| cdn.jsdelivr.net/npm/@mdi/font@6.x/css/materialdesignicons.min.css | 151.101.193.229 | 200 OK | 53 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/@mdi/font@6.x/css/materialdesignicons.min.css IP151.101.193.229:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hashdc663f2307f9ab02cf06ab357efa7845 d43eb079acc592caee325ab01694641459c82853 29e461b3a66dfb905a602e4c0ea68a1e541100deee2cb8f385f15607f162f914
GET /npm/@mdi/font@6.x/css/materialdesignicons.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 6.9.96
x-jsd-version-type: version
etag: W/"4f282-1D6weazFksruMlqwFpRkFFnIKFM"
content-encoding: br
accept-ranges: bytes
date: Sat, 04 May 2024 18:53:24 GMT
age: 7525
x-served-by: cache-fra-etou8220087-FRA, cache-hel1410022-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 52730
X-Firefox-Spdy: h2
|
|
| nickeldrive.autos/images/img_2-min.jpg | 172.67.192.47 | 200 OK | 13 kB |
URL GET HTTP/3nickeldrive.autos/images/img_2-min.jpg IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 280x158, components 3 Hashdd9cc03fad73f5df717201b6d28d4e91 d5c7600ce214a47ac1a312084837a61e77127b82 8b643887e8123644be349e00598974c548518515614796e95156b555bac3b19e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/img_2-min.jpg HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:25 GMT
content-type: image/jpeg
content-length: 12575
etag: "dd9cc03fad73f5df717201b6d28d4e91"
last-modified: Wed, 13 Mar 2024 15:15:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: 5f381d0e-15c2-4ec0-8339-7b79f484138c
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fJF7exxvcj9vN61z9Y3JRZwGXwTOk51miPsjQSeyhsvKYcTO6UL9Hr7T3kMr3KjjvfgLZj7jd42zQh0spAEtJomrwg49F%2FqF673MoR0ehCQpTbNlmTuxzGiQ%2B9uH6D6gkfrq1A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab1866b441c0e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/images/img_3-min.jpg | 172.67.192.47 | 200 OK | 35 kB |
URL GET HTTP/3nickeldrive.autos/images/img_3-min.jpg IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x600, components 3 Hash9a8bb2da4af379b610f02678410ae022 98d98f46ebd4d43de1eda22e1cb0d8c46f2461ee 762a7d2af101ed8d7cbb263035c11634b5dd2a950905066fd698b17f2827f025
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/img_3-min.jpg HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:25 GMT
content-type: image/jpeg
content-length: 34851
etag: "9a8bb2da4af379b610f02678410ae022"
last-modified: Wed, 13 Mar 2024 15:15:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: a7ba48bd-f677-49b5-99ba-3c2ab5d4bffd
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lXDhZq4ugASJoQqiHB%2Bt4qxXz%2B6z3iivlieZyCYaGqAQt6tPcQHjgaXv621AnWTihmDT1ozx1iSExv3Xhn68TKxhAIB4HE5cD7qvX6h7vt%2FoaoBMN%2Bcyct26%2BU4LNTk6jsr6Yw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab1866b431c0e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/images/4.jpg | 172.67.192.47 | 200 OK | 63 kB |
URL GET HTTP/3nickeldrive.autos/images/4.jpg IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 640x426, components 3 Hash4225d7f749e10e8cd823c253a49b9af6 87faad48ecd3536c7c2b34586e9ddf75b4fd62d1 831e7757a3abdf65f25338a505c6885479afe1da0ff633684b372470537ef2d1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/4.jpg HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:25 GMT
content-type: image/jpeg
content-length: 62960
etag: "4225d7f749e10e8cd823c253a49b9af6"
last-modified: Wed, 13 Mar 2024 15:15:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: 27459b4b-8200-4f5f-aa36-43ecd77a388c
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=08UxG%2BUvtNrOEpVJeazArm4ExHqemcMD3fEUvS3mUELiaH3SGIBWVnp%2B5IJ7JErG%2FBKMmdHPiDHSz0aowo26cU770Z48sr0q9L%2FYfNLGl4uaLxzhEQLsWaFrtYgpX%2BR7lpfnPg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab1867b4c1c0e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/images/img_7-min.png | 172.67.192.47 | 200 OK | 83 kB |
URL GET HTTP/3nickeldrive.autos/images/img_7-min.png IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typePNG image data, 380 x 561, 8-bit/color RGBA, non-interlaced Hashf5a7e9dd660700dc2b44aa112e9af807 6997c8bf19ac21b9acf9afc0c12481cfdd4b5be7 e9a6195d4d44097ef41ea57e14fddf85244d830867b481a65caeb971bc6827bc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/img_7-min.png HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:25 GMT
content-type: image/png
content-length: 83277
etag: "f5a7e9dd660700dc2b44aa112e9af807"
last-modified: Wed, 13 Mar 2024 15:15:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: 521be741-2d98-4cf1-bfd6-807e34a2178a
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TrM%2BNtimQORdORYM8X9qzIO8scY5R4riiaend6VtJaqtaL8Z1JU0FwMRESkS2v8kIxtvS5JYBEREuIiWhe2CykgHDCJBAxOAYZUOzd2hbNKcNGREj8DFKplnY3mr3VJnmcLdTg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab1867b561c0e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/images/3.jpg | 172.67.192.47 | 200 OK | 74 kB |
URL GET HTTP/3nickeldrive.autos/images/3.jpg IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 680x453, components 3 Hashc12957d4b6b0e5df5209b6a280fddfd2 8be26ff149304eebad89864cb8caec6c6cee2d69 bcae43b83642f5babe2a8d38e9feb2033d41eadb74c31109b1bda0e119241520
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/3.jpg HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:25 GMT
content-type: image/jpeg
content-length: 73487
etag: "c12957d4b6b0e5df5209b6a280fddfd2"
last-modified: Wed, 13 Mar 2024 15:15:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: 76fb46ac-9c7c-4cee-8cb7-62e6b2fc0a5f
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fAxnZq3YabrGk2op5IB93gBxQ7IqQhkpDL1wbUucIGOcmRBfQdu4IUhqijRR%2FEmmjq%2FooVHSiZn4THMMfTVOBzph2D%2Fl0%2BM2RWP%2FIK1E%2Fn6x6D%2Bxz0yAZMjW%2BEVxqAZxgW2vSA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab1867b4b1c0e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/images/5.jpg | 172.67.192.47 | 200 OK | 69 kB |
