Report - pseenorsairs.com/

Report Overview

Submitted URL
pseenorsairs.com/
IP
188.114.97.1
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-18 12:12:01
Access
public
Website Title
Participate in Our Exclusive Online Survey: Share Your Insight
Final URL
pseenorsairs.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
26

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
pseenorsairs.com	unknown	2024-03-26	2024-03-26	2024-04-17	5.8 kB	196 kB	188.114.97.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-18	medium	pseenorsairs.com	Sinkholed
2024-04-18	medium	pseenorsairs.com	Sinkholed
2024-04-18	medium	pseenorsairs.com	Sinkholed
2024-04-18	medium	pseenorsairs.com	Sinkholed
2024-04-18	medium	pseenorsairs.com	Sinkholed
2024-04-18	medium	pseenorsairs.com	Sinkholed
2024-04-18	medium	pseenorsairs.com	Sinkholed
2024-04-18	medium	pseenorsairs.com	Sinkholed
2024-04-18	medium	pseenorsairs.com	Sinkholed
2024-04-18	medium	pseenorsairs.com	Sinkholed
2024-04-18	medium	pseenorsairs.com	Sinkholed
2024-04-18	medium	pseenorsairs.com	Sinkholed
2024-04-18	medium	pseenorsairs.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (10)

	URL	Size	First Seen	Last Seen
	pseenorsairs.com/_next/static/1f-38DmRXBlODsEZZKB18/_buildManifest.js	1.6 kB	2024-04-18	2024-04-18
Pretty URL pseenorsairs.com/_next/static/1f-38DmRXBlODsEZZKB18/_buildManifest.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-18 14:12:04 Last Seen2024-04-18 14:14:59 Times Seen2 Hash c409b9a6548ffb21b3dcf782f718dffd 39c08c4b07516ab2cb9d253110a31bf63ce206fc fe2a564a6472a6b6931035370bde18d64ac5d6e3f169ff4e4da595af7c1832b4 Loading...

	pseenorsairs.com/_next/static/chunks/main-beb6af9e60a8e042.js	109 kB	2024-02-12	2024-05-01
Pretty URL pseenorsairs.com/_next/static/chunks/main-beb6af9e60a8e042.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-12 18:57:12 Last Seen2024-05-01 15:12:51 Times Seen128 Hash 44ec1451f689d71d5f33a10d4aa44658 0f7e72050b7bf72366d9463a16038ae94e232f46 1708144463d376da261c16eab17b1d2fe5c49351847f43a46c6ae4b347fd9304 Loading...

	pseenorsairs.com/_next/static/chunks/7903-dd238946c7924507.js	32 kB	2024-03-21	2024-05-01
Pretty URL pseenorsairs.com/_next/static/chunks/7903-dd238946c7924507.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-21 14:18:29 Last Seen2024-05-01 23:14:14 Times Seen318 Hash b5dd343db67bd22544d11da18268f5c3 069b5b221dd75af58d93192460778b3d07835e74 6347f1d4083f7a0a2ac3d8b12aae8832d9ea6914aa6e137d16a4d41869d14ea5 Loading...

	pseenorsairs.com/_next/static/chunks/2090-d895fd689d39c729.js	11 kB	2024-04-18	2024-04-19
Pretty URL pseenorsairs.com/_next/static/chunks/2090-d895fd689d39c729.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-18 08:03:12 Last Seen2024-04-19 09:40:36 Times Seen14 Hash 9dfcf70490a58a9922807765131a36dd 74a2103f2772dcbb021e6d7ed80a46505532efa1 64aa44a6c998566700666c1e4bf0abd78fe219197efb3229d6d9ffa7040926b6 Loading...

	pseenorsairs.com/_next/static/chunks/pages/index-e56fa27d3c0234c6.js	9.4 kB	2024-04-18	2024-05-01
Pretty URL pseenorsairs.com/_next/static/chunks/pages/index-e56fa27d3c0234c6.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-18 14:12:04 Last Seen2024-05-01 15:12:51 Times Seen26 Hash 182639ed0a5954cbdfbfc1aa8f3b5f8e 3d21f535dd4aef3f37ad7dc79cb6647c3a764e69 a01c16c3a494091ba2c11ce7d752ec3c2d7e70f06c99fdaa993565066add3656 Loading...

