Report - peregiacc.co.uk/

Report Overview

Submitted URL
peregiacc.co.uk/
IP
185.194.90.23
ASN
#12488 Krystal Hosting Ltd
Submitted
2024-05-09 02:33:35
Access
public
Website Title
Peregia Care Consulting Limited – Professional and reliable care service that you and your family deserve.
Final URL
peregiacc.co.uk/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
70

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
peregiacc.co.uk	unknown	2020-07-02	2020-07-02	2023-10-26	17 kB	412 kB	185.194.90.23
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-05-08	1.1 kB	56 kB	216.58.207.227
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-05-07	1.2 kB	52 kB	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-09	medium	peregiacc.co.uk	Sinkholed
2024-05-09	medium	peregiacc.co.uk	Sinkholed
2024-05-09	medium	peregiacc.co.uk	Sinkholed
2024-05-09	medium	peregiacc.co.uk	Sinkholed
2024-05-09	medium	peregiacc.co.uk	Sinkholed
2024-05-09	medium	peregiacc.co.uk	Sinkholed
2024-05-09	medium	peregiacc.co.uk	Sinkholed
2024-05-09	medium	peregiacc.co.uk	Sinkholed
2024-05-09	medium	peregiacc.co.uk	Sinkholed
2024-05-09	medium	peregiacc.co.uk	Sinkholed
2024-05-09	medium	peregiacc.co.uk	Sinkholed
2024-05-09	medium	peregiacc.co.uk	Sinkholed
2024-05-09	medium	peregiacc.co.uk	Sinkholed
2024-05-09	medium	peregiacc.co.uk	Sinkholed
2024-05-09	medium	peregiacc.co.uk	Sinkholed
2024-05-09	medium	peregiacc.co.uk	Sinkholed
2024-05-09	medium	peregiacc.co.uk	Sinkholed
2024-05-09	medium	peregiacc.co.uk	Sinkholed
2024-05-09	medium	peregiacc.co.uk	Sinkholed
2024-05-09	medium	peregiacc.co.uk	Sinkholed
2024-05-09	medium	peregiacc.co.uk	Sinkholed
2024-05-09	medium	peregiacc.co.uk	Sinkholed
2024-05-09	medium	peregiacc.co.uk	Sinkholed
2024-05-09	medium	peregiacc.co.uk	Sinkholed
2024-05-09	medium	peregiacc.co.uk	Sinkholed
2024-05-09	medium	peregiacc.co.uk	Sinkholed
2024-05-09	medium	peregiacc.co.uk	Sinkholed
2024-05-09	medium	peregiacc.co.uk	Sinkholed
2024-05-09	medium	peregiacc.co.uk	Sinkholed
2024-05-09	medium	peregiacc.co.uk	Sinkholed
2024-05-09	medium	peregiacc.co.uk	Sinkholed
2024-05-09	medium	peregiacc.co.uk	Sinkholed
2024-05-09	medium	peregiacc.co.uk	Sinkholed
2024-05-09	medium	peregiacc.co.uk	Sinkholed
2024-05-09	medium	peregiacc.co.uk	Sinkholed

ThreatFox

No alerts detected

JavaScript (21)

	URL	Size	First Seen	Last Seen
	peregiacc.co.uk/wp-content/themes/astra/assets/js/minified/style.min.js?ver=2.6.1	11 kB	2023-03-07	2024-05-09
Pretty URL peregiacc.co.uk/wp-content/themes/astra/assets/js/minified/style.min.js?ver=2.6.1 IP 185.194.90.23 ASN #12488 Krystal Hosting Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-05-09 04:33:36 Times Seen587 Hash e5f93f66e097c5038ecb90f278557dc5 76e5a3d8bc43cc4c0f2b1a7871b5446f820452fa 758af520af740958167ad867622e499b689a3299fa395f5697ad775f8b9ae4ea Loading...

	peregiacc.co.uk/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.0.14	2.6 kB	2023-03-07	2024-05-19
Pretty URL peregiacc.co.uk/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.0.14 IP 185.194.90.23 ASN #12488 Krystal Hosting Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:28 Last Seen2024-05-19 21:08:37 Times Seen4752 Hash 9bb8540493a7fe11b229870eb37be165 d77f17cb9057dc8f622b8c0bf23f6acb739b3b8e 4a7ee62eb33f3bbb66c2151e5cac6bf4904e28302efc36128f3e3ccae6fde580 Loading...

	peregiacc.co.uk/	2.1 kB	2023-11-05	2024-05-09
Pretty URL peregiacc.co.uk/ IP 185.194.90.23 ASN #12488 Krystal Hosting Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-05 06:47:14 Last Seen2024-05-09 04:33:35 Times Seen2 Hash b9ea30c8307cc13946d36ae0f218ffec c842afe9a2866a7d4a239c40aa28ebc69df2d07a ba3e7434f1cf358d0455e5c100ab17e0a684e32fd6b888cff63cd6861cd730b4 Loading...

	peregiacc.co.uk/	47 B	2023-03-07	2024-05-19
Pretty URL peregiacc.co.uk/ IP 185.194.90.23 ASN #12488 Krystal Hosting Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:35 Last Seen2024-05-19 20:55:35 Times Seen2069 Hash 2c51b5be11f71c5e12aff7f05787fdfd 5e99384e82d66bdfa4db7c8b43a9066c2896e46d f305ca5823e9ef3bf3cdd312369057a018addabb859d129e07543349fdd74d35 Loading...

	peregiacc.co.uk/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.6.3.1	705 B	2023-03-07	2024-05-09
Pretty URL peregiacc.co.uk/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.6.3.1 IP 185.194.90.23 ASN #12488 Krystal Hosting Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:26 Last Seen2024-05-09 04:33:36 Times Seen171 Hash 697fde09408821cbcce53628e4107b71 a0ac5da86ef699334743f5945a52f3285994229d f3d3e4b6c0772fd114f620c3e15f30f184234ac2c0d1b9b3a69a44e3a26eface Loading...

	peregiacc.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.0.14	15 kB	2023-03-07	2024-05-11
Pretty URL peregiacc.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.0.14 IP 185.194.90.23 ASN #12488 Krystal Hosting Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:35 Last Seen2024-05-11 01:26:12 Times Seen620 Hash 2ad7a30635f384d807734d9631643297 b1e6b30b70be56af0498e90ef76d7b416a6c0840 374b38618c111a9eccbdd003ac49ae6d80f5b624602b48feb73c0fc29b8b9d75 Loading...

	peregiacc.co.uk/wp-includes/js/wp-embed.min.js?ver=5.5.5	1.4 kB	2023-03-07	2024-05-19
Pretty URL peregiacc.co.uk/wp-includes/js/wp-embed.min.js?ver=5.5.5 IP 185.194.90.23 ASN #12488 Krystal Hosting Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:18 Last Seen2024-05-19 22:50:41 Times Seen6998 Hash 905225d5711b559d3092387d5ffbedbd 6f6c39075263bafb9e8c10f1b34a1a0f7ee03c9d 5be614bce53f767993a5f5f14a6badd6aae6bf3af7cbdbf4d31520de49e27991 Loading...

	peregiacc.co.uk/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp	97 kB	2023-03-07	2024-05-20
Pretty URL peregiacc.co.uk/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp IP 185.194.90.23 ASN #12488 Krystal Hosting Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:38 Last Seen2024-05-20 04:58:27 Times Seen18166 Hash 49edccea2e7ba985cadc9ba0531cbed1 f8747f8ee704d9af31d0950015e01d3f9635b070 1db21d816296e6939ba1f42962496e4134ae2b0081e26970864c40c6d02bb1df Loading...