URL GET HTTP/3nickeldrive.autos/images/5.jpg IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 750x563, components 3 Hash4ce06b7559bb0506ab27e132c7b116e9 eb07c8595de63e990e70d8c6c35e14b3dc54dc5f 415456ef1f3547585929540287876ed6df80ebe2a7008aea1eae1bdf3bb72efc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/5.jpg HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:25 GMT
content-type: image/jpeg
content-length: 69204
etag: "4ce06b7559bb0506ab27e132c7b116e9"
last-modified: Wed, 13 Mar 2024 15:15:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: b3d5f341-fdc7-4d4c-a4bd-3f48975eb77b
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nwP0KiugZjMZYaIe6iSNQEcRCuw4NGMZrF2Gp6Rt9Fy0k0HJRsz%2F%2Frrlka7Kt%2FX6DZH9aZWMQUkEPTKqikUVUJwlob5bbYcQWetlxH%2BRZXI5EOTOdvTxbf2UJHG4bimMtEAP4w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab1867b451c0e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/pixel.js | 172.67.192.47 | 200 OK | 0 B |
URL GET HTTP/3nickeldrive.autos/pixel.js IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel.js HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:25 GMT
content-type: text/plain; charset=utf-8
content-length: 0
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cnc%2BjZJfbQQg5XmMTdxPRLIciEDzOjlPYH0tHLi%2FVfeDaz8RVwXlsMp%2FCZwmFRRVNb3YGHO7rLmJCtMcjNeGCuPcfYlFgXsnufRKtrMG6dNcXX36ffBisgSDCXe%2FnGkkX2spWQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab1898eeb1c0e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/images/img_9-min.jpg | 172.67.192.47 | 200 OK | 41 kB |
URL GET HTTP/3nickeldrive.autos/images/img_9-min.jpg IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 440x600, components 3 Hashe7a944c9559cca11fda384c77dbdbff5 4c058ed63cf56158892d4f7fafee4faee581b08c 7fdc45cfe5b0e447c2323e97edb9b647a421356d85db4598fa4462d14b77db19
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/img_9-min.jpg HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:25 GMT
content-type: image/jpeg
content-length: 40733
etag: "e7a944c9559cca11fda384c77dbdbff5"
last-modified: Wed, 13 Mar 2024 15:15:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: a903e187-c5b5-4dfb-ae5e-67b8ec74ddca
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jK7UdKBew7rT1C%2F4g3QWAGgh1KyQHzJhAR8A75GMIGkFTxrHR6RP020%2B9nUYAxB4ofoJxSes9r3tJaaMurWKFswv1%2FuyT3o0Yai7d3qaP12k%2FGVqD1kMly4i%2FXdG7QBQl8G3hQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab1868b641c0e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/regform/reg-form.min.js | 172.67.192.47 | 200 OK | 146 kB |
URL GET HTTP/3nickeldrive.autos/regform/reg-form.min.js IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (64855), with no line terminators Size146 kB (145535 bytes) Hashf0c11cdcc45ed6b59ae2ee0c8e47883b 55fa5aa4aace36dcd260d8ad07fb97b928d1e24f b662b0f68b81ea5118aa7fc86bce5b6f8860766cfec90f6f43389fc8b51d9b43
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /regform/reg-form.min.js HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:25 GMT
content-type: application/javascript
last-modified: Mon, 18 Mar 2024 14:35:20 GMT
etag: W/"65f85128-79fea"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=L6FivDGxtLic5sAAgU52KFQ7%2B6EFvrhsYiSOKAVp891FASCKgefGji0nUVSenGe3YJTTsfiYTRD%2Bn43GWC9yVZuqF%2BHOSgjOTotS2v%2FiA%2BIL%2F1sU6eDlfu1lKpclEyh%2FhncU0Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab1868b871c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/images/img_8-min.png | 172.67.192.47 | 200 OK | 66 kB |
URL GET HTTP/3nickeldrive.autos/images/img_8-min.png IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typePNG image data, 380 x 564, 8-bit/color RGBA, non-interlaced Hash847e8bb6382bdd6337f91d04087e8c80 57261b050b5bc60df6713364ce241a7527eac0e6 a00a3fa030c4f4048d1816f3fcb13e4d58115414f2ce7cd1eb70a54e78e03b95
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/img_8-min.png HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:25 GMT
content-type: image/png
content-length: 65603
etag: "847e8bb6382bdd6337f91d04087e8c80"
last-modified: Wed, 13 Mar 2024 15:15:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: d0be85cd-6040-4141-b4c9-098feb9dd823
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=v2nZ1rFW1RZcCac5xGZDqr8RMNn6HYbQDvuf03sZQHd8QrOprB8iwQD8Ac5dlVuBmVgqNtOrHUkNf7bT3o4hRSbE2h1vu6yVE5MWSZeow7oW9DLpUQcYemK3qQuYhKAfxB5LCA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab1868b601c0e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/images/2.png | 172.67.192.47 | 200 OK | 104 kB |
URL GET HTTP/3nickeldrive.autos/images/2.png IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typePNG image data, 573 x 836, 8-bit/color RGB, non-interlaced Size104 kB (104378 bytes) Hashaed31939e2d7f815e4d67ed4cd5f4365 587b7e7395f78af5d3ea59e7c211115ed2c25d7e 3b0227c9807f2d58c1dfc6c467aaa4226a84a8311dc65339f72d2cfcca08a9ae
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/2.png HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:25 GMT
content-type: image/png
content-length: 104378
etag: "aed31939e2d7f815e4d67ed4cd5f4365"
last-modified: Wed, 13 Mar 2024 15:15:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: 3d659956-b552-4a02-96cb-d87f2a9f56ba
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CbxYdNuh%2BRQ8XwmPsV2mg5hMa6A%2FsfK%2BSioJEIaciOREFtd2waRi3eXUDsJqevi8LcL%2B8IFulCKLbWFvNowlZpYcmMlk%2BQXvDK6nKYIEHdlWIdw5m1xXnfKy01unJ2h5KoN4Eg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab1867b491c0e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/cdn-cgi/challenge-platform/scripts/jsd/main.js | 172.67.192.47 | 302 Found | 0 B |
