Report - superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J

Report Overview

Submitted URL
superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
IP
91.212.166.122
ASN
#198953 Proton66 OOO
Submitted
2024-05-10 15:52:11
Access
public
Website Title
Time
Final URL
superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
2
Threat Detection Systems
66

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
superhot-tips.com	unknown	unknown	No data	No data	18 kB	1.4 MB	91.212.166.122

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-05-10 15:51:44	medium	91.212.166.122	Client IP	ET DROP Spamhaus DROP Listed Traffic Inbound group 14
2024-05-10 15:51:44	medium	91.212.166.122	Client IP	ET DROP Spamhaus DROP Listed Traffic Inbound group 14

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-10	medium	superhot-tips.com	Sinkholed
2024-05-10	medium	superhot-tips.com	Sinkholed
2024-05-10	medium	superhot-tips.com	Sinkholed
2024-05-10	medium	superhot-tips.com	Sinkholed
2024-05-10	medium	superhot-tips.com	Sinkholed
2024-05-10	medium	superhot-tips.com	Sinkholed
2024-05-10	medium	superhot-tips.com	Sinkholed
2024-05-10	medium	superhot-tips.com	Sinkholed
2024-05-10	medium	superhot-tips.com	Sinkholed
2024-05-10	medium	superhot-tips.com	Sinkholed
2024-05-10	medium	superhot-tips.com	Sinkholed
2024-05-10	medium	superhot-tips.com	Sinkholed
2024-05-10	medium	superhot-tips.com	Sinkholed
2024-05-10	medium	superhot-tips.com	Sinkholed
2024-05-10	medium	superhot-tips.com	Sinkholed
2024-05-10	medium	superhot-tips.com	Sinkholed
2024-05-10	medium	superhot-tips.com	Sinkholed
2024-05-10	medium	superhot-tips.com	Sinkholed
2024-05-10	medium	superhot-tips.com	Sinkholed
2024-05-10	medium	superhot-tips.com	Sinkholed
2024-05-10	medium	superhot-tips.com	Sinkholed
2024-05-10	medium	superhot-tips.com	Sinkholed
2024-05-10	medium	superhot-tips.com	Sinkholed
2024-05-10	medium	superhot-tips.com	Sinkholed
2024-05-10	medium	superhot-tips.com	Sinkholed
2024-05-10	medium	superhot-tips.com	Sinkholed
2024-05-10	medium	superhot-tips.com	Sinkholed
2024-05-10	medium	superhot-tips.com	Sinkholed
2024-05-10	medium	superhot-tips.com	Sinkholed
2024-05-10	medium	superhot-tips.com	Sinkholed
2024-05-10	medium	superhot-tips.com	Sinkholed
2024-05-10	medium	superhot-tips.com	Sinkholed
2024-05-10	medium	superhot-tips.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (6)

	URL	Size	First Seen	Last Seen
	superhot-tips.com/static/lib/backDay.js	5.4 kB	2024-05-10	2024-05-10
Pretty URL superhot-tips.com/static/lib/backDay.js IP 91.212.166.122 ASN #198953 Proton66 OOO Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 17:52:17 Last Seen2024-05-10 17:52:17 Times Seen2 Hash 2c9875a54fb073f2f3ae767d396c6863 91840a9e4e7398bf6547054008c6d47d5d097c80 c06bce01d4aae31b855907a037eb2a3041e5f15245414bed0bb901fbbb248bce Loading...

	superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J	47 B	2023-03-07	2024-05-10
Pretty URL superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J IP 91.212.166.122 ASN #198953 Proton66 OOO Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 13:46:16 Last Seen2024-05-10 17:52:17 Times Seen2 Hash d0509d80010d69bf70ec1b82ce47aff2 a0a449fff9c6f30a0f811dfa7282bcc799926ae3 6b513432225bb6332b0ae16ed4fcd7bcf5a668cd81b5dec46c58846ca527555a Loading...

	superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J	87 B	2023-03-07	2024-05-10
Pretty URL superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J IP 91.212.166.122 ASN #198953 Proton66 OOO Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 13:46:16 Last Seen2024-05-10 17:52:17 Times Seen2 Hash 4d6c90525b4cca537603e522d6455081 a6b5de64623c95c59a2f29759d1943591dac79d6 c69e43fb947649f362dc9132d6abb0e77f4057ef2e1bc9871c292fe2546be95b Loading...

	superhot-tips.com/static/lib/jquery/jquery-2.2.1.min.js	86 kB	2023-03-07	2024-05-25
Pretty URL superhot-tips.com/static/lib/jquery/jquery-2.2.1.min.js IP 91.212.166.122 ASN #198953 Proton66 OOO Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:19 Last Seen2024-05-25 19:46:46 Times Seen884 Hash 6cbb321051a268424103cd4aea8ffa66 7cb05e3d551cd61439337b2cb22f49b1955f9711 82f420005cd31fab6b4ab016a07d623e8f5773de90c526777de5ba91e9be3b4d Loading...

	superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J	892 B	2024-05-10	2024-05-10
Pretty URL superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J IP 91.212.166.122 ASN #198953 Proton66 OOO Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-10 17:52:17 Last Seen2024-05-10 17:52:17 Times Seen1 Hash 06a6be9e2d287dea5bc024e15d036511 29bc6f39500740afe09d5dec7e890318ac5a2b79 7e0fdff0f5f3ba36e7c5dee05da1199578e4c9179bd24c6f3efe862261060723 Loading...

		Size	First Seen	Last Seen
	#1 Write - 53a8945aa095d7a605b1995d60979f5f	20 B	2024-05-10	2024-05-10
Pretty Observations First Seen2024-05-10 17:52:17 Last Seen2024-05-10 17:52:17 Times Seen1 Hash 53a8945aa095d7a605b1995d60979f5f 9378b86680b9eb6248935c02c74e5e51f0cdc528 5701ebc1b256270641b36c5e25f97c7ab6cb3babc7501f33d9caf26cfc11448b Loading...