	peregiacc.co.uk/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1	11 kB	2023-03-07	2024-05-19
Pretty URL peregiacc.co.uk/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1 IP 185.194.90.23 ASN #12488 Krystal Hosting Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:39 Last Seen2024-05-19 21:08:37 Times Seen3581 Hash 58baf0f238d7afc7ab926b8d51e5b559 8515e5f578269e29c048450f78c107935d325dff 2989e0b9e836cb9de3274d641ec6a58c2052f039e790ddd59b22303930bfdeeb Loading...

	peregiacc.co.uk/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6	139 kB	2023-03-07	2024-05-19
Pretty URL peregiacc.co.uk/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 IP 185.194.90.23 ASN #12488 Krystal Hosting Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-05-19 22:09:30 Times Seen23662 Hash 15bb2b8491fc7e84137d65f610e1685a cd76b70a5426893e9c022b9a75c50a7c1348e2d0 b23f49f504faa32aac548b6662ffd64412f6738496fab8be38da46c5b7121804 Loading...

	peregiacc.co.uk/	1.1 kB	2023-11-05	2024-05-09
Pretty URL peregiacc.co.uk/ IP 185.194.90.23 ASN #12488 Krystal Hosting Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-05 06:47:14 Last Seen2024-05-09 04:33:36 Times Seen2 Hash c0064dff17e9c944192bdcb641b55780 ce3f8835e03d9b822a04c97a9fba5e254d45e291 4d8e8507a663dc9fa2533abb6f478b5769a52d245fab5dbbf01a4abe67d821f8 Loading...

	peregiacc.co.uk/	70 B	2023-03-07	2024-05-20
Pretty URL peregiacc.co.uk/ IP 185.194.90.23 ASN #12488 Krystal Hosting Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:07:32 Last Seen2024-05-20 03:44:09 Times Seen6741 Hash 4ff152a840e29705f2933718a2571bc3 6c7ed239bcd74ab7a0ea03b3dd4ab74ffceaff49 e426295764322c0b4d881b5da28c2591e9ff651fc07636da1e2979a62a2f349c Loading...

	peregiacc.co.uk/	53 B	2023-03-07	2024-05-18
Pretty URL peregiacc.co.uk/ IP 185.194.90.23 ASN #12488 Krystal Hosting Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:10:16 Last Seen2024-05-18 08:36:29 Times Seen52 Hash 6430cd36c323b8a3a9ab1e12286737b3 a98b5c4d81fca794d6a68586aca993191c23eb32 5bb380751b6f9743980bede0529220e0ad25a5baf5cefce4df17609b44d08d9c Loading...

	peregiacc.co.uk/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.0.14	64 kB	2023-03-07	2024-05-11
Pretty URL peregiacc.co.uk/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.0.14 IP 185.194.90.23 ASN #12488 Krystal Hosting Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:17 Last Seen2024-05-11 01:26:12 Times Seen124 Hash f383a8586b037ad92312ef60c6f014d1 7aa9fbd90de371488693c82e55ddf626c98b72d7 b9d383e38e532c50b3917f39468fda3ace10d59514814537ab814ff7d2f498d8 Loading...

	peregiacc.co.uk/wp-includes/js/jquery/ui/position.min.js?ver=1.11.4	6.4 kB	2023-03-07	2024-05-19
Pretty URL peregiacc.co.uk/wp-includes/js/jquery/ui/position.min.js?ver=1.11.4 IP 185.194.90.23 ASN #12488 Krystal Hosting Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:41:55 Last Seen2024-05-19 16:21:59 Times Seen1851 Hash d1c2e97eeca08ca067ccf2c5736f0390 5281985542fcc8c5a651d1991296e12c39bfcb82 0ce51090b148a45a0e3d652719ed6ef7f1a38e5d272dbf874f86a49664e897a3 Loading...

	peregiacc.co.uk/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	12 kB	2023-03-07	2024-05-20
Pretty URL peregiacc.co.uk/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP 185.194.90.23 ASN #12488 Krystal Hosting Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-05-20 05:04:22 Times Seen54871 Hash 3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0 Loading...

	peregiacc.co.uk/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.0.14	120 kB	2023-03-07	2024-05-11
Pretty URL peregiacc.co.uk/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.0.14 IP 185.194.90.23 ASN #12488 Krystal Hosting Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:17 Last Seen2024-05-11 01:26:12 Times Seen128 Hash 95b0ad42305be8ec83435fc4544b60ef 6daf87ce09fc2ad78a8587c74c0ae85d27f0b3e9 474d6e815d8b81662a6c1af148997e267ce59a6168ac2ccefe95d28138cd6095 Loading...

	peregiacc.co.uk/wp-includes/js/underscore.min.js?ver=1.8.3	16 kB	2023-03-07	2024-05-17
Pretty URL peregiacc.co.uk/wp-includes/js/underscore.min.js?ver=1.8.3 IP 185.194.90.23 ASN #12488 Krystal Hosting Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:36 Last Seen2024-05-17 19:01:24 Times Seen2160 Hash 203eeb8dd53e84fb53b7aeffb562d825 b4b4361a61ee78717bdcffe5c46ea79cdc3e04ae 6cd0d6897b3d4779f7d88ce72531f22fbf75851b195fb14e6f3f23d051b3d1e9 Loading...

	peregiacc.co.uk/wp-includes/js/wp-util.min.js?ver=5.5.5	1.1 kB	2023-03-07	2024-05-17
Pretty URL peregiacc.co.uk/wp-includes/js/wp-util.min.js?ver=5.5.5 IP 185.194.90.23 ASN #12488 Krystal Hosting Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:03 Last Seen2024-05-17 19:01:24 Times Seen1154 Hash 8852ab48e7d14f035a27f3c15d31c054 eed53bd391b539796dfe3b5bc5849170ab77c987 6d7c73e67cbb5215d633ce9ad65f0c0377004621fce62982568024178ac4b589 Loading...

	peregiacc.co.uk/	333 B	2023-03-07	2024-05-19
Pretty URL peregiacc.co.uk/ IP 185.194.90.23 ASN #12488 Krystal Hosting Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:35 Last Seen2024-05-19 23:31:45 Times Seen7763 Hash 3688fd64c409264431201fa55a828e81 2b7eeefaa1edf3a7621f7576b35b01c895ef5367 944433761a880eab1d567dd5389499af76aa03582c82a8aa88838e3c6c2134c6 Loading...

	peregiacc.co.uk/wp-includes/js/wp-emoji-release.min.js?ver=5.5.5	14 kB	2023-03-07	2024-05-19
Pretty URL peregiacc.co.uk/wp-includes/js/wp-emoji-release.min.js?ver=5.5.5 IP 185.194.90.23 ASN #12488 Krystal Hosting Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:38 Last Seen2024-05-19 17:32:44 Times Seen3572 Hash 878184c5d285d4d52d926d36ef19b718 dd260ffe0f8e3f38f58efd23cac8a1e5c788dad9 07e4203b9f313b587b1d53f896e63771ec85f9b0d4c2ac5fa64089457784d847 Loading...