URL GET HTTP/3nickeldrive.autos/cdn-cgi/challenge-platform/scripts/jsd/main.js IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: tr_uuid=7b5a7a6f-c9d5-4aec-b373-909df933f92a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Sat, 04 May 2024 18:53:26 GMT
content-length: 0
access-control-allow-origin: *
cache-control: max-age=300, public
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dqLFuQCm%2BBSdpkqFjdvpOnvIVjVKneKWR7bhfVPTnjY4Cbc7XU3KzonSXaJnszRDj6iferaq3gafMjpWAwYl9ZJvPelH%2FniNbuVq3NyyOfEcJfAyHN70V15yr6QbWFzFzqKaEg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab18e3cff1c0e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/images/Arrow.png | 172.67.192.47 | 200 OK | 416 B |
URL GET HTTP/3nickeldrive.autos/images/Arrow.png IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typePNG image data, 53 x 44, 8-bit colormap, non-interlaced Hasheac242be6a950773d681b567496d83a6 7367da22e8eb698ac2a07b7274415c61d83e4ebe eea18576a1830014ff131d7d3010373ba51259cc945a51ce94683f2a9eced71c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/Arrow.png HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/css/step.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:26 GMT
content-type: image/png
content-length: 416
etag: "eac242be6a950773d681b567496d83a6"
last-modified: Wed, 13 Mar 2024 15:15:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: 72467009-8115-4447-907e-28a6cd94eedb
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=S7J94XvhQEeOTrmMkT3QnkzOlzAedc1LE7lghSniMKEfbGWNmHZd6HwYhOmNIPIa3O%2BJjo1hNQsBqZCgzlmMqul5oLLyX0jLQIyGUJk1G97x1PYT5y97XAXePdjIqYlx1GdZMw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab18c2a2e1c0e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/fonts/ProximaNova-Bold.woff | 172.67.192.47 | 200 OK | 52 kB |
URL GET HTTP/3nickeldrive.autos/fonts/ProximaNova-Bold.woff IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typeWeb Open Font Format, TrueType, length 52068, version 2.3 Hashe2cf3dc2f079bf3d5185a02552f153c4 9e900ba7e0890a12a5697fc7ce86c058b145d215 99a24fdd4e16d8dd4fdd79a5dd2dd7b71c2c68473fd6b3cb4eca4fa3f33d9ac1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /fonts/ProximaNova-Bold.woff HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/css/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:26 GMT
content-type: font/woff
content-length: 52068
etag: "e2cf3dc2f079bf3d5185a02552f153c4"
last-modified: Wed, 13 Mar 2024 15:15:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: 7fdc0380-f96b-4e83-a04a-5591220c161d
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GZfFdQgMeTY6CKT2tuZtYwY%2Fs%2B%2FJ3QM0uyJVQ4FfQpU3L4HJRc7FZb49zJag0JElMV0GuPlllHcpI14VJTG2gyKY%2FYlJWh5rWHb2NbuEzaXY0WvFHoeNSsXB3HWFZBMWvUIsOQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab18bd9bc1c0e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css2?family=Inter:wght@400;500;700&display=swap | 142.250.74.106 | 200 OK | 72 kB |
URL GET HTTP/3fonts.googleapis.com/css2?family=Inter:wght@400;500;700&display=swap IP142.250.74.106:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typegzip compressed data, max compression Hash72b1e1f1b0de8fce53c23152ad1a0a20 9f7cd3e95c69f5642123414c51adc4cb164daaad f3aede0a09543dd1728ce072e43ae55f8d4f6c659ed145a7050610420dad4b33
GET /css2?family=Inter:wght@400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 May 2024 18:53:25 GMT
date: Sat, 04 May 2024 18:53:25 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| nickeldrive.autos/fonts/ProximaNova-Regular.woff | 172.67.192.47 | 200 OK | 52 kB |
URL GET HTTP/3nickeldrive.autos/fonts/ProximaNova-Regular.woff IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typeWeb Open Font Format, TrueType, length 52396, version 2.3 Hash2d2ae2556b24a45ff8d5ed86b07b5783 0822c310a60c575dc88a74a53df20b46c8c97bd4 81c6d1a13227777d009f275f5ecb80bd6c780d2843b9b18fe2809ff9822a2066
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /fonts/ProximaNova-Regular.woff HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/css/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:26 GMT
content-type: font/woff
content-length: 52396
etag: "2d2ae2556b24a45ff8d5ed86b07b5783"
last-modified: Wed, 13 Mar 2024 15:15:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: a5b32f2a-8227-4a33-a074-aa277dfeac3a
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=W6ab0hohlQdKEGUJ1%2BjPpsUYcvLW4%2B%2FpQ8dr8zShYvJUHoavqmsvxF3%2Braavk48%2BvT4Z2zuWjuzqrf%2FjneXFrJOAZ00fdcwOPBkp9EDPbv%2FpJpmbD94fnOMt0ezvEYDKRGn1Cw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab18bc9ab1c0e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/cdn-cgi/challenge-platform/h/g/jsd/r/87eab1811f2d568b | 172.67.192.47 | 200 OK | 0 B |
URL POST HTTP/3nickeldrive.autos/cdn-cgi/challenge-platform/h/g/jsd/r/87eab1811f2d568b IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /cdn-cgi/challenge-platform/h/g/jsd/r/87eab1811f2d568b HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12149
Origin: https://nickeldrive.autos
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Cookie: tr_uuid=7b5a7a6f-c9d5-4aec-b373-909df933f92a
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:26 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=qp9vPJy03ZT2pdVYn6rdX0E2unL0PtOTT2d2bhT9v.w-1714848806-1.0.1.1-4XoChp_vrGd_B8_sgHQN5qFXVrOhs7cuMPZUquxjuBIUobbfDbnDYRrDO2YYVWGoFGGv.oh_P.n56ffBPv.14g; path=/; expires=Sun, 04-May-25 18:53:26 GMT; domain=.nickeldrive.autos; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nwYCR4hDyAuSbr76zwTOIjVtgtC8eRPnf6FZ7JE6CS35DwIUqIDw3kAZLTjk41A1WIhELWLnsK2hM4WzFa3uU97y3Rfev%2Feiho21PJI4k6Y0D3R6CL2KeD1xo4Bes8okJcimNw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eab18f6e401c0e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/images/img_10-min.jpg | 172.67.192.47 | 200 OK | 154 kB |