HTTP Transactions (33)

URL IP Response Size

superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J

91.212.166.122

200 OK

46 kB

URL User Request GET HTTP/2
superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
IP
91.212.166.122:443
ASN
#198953 Proton66 OOO

Certificate
IssuerLet's Encrypt
Subjectsuperhot-tips.com
Fingerprint4D:01:CF:56:67:7D:3B:65:38:E1:2C:28:F7:FD:4B:62:96:07:74:97
ValidityThu, 04 Apr 2024 14:15:45 GMT - Wed, 03 Jul 2024 14:15:44 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (322)
Size
46 kB (46334 bytes)
Hash
c7baa652376c99fed18b1fe919c755e0
5f0fd12841aa7f5f06cf7f1c42c7e4d892f576ed
1152ec96deb231d3f75236e8cf0e7f947952f8aeeaa411ba002f77b91f97afd4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J HTTP/1.1
Host: superhot-tips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.12.2
date: Fri, 10 May 2024 15:51:44 GMT
content-type: text/html; charset=UTF-8
content-length: 46334
x-powered-by: ARR/2.5(a6404a16a)
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=15768000; includeSubDomains; preload
X-Firefox-Spdy: h2

superhot-tips.com/static/lib/backDay.js

91.212.166.122

200 OK

5.4 kB

URL GET HTTP/2
superhot-tips.com/static/lib/backDay.js
IP
91.212.166.122:443
ASN
#198953 Proton66 OOO

Requested by
https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
Certificate
IssuerLet's Encrypt
Subjectsuperhot-tips.com
Fingerprint4D:01:CF:56:67:7D:3B:65:38:E1:2C:28:F7:FD:4B:62:96:07:74:97
ValidityThu, 04 Apr 2024 14:15:45 GMT - Wed, 03 Jul 2024 14:15:44 GMT

File type
ASCII text
Size
5.4 kB (5425 bytes)
Hash
2c9875a54fb073f2f3ae767d396c6863
91840a9e4e7398bf6547054008c6d47d5d097c80
c06bce01d4aae31b855907a037eb2a3041e5f15245414bed0bb901fbbb248bce

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/lib/backDay.js HTTP/1.1
Host: superhot-tips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.12.2
date: Fri, 10 May 2024 15:51:44 GMT
content-type: application/javascript
content-length: 5425
last-modified: Fri, 12 Apr 2024 08:54:01 GMT
etag: "6618f6a9-1531"
expires: Fri, 17 May 2024 15:51:44 GMT
cache-control: max-age=604800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=15768000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

superhot-tips.com/static/diet/en/time-blog-new/images/mobile.png

91.212.166.122

200 OK

99 B

URL GET HTTP/2
superhot-tips.com/static/diet/en/time-blog-new/images/mobile.png
IP
91.212.166.122:443
ASN
#198953 Proton66 OOO

Requested by
https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
Certificate
IssuerLet's Encrypt
Subjectsuperhot-tips.com
Fingerprint4D:01:CF:56:67:7D:3B:65:38:E1:2C:28:F7:FD:4B:62:96:07:74:97
ValidityThu, 04 Apr 2024 14:15:45 GMT - Wed, 03 Jul 2024 14:15:44 GMT

File type
PNG image data, 27 x 19, 1-bit colormap, non-interlaced
Size
99 B (99 bytes)
Hash
46ade9dc4ab1a2dcd1c80ec02b3967d7
da2621bce3d989c3e908161e3a8a0a31ca00b681
eec6fc186f2e37b63143faf6d2fbc46a5f20397292651537e67bacc867bb3e46

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/diet/en/time-blog-new/images/mobile.png HTTP/1.1
Host: superhot-tips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.12.2
date: Fri, 10 May 2024 15:51:44 GMT
content-type: image/png
content-length: 99
last-modified: Tue, 13 Feb 2024 16:29:36 GMT
etag: "65cb98f0-63"
expires: Fri, 17 May 2024 15:51:44 GMT
cache-control: max-age=604800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=15768000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

superhot-tips.com/static/diet/en/time-blog-new/images/timelogo.JPG

91.212.166.122

200 OK

9.1 kB

URL GET HTTP/2
superhot-tips.com/static/diet/en/time-blog-new/images/timelogo.JPG
IP
91.212.166.122:443
ASN
#198953 Proton66 OOO

Requested by
https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
Certificate
IssuerLet's Encrypt
Subjectsuperhot-tips.com
Fingerprint4D:01:CF:56:67:7D:3B:65:38:E1:2C:28:F7:FD:4B:62:96:07:74:97
ValidityThu, 04 Apr 2024 14:15:45 GMT - Wed, 03 Jul 2024 14:15:44 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 93x36, components 3
Size
9.1 kB (9070 bytes)
Hash
c7d3304312289e19824ee023035257e0
c1a2de1d51d9b875cf66e8735d6c99ad159e1459
f44bf959f5b2887bc0deb982d511cc56d09741558366f6c6a0daa5c5f0774476

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/diet/en/time-blog-new/images/timelogo.JPG HTTP/1.1
Host: superhot-tips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.12.2
date: Fri, 10 May 2024 15:51:44 GMT
content-type: image/jpeg
content-length: 9070
last-modified: Tue, 13 Feb 2024 16:29:36 GMT
etag: "65cb98f0-236e"
expires: Fri, 17 May 2024 15:51:44 GMT
cache-control: max-age=604800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=15768000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

superhot-tips.com/static/diet/en/time-blog-new/images/mag.png

91.212.166.122

200 OK

2.3 kB

URL GET HTTP/2
superhot-tips.com/static/diet/en/time-blog-new/images/mag.png
IP
91.212.166.122:443
ASN
#198953 Proton66 OOO

Requested by
https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
Certificate
IssuerLet's Encrypt
Subjectsuperhot-tips.com
Fingerprint4D:01:CF:56:67:7D:3B:65:38:E1:2C:28:F7:FD:4B:62:96:07:74:97
ValidityThu, 04 Apr 2024 14:15:45 GMT - Wed, 03 Jul 2024 14:15:44 GMT

File type
PNG image data, 54 x 43, 8-bit colormap, non-interlaced
Size
2.3 kB (2285 bytes)
Hash
0efec3f2975b6da02fc2b0f28ab4ecc0
69177cc2f52a90aed08bed7c8eecc5c527b4e061
bac047af78fc15fbc85ecd186a1a3e4966619c1517865d7b7a42da4cae4f3c8a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/diet/en/time-blog-new/images/mag.png HTTP/1.1
Host: superhot-tips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.12.2
date: Fri, 10 May 2024 15:51:44 GMT
content-type: image/png
content-length: 2285
last-modified: Tue, 13 Feb 2024 16:29:36 GMT
etag: "65cb98f0-8ed"
expires: Fri, 17 May 2024 15:51:44 GMT
cache-control: max-age=604800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=15768000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

superhot-tips.com/static/diet/en/time-blog-new/images/s1.png

91.212.166.122

200 OK

3.6 kB

URL GET HTTP/2
superhot-tips.com/static/diet/en/time-blog-new/images/s1.png
IP
91.212.166.122:443
ASN
#198953 Proton66 OOO

Requested by
https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
Certificate
IssuerLet's Encrypt
Subjectsuperhot-tips.com
Fingerprint4D:01:CF:56:67:7D:3B:65:38:E1:2C:28:F7:FD:4B:62:96:07:74:97
ValidityThu, 04 Apr 2024 14:15:45 GMT - Wed, 03 Jul 2024 14:15:44 GMT

