Report - ngkf.page.link/dr6o

Report Overview

Submitted URL
ngkf.page.link/dr6o
IP
172.217.21.161
ASN
#15169 GOOGLE
Submitted
2024-05-08 20:06:45
Access
public
Website Title
Security Check
Final URL
saledelivery.zone/?cp=fmlcqhob
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ngkf.page.link	unknown	unknown	No data	No data	473 B	1.5 kB	172.217.21.161
saledelivery.zone	unknown	2022-03-07	2022-03-17	2024-03-16	5.8 kB	142 kB	104.168.101.21

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (4)

	URL	Size	First Seen	Last Seen
	saledelivery.zone/themes/common/js/jquery-3.3.1.min.js?v=1714737736	87 kB	2023-03-07	2024-05-20
Pretty URL saledelivery.zone/themes/common/js/jquery-3.3.1.min.js?v=1714737736 IP 104.168.101.21 ASN #36352 AS-COLOCROSSING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-05-20 00:04:12 Times Seen114990 Hash a09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef Loading...

	saledelivery.zone/js/omgrd.min.js?v=1714737732	14 kB	2023-06-17	2024-05-18
Pretty URL saledelivery.zone/js/omgrd.min.js?v=1714737732 IP 104.168.101.21 ASN #36352 AS-COLOCROSSING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-17 22:38:20 Last Seen2024-05-18 23:26:46 Times Seen92 Hash f8642c37023dc6b980cadeca382613d9 ece8cd68d208d5cc078ae06ce390652d2621ff84 f5b3e0b1781f3fbbec437303884a58af2cefd4c6a66eaf0eb66f61a57be1d7be Loading...

	saledelivery.zone/js/check.min.js?v=1714737732	15 kB	2023-09-16	2024-05-18
Pretty URL saledelivery.zone/js/check.min.js?v=1714737732 IP 104.168.101.21 ASN #36352 AS-COLOCROSSING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-16 06:20:58 Last Seen2024-05-18 23:26:46 Times Seen88 Hash dbdb97c2f91c01502910b22e27fc0b24 5f51141d704b71675da200e9593c9b004700cee3 41a7a2af77c7c8a201bcf46c4a09f4b0eb69add9c988c7cb34e9c3ad9aec0a2d Loading...

	saledelivery.zone/?cp=fmlcqhob	0 B	2023-03-07	2024-05-20
Pretty URL saledelivery.zone/?cp=fmlcqhob IP 104.168.101.21 ASN #36352 AS-COLOCROSSING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-20 00:04:12 Times Seen37847007 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (12)

	URL	IP	Response	Size
	ngkf.page.link/dr6o	172.217.21.161	302 Found	0 B
URL User Request GET HTTP/2 ngkf.page.link/dr6o IP 172.217.21.161:443 ASN #15169 GOOGLE Certificate IssuerGoogle Trust Services LLC Subject.page.link FingerprintE4:98:CD:FE:72:79:BF:CC:8E:38:30:C9:63:C9:C0:DB:FE:CF:EA:79 ValidityTue, 16 Apr 2024 04:32:14 GMT - Tue, 09 Jul 2024 04:32:13 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /dr6o HTTP/1.1 Host: ngkf.page.link User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 302 Found content-type: application/binary vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site cache-control: no-cache, no-store, max-age=0, must-revalidate pragma: no-cache expires: Mon, 01 Jan 1990 00:00:00 GMT date: Wed, 08 May 2024 20:06:20 GMT location: https://saledelivery.zone/?cp=fmlcqhob permissions-policy: ch-ua-arch=, ch-ua-bitness=, ch-ua-full-version=, ch-ua-full-version-list=, ch-ua-model=, ch-ua-wow64=, ch-ua-form-factor=, ch-ua-platform=, ch-ua-platform-version= accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version content-security-policy: script-src 'nonce-7-Fx8naVEwedlIC1-_NfOQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DurableDeepLinkUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://www.googleapis.com/appsmarket/v2/installedApps/;report-uri /_/DurableDeepLinkUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/DurableDeepLinkUi/cspreport cross-origin-resource-policy: same-site cross-origin-opener-policy: unsafe-none server: ESF content-length: 0 x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	saledelivery.zone/?cp=fmlcqhob	104.168.101.21	200 OK	1.4 kB
URL User Request GET HTTP/1.1 saledelivery.zone/?cp=fmlcqhob IP 104.168.101.21:443 ASN #36352 AS-COLOCROSSING Certificate IssuerLet's Encrypt Subjectsaledelivery.zone Fingerprint40:30:CC:AB:96:06:27:EC:B9:4A:52:BD:71:A9:DD:BB:95:36:F3:1F ValidityFri, 22 Mar 2024 15:06:34 GMT - Thu, 20 Jun 2024 15:06:33 GMT File type HTML document, Unicode text, UTF-8 text Size 1.4 kB (1375 bytes) Hash 9e84a86fc19e4a834cac84a39d0ff461 f7a5a96f1c988d3e0c6c38addb15e3ed4541e842 cffd3fbdc1ce52abf3dfc65fb2c9caa09b8625f7a7f4583835112bdbeb5e8cde HTTP Headers `GET /?cp=fmlcqhob HTTP/1.1 Host: saledelivery.zone User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: nginx Date: Wed, 08 May 2024 20:06:21 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Set-Cookie: CGISID=b4d7rmmkrhseeeheud7g3p2q07m5ujml; expires=Thu, 09-May-2024 20:06:21 GMT; Max-Age=86400; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Content-Encoding: gzip Strict-Transport-Security: max-age=31536000 Content-Security-Policy: img-src https: data:; upgrade-insecure-requests