HTTP Transactions (39)

URL IP Response Size

peregiacc.co.uk/wp-content/themes/astra/assets/css/minified/style.min.css?ver=2.6.1

185.194.90.23

200 OK

13 kB

URL GET HTTP/3
peregiacc.co.uk/wp-content/themes/astra/assets/css/minified/style.min.css?ver=2.6.1
IP
185.194.90.23:443
ASN
#12488 Krystal Hosting Ltd

Requested by
https://peregiacc.co.uk/
Certificate
IssuerLet's Encrypt
Subject*.peregiacc.co.uk
Fingerprint92:CD:CB:AF:DC:DA:D4:E4:03:89:B7:B5:BA:96:9F:D4:48:B0:7C:2F
ValidityFri, 05 Apr 2024 10:46:09 GMT - Thu, 04 Jul 2024 10:46:08 GMT

File type
ASCII text, with very long lines (63137), with CRLF line terminators
Size
13 kB (13277 bytes)
Hash
c9909a8574afe8532c80e838d0515b5c
68ff0dceeeb04e3f9fc0c4e8cc6870949af65306
62c2aafc4d87c9187996f40a2f23df9710d98ade7366818aedc6233acfe97614

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/astra/assets/css/minified/style.min.css?ver=2.6.1 HTTP/1.1
Host: peregiacc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 02:33:08 GMT
content-type: text/css
last-modified: Tue, 01 Dec 2020 12:08:15 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 13277
date: Thu, 09 May 2024 02:33:08 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"

peregiacc.co.uk/wp-includes/css/dist/block-library/style.min.css?ver=5.5.5

185.194.90.23

200 OK

7.5 kB

URL GET HTTP/3
peregiacc.co.uk/wp-includes/css/dist/block-library/style.min.css?ver=5.5.5
IP
185.194.90.23:443
ASN
#12488 Krystal Hosting Ltd

Requested by
https://peregiacc.co.uk/
Certificate
IssuerLet's Encrypt
Subject*.peregiacc.co.uk
Fingerprint92:CD:CB:AF:DC:DA:D4:E4:03:89:B7:B5:BA:96:9F:D4:48:B0:7C:2F
ValidityFri, 05 Apr 2024 10:46:09 GMT - Thu, 04 Jul 2024 10:46:08 GMT

File type
ASCII text, with very long lines (27100)
Size
7.5 kB (7455 bytes)
Hash
2e7e1d1c1d4d446a1b6b63295757d859
27a1d9dcbdc4aff486016b5c9f3ece6ad0c028c1
8c626f0f9b5c109539b256b73e72c02b300a184f46b4535c2eb86599215c78af

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=5.5.5 HTTP/1.1
Host: peregiacc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 02:33:08 GMT
content-type: text/css
last-modified: Thu, 27 Aug 2020 22:30:38 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 7455
date: Thu, 09 May 2024 02:33:08 GMT
server: LiteSpeed

peregiacc.co.uk/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.5.3

185.194.90.23

200 OK

259 B

URL GET HTTP/3
peregiacc.co.uk/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.5.3
IP
185.194.90.23:443
ASN
#12488 Krystal Hosting Ltd

Requested by
https://peregiacc.co.uk/
Certificate
IssuerLet's Encrypt
Subject*.peregiacc.co.uk
Fingerprint92:CD:CB:AF:DC:DA:D4:E4:03:89:B7:B5:BA:96:9F:D4:48:B0:7C:2F
ValidityFri, 05 Apr 2024 10:46:09 GMT - Thu, 04 Jul 2024 10:46:08 GMT

File type
ASCII text
Size
259 B (259 bytes)
Hash
a5bf64d5859ee94a3e8e93d592d6d2a0
049eb63b42dbb820b06870a430f523bf06880721
25825611ade7ceaed7df3862ec56dc91ad1d2be539966ef7bbe84306e51cfb08

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.5.3 HTTP/1.1
Host: peregiacc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 02:33:08 GMT
content-type: text/css
last-modified: Wed, 02 Dec 2020 12:13:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 259
date: Thu, 09 May 2024 02:33:08 GMT
server: LiteSpeed

peregiacc.co.uk/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.9.1

185.194.90.23

200 OK

3.2 kB

URL GET HTTP/3
peregiacc.co.uk/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.9.1
IP
185.194.90.23:443
ASN
#12488 Krystal Hosting Ltd

Requested by
https://peregiacc.co.uk/
Certificate
IssuerLet's Encrypt
Subject*.peregiacc.co.uk
Fingerprint92:CD:CB:AF:DC:DA:D4:E4:03:89:B7:B5:BA:96:9F:D4:48:B0:7C:2F
ValidityFri, 05 Apr 2024 10:46:09 GMT - Thu, 04 Jul 2024 10:46:08 GMT

File type
ASCII text, with very long lines (16591)
Size
3.2 kB (3186 bytes)
Hash
02f5d3618a9ca5e3063527265d39fbae
827b9d475645ae6891f427b3b20ce084444cca60
c6c2559bbfbd75165fa07056d46bf0403d126ed4cdb71e6de2e624b534a3bcd7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.9.1 HTTP/1.1
Host: peregiacc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 02:33:08 GMT
content-type: text/css
last-modified: Tue, 01 Dec 2020 10:37:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3186
date: Thu, 09 May 2024 02:33:08 GMT
server: LiteSpeed

peregiacc.co.uk/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.0.14

185.194.90.23

200 OK

2.4 kB

URL GET HTTP/3
peregiacc.co.uk/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.0.14
IP
185.194.90.23:443
ASN
#12488 Krystal Hosting Ltd

Requested by
https://peregiacc.co.uk/
Certificate
IssuerLet's Encrypt
Subject*.peregiacc.co.uk
Fingerprint92:CD:CB:AF:DC:DA:D4:E4:03:89:B7:B5:BA:96:9F:D4:48:B0:7C:2F
ValidityFri, 05 Apr 2024 10:46:09 GMT - Thu, 04 Jul 2024 10:46:08 GMT

File type
ASCII text, with very long lines (10019)
Size
2.4 kB (2442 bytes)
Hash
4601ba55044413706c2022cb6c1c3d05
5103ec2fbb389568ebf5cfe4fd721f3df2ff7aec
fe513ef974b767510d0a2b9f1b4d3afa53185b89ab617c869e5e3d6db960192c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.0.14 HTTP/1.1
Host: peregiacc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 02:33:08 GMT
content-type: text/css
last-modified: Tue, 01 Dec 2020 10:37:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2442
date: Thu, 09 May 2024 02:33:08 GMT
server: LiteSpeed

peregiacc.co.uk/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.0.14

185.194.90.23

200 OK

446 B

URL GET HTTP/3
peregiacc.co.uk/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.0.14
IP
185.194.90.23:443
ASN
#12488 Krystal Hosting Ltd

Requested by
https://peregiacc.co.uk/
Certificate
IssuerLet's Encrypt
Subject*.peregiacc.co.uk
Fingerprint92:CD:CB:AF:DC:DA:D4:E4:03:89:B7:B5:BA:96:9F:D4:48:B0:7C:2F
ValidityFri, 05 Apr 2024 10:46:09 GMT - Thu, 04 Jul 2024 10:46:08 GMT

File type
ASCII text, with very long lines (3815)
Size
446 B (446 bytes)
Hash
50ec3a006f0c002eab65b8ad7c034314
c0bf5e86b7ce3b2d994138da9a04647f6d4ba910
c2fc9f271417a7c08dcf78e478b9df9fda6acb2e2d5af3757b3162f59567c5d0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.0.14 HTTP/1.1
Host: peregiacc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 02:33:08 GMT
content-type: text/css
last-modified: Tue, 01 Dec 2020 10:37:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 446
date: Thu, 09 May 2024 02:33:08 GMT
server: LiteSpeed

peregiacc.co.uk/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.0.14

185.194.90.23

200 OK

15 kB

URL GET HTTP/3
peregiacc.co.uk/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.0.14
IP
185.194.90.23:443
ASN
#12488 Krystal Hosting Ltd

Requested by
https://peregiacc.co.uk/
Certificate
IssuerLet's Encrypt
Subject*.peregiacc.co.uk
Fingerprint92:CD:CB:AF:DC:DA:D4:E4:03:89:B7:B5:BA:96:9F:D4:48:B0:7C:2F
ValidityFri, 05 Apr 2024 10:46:09 GMT - Thu, 04 Jul 2024 10:46:08 GMT

File type
ASCII text, with very long lines (65496)
Size
15 kB (14903 bytes)
Hash
4164b04c0b64a9cf2c9d5d39115e6cc7
a2da930229c5a3c9e8a937758d11551f9626d0cc
dca241e8d7fd2139c7caa1bbcd1f127c2a8b7a7a32b60ac9a9970fc6f6f3f437

