Report - www.snapto.link/closurep-1/

Report Overview

Submitted URL
www.snapto.link/closurep-1/
IP
104.26.13.98
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-04 06:19:41
Access
public
Website Title
Thank you for choosing AT&T | Snapto
Final URL
www.snapto.link/closurep-1/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-05-02	875 B	168 kB	142.250.74.40
rsms.me	102779	2010-12-05	2014-10-14	2024-05-02	911 B	349 kB	104.21.234.234
www.snapto.link	unknown	unknown	No data	No data	5.5 kB	377 kB	104.26.12.98
cdn.snapto.link	unknown	unknown	2022-09-30	2024-03-10	521 B	208 kB	104.26.12.98

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-05-03	medium	www.snapto.link/closurep-1/	AT&T

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (4)

	URL	Size	First Seen	Last Seen
	www.googletagmanager.com/gtag/js?id=G-PBM8Y9DP93	228 kB	2024-05-04	2024-05-04
Pretty URL www.googletagmanager.com/gtag/js?id=G-PBM8Y9DP93 IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 08:19:48 Last Seen2024-05-04 08:19:48 Times Seen2 Hash ae07ccfe1150051af5c2ace67235d28c 710ba0e305c2e875cca5abecce44efff39c4bf3c 29edab445ee5d07d75f8d7b624b94267ce813d46f4f795397a3a2d90e114df3d Loading...

	www.snapto.link/closurep-1/	269 B	2024-02-21	2024-05-19
Pretty URL www.snapto.link/closurep-1/ IP 104.26.12.98 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-21 02:30:31 Last Seen2024-05-19 09:03:35 Times Seen3 Hash 0e99225fff98b59dec544070ea31fb10 bd72b708b892769c2ac7baef5f2924870534ca58 ba07e218fd9f86be5159b3ca5b5af3897ab5c4fddf3fcc7a3defca45794dc7bd Loading...

	www.snapto.link/closurep-1/	337 B	2023-03-08	2024-05-19
Pretty URL www.snapto.link/closurep-1/ IP 104.26.12.98 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 03:42:35 Last Seen2024-05-19 09:03:35 Times Seen6 Hash 7f28ee01a82b7a9b3620c93f965a9677 bfe801408b36e9fdbbec6b2f5e9512b6d4134e83 efb89b0146206c20ad070cd159e5565b64062552a9ca6ac3e024132713d3030e Loading...

	www.googletagmanager.com/gtag/js?id=AW-995495471&l=dataLayer&cx=c	236 kB	2024-05-04	2024-05-04
Pretty URL www.googletagmanager.com/gtag/js?id=AW-995495471&l=dataLayer&cx=c IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 08:19:48 Last Seen2024-05-04 08:19:48 Times Seen2 Hash be7c338510131ec68febbcb0c8fb37ca ceaacd3d44b30e639fd4b91616f327a3b742139c 5ead2eeb877636b4c45948dad122e939ac888589a4ed886c09ec2d96a22ceb06 Loading...

HTTP Transactions (10)

URL IP Response Size

www.snapto.link/closurep-1/

104.26.12.98

200 OK

5.4 kB

URL User Request GET HTTP/2
www.snapto.link/closurep-1/
IP
104.26.12.98:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectsnapto.link
FingerprintBF:D1:6D:D5:8C:67:57:68:DC:F4:B9:AA:B4:C6:AD:F8:F9:97:44:0B
ValidityFri, 15 Mar 2024 06:02:11 GMT - Thu, 13 Jun 2024 06:02:10 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1440)
Size
5.4 kB (5388 bytes)
Hash
ba803209ad421d57bb993a8c550d1341
2f70e96682a0c59fc736e16af7820894d540b0bc
e561fa6c15312a99dc70e5ef2ecd6c7f69ec77d00977503806da664c0a10e907

