{"report_id":"0b544ba2-9e26-468b-b9f6-0b65b0f08811","version":6,"status":"done","tags":[],"date":"2025-08-25T07:32:09Z","url":{"schema":"http","addr":"demo2.cloudwp.dev/trial-f4ce1455/c.php","fqdn":"demo2.cloudwp.dev","domain":"cloudwp.dev","tld":"dev"},"ip":{"addr":"192.145.239.204","port":0,"asn":22611,"as":"INMOTION","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"demo2.cloudwp.dev/inactive.htm","fqdn":"demo2.cloudwp.dev","domain":"cloudwp.dev","tld":"dev"},"title":"Inactive Location"},"submit":{"url":{"schema":"http","addr":"demo2.cloudwp.dev/trial-f4ce1455/c.php","fqdn":"demo2.cloudwp.dev","domain":"cloudwp.dev","tld":"dev"},"ip":{"addr":"192.145.239.204","port":0,"asn":22611,"as":"INMOTION","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-09-29T07:32:09Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"phishtank","sensor_type":"Blocklist","title":"PhishTank","description":"PhishTank","scan_date":"2021-12-14","alert":"Phishing - Other","trigger":"demo2.cloudwp.dev/trial-f4ce1455/c.php","verdict":"phishing","severity":"medium","comment":"Other","link":"http://phishtank.com","meta":null}],"urlquery":null},"summary":[{"fqdn":"www.boldgrid.com","ip":{"addr":"194.242.11.186","port":443,"asn":34989,"as":"ServeTheWorld AS","country":"Norway","country_code":"NO"},"domain_registered":"2015-02-20","domain_rank":7232762,"first_seen":"2017-02-03T21:31:25Z","last_seen":"2025-08-23T13:22:12.041145Z","alert_count":0,"request_count":1,"received_data":5148,"sent_data":475,"comment":"","tags":null,"fingerprints":[{"name":"W3 Total Cache:2.8.10","description":"W3 Total Cache (W3TC) improves the SEO and increases website performance and reducing load times by leveraging features like content delivery network (CDN) integration and the latest best practices.","website":"https://www.w3-edge.com/wordpress-plugins/w3-total-cache","common_platform_enumeration":"","icon":"W3 Total Cache.png","categories":["Caching","WordPress plugins"]},{"name":"Bunny","description":"","website":"https://bunny.net","common_platform_enumeration":"","icon":"Bunny.svg","categories":["CDN"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2025-08-20T15:10:53.071671Z","alert_count":0,"request_count":2,"received_data":43430,"sent_data":1088,"comment":"","tags":null,"fingerprints":null},{"fqdn":"demo2.cloudwp.dev","ip":{"addr":"192.145.239.204","port":443,"asn":22611,"as":"INMOTION","country":"United States","country_code":"US"},"domain_registered":"2019-03-12","domain_rank":0,"first_seen":"2019-04-13T00:23:16Z","last_seen":"2025-08-23T13:22:12.025943Z","alert_count":1,"request_count":5,"received_data":34538,"sent_data":2398,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"demo2.cloudwp.dev/inactive.htm","fqdn":"demo2.cloudwp.dev","domain":"cloudwp.dev","tld":"dev"},"ip":{"addr":"192.145.239.204","port":443,"asn":22611,"as":"INMOTION","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"9713e4fd57243db20833cc65b20694fb","sha1":"1e14cbc7cf4ef3f17cf5c4e538b2bee1632d5c3f","sha256":"4584f212692fd19d1df80117da3f71499fa1997fb3812fc1a16466e9278ae085","sha512":"d078c48f80f3c4a7b44c82dcb891be6e90c58b46e33b54a8fb4c3f3ba9f65d2751e9294b8f82e480143696ce973d3c19ff491101bae8cdc00cfd32860aff74ce","ssdeep":"96:HzUI8Ha+1k0LeokNmlN2P6BrAqHaT4OLqcou88K2O2MGYBxO:HT8q0LNGCB3OR22FM6","tlshash":"d7c164929b0f3159bb0f24973db8b7d0253e903bad560c6afcb8a324838542c57563de","size":5913,"data":"","first_seen":"2025-08-25T07:32:10.9122