URL User Request GET HTTP/2IP35.212.1.174:443
CertificateIssuerLet's Encrypt Subjectgvam1203.siteground.biz Fingerprint3F:0F:0A:5A:CB:CC:C7:70:53:B8:01:E8:4A:92:2D:39:EC:A0:4A:D9 ValidityThu, 07 Mar 2024 07:22:20 GMT - Wed, 05 Jun 2024 07:22:19 GMT
Hashb7ad764d8ac40e0b92dc6c100d9b0f7a 6a5c69d51f8f6f1ee440a58e30e553df9ae33c76 1ec19c4e943fe2863a8050758792112dd8de5d10740b76b073cec62258ce3697
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 35.212.1.174
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 19 Apr 2024 09:32:45 GMT
Content-Type: text/plain
Content-Length: 24
Connection: keep-alive
Location: https://35.212.1.174/
Remote-Addr: 91.90.42.154
X-Default-Vhost: 1
|
| www.siteground.com/static/en/img/svg/cloudsbackground.svg | 34.149.40.93 | 200 OK | 449 B |
URL GET HTTP/2www.siteground.com/static/en/img/svg/cloudsbackground.svg IP34.149.40.93:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
CertificateIssuerGlobalSign nv-sa Subject*.siteground.com FingerprintC1:E9:5C:0E:80:D3:83:9F:67:AA:E3:DB:FA:61:6F:BF:C6:E3:E1:5D ValidityTue, 27 Jun 2023 07:31:05 GMT - Sun, 28 Jul 2024 07:31:04 GMT
File typeSVG Scalable Vector Graphics image Hashd6a952178af31100186e5408affee1c0 34eb39eb1ec733bb35e34c5c543a5aaa8412dcb7 246a73a0c4bde46a8c566070f6708a80efde2f22b0df71a4f139b0e780e2386e
GET /static/en/img/svg/cloudsbackground.svg HTTP/1.1
Host: www.siteground.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://35.212.1.174/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 19 Apr 2024 09:32:48 GMT
content-type: image/svg+xml
content-length: 449
last-modified: Mon, 15 Apr 2024 11:25:03 GMT
vary: Accept-Encoding
etag: W/"661d0e8f-4d8"
expires: Sat, 19 Apr 2025 09:32:48 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000; preload
x-content-type-options: nosniff
x-xss-protection: 1
x-frame-options: DENY
x-server: 0, 0, 0
host-header: 8441280b0c35cbc1147f8ba998a563a7, 192fc2e7e50945beb8231a492d6a8024, 192fc2e7e50945beb8231a492d6a8024
x-proxy-cache-info: DT:1, d NC:000000 UP:, d NC:000000 UP:
content-encoding: gzip
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-proxy-cache: MISS, MISS
age: 0
accept-ranges: bytes
via: 1.1 google
X-Firefox-Spdy: h2
|
IP35.212.1.174:443
CertificateIssuerLet's Encrypt Subjectgvam1203.siteground.biz Fingerprint3F:0F:0A:5A:CB:CC:C7:70:53:B8:01:E8:4A:92:2D:39:EC:A0:4A:D9 ValidityThu, 07 Mar 2024 07:22:20 GMT - Wed, 05 Jun 2024 07:22:19 GMT
File typePNG image data, 72 x 72, 16-bit/color RGBA, non-interlaced Hash272ea29e3048f9392b5603ce77dbb89b 6733bd4149dd57e26ed72a15cf60fcc815e31b2c 916ef4e77d929457df58fd18a0e216f8c3a26a20846022a5ed9d47ec96f439be
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 35.212.1.174
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://35.212.1.174/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 19 Apr 2024 09:32:48 GMT
content-type: image/x-icon
content-length: 14528
last-modified: Thu, 18 Apr 2024 12:02:30 GMT
etag: "66210bd6-38c0"
remote-addr: 91.90.42.154
x-default-vhost: 1
accept-ranges: bytes
X-Firefox-Spdy: h2
|
| www.siteground.com/static/en/img/svg/monitorwithgears.svg | 34.149.40.93 | 200 OK | 6.3 kB |
URL GET HTTP/2www.siteground.com/static/en/img/svg/monitorwithgears.svg IP34.149.40.93:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
CertificateIssuerGlobalSign nv-sa Subject*.siteground.com FingerprintC1:E9:5C:0E:80:D3:83:9F:67:AA:E3:DB:FA:61:6F:BF:C6:E3:E1:5D ValidityTue, 27 Jun 2023 07:31:05 GMT - Sun, 28 Jul 2024 07:31:04 GMT
File typeSVG Scalable Vector Graphics image Hash5ab5dc8cca5c86c31a0c9e27c51e5fc2 e0b1b7267e9dda0affc8a962fa423b15d856c84a 14ecedf4f9a094034551d2f48ccf8b17505131ea201bf647f0b4579da0cb324c
GET /static/en/img/svg/monitorwithgears.svg HTTP/1.1
Host: www.siteground.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://35.212.1.174/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 19 Apr 2024 09:32:48 GMT
content-type: image/svg+xml
last-modified: Mon, 15 Apr 2024 11:25:03 GMT
vary: Accept-Encoding
etag: W/"661d0e8f-186f"
expires: Sat, 19 Apr 2025 09:32:48 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000; preload
x-content-type-options: nosniff
x-xss-protection: 1
x-frame-options: DENY
x-server: 0, 0, 0
host-header: 8441280b0c35cbc1147f8ba998a563a7, 192fc2e7e50945beb8231a492d6a8024, 192fc2e7e50945beb8231a492d6a8024
x-proxy-cache-info: DT:1, d NC:000000 UP:, d NC:000000 UP:
content-encoding: gzip
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-proxy-cache: MISS, MISS
age: 0
via: 1.1 google
X-Firefox-Spdy: h2
|