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.0.14 HTTP/1.1
Host: peregiacc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 02:33:08 GMT
content-type: text/css
last-modified: Tue, 01 Dec 2020 10:37:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 14903
date: Thu, 09 May 2024 02:33:08 GMT
server: LiteSpeed

peregiacc.co.uk/wp-content/uploads/elementor/css/post-517.css?ver=1606930686

185.194.90.23

200 OK

293 B

URL GET HTTP/3
peregiacc.co.uk/wp-content/uploads/elementor/css/post-517.css?ver=1606930686
IP
185.194.90.23:443
ASN
#12488 Krystal Hosting Ltd

Requested by
https://peregiacc.co.uk/
Certificate
IssuerLet's Encrypt
Subject*.peregiacc.co.uk
Fingerprint92:CD:CB:AF:DC:DA:D4:E4:03:89:B7:B5:BA:96:9F:D4:48:B0:7C:2F
ValidityFri, 05 Apr 2024 10:46:09 GMT - Thu, 04 Jul 2024 10:46:08 GMT

File type
ASCII text, with very long lines (985), with no line terminators
Size
293 B (293 bytes)
Hash
997448169dcc73cf802b3478357d5edb
9276606aaa85b55952cf5e48bd6484fece253e76
3a733fbe34b535b4352d79472e84d75ae1895d7e45c70f116d708036fe24a6d2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/post-517.css?ver=1606930686 HTTP/1.1
Host: peregiacc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 02:33:08 GMT
content-type: text/css
last-modified: Wed, 02 Dec 2020 17:38:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 293
date: Thu, 09 May 2024 02:33:08 GMT
server: LiteSpeed

peregiacc.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.0.14

185.194.90.23

200 OK

12 kB

URL GET HTTP/3
peregiacc.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.0.14
IP
185.194.90.23:443
ASN
#12488 Krystal Hosting Ltd

Requested by
https://peregiacc.co.uk/
Certificate
IssuerLet's Encrypt
Subject*.peregiacc.co.uk
Fingerprint92:CD:CB:AF:DC:DA:D4:E4:03:89:B7:B5:BA:96:9F:D4:48:B0:7C:2F
ValidityFri, 05 Apr 2024 10:46:09 GMT - Thu, 04 Jul 2024 10:46:08 GMT

File type
ASCII text, with very long lines (56994)
Size
12 kB (11927 bytes)
Hash
500d1a92f875b1d96d37a3a3f8f0438c
703603273f5d5d52eb456d6385e1a68294fbd568
c9b46437d7418e1712daaad6d73fa17c2c6afb5681770c90339c25428415b7fd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.0.14 HTTP/1.1
Host: peregiacc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 02:33:08 GMT
content-type: text/css
last-modified: Tue, 01 Dec 2020 10:37:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 11927
date: Thu, 09 May 2024 02:33:08 GMT
server: LiteSpeed

peregiacc.co.uk/wp-content/uploads/elementor/css/post-443.css?ver=1606930686

185.194.90.23

200 OK

203 B

URL GET HTTP/3
peregiacc.co.uk/wp-content/uploads/elementor/css/post-443.css?ver=1606930686
IP
185.194.90.23:443
ASN
#12488 Krystal Hosting Ltd

Requested by
https://peregiacc.co.uk/
Certificate
IssuerLet's Encrypt
Subject*.peregiacc.co.uk
Fingerprint92:CD:CB:AF:DC:DA:D4:E4:03:89:B7:B5:BA:96:9F:D4:48:B0:7C:2F
ValidityFri, 05 Apr 2024 10:46:09 GMT - Thu, 04 Jul 2024 10:46:08 GMT

File type
ASCII text, with very long lines (781), with no line terminators
Size
203 B (203 bytes)
Hash
59facbd1969f5c957ff7912c28112a98
69502fd46c30038802162ef50a1e374204c45396
4389a26f51d5908ac6042c0e1c48bda45529b8f48c920251248e00b45ab68c20

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/post-443.css?ver=1606930686 HTTP/1.1
Host: peregiacc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 02:33:08 GMT
content-type: text/css
last-modified: Wed, 02 Dec 2020 17:38:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 203
date: Thu, 09 May 2024 02:33:08 GMT
server: LiteSpeed

peregiacc.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.0.14

185.194.90.23

200 OK

4.0 kB

URL GET HTTP/3
peregiacc.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.0.14
IP
185.194.90.23:443
ASN
#12488 Krystal Hosting Ltd

Requested by
https://peregiacc.co.uk/
Certificate
IssuerLet's Encrypt
Subject*.peregiacc.co.uk
Fingerprint92:CD:CB:AF:DC:DA:D4:E4:03:89:B7:B5:BA:96:9F:D4:48:B0:7C:2F
ValidityFri, 05 Apr 2024 10:46:09 GMT - Thu, 04 Jul 2024 10:46:08 GMT

File type
ASCII text, with very long lines (26516)
Size
4.0 kB (3986 bytes)
Hash
55ab7f65f6025cf7f088dd2e5897bb29
66b2c37c3f7be5f83f33ab07087645168fc1851f
4b8b06e8edfab1dd4475c13ee021e4f582b075677a9018e2f0ba56cc3fc2f0b6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.0.14 HTTP/1.1
Host: peregiacc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 02:33:08 GMT
content-type: text/css
last-modified: Tue, 01 Dec 2020 10:37:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3986
date: Thu, 09 May 2024 02:33:08 GMT
server: LiteSpeed

peregiacc.co.uk/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.5.3

185.194.90.23

200 OK

7.2 kB

URL GET HTTP/3
peregiacc.co.uk/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.5.3
IP
185.194.90.23:443
ASN
#12488 Krystal Hosting Ltd

Requested by
https://peregiacc.co.uk/
Certificate
IssuerLet's Encrypt
Subject*.peregiacc.co.uk
Fingerprint92:CD:CB:AF:DC:DA:D4:E4:03:89:B7:B5:BA:96:9F:D4:48:B0:7C:2F
ValidityFri, 05 Apr 2024 10:46:09 GMT - Thu, 04 Jul 2024 10:46:08 GMT

File type
Unicode text, UTF-8 text, with very long lines (1646)
Size
7.2 kB (7245 bytes)
Hash
12f94a9dc0d91c112d8c195ac1c4d045
d5e434391ca22d1ab59fde055f3ba40ad8360aea
8c00a4e6299049cc003de0c7815db17f40435b3d14564b3d12c9dec47ccf20ce

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.5.3 HTTP/1.1
Host: peregiacc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 02:33:08 GMT
content-type: text/css
last-modified: Wed, 02 Dec 2020 12:13:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 7245
date: Thu, 09 May 2024 02:33:08 GMT
server: LiteSpeed

peregiacc.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.12.0

185.194.90.23

200 OK

12 kB

URL GET HTTP/3
peregiacc.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.12.0
IP
185.194.90.23:443
ASN
#12488 Krystal Hosting Ltd

Requested by
https://peregiacc.co.uk/
Certificate
IssuerLet's Encrypt
Subject*.peregiacc.co.uk
Fingerprint92:CD:CB:AF:DC:DA:D4:E4:03:89:B7:B5:BA:96:9F:D4:48:B0:7C:2F
ValidityFri, 05 Apr 2024 10:46:09 GMT - Thu, 04 Jul 2024 10:46:08 GMT

File type
ASCII text, with very long lines (55567)
Size
12 kB (11671 bytes)
Hash
fc6ece0b999d414f53c25c3999397fee
c114a2225aa88cdd1bd3f6f58e22047709eab086
8a814f594ba0f0aa1b298a89c192f7afe2e7d22bfa6b5016d01fce2ce2941996