File type
PNG image data, 60 x 60, 8-bit colormap, non-interlaced
Size
3.6 kB (3641 bytes)
Hash
7c268dca14184c5b31544b256611d7fd
80df7bed67976e0a580031d45a4b1bbaf332dcab
5892b135aeb91e5836229579115523b88d0e743f6ea9cccfa04d491a46d16bd6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/diet/en/time-blog-new/images/s1.png HTTP/1.1
Host: superhot-tips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.12.2
date: Fri, 10 May 2024 15:51:44 GMT
content-type: image/png
content-length: 3641
last-modified: Tue, 13 Feb 2024 16:29:36 GMT
etag: "65cb98f0-e39"
expires: Fri, 17 May 2024 15:51:44 GMT
cache-control: max-age=604800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=15768000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

superhot-tips.com/static/diet/en/time-blog-new/images/s2.png

91.212.166.122

200 OK

3.5 kB

URL GET HTTP/2
superhot-tips.com/static/diet/en/time-blog-new/images/s2.png
IP
91.212.166.122:443
ASN
#198953 Proton66 OOO

Requested by
https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
Certificate
IssuerLet's Encrypt
Subjectsuperhot-tips.com
Fingerprint4D:01:CF:56:67:7D:3B:65:38:E1:2C:28:F7:FD:4B:62:96:07:74:97
ValidityThu, 04 Apr 2024 14:15:45 GMT - Wed, 03 Jul 2024 14:15:44 GMT

File type
PNG image data, 60 x 60, 8-bit colormap, non-interlaced
Size
3.5 kB (3506 bytes)
Hash
478d8650b7d2bdd2ee4f5738b08a8189
03e0a1710809a686f94847d1092a40a373ed3825
582723fcf29baeca4c151aecf6adf6db58ade73f1cc0fefe11fb2f0d99383874

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/diet/en/time-blog-new/images/s2.png HTTP/1.1
Host: superhot-tips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.12.2
date: Fri, 10 May 2024 15:51:44 GMT
content-type: image/png
content-length: 3506
last-modified: Tue, 13 Feb 2024 16:29:36 GMT
etag: "65cb98f0-db2"
expires: Fri, 17 May 2024 15:51:44 GMT
cache-control: max-age=604800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=15768000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

superhot-tips.com/static/diet/en/time-blog-new/images/s3.png

91.212.166.122

200 OK

3.9 kB

URL GET HTTP/2
superhot-tips.com/static/diet/en/time-blog-new/images/s3.png
IP
91.212.166.122:443
ASN
#198953 Proton66 OOO

Requested by
https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
Certificate
IssuerLet's Encrypt
Subjectsuperhot-tips.com
Fingerprint4D:01:CF:56:67:7D:3B:65:38:E1:2C:28:F7:FD:4B:62:96:07:74:97
ValidityThu, 04 Apr 2024 14:15:45 GMT - Wed, 03 Jul 2024 14:15:44 GMT

File type
PNG image data, 60 x 60, 8-bit colormap, non-interlaced
Size
3.9 kB (3902 bytes)
Hash
f5f394f44bbd1f6b03cf45e8fc34069c
7a20cb0cdcac9f9036a80974af9e2a4e59cdc88c
80135839ca3ae2b85e97fa4a81829766fb74f5af189d1fc8252218620da92dbe

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/diet/en/time-blog-new/images/s3.png HTTP/1.1
Host: superhot-tips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.12.2
date: Fri, 10 May 2024 15:51:44 GMT
content-type: image/png
content-length: 3902
last-modified: Tue, 13 Feb 2024 16:29:36 GMT
etag: "65cb98f0-f3e"
expires: Fri, 17 May 2024 15:51:44 GMT
cache-control: max-age=604800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=15768000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

superhot-tips.com/static/diet/en/time-blog-new/images/s4.png

91.212.166.122

200 OK

3.4 kB

URL GET HTTP/2
superhot-tips.com/static/diet/en/time-blog-new/images/s4.png
IP
91.212.166.122:443
ASN
#198953 Proton66 OOO

Requested by
https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
Certificate
IssuerLet's Encrypt
Subjectsuperhot-tips.com
Fingerprint4D:01:CF:56:67:7D:3B:65:38:E1:2C:28:F7:FD:4B:62:96:07:74:97
ValidityThu, 04 Apr 2024 14:15:45 GMT - Wed, 03 Jul 2024 14:15:44 GMT

File type
PNG image data, 60 x 60, 8-bit colormap, non-interlaced
Size
3.4 kB (3444 bytes)
Hash
d845613be17a9c80dfdbd55029b946ab
c212e274c0074250cfc3a6566c4a190c6a0119f3
c31e3273eec55f5a511f3f05d73b9f04a9876c657e246c0bb3bcaef016e8e328

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/diet/en/time-blog-new/images/s4.png HTTP/1.1
Host: superhot-tips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.12.2
date: Fri, 10 May 2024 15:51:44 GMT
content-type: image/png
content-length: 3444
last-modified: Tue, 13 Feb 2024 16:29:36 GMT
etag: "65cb98f0-d74"
expires: Fri, 17 May 2024 15:51:44 GMT
cache-control: max-age=604800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=15768000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

superhot-tips.com/static/diet/en/time-blog-new/images/hero20interview.jpg

91.212.166.122

200 OK

76 kB

URL GET HTTP/2
superhot-tips.com/static/diet/en/time-blog-new/images/hero20interview.jpg
IP
91.212.166.122:443
ASN
#198953 Proton66 OOO

Requested by
https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
Certificate
IssuerLet's Encrypt
Subjectsuperhot-tips.com
Fingerprint4D:01:CF:56:67:7D:3B:65:38:E1:2C:28:F7:FD:4B:62:96:07:74:97
ValidityThu, 04 Apr 2024 14:15:45 GMT - Wed, 03 Jul 2024 14:15:44 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 864x608, components 3
Size
76 kB (75728 bytes)
Hash
4b6e149849c64a0da29d2f6b558de0eb
110e243cf43fd11597d10e8f18777fe6db22b566
b74a4b038571df11b1b6e0b6f4474942ed2a39ca32ece1be0254793a0885de2a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/diet/en/time-blog-new/images/hero20interview.jpg HTTP/1.1
Host: superhot-tips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.12.2
date: Fri, 10 May 2024 15:51:44 GMT
content-type: image/jpeg
content-length: 75728
last-modified: Tue, 13 Feb 2024 16:29:36 GMT
etag: "65cb98f0-127d0"
expires: Fri, 17 May 2024 15:51:44 GMT
cache-control: max-age=604800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=15768000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

superhot-tips.com/static/diet/en/time-blog-new/images/before20and20after.jpg

91.212.166.122

200 OK

41 kB

URL GET HTTP/2
superhot-tips.com/static/diet/en/time-blog-new/images/before20and20after.jpg
IP
91.212.166.122:443
ASN
#198953 Proton66 OOO