	pseenorsairs.com/_next/static/1f-38DmRXBlODsEZZKB18/_ssgManifest.js	182 B	2024-04-18	2024-05-01
Pretty URL pseenorsairs.com/_next/static/1f-38DmRXBlODsEZZKB18/_ssgManifest.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-18 11:58:16 Last Seen2024-05-01 23:14:14 Times Seen174 Hash d78f02cd11637a888af548f5e270c3af 9c90b573305ec9d6d2e7e74837c641a863d991b4 2357fd3fc3972384c0c7a714da244191da43a7bf5d91fd865a30d2deb0b6b517 Loading...

	pseenorsairs.com/_next/static/chunks/webpack-3c44f12e8187f9a6.js	6.0 kB	2024-04-18	2024-04-18
Pretty URL pseenorsairs.com/_next/static/chunks/webpack-3c44f12e8187f9a6.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-18 14:12:04 Last Seen2024-04-18 14:14:59 Times Seen2 Hash 2e71bbae4ecbda348d67750481556e5e 609bf06aea53232a5529113c09ae1db786032b96 824136cab20b37d91d30a65a327a82759d6b420fd4e9e1c44d41e1e2c94c6f3a Loading...

	pseenorsairs.com/_next/static/chunks/framework-3281cb961088a9a3.js	26 kB	2024-04-02	2024-04-25
Pretty URL pseenorsairs.com/_next/static/chunks/framework-3281cb961088a9a3.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-02 14:06:40 Last Seen2024-04-25 12:54:20 Times Seen93 Hash 499fb17b15c09c2d76681f27dde9a031 5564d317c33112db56918ec372d392caabec70f2 9350c53e2fe847ec629962106d01d6af28a0d9c69feb57e7609b3c096935cdb2 Loading...

	pseenorsairs.com/_next/static/chunks/pages/_app-0755fe53a86fd6ab.js	39 kB	2024-04-18	2024-04-19
Pretty URL pseenorsairs.com/_next/static/chunks/pages/_app-0755fe53a86fd6ab.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-18 08:03:12 Last Seen2024-04-19 13:22:06 Times Seen20 Hash 78af260e6345bb993cf649622f4d7ecf bcad2770feaa6e0df7dbb92c24da90c56da29559 cca988f276fd684064d3ff252d813ca24f18f73cb16e18a1edece86f25f60e87 Loading...

	pseenorsairs.com/_next/static/chunks/8550-084f8ef56ea2a7ad.js	12 kB	2024-04-13	2024-05-01
Pretty URL pseenorsairs.com/_next/static/chunks/8550-084f8ef56ea2a7ad.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-13 21:06:20 Last Seen2024-05-01 15:12:51 Times Seen54 Hash 99cedc315297bcdade48598c3f97d7d8 06bddf8f8305971fe0ac51163727a23e8181c296 8f3a92324a0f5a22aabddc3c838582e0110d1b7ba67b04f48682f9deff8f3e30 Loading...

HTTP Transactions (13)

URL IP Response Size

pseenorsairs.com/favicon.ico

188.114.97.1

204 No Content

0 B

URL GET HTTP/3
pseenorsairs.com/favicon.ico
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pseenorsairs.com/
Certificate
IssuerLet's Encrypt
Subjectpseenorsairs.com
Fingerprint93:EA:68:43:DC:87:19:8B:35:7A:60:C1:1E:08:7F:F7:A8:54:B6:B2
ValidityTue, 26 Mar 2024 10:14:25 GMT - Mon, 24 Jun 2024 10:14:24 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: pseenorsairs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pseenorsairs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
date: Thu, 18 Apr 2024 12:11:37 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=est1OEfPectA%2BNG8faibgl2%2BcNv074UsPAYosF2T3pl%2BgHe6O444NiVE8h7eKhyYVkfeyHOtdVGwmza6afYYbVX35%2FjF42WNo7Q8hKX2yxFiMGJimhRsw2LZgotOe0hT5jwz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87648ef44d4856c9-OSL
alt-svc: h3=":443"; ma=86400

