |
URL POST HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.138:443
Requested byhttps://www.youtube.com/embed/qyiPIBTEcgk CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 18 Apr 2024 07:43:42 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.138 | 200 OK | 42 kB |
URL POST HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.138:443
Requested byhttps://www.youtube.com/embed/qyiPIBTEcgk CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hash80b5818c78b541dc4762ede7307cc1e9 0b6d82974486ce5500e095a25301d2c0ac9965dc 96950994af5edfafca81c10f1bda829862b38c719792c8c5a30d177da5514567
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 18 Apr 2024 07:43:42 GMT
server: ESF
cache-control: private
content-length: 41710
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| i.ytimg.com/vi/qyiPIBTEcgk/default.jpg | 142.250.74.182 | 200 OK | 3.1 kB |
URL GET HTTP/2i.ytimg.com/vi/qyiPIBTEcgk/default.jpg IP142.250.74.182:443
Requested byhttps://www.youtube.com/embed/qyiPIBTEcgk CertificateIssuerGoogle Trust Services LLC Subjectedgestatic.com Fingerprint78:1A:D9:37:F2:33:3C:A9:0F:4C:4A:E8:40:9E:55:8E:02:75:1E:15 ValidityMon, 04 Mar 2024 06:35:07 GMT - Mon, 27 May 2024 06:35:06 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 120x90, components 3 Hash708839af737f0139a5a4c217b5c2edec 1297d668060ae2948cdb1cd6406c24cd70d3cf9d d8c8fb9596211d21651b9149682a427b26b1e5ee93784b2273adef9a360587ad
GET /vi/qyiPIBTEcgk/default.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 3054
date: Thu, 18 Apr 2024 07:43:42 GMT
expires: Thu, 18 Apr 2024 09:43:42 GMT
cache-control: public, max-age=7200
etag: "1698404854"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/f92087f2/player_ias.vflset/en_US/remote.js | 142.250.74.110 | 200 OK | 34 kB |
URL GET HTTP/3www.youtube.com/s/player/f92087f2/player_ias.vflset/en_US/remote.js IP142.250.74.110:443
Requested byhttps://www.youtube.com/embed/qyiPIBTEcgk CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (543) Hash462a38de456c9bf85d5fbf305ad911aa 21c5b449394b4f4e1ce291307e01db301405d0e0 308f0e0c362d5cc2a3852a351a7c12929a4601a120d7bacbf3f72d984b694c83
GET /s/player/f92087f2/player_ias.vflset/en_US/remote.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/qyiPIBTEcgk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 33854
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:28:08 GMT
expires: Wed, 16 Apr 2025 07:28:08 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 16 Apr 2024 04:18:33 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 173734
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/js/th/miBSy5jQPJh1sa2HAK-WLAAFHwiuSy-Xwy9oQisegJw.js | 216.58.211.4 | 200 OK | 20 kB |
URL GET HTTP/2www.google.com/js/th/miBSy5jQPJh1sa2HAK-WLAAFHwiuSy-Xwy9oQisegJw.js IP216.58.211.4:443
Requested byhttps://www.youtube.com/embed/qyiPIBTEcgk CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintCC:CC:99:46:65:6C:77:0B:C8:AA:AD:5E:58:B6:2D:19:B2:C7:0B:06 ValidityMon, 04 Mar 2024 07:19:07 GMT - Mon, 27 May 2024 07:19:06 GMT
File typeJavaScript source, ASCII text, with very long lines (51811) Hash5145e2908423fe4aac30cdd17c12277c bd8117e06b0151b88d0867008d51c5b6f225bf56 9a2052cb98d03c9875b1ad8700af962c00051f08ae4b2f97c32f68422b1e809c
GET /js/th/miBSy5jQPJh1sa2HAK-WLAAFHwiuSy-Xwy9oQisegJw.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 20259
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 05:04:02 GMT
expires: Thu, 17 Apr 2025 05:04:02 GMT
cache-control: public, max-age=31536000
age: 95980
last-modified: Thu, 04 Apr 2024 18:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.106 | 200 OK | 0 B |
URL OPTIONS HTTP/3jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.106:443
Requested byhttps://www.youtube.com/embed/qyiPIBTEcgk CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 18 Apr 2024 07:43:42 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.106 | 200 OK | 114 B |
URL OPTIONS HTTP/3jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.106:443
Requested byhttps://www.youtube.com/embed/qyiPIBTEcgk CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hash4b5cec707fe79843ac0b8f021f1b403c ee57c965bb4d8cda264c6416b88d366d1c091638 cb95227d928ffdd1f3849ec14fa0c80a417ae996c55d25dce29d081c29c58064
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1300
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 18 Apr 2024 07:43:42 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/generate_204?f65hfA | 142.250.74.110 | 204 No Content | 0 B |
URL GET HTTP/3www.youtube.com/generate_204?f65hfA IP142.250.74.110:443
Requested byhttps://www.youtube.com/embed/qyiPIBTEcgk CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?f65hfA HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/qyiPIBTEcgk
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Thu, 18 Apr 2024 07:43:43 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| yt3.ggpht.com/ytc/AIdro_kgo5-MnM8oZR7nY16V-tDL5_A6dKIJoQqTwiqSgTbZYwwthXx2pd4s6k-o2cXayo3jJA=s68-c-k-c0x00ffffff-no-rj | 142.250.74.161 | 200 OK | 1.3 kB |
URL GET HTTP/2yt3.ggpht.com/ytc/AIdro_kgo5-MnM8oZR7nY16V-tDL5_A6dKIJoQqTwiqSgTbZYwwthXx2pd4s6k-o2cXayo3jJA=s68-c-k-c0x00ffffff-no-rj IP142.250.74.161:443
Requested byhttps://www.youtube.com/embed/qyiPIBTEcgk CertificateIssuerGoogle Trust Services LLC Subject*.googleusercontent.com FingerprintE0:0C:38:A4:4D:4F:CB:42:05:30:9A:C4:60:B3:64:3F:EF:43:D1:2F ValidityMon, 04 Mar 2024 07:14:32 GMT - Mon, 27 May 2024 07:14:31 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3 Hashdaecb5e8fb99aa49707de70824749a3a 2feea977d1ae1dceb20327ce9bceb54014d1b94a 121132646c1cd2fe94eef17e57cf29a3bda61c18ab6d41d189a8a90408ed2dca
GET /ytc/AIdro_kgo5-MnM8oZR7nY16V-tDL5_A6dKIJoQqTwiqSgTbZYwwthXx2pd4s6k-o2cXayo3jJA=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
x-content-type-options: nosniff
server: fife
content-length: 1259
x-xss-protection: 0
date: Thu, 18 Apr 2024 06:48:55 GMT
expires: Fri, 19 Apr 2024 06:48:55 GMT
cache-control: public, max-age=86400, no-transform
content-type: image/jpeg
vary: Origin
age: 3288
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 | 142.250.74.110 | 200 OK | 31 B |
URL POST HTTP/3www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 IP142.250.74.110:443
Requested byhttps://www.youtube.com/embed/qyiPIBTEcgk CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hash5e1fa6fd9abd549a576f3f24b1d3c8d4 d5335d7f7d33be6a0b663f03b2df4df2521c4a87 d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1713426225503
Content-Type: application/json
X-Goog-Visitor-Id: Cgtkbkw0ME10MDZtYyisnoOxBjIOCgJOTxIIEgQSAgsMIBo%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240415.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1713426221827&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C0%2C0%2C0%2C0&vis=1&wgl=true&ca_type=image
Content-Length: 10298
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/qyiPIBTEcgk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Thu, 18 Apr 2024 07:43:45 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| kotadiainc.com/wp-admin/admin-ajax.php | 216.219.87.98 | | 42 B |
URL POST kotadiainc.com/wp-admin/admin-ajax.php IP216.219.87.98:0
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
Hashc6a1b8eac064117a1a1ce08572c1c487 32aae39f941a6d122e3b764080beb135989ab7db ec9a88434c36fb857199be4148203fb45856f83c1497aca3ad2e53d686d9fea5
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 64
Origin: https://kotadiainc.com