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	AT&T

HTTP Headers

GET /closurep-1/ HTTP/1.1
Host: www.snapto.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 06:19:16 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6ImwxdUEzaHF0YjhwZWs0UXdoZTUxZEE9PSIsInZhbHVlIjoiZUNWMFprTjlkb05KeDR1NGRWMGIwazF6VzY1M2FRWXFtUW9MNUhwaVBSNnB4R1M5M1piOVU2bzBsTC94MkRET1UvcEhkQnRYZ3lndnBUNnNJSy93NDF6RnE5WXh3WTZEWE9FSjVNUDA1aCtCTTZiQ2tmZzZtM2hpditiUmZxSEMiLCJtYWMiOiJlYzgzYzcwYjkzYTU4OTUzYTZiZWNiMzYwMDRmMjM3MDBlM2NkNmMyYTc3ZmU1NDcxNDg0ZDRmNTkwMjgwNTZiIiwidGFnIjoiIn0%3D; expires=Sat, 04-May-2024 08:19:16 GMT; Max-Age=7200; path=/; samesite=lax
snapto_session=eyJpdiI6IlVVZE54Umx5c3o3ZVhMQy9FZFo4WFE9PSIsInZhbHVlIjoiU0lqL3IxWWtsRFdqdFlpNjgvcmxJazQxU3JuR3lLamo2VUhjbzlGZ1RwendDL1pnd3FYV3JWTXRPQ1dzSVVrakpic1VtdHR1b1pQSFpPeTFnd2drZzBtTHlEeXlPN2NrRFJ4dnppT0VYWTNmYTVMKzY2MDkza1NyaUtXU2I5NWYiLCJtYWMiOiI5Nzc2NjM2OGFmOWUxYmU4MzgxYTkwNDk0NDY2YWM1M2QwZTNkYjEyMDAxZjliNTkzZDI2YmUyMmJiNGQ4NWI2IiwidGFnIjoiIn0%3D; expires=Sat, 04-May-2024 08:19:16 GMT; Max-Age=7200; path=/; httponly; samesite=lax
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ElxpsDKTPTi%2BVmwwsK0oYgQDSxFmmYnJZvNCREKoyW%2B4fZ7ASywlqfWroP5G5EzC3xR9o5w6Hm65WVjU9v2b2%2FAhAE5NZKiLURnkxGbpJ2D6F%2BIpCxKzFL%2Fb%2FMasJP6Axw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e660d16b68b509-OSL
content-encoding: br
X-Firefox-Spdy: h2

cdn.snapto.link/uploads/avatars/9ac2a27b-0b58-449a-acec-a94b845d390a/Cv1NzZtIduY7tfvYT811zzv8CY7dwklGXej12FeX.png

104.26.12.98

200 OK

207 kB

URL GET HTTP/2
cdn.snapto.link/uploads/avatars/9ac2a27b-0b58-449a-acec-a94b845d390a/Cv1NzZtIduY7tfvYT811zzv8CY7dwklGXej12FeX.png
IP
104.26.12.98:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.snapto.link/closurep-1/
Certificate
IssuerGoogle Trust Services LLC
Subjectsnapto.link
FingerprintBF:D1:6D:D5:8C:67:57:68:DC:F4:B9:AA:B4:C6:AD:F8:F9:97:44:0B
ValidityFri, 15 Mar 2024 06:02:11 GMT - Thu, 13 Jun 2024 06:02:10 GMT

File type
PNG image data, 4096 x 4096, 8-bit/color RGBA, non-interlaced
Size
207 kB (206854 bytes)
Hash
03eb9b069de6a04700b44f52f390ab7c
b20f2855fd9c8e7ba9084aecda8d01ac54213da2
6907ae5528636eac2e6d2f8c030c15c48c7b2bc4fcc3a061fdfc4304202abacc