Requested by
https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
Certificate
IssuerLet's Encrypt
Subjectsuperhot-tips.com
Fingerprint4D:01:CF:56:67:7D:3B:65:38:E1:2C:28:F7:FD:4B:62:96:07:74:97
ValidityThu, 04 Apr 2024 14:15:45 GMT - Wed, 03 Jul 2024 14:15:44 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 640x401, components 3
Size
41 kB (41123 bytes)
Hash
b199c4307227b3d30712c8e33daf980f
8845bff2e52ccce516f857e10dffa07a7ba4e390
7ee1a8be7653a7653854e6ac732735e03407edaa43ac34c1ce7fea02f5ab8eca

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/diet/en/time-blog-new/images/before20and20after.jpg HTTP/1.1
Host: superhot-tips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.12.2
date: Fri, 10 May 2024 15:51:44 GMT
content-type: image/jpeg
content-length: 41123
last-modified: Tue, 13 Feb 2024 16:29:36 GMT
etag: "65cb98f0-a0a3"
expires: Fri, 17 May 2024 15:51:44 GMT
cache-control: max-age=604800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=15768000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

superhot-tips.com/static/diet/en/time-blog-new/images/photo_2022-03-29_02-56-44.jpg

91.212.166.122

200 OK

73 kB

URL GET HTTP/2
superhot-tips.com/static/diet/en/time-blog-new/images/photo_2022-03-29_02-56-44.jpg
IP
91.212.166.122:443
ASN
#198953 Proton66 OOO

Requested by
https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
Certificate
IssuerLet's Encrypt
Subjectsuperhot-tips.com
Fingerprint4D:01:CF:56:67:7D:3B:65:38:E1:2C:28:F7:FD:4B:62:96:07:74:97
ValidityThu, 04 Apr 2024 14:15:45 GMT - Wed, 03 Jul 2024 14:15:44 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x873, components 3
Size
73 kB (72765 bytes)
Hash
a7f24f7d4dd24bcd360b44749c2bbd3e
bbe4123bc36c502a7f1047a9ffd91889ba375ebd
0a6005114d366b176ddb033eeed10443d75adb7f2782e155c712db7384029439

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/diet/en/time-blog-new/images/photo_2022-03-29_02-56-44.jpg HTTP/1.1
Host: superhot-tips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.12.2
date: Fri, 10 May 2024 15:51:44 GMT
content-type: image/jpeg
content-length: 72765
last-modified: Tue, 13 Feb 2024 16:29:36 GMT
etag: "65cb98f0-11c3d"
expires: Fri, 17 May 2024 15:51:44 GMT
cache-control: max-age=604800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=15768000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

superhot-tips.com/static/diet/en/time-blog-new/images/gma.jpg

91.212.166.122

200 OK

240 kB

URL GET HTTP/2
superhot-tips.com/static/diet/en/time-blog-new/images/gma.jpg
IP
91.212.166.122:443
ASN
#198953 Proton66 OOO

Requested by
https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
Certificate
IssuerLet's Encrypt
Subjectsuperhot-tips.com
Fingerprint4D:01:CF:56:67:7D:3B:65:38:E1:2C:28:F7:FD:4B:62:96:07:74:97
ValidityThu, 04 Apr 2024 14:15:45 GMT - Wed, 03 Jul 2024 14:15:44 GMT

File type
JPEG image data, progressive, precision 8, 640x401, components 3
Size
240 kB (240001 bytes)
Hash
67f0b625c215502c769bb1cfb0878e42
725c65f346965cb57a7f4fd876bf0d4e7bb91ea8
ba7578ad3297346bd48db72b959b18bc0f0fe2524f57230ea67f17cb6d8aea5d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/diet/en/time-blog-new/images/gma.jpg HTTP/1.1
Host: superhot-tips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.12.2
date: Fri, 10 May 2024 15:51:44 GMT
content-type: image/jpeg
content-length: 240001
last-modified: Tue, 13 Feb 2024 16:29:36 GMT
etag: "65cb98f0-3a981"
expires: Fri, 17 May 2024 15:51:44 GMT
cache-control: max-age=604800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=15768000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

superhot-tips.com/static/diet/en/time-blog-new/images/tinder2.jpg

91.212.166.122

200 OK

43 kB

URL GET HTTP/2
superhot-tips.com/static/diet/en/time-blog-new/images/tinder2.jpg
IP
91.212.166.122:443
ASN
#198953 Proton66 OOO

Requested by
https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
Certificate
IssuerLet's Encrypt
Subjectsuperhot-tips.com
Fingerprint4D:01:CF:56:67:7D:3B:65:38:E1:2C:28:F7:FD:4B:62:96:07:74:97
ValidityThu, 04 Apr 2024 14:15:45 GMT - Wed, 03 Jul 2024 14:15:44 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 180x180, segment length 16, progressive, precision 8, 500x407, components 3
Size
43 kB (43137 bytes)
Hash
ab741acd3a0ff0a86822389e39a8a10d
6ac64830e9ea232dffd1d6ff780fd9691951a915
84cf7d291438a757f04e88dde74df14eda854968a185910f1be0eebe4633c707

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/diet/en/time-blog-new/images/tinder2.jpg HTTP/1.1
Host: superhot-tips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.12.2
date: Fri, 10 May 2024 15:51:44 GMT
content-type: image/jpeg
content-length: 43137
last-modified: Tue, 13 Feb 2024 16:29:36 GMT
etag: "65cb98f0-a881"
expires: Fri, 17 May 2024 15:51:44 GMT
cache-control: max-age=604800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=15768000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

superhot-tips.com/static/diet/en/time-blog-new/images/male.jpg

91.212.166.122

200 OK

61 kB

URL GET HTTP/2
superhot-tips.com/static/diet/en/time-blog-new/images/male.jpg
IP
91.212.166.122:443
ASN
#198953 Proton66 OOO

Requested by
https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
Certificate
IssuerLet's Encrypt
Subjectsuperhot-tips.com
Fingerprint4D:01:CF:56:67:7D:3B:65:38:E1:2C:28:F7:FD:4B:62:96:07:74:97
ValidityThu, 04 Apr 2024 14:15:45 GMT - Wed, 03 Jul 2024 14:15:44 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 640x377, components 3
Size
61 kB (61232 bytes)
Hash
4e5644f875077a2d78a6a4d71da23d8a
6219a0d70b72d69033552047e7976ecbfb767920
dcbf1d410241e81653daac8668e0555806635df0ce880bfe04d8479de21aff43