pseenorsairs.com/_next/static/1f-38DmRXBlODsEZZKB18/_ssgManifest.js

188.114.97.1

200 OK

5.7 kB

URL GET HTTP/3
pseenorsairs.com/_next/static/1f-38DmRXBlODsEZZKB18/_ssgManifest.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pseenorsairs.com/
Certificate
IssuerLet's Encrypt
Subjectpseenorsairs.com
Fingerprint93:EA:68:43:DC:87:19:8B:35:7A:60:C1:1E:08:7F:F7:A8:54:B6:B2
ValidityTue, 26 Mar 2024 10:14:25 GMT - Mon, 24 Jun 2024 10:14:24 GMT

File type
ASCII text, with no line terminators
Size
5.7 kB (5703 bytes)
Hash
d78f02cd11637a888af548f5e270c3af
9c90b573305ec9d6d2e7e74837c641a863d991b4
2357fd3fc3972384c0c7a714da244191da43a7bf5d91fd865a30d2deb0b6b517

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/1f-38DmRXBlODsEZZKB18/_ssgManifest.js HTTP/1.1
Host: pseenorsairs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pseenorsairs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:11:36 GMT
content-type: application/javascript
last-modified: Thu, 18 Apr 2024 11:28:22 GMT
vary: Accept-Encoding
etag: W/"662103d6-b6"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f6lnAhqvNBn96zMe7rQaRbL9UTZD4hKx2YWNazXInRODfCyFKEzt6%2F9ep1lqlpo%2FzpkBa4SGw3oq2SwubfpCv33U2phZ4TmQM5g%2FjDmhbYwLlTf%2FhVfo69lXwRXPPLlq7AdD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87648ef30ad056c9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

pseenorsairs.com/_next/static/chunks/main-beb6af9e60a8e042.js

188.114.97.1

200 OK

40 kB

URL GET HTTP/3
pseenorsairs.com/_next/static/chunks/main-beb6af9e60a8e042.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pseenorsairs.com/
Certificate
IssuerLet's Encrypt
Subjectpseenorsairs.com
Fingerprint93:EA:68:43:DC:87:19:8B:35:7A:60:C1:1E:08:7F:F7:A8:54:B6:B2
ValidityTue, 26 Mar 2024 10:14:25 GMT - Mon, 24 Jun 2024 10:14:24 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
40 kB (39800 bytes)
Hash
44ec1451f689d71d5f33a10d4aa44658
0f7e72050b7bf72366d9463a16038ae94e232f46
1708144463d376da261c16eab17b1d2fe5c49351847f43a46c6ae4b347fd9304

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/main-beb6af9e60a8e042.js HTTP/1.1
Host: pseenorsairs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pseenorsairs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:11:36 GMT
content-type: application/javascript
last-modified: Thu, 18 Apr 2024 11:28:22 GMT
vary: Accept-Encoding
etag: W/"662103d6-1a957"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KHOMFxW4esd3o%2BbR0X6t%2F9F5P47A4%2B8Uvp75eTVpuDgHO8TgaS0jWFOW4hywbcAf03GrfZSG8Cqo4RF9mSo9R7u2I5rNTp94Wxe6%2FvItzf%2Fkfa2vT6Sohiq9Dx9F5CK8rrPb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87648ef2fabb56c9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

pseenorsairs.com/_next/static/chunks/pages/_app-0755fe53a86fd6ab.js

188.114.97.1

200 OK

39 kB

URL GET HTTP/3
pseenorsairs.com/_next/static/chunks/pages/_app-0755fe53a86fd6ab.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pseenorsairs.com/
Certificate
IssuerLet's Encrypt
Subjectpseenorsairs.com
Fingerprint93:EA:68:43:DC:87:19:8B:35:7A:60:C1:1E:08:7F:F7:A8:54:B6:B2
ValidityTue, 26 Mar 2024 10:14:25 GMT - Mon, 24 Jun 2024 10:14:24 GMT