HTTP Headers

GET /uploads/avatars/9ac2a27b-0b58-449a-acec-a94b845d390a/Cv1NzZtIduY7tfvYT811zzv8CY7dwklGXej12FeX.png HTTP/1.1
Host: cdn.snapto.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.snapto.link/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 06:19:16 GMT
content-type: image/png
content-length: 206854
cache-control: max-age=14400
cf-bgj: imgq:100,h2pri
cf-polished: origSize=237599, status=vary_header_present
etag: "99abe52eab014f81ecd6f7736dc6799c"
last-modified: Wed, 09 Aug 2023 02:47:14 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
x-amz-request-id: tx00000a25030e17433f7b7-0065f1ed66-8d8c3446-nyc3c
x-do-cdn-uuid: 6a848c56-51ef-4a55-9c92-6e0413340660
x-envoy-upstream-healthchecked-cluster: 
x-rgw-object-type: Normal
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xaKv%2F5%2BpX1VoQ29HgNAvqyTekISNPYyySJm72yXEfQfz2ALyCT%2FPL4ijid6S3eQ2hBidLNNWIMibDjEdDJErhPUbWxPyGZhyRTF%2BhSxIlsL3DvfhGoDPbaSicPgoXjeCqQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e660d62f6fb509-OSL
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-PBM8Y9DP93

142.250.74.40

200 OK

83 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-PBM8Y9DP93
IP
142.250.74.40:443
ASN
#15169 GOOGLE

Requested by
https://www.snapto.link/closurep-1/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (1822)
Size
83 kB (82992 bytes)
Hash
ae07ccfe1150051af5c2ace67235d28c
710ba0e305c2e875cca5abecce44efff39c4bf3c
29edab445ee5d07d75f8d7b624b94267ce813d46f4f795397a3a2d90e114df3d

HTTP Headers

GET /gtag/js?id=G-PBM8Y9DP93 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.snapto.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 May 2024 06:19:16 GMT
expires: Sat, 04 May 2024 06:19:16 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 82992
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

rsms.me/inter/inter.css

104.21.234.234

200 OK

1.1 kB

URL GET HTTP/2
rsms.me/inter/inter.css
IP
104.21.234.234:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.snapto.link/closurep-1/
Certificate
IssuerLet's Encrypt
Subjectrsms.me
Fingerprint50:5A:A9:41:05:90:1B:67:37:D9:4D:C6:CC:FC:1B:E5:5A:5E:72:88
ValidityThu, 25 Apr 2024 07:54:14 GMT - Wed, 24 Jul 2024 07:54:13 GMT

File type
ASCII text
Size
1.1 kB (1137 bytes)
Hash
c64a4ac8b3294c33af995b611a01ea33
80299860a6975cdbc960e183ab2f43fcb3535671
8fedfb7def1421aa9d58d1732be7164e33eec27b9c87193e010b9ddaa67b6a18

HTTP Headers

GET /inter/inter.css HTTP/1.1
Host: rsms.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.snapto.link/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 06:19:16 GMT
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Mon, 25 Mar 2024 16:53:19 GMT
access-control-allow-origin: *
etag: W/"6601abff-1b8d"
expires: Fri, 03 May 2024 02:34:16 GMT
cache-control: max-age=14400
x-proxy-cache: MISS
x-github-request-id: 807C:212527:7F7EDE:814CCD:6601ACC9
via: 1.1 varnish
age: 583
x-served-by: cache-lcy-eglc8600028-LCY
x-cache: HIT
x-cache-hits: 1
x-timer: S1711386009.298123,VS0,VE2
vary: Accept-Encoding
x-fastly-request-id: fcd6d25c3b5758ef0c6c8be0ae63ff79ff729220
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nkZWdIcJOwsjES1GpscRp%2BTmIZYBpUzKSmj%2B2D4w9VzFGhZRK18pPe4QM%2F8f%2FG2SmS9P8yieiS1dMz83SRgO0m6sVwIjmO1oeOsJZsQCq%2Bi3fZS3LYZWrUZH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e660d65af335dc-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=AW-995495471&l=dataLayer&cx=c

142.250.74.40

200 OK

84 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=AW-995495471&l=dataLayer&cx=c
IP
142.250.74.40:443
ASN
#15169 GOOGLE

Requested by
https://www.snapto.link/closurep-1/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (4179)
Size
84 kB (83936 bytes)
Hash
be7c338510131ec68febbcb0c8fb37ca
ceaacd3d44b30e639fd4b91616f327a3b742139c
5ead2eeb877636b4c45948dad122e939ac888589a4ed886c09ec2d96a22ceb06

HTTP Headers

GET /gtag/js?id=AW-995495471&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.snapto.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 May 2024 06:19:17 GMT
expires: Sat, 04 May 2024 06:19:17 GMT
cache-control: private, max-age=900
last-modified: Sat, 04 May 2024 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 83936
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.snapto.link/favicon-16x16.png?v=jkds78