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/diet/en/time-blog-new/images/male.jpg HTTP/1.1
Host: superhot-tips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.12.2
date: Fri, 10 May 2024 15:51:44 GMT
content-type: image/jpeg
content-length: 61232
last-modified: Tue, 13 Feb 2024 16:29:36 GMT
etag: "65cb98f0-ef30"
expires: Fri, 17 May 2024 15:51:44 GMT
cache-control: max-age=604800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=15768000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

superhot-tips.com/static/diet/en/time-blog-new/images/tinder1.jpg

91.212.166.122

200 OK

49 kB

URL GET HTTP/2
superhot-tips.com/static/diet/en/time-blog-new/images/tinder1.jpg
IP
91.212.166.122:443
ASN
#198953 Proton66 OOO

Requested by
https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
Certificate
IssuerLet's Encrypt
Subjectsuperhot-tips.com
Fingerprint4D:01:CF:56:67:7D:3B:65:38:E1:2C:28:F7:FD:4B:62:96:07:74:97
ValidityThu, 04 Apr 2024 14:15:45 GMT - Wed, 03 Jul 2024 14:15:44 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x480, components 3
Size
49 kB (48819 bytes)
Hash
ef8e6b3fa97b5705bbc46001a784474e
021997f12899648b627841f6ac1ad3dada3ffc7b
f316fad0eebc235a1d8d49c980bf74311b7410ded6f279dc4b2fe10d98936000

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/diet/en/time-blog-new/images/tinder1.jpg HTTP/1.1
Host: superhot-tips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.12.2
date: Fri, 10 May 2024 15:51:44 GMT
content-type: image/jpeg
content-length: 48819
last-modified: Tue, 13 Feb 2024 16:29:36 GMT
etag: "65cb98f0-beb3"
expires: Fri, 17 May 2024 15:51:44 GMT
cache-control: max-age=604800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=15768000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

superhot-tips.com/static/diet/en/time-blog-new/images/usweeklyba.png

91.212.166.122

200 OK

57 kB

URL GET HTTP/2
superhot-tips.com/static/diet/en/time-blog-new/images/usweeklyba.png
IP
91.212.166.122:443
ASN
#198953 Proton66 OOO

Requested by
https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
Certificate
IssuerLet's Encrypt
Subjectsuperhot-tips.com
Fingerprint4D:01:CF:56:67:7D:3B:65:38:E1:2C:28:F7:FD:4B:62:96:07:74:97
ValidityThu, 04 Apr 2024 14:15:45 GMT - Wed, 03 Jul 2024 14:15:44 GMT

File type
PNG image data, 470 x 300, 8-bit colormap, non-interlaced
Size
57 kB (56817 bytes)
Hash
9348e49e5a8a8234c4516d6c17950ce7
abbc8cab58eb807761d9d2d3b6e3990ae7615927
6c5fd386e627f5d504659913922679e65feb162238bc0f669c40c1a07f4b848c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/diet/en/time-blog-new/images/usweeklyba.png HTTP/1.1
Host: superhot-tips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.12.2
date: Fri, 10 May 2024 15:51:44 GMT
content-type: image/png
content-length: 56817
last-modified: Tue, 13 Feb 2024 16:29:36 GMT
etag: "65cb98f0-ddf1"
expires: Fri, 17 May 2024 15:51:44 GMT
cache-control: max-age=604800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=15768000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

superhot-tips.com/static/diet/en/time-blog-new/images/zGohUHN.jpg

91.212.166.122

200 OK

1.9 kB

URL GET HTTP/2
superhot-tips.com/static/diet/en/time-blog-new/images/zGohUHN.jpg
IP
91.212.166.122:443
ASN
#198953 Proton66 OOO

Requested by
https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
Certificate
IssuerLet's Encrypt
Subjectsuperhot-tips.com
Fingerprint4D:01:CF:56:67:7D:3B:65:38:E1:2C:28:F7:FD:4B:62:96:07:74:97
ValidityThu, 04 Apr 2024 14:15:45 GMT - Wed, 03 Jul 2024 14:15:44 GMT

File type
JPEG image data, baseline, precision 8, 50x50, components 3
Size
1.9 kB (1934 bytes)
Hash
95bed83daad2102d92f5cccc50f5674f
fd505cad966b5ca1f730c36f0cb5afca99b9e8e4
1faac9d332758d1ad5baac1b1dcafb468c4e3c1c0cfa2ae01e181787d8fee7ee

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/diet/en/time-blog-new/images/zGohUHN.jpg HTTP/1.1
Host: superhot-tips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.12.2
date: Fri, 10 May 2024 15:51:44 GMT
content-type: image/jpeg
content-length: 1934
last-modified: Tue, 13 Feb 2024 16:29:36 GMT
etag: "65cb98f0-78e"
expires: Fri, 17 May 2024 15:51:44 GMT
cache-control: max-age=604800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=15768000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

superhot-tips.com/static/diet/en/time-blog-new/images/dGKIpuI.jpg

91.212.166.122

200 OK

2.2 kB

URL GET HTTP/2
superhot-tips.com/static/diet/en/time-blog-new/images/dGKIpuI.jpg
IP
91.212.166.122:443
ASN
#198953 Proton66 OOO

Requested by
https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
Certificate
IssuerLet's Encrypt
Subjectsuperhot-tips.com
Fingerprint4D:01:CF:56:67:7D:3B:65:38:E1:2C:28:F7:FD:4B:62:96:07:74:97
ValidityThu, 04 Apr 2024 14:15:45 GMT - Wed, 03 Jul 2024 14:15:44 GMT

File type
JPEG image data, baseline, precision 8, 50x50, components 3
Size
2.2 kB (2219 bytes)
Hash
6dabca714c12e1ad6ef66bc7da41cc0a
ed92ec42622380f0dbc47e6328639cb47fc86c79
08441ff75e3c56e8d783a3d7a0b275e78ac7f60f89a47cde52d7b8833c594ebb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/diet/en/time-blog-new/images/dGKIpuI.jpg HTTP/1.1
Host: superhot-tips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.12.2
date: Fri, 10 May 2024 15:51:44 GMT
content-type: image/jpeg
content-length: 2219
last-modified: Tue, 13 Feb 2024 16:29:36 GMT
etag: "65cb98f0-8ab"
expires: Fri, 17 May 2024 15:51:44 GMT
cache-control: max-age=604800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=15768000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

superhot-tips.com/static/diet/en/time-blog-new/images/XEEOvDT.jpg

91.212.166.122

200 OK

2.3 kB

URL GET HTTP/2
superhot-tips.com/static/diet/en/time-blog-new/images/XEEOvDT.jpg
IP
91.212.166.122:443
ASN
#198953 Proton66 OOO