File type
JavaScript source, ASCII text, with very long lines (39394), with no line terminators
Size
39 kB (39394 bytes)
Hash
78af260e6345bb993cf649622f4d7ecf
bcad2770feaa6e0df7dbb92c24da90c56da29559
cca988f276fd684064d3ff252d813ca24f18f73cb16e18a1edece86f25f60e87

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/pages/_app-0755fe53a86fd6ab.js HTTP/1.1
Host: pseenorsairs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pseenorsairs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:11:36 GMT
content-type: application/javascript
last-modified: Thu, 18 Apr 2024 11:28:22 GMT
vary: Accept-Encoding
etag: W/"662103d6-99e2"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nh%2BgOHBprXSKKR%2F17ss9BXjfG%2FzXSpOGsX1a10MUCds%2FmzLfTv2hKNFFQaL2Gt77TH2feDPvbjJL8KeqCYSc77oe%2Bw90M6%2FnbkzWOEDgddOlchjG3KdvUK%2FsDp7tLEA6bjlp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87648ef2fabd56c9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

pseenorsairs.com/_next/static/chunks/7903-dd238946c7924507.js

188.114.97.1

200 OK

32 kB

URL GET HTTP/3
pseenorsairs.com/_next/static/chunks/7903-dd238946c7924507.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pseenorsairs.com/
Certificate
IssuerLet's Encrypt
Subjectpseenorsairs.com
Fingerprint93:EA:68:43:DC:87:19:8B:35:7A:60:C1:1E:08:7F:F7:A8:54:B6:B2
ValidityTue, 26 Mar 2024 10:14:25 GMT - Mon, 24 Jun 2024 10:14:24 GMT

File type
JavaScript source, ASCII text, with very long lines (31896), with no line terminators
Size
32 kB (31896 bytes)
Hash
b5dd343db67bd22544d11da18268f5c3
069b5b221dd75af58d93192460778b3d07835e74
6347f1d4083f7a0a2ac3d8b12aae8832d9ea6914aa6e137d16a4d41869d14ea5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/7903-dd238946c7924507.js HTTP/1.1
Host: pseenorsairs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pseenorsairs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:11:36 GMT
content-type: application/javascript
last-modified: Thu, 18 Apr 2024 11:28:22 GMT
vary: Accept-Encoding
etag: W/"662103d6-7c98"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Mp61TkXn9WuHxWg2%2FQtDjLj0%2BD4DMTZ9RD5huek7ZhFdx8wy93RCpY8uIXsw86wb9ac8BV12v%2FV2zLvquqik4VKBDMFC7jXCjD6fy5gxJzA%2BJegfxHCNvhIrekfsxCYiuZGK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87648ef2fabe56c9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

pseenorsairs.com/_next/static/css/0bc0cde260d08b97.css

188.114.97.1

200 OK

1.8 kB

URL GET HTTP/3
pseenorsairs.com/_next/static/css/0bc0cde260d08b97.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pseenorsairs.com/
Certificate
IssuerLet's Encrypt
Subjectpseenorsairs.com
Fingerprint93:EA:68:43:DC:87:19:8B:35:7A:60:C1:1E:08:7F:F7:A8:54:B6:B2
ValidityTue, 26 Mar 2024 10:14:25 GMT - Mon, 24 Jun 2024 10:14:24 GMT

File type
ASCII text, with very long lines (1843), with no line terminators
Size
1.8 kB (1843 bytes)
Hash
64b2b4fa42c7d558d735e2cd28ecf88a
03d6da6e55b1201b51689590520da495a9233d67
2fdb3ce9ccba8355040e5ba3dfb2283194acba81858943b5d88f70030dbb71ea