104.26.12.98

200 OK

436 B

URL GET HTTP/2
www.snapto.link/favicon-16x16.png?v=jkds78
IP
104.26.12.98:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.snapto.link/closurep-1/
Certificate
IssuerGoogle Trust Services LLC
Subjectsnapto.link
FingerprintBF:D1:6D:D5:8C:67:57:68:DC:F4:B9:AA:B4:C6:AD:F8:F9:97:44:0B
ValidityFri, 15 Mar 2024 06:02:11 GMT - Thu, 13 Jun 2024 06:02:10 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
436 B (436 bytes)
Hash
d7e7b5a75156e73087a6180ea5c1a082
eabfc8a568fb236eac811936559bc26df71e3f05
c18b3648ff10a7bebe70336df08dbf236ee7faf234aaca7699cc37f2361ca3b9

HTTP Headers

GET /favicon-16x16.png?v=jkds78 HTTP/1.1
Host: www.snapto.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.snapto.link/closurep-1/
Cookie: XSRF-TOKEN=eyJpdiI6ImwxdUEzaHF0YjhwZWs0UXdoZTUxZEE9PSIsInZhbHVlIjoiZUNWMFprTjlkb05KeDR1NGRWMGIwazF6VzY1M2FRWXFtUW9MNUhwaVBSNnB4R1M5M1piOVU2bzBsTC94MkRET1UvcEhkQnRYZ3lndnBUNnNJSy93NDF6RnE5WXh3WTZEWE9FSjVNUDA1aCtCTTZiQ2tmZzZtM2hpditiUmZxSEMiLCJtYWMiOiJlYzgzYzcwYjkzYTU4OTUzYTZiZWNiMzYwMDRmMjM3MDBlM2NkNmMyYTc3ZmU1NDcxNDg0ZDRmNTkwMjgwNTZiIiwidGFnIjoiIn0%3D; snapto_session=eyJpdiI6IlVVZE54Umx5c3o3ZVhMQy9FZFo4WFE9PSIsInZhbHVlIjoiU0lqL3IxWWtsRFdqdFlpNjgvcmxJazQxU3JuR3lLamo2VUhjbzlGZ1RwendDL1pnd3FYV3JWTXRPQ1dzSVVrakpic1VtdHR1b1pQSFpPeTFnd2drZzBtTHlEeXlPN2NrRFJ4dnppT0VYWTNmYTVMKzY2MDkza1NyaUtXU2I5NWYiLCJtYWMiOiI5Nzc2NjM2OGFmOWUxYmU4MzgxYTkwNDk0NDY2YWM1M2QwZTNkYjEyMDAxZjliNTkzZDI2YmUyMmJiNGQ4NWI2IiwidGFnIjoiIn0%3D; _ga_PBM8Y9DP93=GS1.1.1714803557.1.0.1714803557.0.0.0; _ga=GA1.1.1453850409.1714803557; _gcl_au=1.1.360233095.1714803557
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 06:19:17 GMT
content-type: image/png
content-length: 436
cf-bgj: imgq:100,h2pri
cf-polished: origSize=944
etag: "657496e4-3b0"
last-modified: Sat, 09 Dec 2023 16:33:40 GMT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: HIT
age: 2437
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0UdXq3jSnGygbUhmKg9IXij8ns%2BfJcTBxBbmrc3sEK5PDW%2FEipI0ZLvxzQ3ICbddoIufF9SdVpwfcSUGPA01kdrTsgDZ%2FiZ3E33G1wXR5nMMJ%2BcaHqEkOKSj%2Baa8YI740A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e660d9ba57b509-OSL
X-Firefox-Spdy: h2

www.snapto.link/css/homepublic.css?id=34634af4194fd5ee7b69

104.26.12.98

200 OK

357 kB

URL GET HTTP/2
www.snapto.link/css/homepublic.css?id=34634af4194fd5ee7b69
IP
104.26.12.98:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.snapto.link/closurep-1/
Certificate
IssuerGoogle Trust Services LLC
Subjectsnapto.link
FingerprintBF:D1:6D:D5:8C:67:57:68:DC:F4:B9:AA:B4:C6:AD:F8:F9:97:44:0B
ValidityFri, 15 Mar 2024 06:02:11 GMT - Thu, 13 Jun 2024 06:02:10 GMT