Requested by
https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
Certificate
IssuerLet's Encrypt
Subjectsuperhot-tips.com
Fingerprint4D:01:CF:56:67:7D:3B:65:38:E1:2C:28:F7:FD:4B:62:96:07:74:97
ValidityThu, 04 Apr 2024 14:15:45 GMT - Wed, 03 Jul 2024 14:15:44 GMT

File type
JPEG image data, baseline, precision 8, 50x50, components 3
Size
2.3 kB (2274 bytes)
Hash
6de72de185fc49ae573d8e1a9766c765
8ed1e48aad3bef8667bebe08fad8561ae33789c0
bbe7c4c36b51cff6d2d1bd67b5776d7caab216787e12d5c2520e024c75e30ad6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/diet/en/time-blog-new/images/XEEOvDT.jpg HTTP/1.1
Host: superhot-tips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.12.2
date: Fri, 10 May 2024 15:51:44 GMT
content-type: image/jpeg
content-length: 2274
last-modified: Tue, 13 Feb 2024 16:29:36 GMT
etag: "65cb98f0-8e2"
expires: Fri, 17 May 2024 15:51:44 GMT
cache-control: max-age=604800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=15768000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

superhot-tips.com/static/diet/en/time-blog-new/images/1Eq1UB7.jpg

91.212.166.122

200 OK

2.3 kB

URL GET HTTP/2
superhot-tips.com/static/diet/en/time-blog-new/images/1Eq1UB7.jpg
IP
91.212.166.122:443
ASN
#198953 Proton66 OOO

Requested by
https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
Certificate
IssuerLet's Encrypt
Subjectsuperhot-tips.com
Fingerprint4D:01:CF:56:67:7D:3B:65:38:E1:2C:28:F7:FD:4B:62:96:07:74:97
ValidityThu, 04 Apr 2024 14:15:45 GMT - Wed, 03 Jul 2024 14:15:44 GMT

File type
JPEG image data, baseline, precision 8, 50x50, components 3
Size
2.3 kB (2265 bytes)
Hash
a2ee60db68dabb43e99c730bc3244cbb
3aa8df8849b50faa277baaccafdaebcfbe39f4a0
22d51407dce777912ccdb471666b32aabb80c5432dfdd69b2dcd7007136aa102

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/diet/en/time-blog-new/images/1Eq1UB7.jpg HTTP/1.1
Host: superhot-tips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.12.2
date: Fri, 10 May 2024 15:51:44 GMT
content-type: image/jpeg
content-length: 2265
last-modified: Tue, 13 Feb 2024 16:29:36 GMT
etag: "65cb98f0-8d9"
expires: Fri, 17 May 2024 15:51:44 GMT
cache-control: max-age=604800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=15768000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

superhot-tips.com/static/lib/jquery/jquery-2.2.1.min.js

91.212.166.122

200 OK

86 kB

URL GET HTTP/2
superhot-tips.com/static/lib/jquery/jquery-2.2.1.min.js
IP
91.212.166.122:443
ASN
#198953 Proton66 OOO

Requested by
https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
Certificate
IssuerLet's Encrypt
Subjectsuperhot-tips.com
Fingerprint4D:01:CF:56:67:7D:3B:65:38:E1:2C:28:F7:FD:4B:62:96:07:74:97
ValidityThu, 04 Apr 2024 14:15:45 GMT - Wed, 03 Jul 2024 14:15:44 GMT

File type
JavaScript source, ASCII text, with very long lines (32019)
Size
86 kB (85630 bytes)
Hash
6cbb321051a268424103cd4aea8ffa66
7cb05e3d551cd61439337b2cb22f49b1955f9711
82f420005cd31fab6b4ab016a07d623e8f5773de90c526777de5ba91e9be3b4d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/lib/jquery/jquery-2.2.1.min.js HTTP/1.1
Host: superhot-tips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.12.2
date: Fri, 10 May 2024 15:51:44 GMT
content-type: application/javascript
content-length: 85630
last-modified: Tue, 13 Feb 2024 16:29:37 GMT
etag: "65cb98f1-14e7e"
expires: Fri, 17 May 2024 15:51:44 GMT
cache-control: max-age=604800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=15768000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

superhot-tips.com/static/diet/en/time-blog-new/images/DudtJV9V4AAeVWp.jpg

91.212.166.122

200 OK

262 kB

URL GET HTTP/2
superhot-tips.com/static/diet/en/time-blog-new/images/DudtJV9V4AAeVWp.jpg
IP
91.212.166.122:443
ASN
#198953 Proton66 OOO

Requested by
https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
Certificate
IssuerLet's Encrypt
Subjectsuperhot-tips.com
Fingerprint4D:01:CF:56:67:7D:3B:65:38:E1:2C:28:F7:FD:4B:62:96:07:74:97
ValidityThu, 04 Apr 2024 14:15:45 GMT - Wed, 03 Jul 2024 14:15:44 GMT

File type
JPEG image data, progressive, precision 8, 750x498, components 3
Size
262 kB (261655 bytes)
Hash
30b4a62e453e506a10ac75a02c3928b4
114fbe45033bc6026956bc76433049b62d5638b0
b579b56cb512e5ba4f454271939ec05235aa3be54e44c91240d2d7a2f9197ea2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/diet/en/time-blog-new/images/DudtJV9V4AAeVWp.jpg HTTP/1.1
Host: superhot-tips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.12.2
date: Fri, 10 May 2024 15:51:44 GMT
content-type: image/jpeg
content-length: 261655
last-modified: Tue, 13 Feb 2024 16:29:36 GMT
etag: "65cb98f0-3fe17"
expires: Fri, 17 May 2024 15:51:44 GMT
cache-control: max-age=604800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=15768000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

superhot-tips.com/static/diet/en/time-blog-new/images/B2IYu1k.jpg

91.212.166.122

200 OK

2.5 kB

URL GET HTTP/2
superhot-tips.com/static/diet/en/time-blog-new/images/B2IYu1k.jpg
IP
91.212.166.122:443
ASN
#198953 Proton66 OOO

Requested by
https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
Certificate
IssuerLet's Encrypt
Subjectsuperhot-tips.com
Fingerprint4D:01:CF:56:67:7D:3B:65:38:E1:2C:28:F7:FD:4B:62:96:07:74:97
ValidityThu, 04 Apr 2024 14:15:45 GMT - Wed, 03 Jul 2024 14:15:44 GMT

File type
JPEG image data, baseline, precision 8, 50x50, components 3
Size
2.5 kB (2521 bytes)
Hash
bbf1b8f9b37d808b8073f8ac64c2c0e8
979bf33cd60ce407a50f3367687817bf7ee1f59a
256e21cf841a1874c5b7a985ac38e8e579669274ccdcf2d8b14dee7b6ee02d82