Z","last_seen":"2025-08-25T07:32:10.9122Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"demo2.cloudwp.dev/favicon.ico","fqdn":"demo2.cloudwp.dev","domain":"cloudwp.dev","tld":"dev"},"ip":{"addr":"192.145.239.204","port":443,"asn":22611,"as":"INMOTION","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://demo2.cloudwp.dev/inactive.htm","date":"2025-08-25T07:31:46.546Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P384","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.cloudwp.dev","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Thu, 06 Mar 2025 00:00:00 GMT","end":"Tue, 17 Mar 2026 23:59:59 GMT"},"fingerprint":{"sha1":"7D:15:18:DE:50:D3:CD:86:F9:60:19:12:11:45:BC:F6:1D:8A:CC:F4","sha256":"FB:18:46:94:35:FA:CF:94:28:EC:BE:79:D6:5C:39:DB:68:EF:3D:47:38:CE:DA:A5:4B:C7:73:5F:69:61:D0:D8"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: demo2.cloudwp.dev\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://demo2.cloudwp.dev/inactive.htm\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 25 Aug 2025 07:31:46 GMT\r\nContent-Type: image/x-icon\r\nContent-Length: 1189\r\nLast-Modified: Tue, 21 Apr 2015 20:19:14 GMT\r\nConnection: keep-alive\r\nETag: \"5536b0c2-4a5\"\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS, HEAD\r\nAccess-Control-Allow-Origin: *\r\nX-Robots-Tag: noindex, nofollow, noarchive, nosnippet\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1189,"size_decoded":0,"mime_type":"image/x-icon","magic":"PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced","md5":"6af2b6286c753a22bf1dd95100bd3093","sha1":"004c513c359ae3c57ed85910f27804def11e2d26","sha256":"9a187b9fc2a7a7ebeae725b685c4a33848f94b2cf69d276a227401c10a268058","sha512":"0296277815a3b3ba67d41ae399fc51ce45c7808a54e0e7343cb77d94f8487e13c10219dd47e00a4e9537089da337286a6a80b6da36ad34f8f55133589626bf51","ssdeep":"","tlshash":"9221449afdd1bc51a24dd4c028f6c42a1a130880dbe0b9b5668fcc2e17611f1551caeb","first_seen":"2023-05-09T01:06:03Z","last_seen":"2026-04-03T12:31:43.393924Z","times_seen":331,"resource_available":false,"data":null}},"time_used":168,"timings":{"blocked":2,"dns":0,"connect":0,"send":0,"wait":165,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.boldgrid.com/assets/logos/boldgrid-logo-horizontal-black.svg","fqdn":"www.boldgrid.com","domain":"boldgrid.com","tld":"com"},"ip":{"addr":"194.242.11.186","port":443,"asn":34989,"as":"ServeTheWorld AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://demo2.cloudwp.dev/inactive.htm","date":"2025-08-25T07:31:46.930Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.boldgrid.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 Aug 2025 06:11:30 GMT","end":"Wed, 05 Nov 2025 06:11:29 GMT"},"fingerprint":{"sha1":"1A:49:D5:86:3C:F4:F6:9E:78:85:BC:B5:56:3E:A0:01:D6:D0:D7:62","sha256":"C4:AB:A7:34:91:50:98:B6:C7:61:B9:BE:02:7E:F5:B4:B5:00:AF:9A:75:07:9C:AC:34:F2:6E:9C:C7:56:56:5B"}}},"request":{"raw":"GET /assets/logos/boldgrid-logo-horizontal-black.svg HTTP/1.1\r\nHost: www.boldgrid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://demo2.cloudwp.dev/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 25 Aug 2025 07:31:46 GMT\r\ncontent-type: image/svg+xml\r\nserver: BunnyCDN-NO1-830\r\ncdn-pullzone: 1816511\r\ncdn-uid: 999114aa-e057-4549-9245-b0a9de1f5f31\r\ncdn-requestcountrycode: NO\r\nvary: Accept-Encoding\r\ncache-control: public, max-age=31536000\r\ncontent-encoding: br\r\netag: \"582a2639-1122\"\r\nexpires: Tue, 25 Aug 2026 07:06:07 GMT\r\nlast-modified: Mon, 14 Nov 2016 21:01:45 GMT\r\npragma: public\r\nx-powered-by: W3 Total Cache/2.8.10\r\nreferrer-policy: strict-origin-when-cross-origin\r\ncdn-proxyver: 1.34\r\ncdn-requestpullsuccess: True\r\ncdn-requestpullcode: 200\r\ncdn-cachedat: 08/25/2025 07:06:07\r\ncdn-edgestorageid: 830\r\ncdn-requestid: c1424c926b773315b25b060fc81f2186\r\ncdn-cache: HIT\r\ncdn-status: 200\r\ncdn-requesttime: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"W3 Total Cache:2.8.10","description":"W3 Total Cache (W3TC) improves the SEO and increases website performance and reducing load times by leveraging features like content delivery network (CDN) integration and the latest best practices.","website":"https://www.w3-edge.com/wordpress-plugins/w3-total-cache","common_platform_enumeration":"","icon":"W3 Total Cache.png","categories":["Caching","WordPress plugins"]},{"name":"Bunny","description":"","website":"https://bunny.net","common_platform_enumeration":"","icon":"Bunny.svg","categories":["CDN"]}],"data":{"size":4386,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"5146d4cfb62f05d092158426fae1a690","sha1":"51dbfbc60b8f4ff0b5145844c16ec437f5e6d38f","sha256":"27c4f3f5d2e028ee06cf59dcf7effff9b9f79c692b2fc226ad7aef1ea0f77284","sha512":"300048ae9f38829c3b07d71a8de95055dd56ed3b989d26262068b0606bfb23ea6d9db3baa2df2d24e068ecd143c2fc2e0c527d423a0ba655279aaf90ec173cc3","ssdeep":"96:Ifr7yj8ghM1PQIPlUV3taKeRDWxXRRyYu:G7Gu1PQDVIKyWxXc","tlshash":"c391017743890fba65410b4c53e9715e36e6581bb1a192fc5babf5b2bc04df340bc922","first_seen":"2023-05-09T04:06:09Z","last_seen":"2026-04-02T22:17:13.071949Z","times_seen":221,"resource_available":false,"data":null}},"time_used":85,"timings":{"blocked":40,"dns":32,"connect":1,"send":0,"wait":3,"receive":0,"ssl":6},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"demo2.cloudwp.dev/trial-f4ce1455/c.php","fqdn":"demo2.cloudwp.dev","domain":"cloudwp.dev","tld":"dev"},"ip":{"addr":"192.145.239.204","port":443,"asn":22611,"as":"INMOTION","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-08-25T07:31:44.570Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P384","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.cloudwp.dev","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Thu, 06 Mar 2025 00:00:00 GMT","end":"Tue, 17 Mar 2026 23:59:59 GMT"},"fingerprint":{"sha1":"7D:15:18:DE:50:D3:CD:86:F9:60:19:12:11:45:BC:F6:1D:8A:CC:F4","sha256":"FB:18:46:94:35:FA:CF:94:28:EC:BE:79:D6:5C:39:DB:68:EF:3D:47:38:CE:DA:A5:4B:C7:73:5F:69:61:D0:D8"}}},"request":{"raw":"GET /trial-f4ce1455/c.php HTTP/1.1\r\nHost: demo2.cloudwp.dev\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 301 Moved Permanently\r\nServer: nginx\r\nDate: Mon, 25 Aug 2025 07:31:45 GMT\r\nContent-Type: text/html; charset=iso-8859-1\r\nContent-Length: 246\r\nConnection: keep-alive\r\nCache-Control: max-age=0, no-cache, no-store, must-revalidate\r\nPragma: no-cache\r\nExpires: Sun, 20 Apr 1975 05:05:00 GMT\r\nLocation: https://demo2.cloudwp.dev/inactive.htm\r\nX-Proxy-Cache: MISS\r\nX-Robots-Tag: noindex, nofollow, noarchive, nosnippet\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":11713,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-06T05:11:47.473796Z","times_seen":13406904,"resource_available":true,"data":null}},"time_used":1741,"timings":{"blocked":512,"dns":0,"connect":155,"send":0,"wait":717,"receive":0,"ssl":353},"alerts":{"ids":null,"analyzer":[{"sensor_name":"phishtank","sensor_type":"Blocklist","title":"PhishTank","description":"PhishTank","scan_date":"2021-12-14","alert":"Phishing - Other","trigger":"demo2.cloudwp.dev/trial-f4ce1455/c.php","verdict":"phishing","severity":"medium","comment":"Other","link":"http://phishtank.com","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"demo2.cloudwp.dev/inactive.htm","fqdn":"demo2.cloudwp.dev","domain":"cloudwp.dev","tld":"dev"},"ip":{"addr":"192.145.239.204","port":443,"asn":22611,"as":"INMOTION","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-08-25T07:31:45.804Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P384","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.cloudwp.dev","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Thu, 06 Mar 2025 00:00:00 GMT","end":"Tue, 17 Mar 2026 23:59:59 GMT"},"fingerprint":{"sha1":"7D:15:18:DE:50:D3:CD:86:F9:60:19:12:11:45:BC:F6:1D:8A:CC:F4","sha256":"FB:18:46:94:35:FA:CF:94:28:EC:BE:79:D6:5C:39:DB:68:EF:3D:47:38:CE:DA:A5:4B:C7:73:5F:69:61:D0:D8"}}},"request":{"raw":"GET /inactive.htm HTTP/1.1\r\nHost: demo2.cloudwp.dev\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 25 Aug 2025 07:31:45 GMT\r\nContent-Type: text/html; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nUpgrade: h2,h2c\r\nLast-Modified: Fri, 09 Jul 2021 17:42:39 GMT\r\nX-Proxy-Cache: HIT\r\nX-Robots-Tag: noindex, nofollow, noarchive, nosnippet\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains; preload\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11713,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"58f980ce64b82921966313a61ac0918e","sha1":"25595e34cacbb8cbdb797154ffb57603f8b79af0","sha256":"e625519612eefffe863e753d1d9b761260a94948ea789ef4902a89dc9bae3e15","sha512":"d4ed3128f5a90c8cf95c54400f259cdd23f7b8eb3c9eeb3ec6cfc1460940580a0f5e06fc07dc940021ec25b470ada284f73e345f202054bd7669d40bb718b181","ssdeep":"192:/9mQlh5qhAItk06Cd9rdCMvHdCZo6eT8q0LNGCB3OR22FMD:0TAq2OMD","tlshash":"6932a5969f5f2156b707e8a63bb87750d22d903ba806cc69bdfc6214cf8141847ae38d","first_seen":"2025-08-25T07:32:10.907304Z","last_seen":"2025-08-25T07:32:10.907304Z","times_seen":1,"resource_available":false,"data":null}},"time_used":173,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":172,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"demo2.cloudwp.dev/images/boldgrid-logo-vertical-black.svg","fqdn":"demo2.cloudwp.dev","domain":"cloudwp.dev","tld":"dev"},"ip":{"addr":"192.145.239.204","port":443,"asn":22611,"as":"INMOTION","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://demo2.cloudwp.dev/inactive.htm","date":"2025-08-25T07:31:46.245Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P384","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.cloudwp.dev","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Thu, 06 Mar 2025 00:00:00 GMT","end":"Tue, 17 Mar 2026 23:59:59 GMT"},"fingerprint":{"sha1":"7D:15:18:DE:50:D3:CD:86:F9:60:19:12:11:45:BC:F6:1D:8A:CC:F4","sha256":"FB:18:46:94:35:FA:CF:94:28:EC:BE:79:D6:5C:39:DB:68:EF:3D:47:38:CE:DA:A5:4B:C7:73:5F:69:61:D0:D8"}}},"request":{"raw":"GET /images/boldgrid-logo-vertical-black.svg HTTP/1.1\r\nHost: demo2.cloudwp.dev\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://demo2.cloudwp.dev/inactive.htm\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 25 Aug 2025 07:31:46 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 4396\r\nConnection: keep-alive\r\nUpgrade: h2,h2c\r\nLast-Modified: Fri, 02 Dec 2016 20:50:58 GMT\r\nX-Proxy-Cache: MISS\r\nX-Robots-Tag: noindex, nofollow, noarchive, nosnippet\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains; preload\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4396,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"505b5c5156843b9559c8995f8e446610","sha1":"5e9d6444bab2b41923d218eb162b8ab71915ba37","sha256":"b38980a3f9f0116e7039b450aa5ed8a501a20175b8e49dcd651b7eeeb86ce0e6","sha512":"78352beaa6d3fc710b0a101fbc96b89853b8ed81a6583dc2d0459cbaa6f25d1589559e26e79b0d7ac0096ddbc7d00192617ffe4a3cb6f73aa472b92717227b51","ssdeep":"96:Ope7jD5g8RlOIAaj7AmtaKxbAQxX8hjRgRYu:ceze8OmvAhKzxMhNK","tlshash":"8991217703880fbb6542079c53a9b55e35b5446bb1b582fc4baba5a3bc04df340bcd21","first_seen":"2023-05-03T06:05:55Z","last_seen":"2026-03-27T09:40:43.53572Z","times_seen":290,"resource_available":false,"data":null}},"time_used":166,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":165,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"demo2.cloudwp.dev/images/no-grid.svg","fqdn":"demo2.cloudwp.dev","domain":"cloudwp.dev","tld":"dev"},"ip":{"addr":"192.145.239.204","port":443,"asn":22611,"as":"INMOTION","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://demo2.cloudwp.dev/inactive.htm","date":"2025-08-25T07:31:46.247Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P384","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.cloudwp.dev","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Thu, 06 Mar 2025 00:00:00 GMT","end":"Tue, 17 Mar 2026 23:59:59 GMT"},"fingerprint":{"sha1":"7D:15:18:DE:50:D3:CD:86:F9:60:19:12:11:45:BC:F6:1D:8A:CC:F4","sha256":"FB:18:46:94:35:FA:CF:94:28:EC:BE:79:D6:5C:39:DB:68:EF:3D:47:38:CE:DA:A5:4B:C7:73:5F:69:61:D0:D8"}}},"request":{"raw":"GET /images/no-grid.svg HTTP/1.1\r\nHost: demo2.cloudwp.dev\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://demo2.cloudwp.dev/inactive.htm\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 25 Aug 2025 07:31:46 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 3408\r\nConnection: keep-alive\r\nUpgrade: h2,h2c\r\nLast-Modified: Mon, 05 Dec 2016 20:49:18 GMT\r\nX-Proxy-Cache: MISS\r\nX-Robots-Tag: noindex, nofollow, noarchive, nosnippet\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains; preload\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3408,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"4fe3cf38bc372bced80de5e88a4f017a","sha1":"c08cc6c3be0514dcc2ba642f7916653593061adc","sha256":"31962ec4cf9147ff0d0f4bb850eff4052cc287fabaac8fe166acb38483055955","sha512":"4a67fad258929e86c3ac00c24091b90c8584de9b5ee77685137818775904156f95d0c124cc4e145fbbbffeb0f1ee666d09828ce46301aed99a4cc31a70bb7004","ssdeep":"","tlshash":"a26153bb16d6649e61d04b3c26c495414b7b141371a24dad3f9da4f01f003eb5cacdec","first_seen":"2023-05-03T06:05:55Z","last_seen":"2026-03-27T09:40:43.539014Z","times_seen":289,"resource_available":false,"data":null}},"time_used":1180,"timings":{"blocked":506,"dns":1,"connect":153,"send":0,"wait":162,"receive":0,"ssl":353},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/josefinsans/v9/C6HYlRF50SGJq1XyXj04z04GofcKVZz6wtzX_QUIqsI.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://demo2.cloudwp.dev/inactive.htm","date":"2025-08-25T07:31:46.255Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Jul 2025 08:35:11 GMT","end":"Mon, 29 Sep 2025 08:35:10 GMT"},"fingerprint":{"sha1":"43:A0:95:35:FB:C7:02:15:92:9E:20:20:0D:0A:E7:8F:93:61:52:CD","sha256":"F1:59:AE:4E:F0:84:C7:D9:0F:67:4F:CB:FE:A6:ED:7D:47:17:4F:83:AA:B4:ED:FE:F5:F2:69:A8:AB:43:0E:0B"}}},"request":{"raw":"GET /s/josefinsans/v9/C6HYlRF50SGJq1XyXj04z04GofcKVZz6wtzX_QUIqsI.