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/css/0bc0cde260d08b97.css HTTP/1.1
Host: pseenorsairs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pseenorsairs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:11:36 GMT
content-type: text/css
last-modified: Thu, 18 Apr 2024 11:28:22 GMT
vary: Accept-Encoding
etag: W/"662103d6-733"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xt8ggEM9D6Q9xgDslpiYpvM0HxlwToKclUPhw1JjQTC7JDqeD8hQe41WQlgVxJ4Wl%2FWN265uQZQm2q4y5WxV8JCOwvfeP41PsthHlGFD%2Ft%2BhfEoeXkHphNNmYnDGLwdyydCc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87648ef2faac56c9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

pseenorsairs.com/_next/static/1f-38DmRXBlODsEZZKB18/_buildManifest.js

188.114.97.1

200 OK

1.6 kB

URL GET HTTP/3
pseenorsairs.com/_next/static/1f-38DmRXBlODsEZZKB18/_buildManifest.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pseenorsairs.com/
Certificate
IssuerLet's Encrypt
Subjectpseenorsairs.com
Fingerprint93:EA:68:43:DC:87:19:8B:35:7A:60:C1:1E:08:7F:F7:A8:54:B6:B2
ValidityTue, 26 Mar 2024 10:14:25 GMT - Mon, 24 Jun 2024 10:14:24 GMT

File type
ASCII text, with very long lines (1697), with no line terminators
Size
1.6 kB (1605 bytes)
Hash
1047a39ea9737d4e339249d099fd5232
e6764db957aff1554426654b8a8ddc4d9b88b3bd
35d373c2429b2bd23f312eea76193445994444db46b2d63f34d7b4e1b3a22e06

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/1f-38DmRXBlODsEZZKB18/_buildManifest.js HTTP/1.1
Host: pseenorsairs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pseenorsairs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:11:36 GMT
content-type: application/javascript
last-modified: Thu, 18 Apr 2024 11:28:22 GMT
vary: Accept-Encoding
etag: W/"662103d6-645"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=shu1SeF%2FuuHCJgBmZU%2BYiRmkzeJcAgYMGglOQz2IN3JlZVqOEE24fh7YypFHwBW5e0LAfPO%2FAfixEYxx39%2Bmq3AGdrdQDR22IHfI3%2FJRAf50ep4NNUMf9QERBsi1xhd2H35B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87648ef30acb56c9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

pseenorsairs.com/_next/static/chunks/pages/index-e56fa27d3c0234c6.js

188.114.97.1

200 OK

9.4 kB

URL GET HTTP/3
pseenorsairs.com/_next/static/chunks/pages/index-e56fa27d3c0234c6.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pseenorsairs.com/
Certificate
IssuerLet's Encrypt
Subjectpseenorsairs.com
Fingerprint93:EA:68:43:DC:87:19:8B:35:7A:60:C1:1E:08:7F:F7:A8:54:B6:B2
ValidityTue, 26 Mar 2024 10:14:25 GMT - Mon, 24 Jun 2024 10:14:24 GMT

File type
JavaScript source, ASCII text, with very long lines (9665), with no line terminators
Size
9.4 kB (9412 bytes)
Hash
cfb9c27cc052b3614b681a763d188134
a968daa6705bd04b84ed5e9dd7aee41ba4ff218d
79b50ff6f603c1aa27cf161da8f3d138fed1d73e978b47b46aa631079ae074cd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/pages/index-e56fa27d3c0234c6.js HTTP/1.1
Host: pseenorsairs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pseenorsairs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:11:36 GMT
content-type: application/javascript
last-modified: Thu, 18 Apr 2024 11:28:22 GMT
vary: Accept-Encoding
etag: W/"662103d6-24c4"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nGmm7Vp5hOj79ghI%2FORWezVGSR9dvBXOvqdUK3QgZw1FEw2zJQiXAqoarVwunLV5X0rStyh3PmMn%2BadyL%2FF9lQ9nxep5s%2BtschhLzzHGyF56%2BTSksNevDsZzOcXHEEx3sqDG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87648ef30ac756c9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

pseenorsairs.com/

188.114.97.1

200 OK

2.2 kB

URL User Request GET HTTP/2
pseenorsairs.com/
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectpseenorsairs.com
Fingerprint93:EA:68:43:DC:87:19:8B:35:7A:60:C1:1E:08:7F:F7:A8:54:B6:B2
ValidityTue, 26 Mar 2024 10:14:25 GMT - Mon, 24 Jun 2024 10:14:24 GMT