URL GET HTTP/3nickeldrive.autos/images/img_10-min.jpg IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1800x815, components 3 Size154 kB (154081 bytes) Hashc0ab309c80ea6577471a0e53b43aab16 6aa891206f68ae10fa93a764011b56c35eb1cf5a 9003d7a164496276e4dd4af4d63666468d6dc2046cde87a3ee07bf43345b1a39
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/img_10-min.jpg HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/css/styles.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:26 GMT
content-type: image/jpeg
content-length: 154081
etag: "c0ab309c80ea6577471a0e53b43aab16"
last-modified: Wed, 13 Mar 2024 15:15:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: 8ad2596c-8e1c-4b8e-86cd-de00567839f9
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AAEK9wra3dCzGrQEqjt4aJvpJlS1hZSTkIu%2BJvIFtx5%2FABvqUw2O%2BtTZoPEiErHubDJYYIfHIKHjvrlg2iFzdA0NW%2Fg2TqpxS4cU9WRt21y4oNXe76AelD%2BbDAXvVn0xuZwYtQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab18c3a481c0e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/fonts/ProximaNova-Extrabld.woff | 172.67.192.47 | 200 OK | 52 kB |
URL GET HTTP/3nickeldrive.autos/fonts/ProximaNova-Extrabld.woff IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typeWeb Open Font Format, TrueType, length 51656, version 2.3 Hashccf59c77109aecc8deeeede82e3bac87 406955146539cacb38301dba25d7a90d47955ebc d5c147348b5f3b9c99e8faf8cd3deaf749dbfdd215ceda25c86e117ec71fca8d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /fonts/ProximaNova-Extrabld.woff HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/css/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:26 GMT
content-type: font/woff
content-length: 51656
etag: "ccf59c77109aecc8deeeede82e3bac87"
last-modified: Wed, 13 Mar 2024 15:15:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: cd28fa3c-f7d3-4810-822d-975f544326b7
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=l8aBb7spZK1fIF%2FtsQC6b1WZYii9sLaQM2nhX08vOisAlfx5jNkkg1a0nOZ636tLTO8m0ae7rxackiZ4vbD7wkXJcYacTkEEjENwETcn1gkXkH2svwdmH37BeTDmG9Mp%2BfOFng%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab18bc9b11c0e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/css/fonts.css | 172.67.192.47 | 200 OK | 52 kB |
URL GET HTTP/3nickeldrive.autos/css/fonts.css IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
Hashd0017da8e4a388a87e31e9513f585542 909c72a53545060808e8063fcada04e9e8aeec74 99c8b9b254d39a79e4c5b9361ec8cd7980d4b947639f57403b150b3784d4eb05
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/fonts.css HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:25 GMT
content-type: text/css; charset=utf-8
etag: W/"d0017da8e4a388a87e31e9513f585542"
last-modified: Wed, 13 Mar 2024 15:15:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: 022e5e2d-bd6c-4ad0-8660-4e4eea0254d3
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uxcUe9h6qdevjoDq3%2FYRirFyUWp85GNroebT9k62%2FFOZwxLr34NMP3gUni3c%2FK9WQoDMiRJudgtk9ZWRoScA%2BoK5OCs6VLo%2BKOfK7d8AtWbcrAuv7GiqSHWZDf7CHcnatRbgIg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab1865b211c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/images/img_1-min.jpg | 172.67.192.47 | 200 OK | 674 kB |
URL GET HTTP/3nickeldrive.autos/images/img_1-min.jpg IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=842, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=1920], progressive, precision 8, 1920x842, components 3 Size674 kB (674440 bytes) Hashd7760e299f66961e04f10e6866e8f1a0 a1ac914d65f932e3096cba1a1b08ba57fd8d4436 ae3c096563174ca8bfe6a1ac3ec84feddd75f5ea5cccac9b21ee4c6de1205030
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/img_1-min.jpg HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/css/index.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:26 GMT
content-type: image/jpeg
content-length: 674440
etag: "d7760e299f66961e04f10e6866e8f1a0"
last-modified: Wed, 13 Mar 2024 15:15:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: 0fa7ba6d-2eb1-4e90-a4c5-cd1cb41ef5e3
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jJs2J25LYS%2BUn4cjyAywn21RAH8FBxXgU%2F%2B%2F5igxnvzgY4UN9IFuQ55AdFIQERZFMPQyuvsnw5pGik1n%2BT1LtdE1ZvgzEFSmcvfF5ipjS5X3xlok9XAq3WB761BegZaNm6vYqw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab18bb99a1c0e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/geo.js | 172.67.192.47 | 200 OK | 5.0 kB |
IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typeASCII text, with very long lines (418) Hash02bf328f7c25d89c49afd70a25cfb271 c04bc0a6296537922d505c6aaeab1e2d577763de ebc9e2fe3c63c3094275d088a07a7a9d1c49aabb782590512503d044f90d17f9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /geo.js HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:24 GMT
content-type: application/javascript
country_code: NO
country_name: Norway
city_name: Oslo
region_iso: 03
region_name: Oslo County
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6JUqExZhNa%2BuvjwXVZVyAnnvwwGrEr1cYOBPpqqMX4UIFWuVdOEDZ1O1ApPfNvo%2Fweh5g1zn0sR%2BuqBOYz9MepTgaHMlvVjcG2Go0pc%2Bxkw6dGC2W3RH9UYs2DKQ21HDpDob8w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab1868b851c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/css/checkbox-svg.css | 172.67.192.47 | 200 OK | 2.7 kB |
URL GET HTTP/3nickeldrive.autos/css/checkbox-svg.css IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typeASCII text, with very long lines (2791), with no line terminators Hash88f05aba1536c995bea251ad8c42dc54 690a6cf409c46ddc65401d8a53d6de70891f72e7 a594018f718955873cf4927898b8bd5fa3e2122a7b754410551762cdbf28ada1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/checkbox-svg.css HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:25 GMT
content-type: text/css; charset=utf-8