File type
ASCII text, with very long lines (60918)
Size
357 kB (356796 bytes)
Hash
34634af4194fd5ee7b69b947217ceeae
7f9e5f0ee88f8d2f7ebec1cdd2f525afbe6d9be8
402683c4c6915d8b616a65a5d55fb88424065df712c41d5d6926726938868b1f

HTTP Headers

GET /css/homepublic.css?id=34634af4194fd5ee7b69 HTTP/1.1
Host: www.snapto.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.snapto.link/closurep-1/
Cookie: XSRF-TOKEN=eyJpdiI6ImwxdUEzaHF0YjhwZWs0UXdoZTUxZEE9PSIsInZhbHVlIjoiZUNWMFprTjlkb05KeDR1NGRWMGIwazF6VzY1M2FRWXFtUW9MNUhwaVBSNnB4R1M5M1piOVU2bzBsTC94MkRET1UvcEhkQnRYZ3lndnBUNnNJSy93NDF6RnE5WXh3WTZEWE9FSjVNUDA1aCtCTTZiQ2tmZzZtM2hpditiUmZxSEMiLCJtYWMiOiJlYzgzYzcwYjkzYTU4OTUzYTZiZWNiMzYwMDRmMjM3MDBlM2NkNmMyYTc3ZmU1NDcxNDg0ZDRmNTkwMjgwNTZiIiwidGFnIjoiIn0%3D; snapto_session=eyJpdiI6IlVVZE54Umx5c3o3ZVhMQy9FZFo4WFE9PSIsInZhbHVlIjoiU0lqL3IxWWtsRFdqdFlpNjgvcmxJazQxU3JuR3lLamo2VUhjbzlGZ1RwendDL1pnd3FYV3JWTXRPQ1dzSVVrakpic1VtdHR1b1pQSFpPeTFnd2drZzBtTHlEeXlPN2NrRFJ4dnppT0VYWTNmYTVMKzY2MDkza1NyaUtXU2I5NWYiLCJtYWMiOiI5Nzc2NjM2OGFmOWUxYmU4MzgxYTkwNDk0NDY2YWM1M2QwZTNkYjEyMDAxZjliNTkzZDI2YmUyMmJiNGQ4NWI2IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 06:19:17 GMT
content-type: text/css
last-modified: Sat, 09 Dec 2023 16:54:13 GMT
vary: Accept-Encoding
etag: W/"65749bb5-edf7"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9oxzmA0MQPJ6nW1L742FprVCfMRBR2uG8rqe1NnonFdpsu0iOdv3%2Bqlk%2FHZLTc89Trgv44Tk4LIO7rSxpEwN03zr2RhL7d3bElJB4kyIUwzIsgKqs6WVVegleaR2%2BYYhvw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e660d5cf24b509-OSL
content-encoding: br
X-Firefox-Spdy: h2

www.snapto.link/apple-touch-icon.png?v=jkds78

104.26.12.98

200 OK

7.4 kB

URL GET HTTP/2
www.snapto.link/apple-touch-icon.png?v=jkds78
IP
104.26.12.98:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.snapto.link/closurep-1/
Certificate
IssuerGoogle Trust Services LLC
Subjectsnapto.link
FingerprintBF:D1:6D:D5:8C:67:57:68:DC:F4:B9:AA:B4:C6:AD:F8:F9:97:44:0B
ValidityFri, 15 Mar 2024 06:02:11 GMT - Thu, 13 Jun 2024 06:02:10 GMT

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced
Size
7.4 kB (7367 bytes)
Hash
61cf3e5b4ba83d4bbbf0a7404f5220a3
4db6293e0253e2b551718413fe6e7f0d651eb5a1
2167cf311522527ae4434187ab57f7a10778104bd913bb5556546c2e8560762c