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://demo2.cloudwp.dev\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://demo2.cloudwp.dev/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 22244\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 21 Aug 2025 16:03:09 GMT\r\nexpires: Fri, 21 Aug 2026 16:03:09 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Mon, 06 Oct 2014 20:36:34 GMT\r\ncontent-type: font/woff2\r\nage: 314917\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":22244,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 22244, version 1.0","md5":"6a6b4d48d3990297f8feb86f96e8386e","sha1":"beef652f807f9bb675aed8738aead08fdea31611","sha256":"70716a99384f70e8f55280615bf0ddf84d17c5561769e1671ee736bda8c2796a","sha512":"76672041ff952207483dfbb50a419aca51e36fcfd23406f6bd23922212345c0b9f7e3309dcbd00391d7a9200237f7039efaf9aab39fa890f9494bb10be52d7e9","ssdeep":"384:+15KvLULKEYRyy72Oy1l2bx/CJ4p3YW5ip1i96Q75LBmz:+15KvLULKEYRyQ2PoxaJ4mWSir14","tlshash":"bfa2e1c104f2f560a6c1c4bb6bf5cd6d150beb5220366d0e4c13a7f592e0b489eb862f","first_seen":"2023-04-11T04:36:50Z","last_seen":"2026-04-02T22:17:13.090586Z","times_seen":914,"resource_available":false,"data":null}},"time_used":226,"timings":{"blocked":96,"dns":1,"connect":20,"send":0,"wait":23,"receive":7,"ssl":75},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/exo2/v3/-A4eIjQkAwKL411pgtQ4VA.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://demo2.cloudwp.dev/inactive.htm","date":"2025-08-25T07:31:46.256Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Jul 2025 08:35:11 GMT","end":"Mon, 29 Sep 2025 08:35:10 GMT"},"fingerprint":{"sha1":"43:A0:95:35:FB:C7:02:15:92:9E:20:20:0D:0A:E7:8F:93:61:52:CD","sha256":"F1:59:AE:4E:F0:84:C7:D9:0F:67:4F:CB:FE:A6:ED:7D:47:17:4F:83:AA:B4:ED:FE:F5:F2:69:A8:AB:43:0E:0B"}}},"request":{"raw":"GET /s/exo2/v3/-A4eIjQkAwKL411pgtQ4VA.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://demo2.cloudwp.dev\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://demo2.cloudwp.dev/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 19516\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 21 Aug 2025 10:59:22 GMT\r\nexpires: Fri, 21 Aug 2026 10:59:22 GMT\r\ncache-control: public, max-age=31536000\r\nage: 333144\r\nlast-modified: Wed, 27 Aug 2014 15:24:19 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":19516,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 19516, version 1.65","md5":"d4ca8d74b0e60bc12aff23761498c73d","sha1":"403689d08005fec559afc2f3070d5d2817d62595","sha256":"25706f2aee8b387e4ce26b4cbcf4a6b79d385c1415f21baa41706fc7ed4520ea","sha512":"6cb97fe3dd151b4e8f89b8f463127a58b2c45b12221f0b2eb63a4819b3b40ab4a5d7c2af74b531e5a45aa50f865e12c3697c6ad28c5259037599e2aaab7c4005","ssdeep":"384:dytHwCOyBAperyygdHpgWgLaDsY62jpzHUlLmqmh4Y6TcQD9P:ktHwdyipeendHpgW2EGwHYThJ","tlshash":"ad92c0ce92cd613c5494f9add39cf239374867051d493b2cbd2add3aa0686544433ca7","first_seen":"2023-04-11T04:36:50Z","last_seen":"2026-04-04T13:03:56.845457Z","times_seen":921,"resource_available":false,"data":null}},"time_used":265,"timings":{"blocked":116,"dns":1,"connect":22,"send":0,"wait":22,"receive":7,"ssl":93},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}