etag: W/"476cd6927cb3e5a941e832bb768d4e2e"
last-modified: Wed, 13 Mar 2024 15:15:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: 5ee12ea9-ff2e-45b2-8a9b-66ca62f47ace
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1XsiHePMS4soahwU0YKIGnwowRgnb6CwablRV5qtQIELC1JspaEdrLQWrRM19C60WzCRhrpFc3TO%2FHgAqi0YqFLd3oJqBmCVGRXZtcnvY0HjmL14o%2FQ6di1A3ELq4XgRHyLDbA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab1866b251c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/images/icon_6.svg | 172.67.192.47 | 200 OK | 3.1 kB |
URL GET HTTP/3nickeldrive.autos/images/icon_6.svg IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typeSVG Scalable Vector Graphics image Hash6c24abd043464e404969e407b8e7c5d7 0a0247bc33c4946493b381ace9787f2d1d71a0f3 84d3fd48a2e58ac343cc61f2bec533b66663c4384e6b58e759abf2cc3778a652
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/icon_6.svg HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:25 GMT
content-type: image/svg+xml
etag: W/"1653cdc2c985818d1a738235b4efe197"
last-modified: Wed, 13 Mar 2024 15:15:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: 41c18c44-6490-4680-a9d7-b97b12119e0e
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mQjBSgP2YdSVXDqRK3ABYvsAvM70K5Yypkl1XsfFUsYe3RUCmAwzRl2EJHbSb4THh8OKVrgmMSO%2FkozXlKfIKku5eiuaXv04pCUHpt%2BEQOFYIPYxRsinavtZ1nVwrQk2dvmycg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab1868b6a1c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/css/styles.css | 172.67.192.47 | 200 OK | 9.9 kB |
URL GET HTTP/3nickeldrive.autos/css/styles.css IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typeASCII text, with very long lines (10498), with no line terminators Hash9b7e6492652595464a70f1c16b67193c 158fed51a9cc1dd0c0dfa45b6d8b9fcac4dabb47 1d515258d2ffab5b927c639ae98e464be76f6cef11f3a29f0b7b54d64ce3df77
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/styles.css HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:25 GMT
content-type: text/css; charset=utf-8
etag: W/"7b765fd2b06389803a0411540bef8c59"
last-modified: Wed, 13 Mar 2024 15:15:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: f09e0f6a-88c4-4d1b-8b58-e9b5eb086fc3
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Gj%2Fv9GqiOhcYrzydyTbbdhxQNicdQ4kMc2q13HiEHELoFMmTdeT3dLlMuZmyGaiorPA0OVBaL%2F0z%2BL%2F85%2B%2Fz9op4MBpqoTIipKOj%2Bv5nKAgJwK52WCOZCoctgdtacmSFMPg47w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab1868b6c1c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/js/ion.rangeSlider.min.js | 172.67.192.47 | 200 OK | 64 kB |
URL GET HTTP/3nickeldrive.autos/js/ion.rangeSlider.min.js IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/ion.rangeSlider.min.js HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:25 GMT
content-type: application/javascript; charset=utf-8
etag: W/"ebe39da7a5eaa226947bec1e483f73b9"
last-modified: Wed, 13 Mar 2024 15:15:27 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: b2783f68-6a6d-4903-a9b7-a7081bd70722
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Wvidyb36jgbrQuSSErfs%2FHai2FJQ6w1i%2BKwzeW8bpriJBihUH9dkYixeKZ7F030MCks%2FBcvDuRIMNONNxah0YcJtbR8xE4FK6CMv6bpU84VYKZmRNDHYFv9A6wZ%2BL8VeuQz3Gg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab1868b801c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/js/script.js | 172.67.192.47 | 200 OK | 1.4 kB |
URL GET HTTP/3nickeldrive.autos/js/script.js IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typeASCII text, with very long lines (1546), with no line terminators Hashf526b8a291b0937be206ba918f3cd705 fb2d0585bcb605b30113e5e9c669c0539e3ba394 d4112c381567b6f0d0bc78f33ad2dbc35cba3c8200b2a8630d27d4ed91ce64eb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/script.js HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:25 GMT
content-type: application/javascript; charset=utf-8
etag: W/"582e3c82d8b9348a42a21befce8b207a"
last-modified: Wed, 13 Mar 2024 15:15:27 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: 8950e6f2-59ff-45b6-b327-07cce6fcd516
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KlWH684%2FWPR5e2p%2Fb7Gt9b3QaDSPFaAWMa52rNnwJ%2FjWs1umkNQBC5T%2BLYDZbVTAdvuvYPLbRk1HlXtAZGa5tSPtQlqiFO3ofGyO7GMcrx4g0reBVhSpZ2fHuBrcznIvt4nizA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab1868b831c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/regform/img/flags.f73aa829.png | 172.67.192.47 | 200 OK | 71 kB |
URL GET HTTP/3nickeldrive.autos/regform/img/flags.f73aa829.png IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typePNG image data, 5652 x 15, 8-bit/color RGBA, non-interlaced Hash416250f60d785a2e02f17e054d2e4e44 21572c9751e5a3dc20395befa0fcb349c32c4811 0a012cf808a24573168308916092d2d4bd3f2b4af8e16b59167013cc77acee55
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /regform/img/flags.f73aa829.png HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Cookie: tr_uuid=7b5a7a6f-c9d5-4aec-b373-909df933f92a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:26 GMT
content-type: image/png
content-length: 70857
last-modified: Mon, 18 Mar 2024 14:35:48 GMT
etag: "65f85144-114c9"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UhYuE2njmfEUhV4JhJLiEwcguXQwknccs6yoRGzgaxoULylNWwk%2FpQnpuJ%2Fx4KJrPPxCilRZ%2BLkjLcOUJSGLa6FTf0YxjgYKYtRx3f%2B%2B9YXz83pypEwM6KImuYHfBLioxpL0YQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab18dcc5b1c0e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/css/index.css | 172.67.192.47 | 200 OK | 4.8 kB |
URL GET HTTP/3nickeldrive.autos/css/index.css IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typeASCII text, with very long lines (5130), with no line terminators Hashe97fe1425df3e6fdf54e49e467960f62 aa380856910eb37b94d1894221f7cbae4c15231e f0891ac45700e2082306e86bfd53fa097788809ccf9e7c933372162bec48c3b9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/index.css HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:25 GMT