File type
HTML document, ASCII text, with very long lines (2339), with no line terminators
Size
2.2 kB (2247 bytes)
Hash
6eb60ceb943abe8882cc247afce08def
ed36a0192a32525229299ae722f040f95a8a063c
8300e28a54079483015fabaec989da2cbe7256b1885757382289759ef23eb68c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: pseenorsairs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 18 Apr 2024 12:11:36 GMT
content-type: text/html
last-modified: Thu, 18 Apr 2024 11:28:22 GMT
vary: Accept-Encoding
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=r4FcKyeosguoubbxvCnotZwKatMB0Q0UDQmnghAcK%2FC64a6rxWpNR3kFDs2WnElK6lcOKvIdlg%2BjYtICG5RNkCM6IwA4CzJlKNkFpEpz9mdhsECkiY8sDUWGcLgDKgNmxbeg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87648ef09ba656a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

pseenorsairs.com/_next/static/chunks/8550-084f8ef56ea2a7ad.js

188.114.97.1

200 OK

12 kB

URL GET HTTP/3
pseenorsairs.com/_next/static/chunks/8550-084f8ef56ea2a7ad.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pseenorsairs.com/
Certificate
IssuerLet's Encrypt
Subjectpseenorsairs.com
Fingerprint93:EA:68:43:DC:87:19:8B:35:7A:60:C1:1E:08:7F:F7:A8:54:B6:B2
ValidityTue, 26 Mar 2024 10:14:25 GMT - Mon, 24 Jun 2024 10:14:24 GMT

File type
JavaScript source, ASCII text, with very long lines (12179), with no line terminators
Size
12 kB (12179 bytes)
Hash
99cedc315297bcdade48598c3f97d7d8
06bddf8f8305971fe0ac51163727a23e8181c296
8f3a92324a0f5a22aabddc3c838582e0110d1b7ba67b04f48682f9deff8f3e30

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/8550-084f8ef56ea2a7ad.js HTTP/1.1
Host: pseenorsairs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pseenorsairs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:11:36 GMT
content-type: application/javascript
last-modified: Thu, 18 Apr 2024 11:28:22 GMT
vary: Accept-Encoding
etag: W/"662103d6-2f93"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BojeDSnjHYZD8ZlbD5F%2FotObAgiSzb5WJhzxkrza2sl925%2B9a4RKqFYTbZJkLMl1Wi7iMJo2Jy%2BgcKhsyEN1TrejoNojcF6Rm9TBJ%2F8B4XdztzR%2FQOddXO0Xas8wFoxlwqR3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87648ef30ac056c9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

pseenorsairs.com/_next/static/chunks/2090-d895fd689d39c729.js

188.114.97.1

200 OK

11 kB

URL GET HTTP/3
pseenorsairs.com/_next/static/chunks/2090-d895fd689d39c729.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pseenorsairs.com/
Certificate
IssuerLet's Encrypt
Subjectpseenorsairs.com
Fingerprint93:EA:68:43:DC:87:19:8B:35:7A:60:C1:1E:08:7F:F7:A8:54:B6:B2
ValidityTue, 26 Mar 2024 10:14:25 GMT - Mon, 24 Jun 2024 10:14:24 GMT