HTTP Headers

GET /apple-touch-icon.png?v=jkds78 HTTP/1.1
Host: www.snapto.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.snapto.link/closurep-1/
Cookie: XSRF-TOKEN=eyJpdiI6ImwxdUEzaHF0YjhwZWs0UXdoZTUxZEE9PSIsInZhbHVlIjoiZUNWMFprTjlkb05KeDR1NGRWMGIwazF6VzY1M2FRWXFtUW9MNUhwaVBSNnB4R1M5M1piOVU2bzBsTC94MkRET1UvcEhkQnRYZ3lndnBUNnNJSy93NDF6RnE5WXh3WTZEWE9FSjVNUDA1aCtCTTZiQ2tmZzZtM2hpditiUmZxSEMiLCJtYWMiOiJlYzgzYzcwYjkzYTU4OTUzYTZiZWNiMzYwMDRmMjM3MDBlM2NkNmMyYTc3ZmU1NDcxNDg0ZDRmNTkwMjgwNTZiIiwidGFnIjoiIn0%3D; snapto_session=eyJpdiI6IlVVZE54Umx5c3o3ZVhMQy9FZFo4WFE9PSIsInZhbHVlIjoiU0lqL3IxWWtsRFdqdFlpNjgvcmxJazQxU3JuR3lLamo2VUhjbzlGZ1RwendDL1pnd3FYV3JWTXRPQ1dzSVVrakpic1VtdHR1b1pQSFpPeTFnd2drZzBtTHlEeXlPN2NrRFJ4dnppT0VYWTNmYTVMKzY2MDkza1NyaUtXU2I5NWYiLCJtYWMiOiI5Nzc2NjM2OGFmOWUxYmU4MzgxYTkwNDk0NDY2YWM1M2QwZTNkYjEyMDAxZjliNTkzZDI2YmUyMmJiNGQ4NWI2IiwidGFnIjoiIn0%3D; _ga_PBM8Y9DP93=GS1.1.1714803557.1.0.1714803557.0.0.0; _ga=GA1.1.1453850409.1714803557; _gcl_au=1.1.360233095.1714803557
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 06:19:17 GMT
content-type: image/png
content-length: 7367
last-modified: Sat, 09 Dec 2023 16:33:40 GMT
etag: "657496e4-1cc7"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tcwlQ3DpYmuDacbzeYsNVRFKxs2mLOL9gLncumOIaD2C2C6UnCDh4igvC0i8d1gFS%2BvgR5avbsdry0pGoQIU%2BdnHsxhoDx84xAHOFJEaFGkfyIjc8FdAxIpymfE4DBnpyQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e660d9ba54b509-OSL
X-Firefox-Spdy: h2

rsms.me/inter/font-files/InterVariable.woff2?v=4.0

104.21.234.234

200 OK

346 kB

URL GET HTTP/3
rsms.me/inter/font-files/InterVariable.woff2?v=4.0
IP
104.21.234.234:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.snapto.link/closurep-1/
Certificate
IssuerLet's Encrypt
Subjectrsms.me
Fingerprint50:5A:A9:41:05:90:1B:67:37:D9:4D:C6:CC:FC:1B:E5:5A:5E:72:88
ValidityThu, 25 Apr 2024 07:54:14 GMT - Wed, 24 Jul 2024 07:54:13 GMT

File type
Web Open Font Format (Version 2), TrueType, length 345588, version 4.0
Size
346 kB (345588 bytes)
Hash
499fcada6ddb2c38718c2c16a190d639
9ef5d7d28925b9e0213f67b8105870e0afade711
8af7bd5b545567adffb3dfceb5bedb353a522d7bf1b3a2b8af7b6064156babc0