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.12.0 HTTP/1.1
Host: peregiacc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 02:33:08 GMT
content-type: text/css
last-modified: Tue, 01 Dec 2020 10:37:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 11671
date: Thu, 09 May 2024 02:33:08 GMT
server: LiteSpeed

peregiacc.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.12.0

185.194.90.23

200 OK

278 B

URL GET HTTP/3
peregiacc.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.12.0
IP
185.194.90.23:443
ASN
#12488 Krystal Hosting Ltd

Requested by
https://peregiacc.co.uk/
Certificate
IssuerLet's Encrypt
Subject*.peregiacc.co.uk
Fingerprint92:CD:CB:AF:DC:DA:D4:E4:03:89:B7:B5:BA:96:9F:D4:48:B0:7C:2F
ValidityFri, 05 Apr 2024 10:46:09 GMT - Thu, 04 Jul 2024 10:46:08 GMT

File type
ASCII text, with very long lines (475)
Size
278 B (278 bytes)
Hash
db3b745079e4606a70685c661ea1324b
23bfc45721cc05a6aa4182bae9a8ba67d05fe16b
f2f6359c178cbd3efbd8710d9e811f70d788ab2a77fe8d2a90dfd1453b8d38a9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.12.0 HTTP/1.1
Host: peregiacc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 02:33:08 GMT
content-type: text/css
last-modified: Tue, 01 Dec 2020 10:37:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 278
date: Thu, 09 May 2024 02:33:08 GMT
server: LiteSpeed

peregiacc.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.0.14

185.194.90.23

200 OK

4.0 kB

URL GET HTTP/3
peregiacc.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.0.14
IP
185.194.90.23:443
ASN
#12488 Krystal Hosting Ltd

Requested by
https://peregiacc.co.uk/
Certificate
IssuerLet's Encrypt
Subject*.peregiacc.co.uk
Fingerprint92:CD:CB:AF:DC:DA:D4:E4:03:89:B7:B5:BA:96:9F:D4:48:B0:7C:2F
ValidityFri, 05 Apr 2024 10:46:09 GMT - Thu, 04 Jul 2024 10:46:08 GMT

File type
JavaScript source, ASCII text, with very long lines (14869)
Size
4.0 kB (4035 bytes)
Hash
2ad7a30635f384d807734d9631643297
b1e6b30b70be56af0498e90ef76d7b416a6c0840
374b38618c111a9eccbdd003ac49ae6d80f5b624602b48feb73c0fc29b8b9d75

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.0.14 HTTP/1.1
Host: peregiacc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/javascript
last-modified: Tue, 01 Dec 2020 10:37:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4035
date: Thu, 09 May 2024 02:33:08 GMT
server: LiteSpeed

peregiacc.co.uk/wp-content/themes/astra/assets/js/minified/style.min.js?ver=2.6.1

185.194.90.23

200 OK

2.6 kB

URL GET HTTP/3
peregiacc.co.uk/wp-content/themes/astra/assets/js/minified/style.min.js?ver=2.6.1
IP
185.194.90.23:443
ASN
#12488 Krystal Hosting Ltd

Requested by
https://peregiacc.co.uk/
Certificate
IssuerLet's Encrypt
Subject*.peregiacc.co.uk
Fingerprint92:CD:CB:AF:DC:DA:D4:E4:03:89:B7:B5:BA:96:9F:D4:48:B0:7C:2F
ValidityFri, 05 Apr 2024 10:46:09 GMT - Thu, 04 Jul 2024 10:46:08 GMT

File type
JavaScript source, ASCII text, with very long lines (10594), with no line terminators
Size
2.6 kB (2600 bytes)
Hash
e5f93f66e097c5038ecb90f278557dc5
76e5a3d8bc43cc4c0f2b1a7871b5446f820452fa
758af520af740958167ad867622e499b689a3299fa395f5697ad775f8b9ae4ea

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/astra/assets/js/minified/style.min.js?ver=2.6.1 HTTP/1.1
Host: peregiacc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/javascript
last-modified: Tue, 01 Dec 2020 12:08:15 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2600
date: Thu, 09 May 2024 02:33:08 GMT
server: LiteSpeed

peregiacc.co.uk/wp-includes/js/wp-embed.min.js?ver=5.5.5

185.194.90.23

200 OK

663 B

URL GET HTTP/3
peregiacc.co.uk/wp-includes/js/wp-embed.min.js?ver=5.5.5
IP
185.194.90.23:443
ASN
#12488 Krystal Hosting Ltd

Requested by
https://peregiacc.co.uk/
Certificate
IssuerLet's Encrypt
Subject*.peregiacc.co.uk
Fingerprint92:CD:CB:AF:DC:DA:D4:E4:03:89:B7:B5:BA:96:9F:D4:48:B0:7C:2F
ValidityFri, 05 Apr 2024 10:46:09 GMT - Thu, 04 Jul 2024 10:46:08 GMT

File type
JavaScript source, ASCII text, with very long lines (1391)
Size
663 B (663 bytes)
Hash
905225d5711b559d3092387d5ffbedbd
6f6c39075263bafb9e8c10f1b34a1a0f7ee03c9d
5be614bce53f767993a5f5f14a6badd6aae6bf3af7cbdbf4d31520de49e27991

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/wp-embed.min.js?ver=5.5.5 HTTP/1.1
Host: peregiacc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/javascript
last-modified: Fri, 05 Feb 2021 08:36:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 663
date: Thu, 09 May 2024 02:33:08 GMT
server: LiteSpeed

peregiacc.co.uk/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp

185.194.90.23

200 OK

33 kB

URL GET HTTP/3
peregiacc.co.uk/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
IP
185.194.90.23:443
ASN
#12488 Krystal Hosting Ltd

Requested by
https://peregiacc.co.uk/
Certificate
IssuerLet's Encrypt
Subject*.peregiacc.co.uk
Fingerprint92:CD:CB:AF:DC:DA:D4:E4:03:89:B7:B5:BA:96:9F:D4:48:B0:7C:2F
ValidityFri, 05 Apr 2024 10:46:09 GMT - Thu, 04 Jul 2024 10:46:08 GMT

File type
JavaScript source, ASCII text, with very long lines (31997)
Size
33 kB (32853 bytes)
Hash
49edccea2e7ba985cadc9ba0531cbed1
f8747f8ee704d9af31d0950015e01d3f9635b070
1db21d816296e6939ba1f42962496e4134ae2b0081e26970864c40c6d02bb1df

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: peregiacc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/javascript
last-modified: Fri, 17 May 2019 08:55:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 32853
date: Thu, 09 May 2024 02:33:08 GMT
server: LiteSpeed

peregiacc.co.uk/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.0.14

185.194.90.23

200 OK

18 kB

URL GET HTTP/3
peregiacc.co.uk/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.0.14
IP
185.194.90.23:443
ASN
#12488 Krystal Hosting Ltd

Requested by
https://peregiacc.co.uk/
Certificate
IssuerLet's Encrypt
Subject*.peregiacc.co.uk
Fingerprint92:CD:CB:AF:DC:DA:D4:E4:03:89:B7:B5:BA:96:9F:D4:48:B0:7C:2F
ValidityFri, 05 Apr 2024 10:46:09 GMT - Thu, 04 Jul 2024 10:46:08 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (47306), with LF, NEL line terminators
Size
18 kB (17557 bytes)
Hash
f383a8586b037ad92312ef60c6f014d1
7aa9fbd90de371488693c82e55ddf626c98b72d7
b9d383e38e532c50b3917f39468fda3ace10d59514814537ab814ff7d2f498d8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.0.14 HTTP/1.1
Host: peregiacc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/javascript
last-modified: Tue, 01 Dec 2020 10:37:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 17557
date: Thu, 09 May 2024 02:33:08 GMT
server: LiteSpeed

peregiacc.co.uk/wp-includes/js/jquery/ui/position.min.js?ver=1.11.4

185.194.90.23

200 OK

2.3 kB

URL GET HTTP/3
peregiacc.co.uk/wp-includes/js/jquery/ui/position.min.js?ver=1.11.4
IP
185.194.90.23:443
ASN
#12488 Krystal Hosting Ltd