File type
JavaScript source, ASCII text, with very long lines (10720), with no line terminators
Size
11 kB (10720 bytes)
Hash
9dfcf70490a58a9922807765131a36dd
74a2103f2772dcbb021e6d7ed80a46505532efa1
64aa44a6c998566700666c1e4bf0abd78fe219197efb3229d6d9ffa7040926b6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/2090-d895fd689d39c729.js HTTP/1.1
Host: pseenorsairs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pseenorsairs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:11:36 GMT
content-type: application/javascript
last-modified: Thu, 18 Apr 2024 11:28:22 GMT
vary: Accept-Encoding
etag: W/"662103d6-29e0"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ii4QO19ZCacec8l1ntruqdjONHDKh2CQJc%2BkcmH4HmHxTqCDbmTVp0%2BVt%2Bee5dlOj%2By1VyGxRVZSiR7LVHSpySHZATj9uRKuRBp9x4m4XeNvp6ebB92q8YHmTRBP2FeaEaYV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87648ef30ac556c9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

pseenorsairs.com/_next/static/chunks/webpack-3c44f12e8187f9a6.js

188.114.97.1

200 OK

6.0 kB

URL GET HTTP/3
pseenorsairs.com/_next/static/chunks/webpack-3c44f12e8187f9a6.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pseenorsairs.com/
Certificate
IssuerLet's Encrypt
Subjectpseenorsairs.com
Fingerprint93:EA:68:43:DC:87:19:8B:35:7A:60:C1:1E:08:7F:F7:A8:54:B6:B2
ValidityTue, 26 Mar 2024 10:14:25 GMT - Mon, 24 Jun 2024 10:14:24 GMT

File type
JavaScript source, ASCII text, with very long lines (6254), with no line terminators
Size
6.0 kB (6028 bytes)
Hash
1efe2a77929704e893a360dcaf63feda
139b31fdf2ae8225f49c9477df84ccb7efedfb00
09b62b488b8664dcbdce864f01e4443f031f3d273767125cce6bb273db480a69

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/webpack-3c44f12e8187f9a6.js HTTP/1.1
Host: pseenorsairs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pseenorsairs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:11:36 GMT
content-type: application/javascript
last-modified: Thu, 18 Apr 2024 11:28:22 GMT
vary: Accept-Encoding
etag: W/"662103d6-178c"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6LGqCnahGKbZ6qM2OuJ8Md6zqQp37YHp73wjslsI5RJpdOBl47%2FqB0LsDWgBSaJk53ZDHjER4ZQTpANZsbt5O8QrYvkWas0SazxWgsQbPNV6oPnSkPJYCeBdN373NLIzIhnH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87648ef2fab156c9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

pseenorsairs.com/_next/static/chunks/framework-3281cb961088a9a3.js

188.114.97.1

200 OK

26 kB

URL GET HTTP/3
pseenorsairs.com/_next/static/chunks/framework-3281cb961088a9a3.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pseenorsairs.com/
Certificate
IssuerLet's Encrypt
Subjectpseenorsairs.com
Fingerprint93:EA:68:43:DC:87:19:8B:35:7A:60:C1:1E:08:7F:F7:A8:54:B6:B2
ValidityTue, 26 Mar 2024 10:14:25 GMT - Mon, 24 Jun 2024 10:14:24 GMT

File type
JavaScript source, ASCII text, with very long lines (26042), with no line terminators
Size
26 kB (26042 bytes)
Hash
499fb17b15c09c2d76681f27dde9a031
5564d317c33112db56918ec372d392caabec70f2
9350c53e2fe847ec629962106d01d6af28a0d9c69feb57e7609b3c096935cdb2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/framework-3281cb961088a9a3.js HTTP/1.1
Host: pseenorsairs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pseenorsairs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:11:36 GMT
content-type: application/javascript
last-modified: Thu, 18 Apr 2024 11:28:22 GMT
vary: Accept-Encoding
etag: W/"662103d6-65ba"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nTj4Mk0KCf9IsQykjIc%2BvGcinMoSBAwUVStlrT2qUEjM5AF%2BRVjIC2Er0IvNbCFiIAElAsye2ZyBOcBY9u%2FrS6mDoZ9fWqQOH0dJ5MILomuSU%2F%2BW7qGp3qNfIcZZcA3OteH4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87648ef2fab656c9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (10)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML