| 74.112.166.5/wp-content/uploads/2017/09/logo.png | 74.112.166.5 | 200 OK | 1.3 kB |
URL User Request GET HTTP/1.174.112.166.5/wp-content/uploads/2017/09/logo.png IP74.112.166.5:443
CertificateIssuerDigiCert Inc Subjectwww.visteon.com Fingerprint07:A8:9B:8E:38:88:54:D8:B0:B8:EF:06:E2:4F:AB:E9:D5:BC:3E:CE ValidityMon, 23 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
File typePNG image data, 149 x 29, 8-bit colormap, non-interlaced Hash13a637b5787f6fe2abf494bf64672d38 f222d792351438d2c7c306c3e73566e7a15c47bb e31412e48f16ca834396ec2ca9f00404d3e368b357f6e279c4a70201e29dbeaa
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2017/09/logo.png HTTP/1.1
Host: 74.112.166.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 07:51:26 GMT
Server: Apache
Last-Modified: Mon, 15 Nov 2021 08:44:14 GMT
Accept-Ranges: bytes
Content-Length: 1277
X-XSS-Protection: 1; mode=block
Access-Control-Allow-Methods: GET,POST
Access-Control-Allow-Headers: Content-Type, Authorization
Content-Security-Policy: upgrade-insecure-requests;
Cross-Origin-Embedder-Policy: unsafe-none; report-to='default'
Cross-Origin-Embedder-Policy-Report-Only: unsafe-none; report-to='default'
Cross-Origin-Opener-Policy: unsafe-none
Cross-Origin-Opener-Policy-Report-Only: unsafe-none; report-to='default'
Cross-Origin-Resource-Policy: cross-origin
Permissions-Policy: interest-cohort=(), window-management=(), accelerometer=(), autoplay=(), camera=(), cross-origin-isolated=(), display-capture=(self), encrypted-media=(), fullscreen=*, geolocation=(self), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), payment=*, picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), xr-spatial-tracking=(), gamepad=(), serial=()
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=63072000
X-Content-Security-Policy: default-src 'self'; img-src *; media-src * data:;
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
|
IP74.112.166.5:443
Requested byhttps://74.112.166.5/wp-content/uploads/2017/09/logo.png CertificateIssuerDigiCert Inc Subjectwww.visteon.com Fingerprint07:A8:9B:8E:38:88:54:D8:B0:B8:EF:06:E2:4F:AB:E9:D5:BC:3E:CE ValidityMon, 23 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
Hashaf580289406c5dcfe4fc5e67417a3c73 6c291d9c19a7a1a2f6c3d5d05e1ba4cf5af008a7 26b373ad88546b2a741ffcc7c932a0c15963d1908b2d7e28528f23f774b5ef86
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 74.112.166.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://74.112.166.5/wp-content/uploads/2017/09/logo.png
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Thu, 25 Apr 2024 07:51:27 GMT
Server: Apache
Cache-Control: no-store, no-cache
X-Cache-Enabled: False
Link: <https://www.visteon.com/wp-json/>; rel="https://api.w.org/"
X-Redirect-By: WordPress
Location: https://www.visteon.com/wp-content/uploads/2024/03/favicon.png
X-XSS-Protection: 1; mode=block
Access-Control-Allow-Methods: GET,POST
Access-Control-Allow-Headers: Content-Type, Authorization
Content-Security-Policy: upgrade-insecure-requests;
Cross-Origin-Embedder-Policy: unsafe-none; report-to='default'
Cross-Origin-Embedder-Policy-Report-Only: unsafe-none; report-to='default'
Cross-Origin-Opener-Policy: unsafe-none
Cross-Origin-Opener-Policy-Report-Only: unsafe-none; report-to='default'
Cross-Origin-Resource-Policy: cross-origin
Permissions-Policy: interest-cohort=(), window-management=(), accelerometer=(), autoplay=(), camera=(), cross-origin-isolated=(), display-capture=(self), encrypted-media=(), fullscreen=*, geolocation=(self), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), payment=*, picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), xr-spatial-tracking=(), gamepad=(), serial=()
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=63072000
X-Content-Security-Policy: default-src 'self'; img-src *; media-src * data:;
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
Content-Length: 258
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
| www.visteon.com/wp-content/uploads/2024/03/favicon.png | 216.109.73.137 | 200 OK | 229 B |
URL GET HTTP/1.1www.visteon.com/wp-content/uploads/2024/03/favicon.png IP216.109.73.137:443 ASN#3561 CENTURYLINK-LEGACY-SAVVIS
Requested byhttps://74.112.166.5/wp-content/uploads/2017/09/logo.png CertificateIssuerDigiCert Inc Subjectwww.visteon.com Fingerprint07:A8:9B:8E:38:88:54:D8:B0:B8:EF:06:E2:4F:AB:E9:D5:BC:3E:CE ValidityMon, 23 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
File typePNG image data, 16 x 16, 8-bit colormap, non-interlaced Hash06ab4b0026ccf5ba36e6dea57c9ca6e8 e8a85bd7a54a617ee7546ef59aa51171233f8a4c 76b2f0717b2c515771588b509349d99946d0a5e2f21690b83d60de9a880063d6
GET /wp-content/uploads/2024/03/favicon.png HTTP/1.1
Host: www.visteon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://74.112.166.5/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 07:51:28 GMT
Server: Apache
Last-Modified: Wed, 13 Mar 2024 11:53:58 GMT
Accept-Ranges: bytes
Content-Length: 229
X-XSS-Protection: 1; mode=block
Access-Control-Allow-Methods: GET,POST
Access-Control-Allow-Headers: Content-Type, Authorization
Content-Security-Policy: upgrade-insecure-requests;
Cross-Origin-Embedder-Policy: unsafe-none; report-to='default'
Cross-Origin-Embedder-Policy-Report-Only: unsafe-none; report-to='default'
Cross-Origin-Opener-Policy: unsafe-none
Cross-Origin-Opener-Policy-Report-Only: unsafe-none; report-to='default'
Cross-Origin-Resource-Policy: cross-origin
Permissions-Policy: interest-cohort=(), window-management=(), accelerometer=(), autoplay=(), camera=(), cross-origin-isolated=(), display-capture=(self), encrypted-media=(), fullscreen=*, geolocation=(self), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), payment=*, picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), xr-spatial-tracking=(), gamepad=(), serial=()
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=63072000
X-Content-Security-Policy: default-src 'self'; img-src *; media-src * data:;
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
Cache-Control: public
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
|