Requested by
https://peregiacc.co.uk/
Certificate
IssuerLet's Encrypt
Subject*.peregiacc.co.uk
Fingerprint92:CD:CB:AF:DC:DA:D4:E4:03:89:B7:B5:BA:96:9F:D4:48:B0:7C:2F
ValidityFri, 05 Apr 2024 10:46:09 GMT - Thu, 04 Jul 2024 10:46:08 GMT

File type
JavaScript source, ASCII text, with very long lines (6217)
Size
2.3 kB (2302 bytes)
Hash
d1c2e97eeca08ca067ccf2c5736f0390
5281985542fcc8c5a651d1991296e12c39bfcb82
0ce51090b148a45a0e3d652719ed6ef7f1a38e5d272dbf874f86a49664e897a3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/ui/position.min.js?ver=1.11.4 HTTP/1.1
Host: peregiacc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/javascript
last-modified: Fri, 26 Mar 2021 23:19:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2302
date: Thu, 09 May 2024 02:33:08 GMT
server: LiteSpeed

peregiacc.co.uk/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1

185.194.90.23

200 OK

3.3 kB

URL GET HTTP/3
peregiacc.co.uk/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1
IP
185.194.90.23:443
ASN
#12488 Krystal Hosting Ltd

Requested by
https://peregiacc.co.uk/
Certificate
IssuerLet's Encrypt
Subject*.peregiacc.co.uk
Fingerprint92:CD:CB:AF:DC:DA:D4:E4:03:89:B7:B5:BA:96:9F:D4:48:B0:7C:2F
ValidityFri, 05 Apr 2024 10:46:09 GMT - Thu, 04 Jul 2024 10:46:08 GMT

File type
JavaScript source, ASCII text, with very long lines (10725)
Size
3.3 kB (3331 bytes)
Hash
58baf0f238d7afc7ab926b8d51e5b559
8515e5f578269e29c048450f78c107935d325dff
2989e0b9e836cb9de3274d641ec6a58c2052f039e790ddd59b22303930bfdeeb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1 HTTP/1.1
Host: peregiacc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/javascript
last-modified: Tue, 01 Dec 2020 10:37:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3331
date: Thu, 09 May 2024 02:33:08 GMT
server: LiteSpeed

peregiacc.co.uk/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2

185.194.90.23

200 OK

2.9 kB

URL GET HTTP/3
peregiacc.co.uk/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP
185.194.90.23:443
ASN
#12488 Krystal Hosting Ltd

Requested by
https://peregiacc.co.uk/
Certificate
IssuerLet's Encrypt
Subject*.peregiacc.co.uk
Fingerprint92:CD:CB:AF:DC:DA:D4:E4:03:89:B7:B5:BA:96:9F:D4:48:B0:7C:2F
ValidityFri, 05 Apr 2024 10:46:09 GMT - Thu, 04 Jul 2024 10:46:08 GMT

File type
JavaScript source, ASCII text, with very long lines (12198), with no line terminators
Size
2.9 kB (2867 bytes)
Hash
3819c3569da71daec283a75483735f7e
ecd40a5cc6f0b76200c454ca880210dc301cfab8
214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: peregiacc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/javascript
last-modified: Tue, 01 Dec 2020 10:37:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2867
date: Thu, 09 May 2024 02:33:08 GMT
server: LiteSpeed

peregiacc.co.uk/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6

185.194.90.23

200 OK

34 kB

URL GET HTTP/3
peregiacc.co.uk/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP
185.194.90.23:443
ASN
#12488 Krystal Hosting Ltd

Requested by
https://peregiacc.co.uk/
Certificate
IssuerLet's Encrypt
Subject*.peregiacc.co.uk
Fingerprint92:CD:CB:AF:DC:DA:D4:E4:03:89:B7:B5:BA:96:9F:D4:48:B0:7C:2F
ValidityFri, 05 Apr 2024 10:46:09 GMT - Thu, 04 Jul 2024 10:46:08 GMT

File type
JavaScript source, ASCII text, with very long lines (65280)
Size
34 kB (34004 bytes)
Hash
15bb2b8491fc7e84137d65f610e1685a
cd76b70a5426893e9c022b9a75c50a7c1348e2d0
b23f49f504faa32aac548b6662ffd64412f6738496fab8be38da46c5b7121804

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: peregiacc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/javascript
last-modified: Tue, 01 Dec 2020 10:37:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 34004
date: Thu, 09 May 2024 02:33:08 GMT
server: LiteSpeed

peregiacc.co.uk/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.0.14

185.194.90.23

200 OK

1.0 kB

URL GET HTTP/3
peregiacc.co.uk/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.0.14
IP
185.194.90.23:443
ASN
#12488 Krystal Hosting Ltd

Requested by
https://peregiacc.co.uk/
Certificate
IssuerLet's Encrypt
Subject*.peregiacc.co.uk
Fingerprint92:CD:CB:AF:DC:DA:D4:E4:03:89:B7:B5:BA:96:9F:D4:48:B0:7C:2F
ValidityFri, 05 Apr 2024 10:46:09 GMT - Thu, 04 Jul 2024 10:46:08 GMT

File type
JavaScript source, ASCII text, with very long lines (2577)
Size
1.0 kB (1023 bytes)
Hash
9bb8540493a7fe11b229870eb37be165
d77f17cb9057dc8f622b8c0bf23f6acb739b3b8e
4a7ee62eb33f3bbb66c2151e5cac6bf4904e28302efc36128f3e3ccae6fde580

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.0.14 HTTP/1.1
Host: peregiacc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/javascript
last-modified: Tue, 01 Dec 2020 10:37:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1023
date: Thu, 09 May 2024 02:33:08 GMT
server: LiteSpeed

peregiacc.co.uk/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.0.14

185.194.90.23

200 OK

31 kB

URL GET HTTP/3
peregiacc.co.uk/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.0.14
IP
185.194.90.23:443
ASN
#12488 Krystal Hosting Ltd

Requested by
https://peregiacc.co.uk/
Certificate
IssuerLet's Encrypt
Subject*.peregiacc.co.uk
Fingerprint92:CD:CB:AF:DC:DA:D4:E4:03:89:B7:B5:BA:96:9F:D4:48:B0:7C:2F
ValidityFri, 05 Apr 2024 10:46:09 GMT - Thu, 04 Jul 2024 10:46:08 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (47471), with LF, NEL line terminators
Size
31 kB (30846 bytes)
Hash
95b0ad42305be8ec83435fc4544b60ef
6daf87ce09fc2ad78a8587c74c0ae85d27f0b3e9
474d6e815d8b81662a6c1af148997e267ce59a6168ac2ccefe95d28138cd6095

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.0.14 HTTP/1.1
Host: peregiacc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/javascript
last-modified: Tue, 01 Dec 2020 10:37:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 30846
date: Thu, 09 May 2024 02:33:08 GMT
server: LiteSpeed

peregiacc.co.uk/wp-includes/js/underscore.min.js?ver=1.8.3

185.194.90.23

200 OK

5.6 kB

URL GET HTTP/3
peregiacc.co.uk/wp-includes/js/underscore.min.js?ver=1.8.3
IP
185.194.90.23:443
ASN
#12488 Krystal Hosting Ltd