content-type: text/css; charset=utf-8
etag: W/"49323ad1e5fe1a70215f9e3755073c6f"
last-modified: Wed, 13 Mar 2024 15:15:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: 4430b2f4-8fca-4cc0-8503-443bad7e2240
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RLZ88mRTowSfB676BvYtc2b8X1KEP78%2BBlLthCE1R8lfYf18OtAtOmyObU7sBD5hmkzKzU9nQz0KGusBInViyKDwURGCz7hs7cAeOAqzC5Tcikadv%2BAElgK7tFt3KkeVSSWoFQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab1865b221c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/images/icon_1.svg | 172.67.192.47 | 200 OK | 610 B |
URL GET HTTP/3nickeldrive.autos/images/icon_1.svg IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typeSVG Scalable Vector Graphics image Hash7e2c53ab544e54d35f3912d143738de9 f9d0e622807f01dceaf678ec5e708abb3ed3e701 e5b8c46877f60b1254892785af8a7adf52b96ae2aa3510cff246ce64d6e7dd78
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/icon_1.svg HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:25 GMT
content-type: image/svg+xml
etag: W/"b749307ff511d5bfbeffda8cba86db00"
last-modified: Wed, 13 Mar 2024 15:15:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: 9900d716-964a-440e-a57a-7392c50de3ac
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KpMkCrt541sLRZ9ZomVvlrA6vlClKgyiglXSYDUCp8zW0i%2Fdfk5w2UFX5r4yvVI9H0Iqu3kg0c%2FzGODd0dca8Kl6nCbQsxQBljcC1xxFhpA71MkSctU%2FldP8kxDZ3QqiKJYGCw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab1866b411c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/js/device.min.js | 172.67.192.47 | 200 OK | 2.6 kB |
URL GET HTTP/3nickeldrive.autos/js/device.min.js IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typeJavaScript source, ASCII text, with very long lines (2688), with no line terminators Hashb99ae096a7ca18cf25779b46633302d1 a98bac1fb5869f6ad563f34745ae8d113d51b8cb 9aebe89f9facc5765d7280e7110ca6d296f661791b78c691ea502a7d13fc3d91
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/device.min.js HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:25 GMT
content-type: application/javascript; charset=utf-8
etag: W/"54ede9769a07158288324cc456c40bd5"
last-modified: Wed, 13 Mar 2024 15:15:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: e2b33a67-71a0-4b5e-a9f6-8007012fca44
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nQ20Gm6o3KuZQP5P09F5M6IjnvPePC4nApH4j0g1t9jlDufTJb7Z5gljDYAP1eYFQ6wTXiObjDMmdJ1NOWXP1WBfA6d4S0N7Kg%2BbgqlZ40BFbF3DEHLBeBv4UXpFbgffIL%2B09w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab1868b821c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css?family=Roboto:100,300,400,500,700,900 | 142.250.74.106 | 200 OK | 13 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Roboto:100,300,400,500,700,900 IP142.250.74.106:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
Hasha2ba974c1b5419d50b52ea2dae73ed8b a6987c3dc65315875c6a5a4fc4913619d32fef67 4680f0242ae53304a6bf932234579ecf1100b3473bd822857943a3e5a2e01f8d
GET /css?family=Roboto:100,300,400,500,700,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 May 2024 18:53:24 GMT
date: Sat, 04 May 2024 18:53:24 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| | 172.67.192.47 | 200 OK | 30 kB |
URL User Request GET HTTP/2IP172.67.192.47:443
CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 18:53:24 GMT
content-type: text/html; charset=utf-8
last-modified: Wed, 13 Mar 2024 15:15:27 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: d3faa3e2-dd03-4881-8e01-4db0a6278df0
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NbSdc4AHglSHaK4Z%2FiPhmJi1Whg7D59QX8fOm32piwk5LtWvSmW%2B5LOgAjXRDam%2FQ5r3f1Dj2ssyv5El5BqmH3Vxvmahj3qGD2AVG5v23u70BMIKFqUG44WPjeZ1wQwUoJtS4w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab1811f2d568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| nickeldrive.autos/css/step.css | 172.67.192.47 | 200 OK | 5.0 kB |
URL GET HTTP/3nickeldrive.autos/css/step.css IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typeASCII text, with very long lines (5285), with no line terminators Hash77ad62206d4b8fc0ebced786d32f07f3 1659fc88a4f7144c0e102d0311e3c3e3cbb0c32d 411b32ad37ed557cf46512fed0571ecca33a5bb178b96a2066f3aeadbaa78cdf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/step.css HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:25 GMT
content-type: text/css; charset=utf-8
etag: W/"e5fa4ee0f38f3555ad62f43ee494d6f7"
last-modified: Wed, 13 Mar 2024 15:15:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: e2472ad9-2c40-4430-8b3a-9343fd269e41
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qm76vz5xggvXoLqSgJ0ohvpp7vKo1CDfcyar0U4L%2BDpi3gWfzFfc7AcWG61WRLeu%2B703OWanDpofHbp2pp3q1f%2BnbdGRLA5j46OLZyOLH9AakzGgaxJnjRuwtTJ1lwBnjECZzQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab1868b731c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/images/fav.ico | 172.67.192.47 | 200 OK | 93 kB |
URL GET HTTP/3nickeldrive.autos/images/fav.ico IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typeMS Windows icon resource - 1 icon, -106x-106, 32 bits/pixel Hashc2b74bfaf08b32801f8d3ed158f66f5e ce200e5116a50bb239bd23e0f7203fc205327100 ae02621dc87db43eb7fc2a6d67ce3fc12d848b4291ce62e9a06ebc806ea57ad3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/fav.ico HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Cookie: tr_uuid=7b5a7a6f-c9d5-4aec-b373-909df933f92a; cf_clearance=qp9vPJy03ZT2pdVYn6rdX0E2unL0PtOTT2d2bhT9v.w-1714848806-1.0.1.1-4XoChp_vrGd_B8_sgHQN5qFXVrOhs7cuMPZUquxjuBIUobbfDbnDYRrDO2YYVWGoFGGv.oh_P.n56ffBPv.14g
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:27 GMT
content-type: image/vnd.microsoft.icon
etag: W/"c2b74bfaf08b32801f8d3ed158f66f5e"
last-modified: Wed, 13 Mar 2024 15:15:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: d6bfd482-5865-483b-9b7f-fd7de43d37f5
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VOCNjXtyi5tzXkXMHrOtfz5K0rj2z9WMqdSbzQDGRkYrV3999AiaDTeb%2FyGddRnK%2BGLTE8kVW3RYXXzYBysklVPCWYw%2B%2BaxPOr8odxFeJOd%2Fte3mlZk%2BJI2i28bSDSh692SuSw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab191783e1c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/images/icon_5.svg | 172.67.192.47 | 200 OK | 1.6 kB |
URL GET HTTP/3nickeldrive.autos/images/icon_5.svg IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typeSVG Scalable Vector Graphics image Hash6ddec6676f1dcd3ba8b0366cda003ecd 0a3d8dbfacf5aaaa21f9c8a18cce63e0335be069 b2d539375a55bacca5af6da186badf53899ed52b0286bff1f32085f5dc59aec9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/icon_5.svg HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:25 GMT
content-type: image/svg+xml
etag: W/"95284e1175d3e25a472184994cd9f924"
last-modified: Wed, 13 Mar 2024 15:15:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: ce6248d8-7af4-422d-869d-337678b880c5
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CMEwWi%2FA4ZAzW5Mku0BnhAj5D63XQSq%2FtZCGTCAiM5pEnsk62qX68WKUpKsJE8AUr4Md65DStmPV1QT9QMBSRMzAb4oL6NIhkHGU4iudgsSnGXKVv1v38zoA0M5tqVhD%2Bh32Tg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab1867b521c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/css/form.css | 172.67.192.47 | 200 OK | 5.7 kB |
URL GET HTTP/3nickeldrive.autos/css/form.css IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typeASCII text, with very long lines (5988), with no line terminators Hash349b291bdad8f98181311d39eaebb85c 99a17127add8d18437ec58f34378b005024cfc26 505800f577e01a7d806c09c33ee0fcf65fb02b6e97d4776c0b56950b3b360436
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/form.css HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:25 GMT
content-type: text/css; charset=utf-8
etag: W/"1db02ecd3bb76ede6aca3d1b2a379cfd"
last-modified: Wed, 13 Mar 2024 15:15:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: 2e9bc2a7-ea35-495e-9ce5-ce2fd2a44e47
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jQniCdWWFP83iASR2LbeNhwre%2F%2FgVsg%2BQTlnZFF6s2yj3aV9mEG2dMrDk3E38fnPpqO8jlW%2B7mnoMvez1SFouYuq89NNMaDVF8a5atQeAYZ29iqGc7G7sohi%2FARovthFw%2BO0HA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab1865b241c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/css/aos.css | 172.67.192.47 | 200 OK | 26 kB |
URL GET HTTP/3nickeldrive.autos/css/aos.css IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typeASCII text, with very long lines (26053), with no line terminators Hash847da8fca8060ca1a70f976aab1210b9 0557d37454b67f42f2cb101e57e5070fb1193570 1aa8845fd06e475aefe733d4e55b36a92fcd487975049c8172341827ac9cc03e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/aos.css HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:25 GMT
content-type: text/css; charset=utf-8
etag: W/"847da8fca8060ca1a70f976aab1210b9"
last-modified: Wed, 13 Mar 2024 15:15:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: a5511e72-fe30-4b6f-b35e-a49d1154796b
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VUEfQ2%2F3S%2FNmubmxeLIQ8EWa2moOl4VW4HWr4PL%2Btr1J8B0gge%2FhwXcmF%2BRhGfhh871i0hY%2FaMz9IHXOxGIFQT4oL%2BNQh4edmkeHJtdYNexwj3BsvGBFv95vrvusY4sMLICeDA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab1866b271c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/css/ion.rangeSlider.min.css | 172.67.192.47 | 200 OK | 11 kB |
URL GET HTTP/3nickeldrive.autos/css/ion.rangeSlider.min.css IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/ion.rangeSlider.min.css HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:25 GMT
content-type: text/css; charset=utf-8
etag: W/"2b4160a5466fe5914370b6795e7a8b77"
last-modified: Wed, 13 Mar 2024 15:15:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: 719187a4-d591-4189-9f93-f13a9007ba2e
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CDjqYKDDQectBXMExEJWcsy0nIzzEsc0ka9Q7QVzo5O2krqXqKZ2hwI3CjoXfQTl4O9pDPi%2FcFtGFxyE9oCPcAsqoZsoL39gHaONlzjWIxU0GHXVrhxfwPqGyQxq9zQjtnI6Xw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab1868b711c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js | 172.67.192.47 | 200 OK | 7.8 kB |
URL GET HTTP/3nickeldrive.autos/cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typeJavaScript source, ASCII text, with very long lines (7817), with no line terminators Hash173e7745407c93ccb4fe7ae74bc7d7dc 1ea8a669c65beeb8a85d42711b6b48a76c8eea05 a6426398b59f8234351e6d0f8c00a1fbffce90ef8418ece7a9ba1861093781e8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: tr_uuid=7b5a7a6f-c9d5-4aec-b373-909df933f92a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:26 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, public
vary: accept-encoding
x-content-type-options: nosniff
content-encoding: br
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ABFrRZestxbYrDBco%2Fg7gnJDTYIWz5Bk5ccFdFlWq0cWmL%2BfRnst2TgKA%2F5iJ8%2FNwYhLkanhV%2FZ6zwDGm8Bh%2FiEo53yDm7iwccvcQPdk1COiMc%2Fz%2BCDWbxmkw7wGEujSh%2FOkFA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab18e5d2b1c0e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/images/icon_4.svg | 172.67.192.47 | 200 OK | 2.0 kB |
URL GET HTTP/3nickeldrive.autos/images/icon_4.svg IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typeSVG Scalable Vector Graphics image Hash791d584f57df48e214405d59b9b525dc 4717cc46f135ec95eee71063985fb1f07c716afb e3cd36842a31b175b8230a5bcee9b5b9c9af5727b6c61f994003aa21845fb560
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/icon_4.svg HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:25 GMT
content-type: image/svg+xml
etag: W/"b556ac61d6fb59924f4095ccc0403440"
last-modified: Wed, 13 Mar 2024 15:15:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: 21fb6c2f-0c12-4d44-bc3d-3884b9cc9f77
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WdOiG2RIThcmP%2BbVbWGUP0J9hdo90MJWXJR3qzKYbG8iL8AniH0wYzMogRoDaPXHixu5R4JyWhK9adjDfN9gpjAFGZLsC1hcxqjkZniuM8VDMdh4%2BC2EbPvBhF4LasbDXPyoWA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab1867b511c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/js/jquery-3.6.0.min.js | 172.67.192.47 | 200 OK | 90 kB |
URL GET HTTP/3nickeldrive.autos/js/jquery-3.6.0.min.js IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/jquery-3.6.0.min.js HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:25 GMT
content-type: application/javascript; charset=utf-8
etag: W/"8fb8fee4fcc3cc86ff6c724154c49c42"
last-modified: Wed, 13 Mar 2024 15:15:27 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: fda80d4a-00cc-4224-85ae-3a6f5dded04a
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=z2UtSuLPfzlB5yeAVbz1V0ED7DEY0qS%2FpxtKwtIjb2egS4CWttMJCZiMCPF3vyKTklIKZpwC3uNVoLYlRdY0br4rIeoWt3PNow4n4wQ4mar2Ixvq6HZngOUnrfqCCpCUpmW%2FgA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab1866b3a1c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/js/aos.js | 172.67.192.47 | 200 OK | 24 kB |
URL GET HTTP/3nickeldrive.autos/js/aos.js IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typeJavaScript source, ASCII text, with very long lines (1620) Hashbfa98e85f3863abb64b15723535242c4 08e0a892021aeffc013d8b52ed242a99e29e7641 c3e89c0b34d1e469a60909f00ee05f694e51bbed7f2e83167f3b1b63803773c0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/aos.js HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:25 GMT
content-type: application/javascript; charset=utf-8
etag: W/"bfa98e85f3863abb64b15723535242c4"
last-modified: Wed, 13 Mar 2024 15:15:27 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: 6a7c03e7-7d1a-40b3-8c9a-1b1e8988900c
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MYg1LYDKit2j4kybwjOUXTNRrEWxVljpiJuifcAsuPHLghyGtuyHrOOQ6x0u1GR2Fbj5Nkd6eBhPOFeEMxPRy5wwdnmnIY65I8t4U2YocbcEECYcYAkS%2BJA4C1Dj%2Bp5s1Wlw9Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab1866b401c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/css/modal.css | 172.67.192.47 | 200 OK | 4.3 kB |
URL GET HTTP/3nickeldrive.autos/css/modal.css IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typeASCII text, with very long lines (4508), with no line terminators Hashfef04ffdc0c2314ad0cb853d568d7d1f c02bb49977fcb9d58f9389b0ab98a9ba92db0d0e 6f02899e77b2be8e74985077d377de4f5a4b2321fbcc0353079e71111a012c6e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/modal.css HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:25 GMT
content-type: text/css; charset=utf-8
etag: W/"75e16cae2ae07d5af3a84da9b71a1f6e"
last-modified: Wed, 13 Mar 2024 15:15:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: 951073ed-4613-49dd-a074-31983155660b
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xhYG1RfcfHX5rM0kabg1Zq8GEeaJ58EwKnTSEaMIQld3ZYntMeclzbytSTrVAC37%2FxnWels0b8AbH3hEtrbLTbFwyu7h4jx%2Fl4QNPPYPztunBqrhP8gIlvcxykxQGPGHUQC9fg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab1868b7a1c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/images/icon_3.svg | 172.67.192.47 | 200 OK | 7.3 kB |
URL GET HTTP/3nickeldrive.autos/images/icon_3.svg IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typeSVG Scalable Vector Graphics image Hash7e5f038e4f52474861714a5cc41b2263 3074a33d7eee86ad8e26b9a808548641d0eff7c4 80cbba16b5e62747a70de445dfb4c740afb7a757bbf905e88b3ca43d2974c1d5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/icon_3.svg HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:25 GMT
content-type: image/svg+xml
etag: W/"ea415b8bc39b657b9c27cda578d879dc"
last-modified: Wed, 13 Mar 2024 15:15:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: b4a33b43-9901-4752-8482-95f7aeeb6cbd
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kjIEiFI4dadvDWF2A5GiG9OGPGu35%2F%2BXa7WpyF1XN7Mr0d5JSRvL87C%2F7wbPeFMYOD9onsEjxCAygm6ouOn%2Ffi%2BtRvCmAZq%2BZal9xC4f3dBeqNRgMIYDvTswwjcuJ3%2FJMSH%2BpQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab1867b501c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nickeldrive.autos/fonts/ProximaNova-Semibold.woff | 172.67.192.47 | 200 OK | 52 kB |
URL GET HTTP/3nickeldrive.autos/fonts/ProximaNova-Semibold.woff IP172.67.192.47:443
Requested byhttps://nickeldrive.autos/ CertificateIssuerLet's Encrypt Subjectnickeldrive.autos Fingerprint52:3D:C9:00:DF:30:45:D3:56:07:23:02:CB:F6:9B:36:CF:F3:27:89 ValiditySat, 04 May 2024 16:06:12 GMT - Fri, 02 Aug 2024 16:06:11 GMT
File typeWeb Open Font Format, TrueType, length 51896, version 2.3 Hash8feb512e78c18175c552af2be6ae2e02 f7d4773719a44cfd36674372bc8990b29ef4fd40 e3c22516771aea640173ca7a1a69e7cdb8039cfdc40d1885734be99ac5efa195
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /fonts/ProximaNova-Semibold.woff HTTP/1.1
Host: nickeldrive.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://nickeldrive.autos/css/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:53:26 GMT
content-type: font/woff
content-length: 51896
etag: "8feb512e78c18175c552af2be6ae2e02"
last-modified: Wed, 13 Mar 2024 15:15:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: c70418af-7e07-4fdc-ba14-1625aa3a2232
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jcZbBIUZIS5Q9Wei4At9p1bdpuGjkIG6vpZgawa4DeQuVy3JlZdBtCOHgltBRd6bPoilOxdVmoFIPCdJEI00knQHHZC5z6RZZ5ISk%2FvltcarlWT7ouoN2Fu5ivf5JAv3FOeLtQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-form-version-id: c116d354-f720-4eb9-854e-53d67fa24d12
server: cloudflare
cf-ray: 87eab18c3a4b1c0e-OSL
alt-svc: h3=":443"; ma=86400
|
|