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Cookie: sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2024-04-18%2007%3A43%3A41%7C%7C%7Cep%3Dhttps%3A%2F%2Fkotadiainc.com%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2024-04-18%2007%3A43%3A41%7C%7C%7Cep%3Dhttps%3A%2F%2Fkotadiainc.com%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fkotadiainc.com%2F
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://kotadiainc.com
access-control-allow-credentials: true
content-type: text/html; charset=UTF-8
x-robots-tag: noindex
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-length: 42
content-encoding: br
vary: Accept-Encoding,User-Agent
date: Thu, 18 Apr 2024 07:43:48 GMT
server: LiteSpeed
|
|
| kotadiainc.com/wp-admin/admin-ajax.php | 216.219.87.98 | | 42 B |
URL POST kotadiainc.com/wp-admin/admin-ajax.php IP216.219.87.98:0
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
Hashc6a1b8eac064117a1a1ce08572c1c487 32aae39f941a6d122e3b764080beb135989ab7db ec9a88434c36fb857199be4148203fb45856f83c1497aca3ad2e53d686d9fea5
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 62
Origin: https://kotadiainc.com
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Cookie: sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2024-04-18%2007%3A43%3A41%7C%7C%7Cep%3Dhttps%3A%2F%2Fkotadiainc.com%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2024-04-18%2007%3A43%3A41%7C%7C%7Cep%3Dhttps%3A%2F%2Fkotadiainc.com%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fkotadiainc.com%2F
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://kotadiainc.com
access-control-allow-credentials: true
content-type: text/html; charset=UTF-8
x-robots-tag: noindex
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-length: 42
content-encoding: br
vary: Accept-Encoding,User-Agent
date: Thu, 18 Apr 2024 07:43:48 GMT
server: LiteSpeed
|
|
| www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 | 142.250.74.110 | 200 OK | 31 B |
URL POST HTTP/3www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 IP142.250.74.110:443
Requested byhttps://www.youtube.com/embed/qyiPIBTEcgk CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hash5e1fa6fd9abd549a576f3f24b1d3c8d4 d5335d7f7d33be6a0b663f03b2df4df2521c4a87 d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1713426231645
Content-Type: application/json
X-Goog-Visitor-Id: Cgtkbkw0ME10MDZtYyisnoOxBjIOCgJOTxIIEgQSAgsMIBo%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240415.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1713426221827&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C0%2C0%2C0%2C0&vis=1&wgl=true&ca_type=image
Content-Length: 969
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/qyiPIBTEcgk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Thu, 18 Apr 2024 07:43:51 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| kotadiainc.com/wp-content/uploads/2023/10/Gray-Yellow-Modern-Professional-Business-Strategy-Presentation-1024x576-1.png | 216.219.87.98 | 200 OK | 224 kB |
URL GET HTTP/3kotadiainc.com/wp-content/uploads/2023/10/Gray-Yellow-Modern-Professional-Business-Strategy-Presentation-1024x576-1.png IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typePNG image data, 1024 x 576, 8-bit/color RGBA, non-interlaced Size224 kB (223777 bytes) Hash8a6784cebe5079094cc01c9b1ec9636a ac870e1fad25e0bb3defc37e99f244b622d0f5a3 6a78aeafcd4dcd7eb13b1105e4626bdf692de9f19a2b3a3ce4fc46631a0ac70b
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/10/Gray-Yellow-Modern-Professional-Business-Strategy-Presentation-1024x576-1.png HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/wp-content/uploads/elementor/css/post-17.css?ver=1709561033
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: image/png