HTTP Headers

GET /inter/font-files/InterVariable.woff2?v=4.0 HTTP/1.1
Host: rsms.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.snapto.link
DNT: 1
Connection: keep-alive
Referer: https://rsms.me/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 04 May 2024 06:19:17 GMT
content-type: font/woff2
content-length: 345588
last-modified: Mon, 25 Mar 2024 16:53:19 GMT
access-control-allow-origin: *
etag: "6601abff-545f4"
expires: Wed, 17 Apr 2024 03:10:16 GMT
cache-control: max-age=2678400
x-proxy-cache: HIT
x-github-request-id: 897A:2F6FDD:D5584B:DCAAFA:661F3BA5
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600094-LCY
x-cache: HIT
x-cache-hits: 2
x-timer: S1714803557.333340,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: ce7f9c2fcac6c1b7a99207bfde53bb7118d1e1b4
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KwOZEDorcAcYyp77PpXTJ%2B5VEVXLMCPJvz205iFZGGhhFwzLIkJwlHRMiUyir5OXdWUmQGSku63DswBwgv7eulngTiSBPlfQUZKcs3zYegaT7BNmu4ITFgEq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e660d9396960e2-LHR
alt-svc: h3=":443"; ma=86400

www.snapto.link/css/templates/purpleator.css?id=8920934c61ba143daed6

104.26.12.98

200 OK

2.6 kB

URL GET HTTP/2
www.snapto.link/css/templates/purpleator.css?id=8920934c61ba143daed6
IP
104.26.12.98:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.snapto.link/closurep-1/
Certificate
IssuerGoogle Trust Services LLC
Subjectsnapto.link
FingerprintBF:D1:6D:D5:8C:67:57:68:DC:F4:B9:AA:B4:C6:AD:F8:F9:97:44:0B
ValidityFri, 15 Mar 2024 06:02:11 GMT - Thu, 13 Jun 2024 06:02:10 GMT

File type
ASCII text, with very long lines (2613), with no line terminators
Size
2.6 kB (2613 bytes)
Hash
03bf24b442fb2843c8cf5bcb11980ebd
309b293aac20da0ef3ceb5a19827395cb25d016a
2511f9175ad34517f90a20de270c927a4fd74fe734c9d80515a6827d1b196daa

HTTP Headers

GET /css/templates/purpleator.css?id=8920934c61ba143daed6 HTTP/1.1
Host: www.snapto.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.snapto.link/closurep-1/
Cookie: XSRF-TOKEN=eyJpdiI6ImwxdUEzaHF0YjhwZWs0UXdoZTUxZEE9PSIsInZhbHVlIjoiZUNWMFprTjlkb05KeDR1NGRWMGIwazF6VzY1M2FRWXFtUW9MNUhwaVBSNnB4R1M5M1piOVU2bzBsTC94MkRET1UvcEhkQnRYZ3lndnBUNnNJSy93NDF6RnE5WXh3WTZEWE9FSjVNUDA1aCtCTTZiQ2tmZzZtM2hpditiUmZxSEMiLCJtYWMiOiJlYzgzYzcwYjkzYTU4OTUzYTZiZWNiMzYwMDRmMjM3MDBlM2NkNmMyYTc3ZmU1NDcxNDg0ZDRmNTkwMjgwNTZiIiwidGFnIjoiIn0%3D; snapto_session=eyJpdiI6IlVVZE54Umx5c3o3ZVhMQy9FZFo4WFE9PSIsInZhbHVlIjoiU0lqL3IxWWtsRFdqdFlpNjgvcmxJazQxU3JuR3lLamo2VUhjbzlGZ1RwendDL1pnd3FYV3JWTXRPQ1dzSVVrakpic1VtdHR1b1pQSFpPeTFnd2drZzBtTHlEeXlPN2NrRFJ4dnppT0VYWTNmYTVMKzY2MDkza1NyaUtXU2I5NWYiLCJtYWMiOiI5Nzc2NjM2OGFmOWUxYmU4MzgxYTkwNDk0NDY2YWM1M2QwZTNkYjEyMDAxZjliNTkzZDI2YmUyMmJiNGQ4NWI2IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 06:19:17 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=2614
etag: W/"65749bf4-a36"
last-modified: Sat, 09 Dec 2023 16:55:16 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Q%2FEla6JIPCnYA2BQ4g0nvyFkNTCLo5jUaYHR5HFJQP4x4p%2FkYy4G3O9mS7445vjYTvV%2BPzHDhEYjGCdYktMV7Zuo3Zomoy70LYcJHK4Bd4iOTT3JHBjsT5fDfN0IzRTX2g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e660d5cf28b509-OSL
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (4)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (10)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size