Requested by
https://peregiacc.co.uk/
Certificate
IssuerLet's Encrypt
Subject*.peregiacc.co.uk
Fingerprint92:CD:CB:AF:DC:DA:D4:E4:03:89:B7:B5:BA:96:9F:D4:48:B0:7C:2F
ValidityFri, 05 Apr 2024 10:46:09 GMT - Thu, 04 Jul 2024 10:46:08 GMT

File type
JavaScript source, ASCII text, with very long lines (16010)
Size
5.6 kB (5563 bytes)
Hash
203eeb8dd53e84fb53b7aeffb562d825
b4b4361a61ee78717bdcffe5c46ea79cdc3e04ae
6cd0d6897b3d4779f7d88ce72531f22fbf75851b195fb14e6f3f23d051b3d1e9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/underscore.min.js?ver=1.8.3 HTTP/1.1
Host: peregiacc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/javascript
last-modified: Fri, 26 Mar 2021 23:19:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5563
date: Thu, 09 May 2024 02:33:08 GMT
server: LiteSpeed

peregiacc.co.uk/wp-includes/js/wp-util.min.js?ver=5.5.5

185.194.90.23

200 OK

540 B

URL GET HTTP/3
peregiacc.co.uk/wp-includes/js/wp-util.min.js?ver=5.5.5
IP
185.194.90.23:443
ASN
#12488 Krystal Hosting Ltd

Requested by
https://peregiacc.co.uk/
Certificate
IssuerLet's Encrypt
Subject*.peregiacc.co.uk
Fingerprint92:CD:CB:AF:DC:DA:D4:E4:03:89:B7:B5:BA:96:9F:D4:48:B0:7C:2F
ValidityFri, 05 Apr 2024 10:46:09 GMT - Thu, 04 Jul 2024 10:46:08 GMT

File type
JavaScript source, ASCII text, with very long lines (1042)
Size
540 B (540 bytes)
Hash
8852ab48e7d14f035a27f3c15d31c054
eed53bd391b539796dfe3b5bc5849170ab77c987
6d7c73e67cbb5215d633ce9ad65f0c0377004621fce62982568024178ac4b589

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/wp-util.min.js?ver=5.5.5 HTTP/1.1
Host: peregiacc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/javascript
last-modified: Fri, 05 Feb 2021 08:36:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 540
date: Thu, 09 May 2024 02:33:08 GMT
server: LiteSpeed

peregiacc.co.uk/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.6.3.1

185.194.90.23

200 OK

330 B

URL GET HTTP/3
peregiacc.co.uk/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.6.3.1
IP
185.194.90.23:443
ASN
#12488 Krystal Hosting Ltd

Requested by
https://peregiacc.co.uk/
Certificate
IssuerLet's Encrypt
Subject*.peregiacc.co.uk
Fingerprint92:CD:CB:AF:DC:DA:D4:E4:03:89:B7:B5:BA:96:9F:D4:48:B0:7C:2F
ValidityFri, 05 Apr 2024 10:46:09 GMT - Thu, 04 Jul 2024 10:46:08 GMT

File type
JavaScript source, ASCII text, with very long lines (705), with no line terminators
Size
330 B (330 bytes)
Hash
697fde09408821cbcce53628e4107b71
a0ac5da86ef699334743f5945a52f3285994229d
f3d3e4b6c0772fd114f620c3e15f30f184234ac2c0d1b9b3a69a44e3a26eface

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.6.3.1 HTTP/1.1
Host: peregiacc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/javascript
last-modified: Tue, 01 Dec 2020 12:36:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 330
date: Thu, 09 May 2024 02:33:08 GMT
server: LiteSpeed

peregiacc.co.uk/wp-includes/js/wp-emoji-release.min.js?ver=5.5.5

185.194.90.23

200 OK

4.3 kB

URL GET HTTP/3
peregiacc.co.uk/wp-includes/js/wp-emoji-release.min.js?ver=5.5.5
IP
185.194.90.23:443
ASN
#12488 Krystal Hosting Ltd

Requested by
https://peregiacc.co.uk/
Certificate
IssuerLet's Encrypt
Subject*.peregiacc.co.uk
Fingerprint92:CD:CB:AF:DC:DA:D4:E4:03:89:B7:B5:BA:96:9F:D4:48:B0:7C:2F
ValidityFri, 05 Apr 2024 10:46:09 GMT - Thu, 04 Jul 2024 10:46:08 GMT

File type
JavaScript source, ASCII text, with very long lines (11272)
Size
4.3 kB (4316 bytes)
Hash
878184c5d285d4d52d926d36ef19b718
dd260ffe0f8e3f38f58efd23cac8a1e5c788dad9
07e4203b9f313b587b1d53f896e63771ec85f9b0d4c2ac5fa64089457784d847

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=5.5.5 HTTP/1.1
Host: peregiacc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/javascript
last-modified: Fri, 05 Feb 2021 08:36:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4316
date: Thu, 09 May 2024 02:33:08 GMT
server: LiteSpeed

peregiacc.co.uk/wp-content/uploads/2020/12/cropped-Logo-1-3-330x84.png

185.194.90.23

200 OK

23 kB

URL GET HTTP/3
peregiacc.co.uk/wp-content/uploads/2020/12/cropped-Logo-1-3-330x84.png
IP
185.194.90.23:443
ASN
#12488 Krystal Hosting Ltd

Requested by
https://peregiacc.co.uk/
Certificate
IssuerLet's Encrypt
Subject*.peregiacc.co.uk
Fingerprint92:CD:CB:AF:DC:DA:D4:E4:03:89:B7:B5:BA:96:9F:D4:48:B0:7C:2F
ValidityFri, 05 Apr 2024 10:46:09 GMT - Thu, 04 Jul 2024 10:46:08 GMT

File type
PNG image data, 330 x 84, 8-bit/color RGBA, non-interlaced
Size
23 kB (23057 bytes)
Hash
75d826da19c6d1131ad084e39e8f43fa
7093b60a161ae75cc6fda16c0e89eb0dfa0c180d
a1ed259160934b621e4c18fb76c45295687821f97f27d5165b29b24d243866e6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2020/12/cropped-Logo-1-3-330x84.png HTTP/1.1
Host: peregiacc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 02:33:08 GMT
content-type: image/png
last-modified: Thu, 03 Dec 2020 12:00:47 GMT
accept-ranges: bytes
content-length: 23057
date: Thu, 09 May 2024 02:33:08 GMT
server: LiteSpeed
vary: User-Agent

peregiacc.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2

185.194.90.23

200 OK

76 kB

URL GET HTTP/3
peregiacc.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP
185.194.90.23:443
ASN
#12488 Krystal Hosting Ltd

Requested by
https://peregiacc.co.uk/
Certificate
IssuerLet's Encrypt
Subject*.peregiacc.co.uk
Fingerprint92:CD:CB:AF:DC:DA:D4:E4:03:89:B7:B5:BA:96:9F:D4:48:B0:7C:2F
ValidityFri, 05 Apr 2024 10:46:09 GMT - Thu, 04 Jul 2024 10:46:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 75936, version 330.-16253
Size
76 kB (75936 bytes)
Hash
822d94f19fe57477865209e1242a3c63
f356aa2e4d9b7245985d312d3bfba180f774e3b7
8e4560c16c7970efa47680450b2cf239d4a482c056d308acea12bb9022906c8b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: peregiacc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.12.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: font/woff2
last-modified: Tue, 01 Dec 2020 10:37:46 GMT
accept-ranges: bytes
content-length: 75936
date: Thu, 09 May 2024 02:33:08 GMT
server: LiteSpeed
vary: User-Agent

peregiacc.co.uk/wp-content/themes/astra/assets/fonts/astra.woff

185.194.90.23

200 OK

3.3 kB

URL GET HTTP/3
peregiacc.co.uk/wp-content/themes/astra/assets/fonts/astra.woff
IP
185.194.90.23:443
ASN
#12488 Krystal Hosting Ltd