last-modified: Sun, 29 Oct 2023 18:00:43 GMT
etag: "36a21-653e9dcb-326212cb8af36ad9;;;"
accept-ranges: bytes
content-length: 223777
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
vary: User-Agent
|
|
| kotadiainc.com/?wc-ajax=get_refreshed_fragments |  0.0.0.0 | | 0 B |
URL POST kotadiainc.com/?wc-ajax=get_refreshed_fragments IP0.0.0.0:0
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://kotadiainc.com
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Cookie: sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2024-04-18%2007%3A43%3A41%7C%7C%7Cep%3Dhttps%3A%2F%2Fkotadiainc.com%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2024-04-18%2007%3A43%3A41%7C%7C%7Cep%3Dhttps%3A%2F%2Fkotadiainc.com%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fkotadiainc.com%2F
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| kotadiainc.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 | 216.219.87.98 | 200 OK | 77 kB |
URL GET HTTP/3kotadiainc.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 IP216.219.87.98:443
CertificateIssuerLet's Encrypt Subject*.kotadiainc.com FingerprintE3:D0:E2:17:AD:F3:2D:C5:24:52:BC:A2:81:FF:7D:C0:48:C7:5C:8D ValiditySun, 03 Mar 2024 04:37:48 GMT - Sat, 01 Jun 2024 04:37:47 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 76764, version 331.-31261 Hashf7307680c7fe85959f3ecf122493ea7d fce0da592a3e536d6d5df5b50cb513398d8c5161 43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: kotadiainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 07:43:40 GMT
content-type: font/woff2
last-modified: Mon, 04 Mar 2024 13:48:07 GMT
etag: "12bdc-65e5d117-e0e289eb2273bd95;;;"
accept-ranges: bytes
content-length: 76764
date: Thu, 18 Apr 2024 07:43:40 GMT
server: LiteSpeed
vary: User-Agent
|
|
| www.youtube.com/embed/qyiPIBTEcgk | 142.250.74.110 | 200 OK | 91 kB |
URL GET HTTP/2www.youtube.com/embed/qyiPIBTEcgk IP142.250.74.110:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeHTML document, ASCII text, with very long lines (58090) Hash5542f915cb43319ac4b5f831b9018aa5 316c1c4127885e137771d6ee565bbffdbec9472c d29ecd37ce101d6c42a63d72a9188f8d3f1ab8b144bfc86a84ad6cd63d58f7c5
GET /embed/qyiPIBTEcgk HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 18 Apr 2024 07:43:41 GMT
strict-transport-security: max-age=31536000
origin-trial: AmhMBR6zCLzDDxpW+HfpP67BqwIknWnyMOXOQGfzYswFmJe+fgaI6XZgAzcxOrzNtP7hEDsOo1jdjFnVr2IdxQ4AAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTc1ODA2NzE5OSwiaXNTdWJkb21haW4iOnRydWV9
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=UGAhlBcbtWw; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=dnL40Mt06mc; Domain=.youtube.com; Expires=Tue, 15-Oct-2024 07:43:41 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_PRIVACY_METADATA=CgJOTxIIEgQSAgsMIBo%3D; Domain=.youtube.com; Expires=Tue, 15-Oct-2024 07:43:41 GMT; Path=/; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Outfit%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.5.2 | 142.250.74.106 | 200 OK | 7.0 kB |
URL GET HTTP/3fonts.googleapis.com/css?family=Outfit%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.5.2 IP142.250.74.106:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeASCII text, with very long lines (7128), with no line terminators Hashb5122d551c8a548a17aa0c5f5a8cdb31 0bf4ccd4dd8642e01ef2177d82242b52a1baa128 ef4a2f6124e29c6515d18a2ae8c8f15e6e5f2fc498f34ef4b36765f2844f16a6
GET /css?family=Outfit%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.5.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kotadiainc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 18 Apr 2024 07:43:40 GMT
date: Thu, 18 Apr 2024 07:43:40 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|