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/diet/en/time-blog-new/images/B2IYu1k.jpg HTTP/1.1
Host: superhot-tips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.12.2
date: Fri, 10 May 2024 15:51:44 GMT
content-type: image/jpeg
content-length: 2521
last-modified: Tue, 13 Feb 2024 16:29:36 GMT
etag: "65cb98f0-9d9"
expires: Fri, 17 May 2024 15:51:44 GMT
cache-control: max-age=604800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=15768000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

superhot-tips.com/static/diet/en/time-blog-new/images/side1.png

91.212.166.122

200 OK

7.3 kB

URL GET HTTP/2
superhot-tips.com/static/diet/en/time-blog-new/images/side1.png
IP
91.212.166.122:443
ASN
#198953 Proton66 OOO

Requested by
https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
Certificate
IssuerLet's Encrypt
Subjectsuperhot-tips.com
Fingerprint4D:01:CF:56:67:7D:3B:65:38:E1:2C:28:F7:FD:4B:62:96:07:74:97
ValidityThu, 04 Apr 2024 14:15:45 GMT - Wed, 03 Jul 2024 14:15:44 GMT

File type
PNG image data, 100 x 100, 8-bit colormap, non-interlaced
Size
7.3 kB (7250 bytes)
Hash
2d3bd94b7d279a5e3744126af91bfbfc
5cd1e5a1e1d11f1689d5f67f8f59d4e222b6bd38
268d4ca85edc622af1a8025a0929bdecc66df068da345e00e2f2247917ebfb2e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/diet/en/time-blog-new/images/side1.png HTTP/1.1
Host: superhot-tips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.12.2
date: Fri, 10 May 2024 15:51:44 GMT
content-type: image/png
content-length: 7250
last-modified: Tue, 13 Feb 2024 16:29:36 GMT
etag: "65cb98f0-1c52"
expires: Fri, 17 May 2024 15:51:44 GMT
cache-control: max-age=604800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=15768000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

superhot-tips.com/static/diet/en/time-blog-new/images/side2.png

91.212.166.122

200 OK

6.8 kB

URL GET HTTP/2
superhot-tips.com/static/diet/en/time-blog-new/images/side2.png
IP
91.212.166.122:443
ASN
#198953 Proton66 OOO

Requested by
https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
Certificate
IssuerLet's Encrypt
Subjectsuperhot-tips.com
Fingerprint4D:01:CF:56:67:7D:3B:65:38:E1:2C:28:F7:FD:4B:62:96:07:74:97
ValidityThu, 04 Apr 2024 14:15:45 GMT - Wed, 03 Jul 2024 14:15:44 GMT

File type
PNG image data, 100 x 100, 8-bit colormap, non-interlaced
Size
6.8 kB (6782 bytes)
Hash
c4016b59bfcdbaf67b64a6a968d27a29
e8010940ff9fea63aeb41038459827efed5fd11a
400655d4e190eff083f9fc91b416f0c9bb3ea5d3e3f540499f1ac93c95a012f3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/diet/en/time-blog-new/images/side2.png HTTP/1.1
Host: superhot-tips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.12.2
date: Fri, 10 May 2024 15:51:44 GMT
content-type: image/png
content-length: 6782
last-modified: Tue, 13 Feb 2024 16:29:36 GMT
etag: "65cb98f0-1a7e"
expires: Fri, 17 May 2024 15:51:44 GMT
cache-control: max-age=604800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=15768000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

superhot-tips.com/static/diet/en/time-blog-new/images/side4.png

91.212.166.122

200 OK

9.4 kB

URL GET HTTP/2
superhot-tips.com/static/diet/en/time-blog-new/images/side4.png
IP
91.212.166.122:443
ASN
#198953 Proton66 OOO

Requested by
https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
Certificate
IssuerLet's Encrypt
Subjectsuperhot-tips.com
Fingerprint4D:01:CF:56:67:7D:3B:65:38:E1:2C:28:F7:FD:4B:62:96:07:74:97
ValidityThu, 04 Apr 2024 14:15:45 GMT - Wed, 03 Jul 2024 14:15:44 GMT

File type
PNG image data, 100 x 100, 8-bit colormap, non-interlaced
Size
9.4 kB (9416 bytes)
Hash
5e099e63a9d96720b8d62a8c9c5a3577
30b371029ce18b132ac098216b360239447050ec
5a4a54b5b8a4729b676e7969e68508d27884cdd4c83a2dd82e63d9d0b93370dd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/diet/en/time-blog-new/images/side4.png HTTP/1.1
Host: superhot-tips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.12.2
date: Fri, 10 May 2024 15:51:44 GMT
content-type: image/png
content-length: 9416
last-modified: Tue, 13 Feb 2024 16:29:36 GMT
etag: "65cb98f0-24c8"
expires: Fri, 17 May 2024 15:51:44 GMT
cache-control: max-age=604800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=15768000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

superhot-tips.com/static/diet/en/time-blog-new/images/side.png

91.212.166.122

200 OK

5.4 kB

URL GET HTTP/2
superhot-tips.com/static/diet/en/time-blog-new/images/side.png
IP
91.212.166.122:443
ASN
#198953 Proton66 OOO

Requested by
https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
Certificate
IssuerLet's Encrypt
Subjectsuperhot-tips.com
Fingerprint4D:01:CF:56:67:7D:3B:65:38:E1:2C:28:F7:FD:4B:62:96:07:74:97
ValidityThu, 04 Apr 2024 14:15:45 GMT - Wed, 03 Jul 2024 14:15:44 GMT

File type
PNG image data, 300 x 274, 8-bit colormap, non-interlaced
Size
5.4 kB (5400 bytes)
Hash
a3b82820ede7a9df234fd1dc531b6d24
6469bf65f55e1a3f161e841f184416fc07c63355
bd6d58b331c03e735123ea9baf65aa34d449cb10392191dbb90f3056ba272e44

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/diet/en/time-blog-new/images/side.png HTTP/1.1
Host: superhot-tips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.12.2
date: Fri, 10 May 2024 15:51:44 GMT
content-type: image/png
content-length: 5400
last-modified: Tue, 13 Feb 2024 16:29:36 GMT
etag: "65cb98f0-1518"
expires: Fri, 17 May 2024 15:51:44 GMT
cache-control: max-age=604800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=15768000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

superhot-tips.com/static/productimage/acv-keto/bottle-summer.png

91.212.166.122

200 OK

241 kB

URL GET HTTP/2
superhot-tips.com/static/productimage/acv-keto/bottle-summer.png
IP
91.212.166.122:443
ASN
#198953 Proton66 OOO

Requested by
https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
Certificate
IssuerLet's Encrypt
Subjectsuperhot-tips.com
Fingerprint4D:01:CF:56:67:7D:3B:65:38:E1:2C:28:F7:FD:4B:62:96:07:74:97
ValidityThu, 04 Apr 2024 14:15:45 GMT - Wed, 03 Jul 2024 14:15:44 GMT