Requested by
https://peregiacc.co.uk/
Certificate
IssuerLet's Encrypt
Subject*.peregiacc.co.uk
Fingerprint92:CD:CB:AF:DC:DA:D4:E4:03:89:B7:B5:BA:96:9F:D4:48:B0:7C:2F
ValidityFri, 05 Apr 2024 10:46:09 GMT - Thu, 04 Jul 2024 10:46:08 GMT

File type
Web Open Font Format, TrueType, length 3304, version 1.0
Size
3.3 kB (3304 bytes)
Hash
bfe0ed8503c926d68f58ed0408dfe0d0
0346d02d96ff7d2a0278bc10f4dfdf365c80eac3
ec7ef7aa5fd1e019f1c26193e95e46d481d4983673936a9dda086705ada6e3d5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/astra/assets/fonts/astra.woff HTTP/1.1
Host: peregiacc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: font/woff
last-modified: Tue, 01 Dec 2020 12:08:15 GMT
accept-ranges: bytes
content-length: 3304
date: Thu, 09 May 2024 02:33:09 GMT
server: LiteSpeed
vary: User-Agent

fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

216.58.207.227

200 OK

33 kB

URL GET HTTP/2
fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://peregiacc.co.uk/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 33092, version 1.0
Size
33 kB (33092 bytes)
Hash
057478083c1d55ea0c2182b24f6dd72f
caf557cd276a76992084efc4c8857b66791a6b7f
bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b

HTTP Headers

GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://peregiacc.co.uk
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33092
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:38:02 GMT
expires: Fri, 02 May 2025 02:38:02 GMT
cache-control: public, max-age=31536000
age: 604507
last-modified: Wed, 13 Sep 2023 22:51:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459W1hyzbi.woff2

216.58.207.227

200 OK

21 kB

URL GET HTTP/2
fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459W1hyzbi.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://peregiacc.co.uk/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 21288, version 1.0
Size
21 kB (21288 bytes)
Hash
e648b4f809fa852297cf344248779163
ea6b174e3bca31d6d29b84ffbcbcc3749e47892e
637f545351fbed7e7207fdf36e1381b0860f12fffde46a6fa43bdafcc7a05758

HTTP Headers

GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459W1hyzbi.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://peregiacc.co.uk
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21288
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 19:57:18 GMT
expires: Fri, 02 May 2025 19:57:18 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 22:43:52 GMT
content-type: font/woff2
age: 542151
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

peregiacc.co.uk/wp-content/uploads/2020/12/Logo-pic-1-150x150.png

185.194.90.23

200 OK

17 kB

URL GET HTTP/3
peregiacc.co.uk/wp-content/uploads/2020/12/Logo-pic-1-150x150.png
IP
185.194.90.23:443
ASN
#12488 Krystal Hosting Ltd

Requested by
https://peregiacc.co.uk/
Certificate
IssuerLet's Encrypt
Subject*.peregiacc.co.uk
Fingerprint92:CD:CB:AF:DC:DA:D4:E4:03:89:B7:B5:BA:96:9F:D4:48:B0:7C:2F
ValidityFri, 05 Apr 2024 10:46:09 GMT - Thu, 04 Jul 2024 10:46:08 GMT

File type
PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced
Size
17 kB (17378 bytes)
Hash
06d90562959f45a5aecd4162c3fcc875
2f15c1644337beadf88c20d342591862aa1e432b
5bdae05c10b4c13dfb380df6da806a45a512e556626cdf6a17a43dac2a67c54f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2020/12/Logo-pic-1-150x150.png HTTP/1.1
Host: peregiacc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 02:33:09 GMT
content-type: image/png
last-modified: Wed, 02 Dec 2020 10:49:45 GMT
accept-ranges: bytes
content-length: 17378
date: Thu, 09 May 2024 02:33:09 GMT
server: LiteSpeed
vary: User-Agent

peregiacc.co.uk/wp-content/uploads/2020/12/Logo-pic-1.png

185.194.90.23

200 OK

17 kB

URL GET HTTP/3
peregiacc.co.uk/wp-content/uploads/2020/12/Logo-pic-1.png
IP
185.194.90.23:443
ASN
#12488 Krystal Hosting Ltd

Requested by
https://peregiacc.co.uk/
Certificate
IssuerLet's Encrypt
Subject*.peregiacc.co.uk
Fingerprint92:CD:CB:AF:DC:DA:D4:E4:03:89:B7:B5:BA:96:9F:D4:48:B0:7C:2F
ValidityFri, 05 Apr 2024 10:46:09 GMT - Thu, 04 Jul 2024 10:46:08 GMT

File type
PNG image data, 274 x 275, 8-bit/color RGB, non-interlaced
Size
17 kB (17098 bytes)
Hash
bfed9c3e04bb4398e4d42e7995be2be0
f30d24c239b93b8307fe1a3dfb81b2d23a281389
2228bea7960ed209e6c8a17d3ee3a1bec55f468b5c076fff3a28f1ee9b26f469

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2020/12/Logo-pic-1.png HTTP/1.1
Host: peregiacc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 02:33:09 GMT
content-type: image/png
last-modified: Wed, 02 Dec 2020 10:49:45 GMT
accept-ranges: bytes
content-length: 17098
date: Thu, 09 May 2024 02:33:09 GMT
server: LiteSpeed
vary: User-Agent

fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=5.5.5

142.250.74.106

200 OK

47 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=5.5.5
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://peregiacc.co.uk/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text
Size
47 kB (46796 bytes)
Hash
9abeee4ec31e36147f43fdb381c6fd4c
01cef8eadcf8e0fa6bb0b78ef064794fb5dbff15
e8cc80be6c43744ad0fa84933313cc74406e594583a351ed53963e6dbc72fcf1

HTTP Headers

GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=5.5.5 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 09 May 2024 02:33:08 GMT
date: Thu, 09 May 2024 02:33:08 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Montserrat%3A400%2C300&display=fallback&ver=2.6.1

142.250.74.106

200 OK

3.7 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Montserrat%3A400%2C300&display=fallback&ver=2.6.1
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://peregiacc.co.uk/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text, with very long lines (3790), with no line terminators
Size
3.7 kB (3700 bytes)
Hash
443af852b84897636856b11a956747b8
c982c79735512f2d3fb1ecb09b11b304289b93fc
09217cc2a690b6b4c23b2b0bae4273d37906933d0a4505ff5803421a16830c86

HTTP Headers

GET /css?family=Montserrat%3A400%2C300&display=fallback&ver=2.6.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://peregiacc.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 09 May 2024 02:33:08 GMT
date: Thu, 09 May 2024 02:33:08 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

peregiacc.co.uk/

185.194.90.23

200 OK

44 kB

URL User Request GET HTTP/2
peregiacc.co.uk/
IP
185.194.90.23:443
ASN
#12488 Krystal Hosting Ltd

Certificate
IssuerLet's Encrypt
Subject*.peregiacc.co.uk
Fingerprint92:CD:CB:AF:DC:DA:D4:E4:03:89:B7:B5:BA:96:9F:D4:48:B0:7C:2F
ValidityFri, 05 Apr 2024 10:46:09 GMT - Thu, 04 Jul 2024 10:46:08 GMT

File type

Size
44 kB (44365 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: peregiacc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
link: <https://peregiacc.co.uk/wp-json/>; rel="https://api.w.org/", <https://peregiacc.co.uk/wp-json/wp/v2/pages/563>; rel="alternate"; type="application/json", <https://peregiacc.co.uk/>; rel=shortlink
content-encoding: br
vary: Accept-Encoding,User-Agent
date: Thu, 09 May 2024 02:33:08 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (21)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML