| GET hosting.renderforestsites.com/25654493/1258033/media/2f0c8c5efa6643a05d6138e59f0e2955.png |  104.21.16.1 | 200 OK | 247 kB |
URL User Request GET hosting.renderforestsites.com/25654493/1258033/media/2f0c8c5efa6643a05d6138e59f0e2955.png IP104.21.16.1:443
CertificateIssuerGoogle Trust Services Subjectrenderforestsites.com FingerprintC8:0E:20:E0:AB:6B:D1:07:16:86:EF:64:E8:29:A3:D6:6B:C0:F4:07 ValiditySat, 19 Apr 2025 00:19:32 GMT - Fri, 18 Jul 2025 01:16:55 GMT
File typePNG image data, 1000 x 670, 8-bit colormap, non-interlaced Size247 kB (247241 bytes) Hash48c426494ce8bf7783f8280a9ad4d804 650862b65a9f6a0c31ce635c45d094316db8bcc6 436b043433d0b6089d9bc83b4b3679b73520bf22040c9b65915aba5699c6fad3
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /25654493/1258033/media/2f0c8c5efa6643a05d6138e59f0e2955.png HTTP/1.1
Host: hosting.renderforestsites.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 11 Jun 2025 08:35:05 GMT
content-type: image/png
content-length: 247241
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
last-modified: Fri, 20 Sep 2024 03:13:40 GMT
etag: "48c426494ce8bf7783f8280a9ad4d804"
server: cloudflare
x-cache: Miss from cloudfront
via: 1.1 1b7f8001b2b06f9624559a35b6822156.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: fkelHLDg5-SuFLCFZ-9XYJrT6mVqvulCfF7T7ItqKL5bTSXkINcZ3Q==
cache-control: max-age=2678400
cf-cache-status: MISS
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=5e8xWzuA4un2xRcOAYJPJNwk8JrSyeedA99mbs9BS56mnI8wsrlcyN952mNgkKgFYEAZKkA6z6CbxBjTwzU1Y86og64AyGNWyhNg6oBUaEzZ8QkMN2GvnaXIMw%3D%3D"}]}
cf-ray: 94dfc5e19a005691-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
| GET hosting.renderforestsites.com/favicon.ico | 104.21.16.1 | 404 Not Found | 1.1 kB |
URL GET hosting.renderforestsites.com/favicon.ico IP104.21.16.1:443
Requested byhttps://hosting.renderforestsites.com/25654493/1258033/media/2f0c8c5efa6643a05d6138e59f0e2955.png CertificateIssuerGoogle Trust Services Subjectrenderforestsites.com FingerprintC8:0E:20:E0:AB:6B:D1:07:16:86:EF:64:E8:29:A3:D6:6B:C0:F4:07 ValiditySat, 19 Apr 2025 00:19:32 GMT - Fri, 18 Jul 2025 01:16:55 GMT
File typeHTML document, ASCII text Hash393f085ca4598a740a704cdbea357dd6 b339bab576ab497ff92e70c0a1f9003b528c7df6 c640ad19b6011a792e8b9d95f13490db9101df3e5b35f348e0982dba94a88b90
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: hosting.renderforestsites.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hosting.renderforestsites.com/25654493/1258033/media/2f0c8c5efa6643a05d6138e59f0e2955.png
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Wed, 11 Jun 2025 08:35:06 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Khbp69uqnntkQpxPNoPlAdd%2F5C3ZbCarFkvTKAZaI1ptM3EnU72nntJe7ZK8F9snC5sAvnFmLuK4q2JSZnOc4tdh0OJud2fi1yB1XyxWQE2HcOlGJkG%2F7WcoKkguVBtm%2Fl9WbhJJoiEJRyPsBWKILQ%3D%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 26 Jun 2019 11:47:36 GMT
x-amz-error-code: NoSuchKey
x-amz-error-message: The specified key does not exist.
x-amz-error-detail-key: favicon.ico
x-cache: Error from cloudfront
via: 1.1 36817f2624d87ea26a28cf9e3afd2402.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: FzbInOw8GItqML1EMtHncSBp86s_k9hCwYfe-olTe2_GbZIO_78p_Q==
cache-control: max-age=2678400
cf-cache-status: MISS
content-encoding: br
cf-ray: 94dfc5ec5c4e7131-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2463&min_rtt=665&rtt_var=1174&sent=171&recv=260&lost=0&retrans=0&sent_bytes=12482&recv_bytes=14371&delivery_rate=783037&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=163d9c51392888ac&ts=1614&inflight_dur=32&x=80"
|