File type
PNG image data, 800 x 1496, 8-bit colormap, non-interlaced
Size
241 kB (241116 bytes)
Hash
609b1e8c79ca40d7d547e903f0f6e3bf
cab0ed5a5d388971725731d273086299f63707c2
e441a4a86e137b43faac61d71a0f793fc20634d495d9eaa4a9ae466c73474ade

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/productimage/acv-keto/bottle-summer.png HTTP/1.1
Host: superhot-tips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.12.2
date: Fri, 10 May 2024 15:51:44 GMT
content-type: image/png
content-length: 241116
last-modified: Tue, 13 Feb 2024 16:29:37 GMT
etag: "65cb98f1-3addc"
expires: Fri, 17 May 2024 15:51:44 GMT
cache-control: max-age=604800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=15768000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

superhot-tips.com/static/diet/en/time-blog-new/images/bottom-share.png

91.212.166.122

200 OK

1.3 kB

URL GET HTTP/2
superhot-tips.com/static/diet/en/time-blog-new/images/bottom-share.png
IP
91.212.166.122:443
ASN
#198953 Proton66 OOO

Requested by
https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
Certificate
IssuerLet's Encrypt
Subjectsuperhot-tips.com
Fingerprint4D:01:CF:56:67:7D:3B:65:38:E1:2C:28:F7:FD:4B:62:96:07:74:97
ValidityThu, 04 Apr 2024 14:15:45 GMT - Wed, 03 Jul 2024 14:15:44 GMT

File type
PNG image data, 176 x 48, 8-bit colormap, non-interlaced
Size
1.3 kB (1309 bytes)
Hash
4963ec229a97b2e0c740dfd0c032ab03
d5e2ef91898d16e7f7369a610cc1feab4cbe6178
2c3a696675e52eeb09d0044e05356bd2a8752b424a7853dc5e58b55d6de5967f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/diet/en/time-blog-new/images/bottom-share.png HTTP/1.1
Host: superhot-tips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.12.2
date: Fri, 10 May 2024 15:51:44 GMT
content-type: image/png
content-length: 1309
last-modified: Tue, 13 Feb 2024 16:29:36 GMT
etag: "65cb98f0-51d"
expires: Fri, 17 May 2024 15:51:44 GMT
cache-control: max-age=604800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=15768000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

superhot-tips.com/assets/spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J/theme_1e7l8i.css?CID=467296

91.212.166.122

200 OK

21 B

URL GET HTTP/2
superhot-tips.com/assets/spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J/theme_1e7l8i.css?CID=467296
IP
91.212.166.122:443
ASN
#198953 Proton66 OOO

Requested by
https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
Certificate
IssuerLet's Encrypt
Subjectsuperhot-tips.com
Fingerprint4D:01:CF:56:67:7D:3B:65:38:E1:2C:28:F7:FD:4B:62:96:07:74:97
ValidityThu, 04 Apr 2024 14:15:45 GMT - Wed, 03 Jul 2024 14:15:44 GMT

File type
ASCII text, with no line terminators
Size
21 B (21 bytes)
Hash
18344450471966e26d48e47bf2171ee3
aac149a94aa35965e088a6a63c428d6056275ab2
4e0f2cb203e4cbd5c7433d348c079f8e08f305de9b8fc88ae19ff4c57974962f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J/theme_1e7l8i.css?CID=467296 HTTP/1.1
Host: superhot-tips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.12.2
date: Fri, 10 May 2024 15:51:44 GMT
content-type: text/css
content-length: 21
set-cookie: _view=true; expires=Sat, 11 May 2024 15:51:44 GMT; path=/
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=15768000; includeSubDomains; preload
X-Firefox-Spdy: h2

superhot-tips.com/favicon.ico

91.212.166.122

200 OK

790 B

URL GET HTTP/2
superhot-tips.com/favicon.ico
IP
91.212.166.122:443
ASN
#198953 Proton66 OOO

Requested by
https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
Certificate
IssuerLet's Encrypt
Subjectsuperhot-tips.com
Fingerprint4D:01:CF:56:67:7D:3B:65:38:E1:2C:28:F7:FD:4B:62:96:07:74:97
ValidityThu, 04 Apr 2024 14:15:45 GMT - Wed, 03 Jul 2024 14:15:44 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
790 B (790 bytes)
Hash
2aa1fc87608f47af9fbe7a28537d83a6
126b18b5ab5a1df8fdfd5435c91d93c314d770b3
3ffde8a57281c9b5377702644247b38bed27dcd0e97b6307c6514add01233a28

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: superhot-tips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
DNT: 1
Connection: keep-alive
Cookie: _view=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.12.2
date: Fri, 10 May 2024 15:51:45 GMT
content-type: image/x-icon
content-length: 790
last-modified: Tue, 13 Feb 2024 16:29:31 GMT
etag: "65cb98eb-316"
expires: Fri, 17 May 2024 15:51:45 GMT
cache-control: max-age=604800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=15768000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

superhot-tips.com/static/diet/en/time-blog-new/css/styles.css

91.212.166.122

200 OK

15 kB

URL GET HTTP/2
superhot-tips.com/static/diet/en/time-blog-new/css/styles.css
IP
91.212.166.122:443
ASN
#198953 Proton66 OOO

Requested by
https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
Certificate
IssuerLet's Encrypt
Subjectsuperhot-tips.com
Fingerprint4D:01:CF:56:67:7D:3B:65:38:E1:2C:28:F7:FD:4B:62:96:07:74:97
ValidityThu, 04 Apr 2024 14:15:45 GMT - Wed, 03 Jul 2024 14:15:44 GMT

File type
ASCII text
Size
15 kB (15279 bytes)
Hash
3bde7b64327696b175cf3a74fe605eee
f20681d23ba3dc42e78146aba5fd86db33bc2cef
9928e1bd71a731888a12273f4fc677174f7b6bab6fa695a4c3e40ce7f46029a1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/diet/en/time-blog-new/css/styles.css HTTP/1.1
Host: superhot-tips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://superhot-tips.com/us/giag/summkt-tr-v1-new?bhu=spkh8JnaPjN4Mw7yT94Jmjnv39WvZc7SqeiN2J
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.12.2
date: Fri, 10 May 2024 15:51:44 GMT
content-type: text/css
last-modified: Tue, 13 Feb 2024 16:29:36 GMT
vary: Accept-Encoding
etag: W/"65cb98f0-3baf"
expires: Fri, 17 May 2024 15:51:44 GMT
cache-control: max-age=604800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=15768000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (6)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

HTTP Transactions (33)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size