	saledelivery.zone/themes/common/css/checking.min.css?v=1714737736	104.168.101.21	200 OK	1.7 kB
URL GET HTTP/1.1 saledelivery.zone/themes/common/css/checking.min.css?v=1714737736 IP 104.168.101.21:443 ASN #36352 AS-COLOCROSSING Requested by https://saledelivery.zone/?cp=fmlcqhob Certificate IssuerLet's Encrypt Subjectsaledelivery.zone Fingerprint40:30:CC:AB:96:06:27:EC:B9:4A:52:BD:71:A9:DD:BB:95:36:F3:1F ValidityFri, 22 Mar 2024 15:06:34 GMT - Thu, 20 Jun 2024 15:06:33 GMT File type ASCII text, with very long lines (7054), with no line terminators Size 1.7 kB (1696 bytes) Hash 6a06f768867f614fcf089b09e42229a5 024427deeae319540dd967a5c129385722295557 1bdfa74184cd54a76df6c1b09a6ef448f751cd7b3981091a7ccbe048bdd6b1c5 HTTP Headers GET /themes/common/css/checking.min.css?v=1714737736 HTTP/1.1 Host: saledelivery.zone User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saledelivery.zone/?cp=fmlcqhob Cookie: CGISID=b4d7rmmkrhseeeheud7g3p2q07m5ujml Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Server: nginx Date: Wed, 08 May 2024 20:06:21 GMT Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Fri, 03 May 2024 12:02:16 GMT ETag: W/"6634d248-1b8e" Expires: Thu, 08 May 2025 12:22:28 GMT Cache-Control: max-age=31536000, public, public Content-Encoding: gzip Strict-Transport-Security: max-age=31536000 Content-Security-Policy: img-src https: data:; upgrade-insecure-requests`

	saledelivery.zone/js/omgrd.min.js?v=1714737732	104.168.101.21	200 OK	4.2 kB
URL GET HTTP/1.1 saledelivery.zone/js/omgrd.min.js?v=1714737732 IP 104.168.101.21:443 ASN #36352 AS-COLOCROSSING Requested by https://saledelivery.zone/?cp=fmlcqhob Certificate IssuerLet's Encrypt Subjectsaledelivery.zone Fingerprint40:30:CC:AB:96:06:27:EC:B9:4A:52:BD:71:A9:DD:BB:95:36:F3:1F ValidityFri, 22 Mar 2024 15:06:34 GMT - Thu, 20 Jun 2024 15:06:33 GMT File type JavaScript source, Unicode text, UTF-8 text, with very long lines (14528), with no line terminators Size 4.2 kB (4168 bytes) Hash f8642c37023dc6b980cadeca382613d9 ece8cd68d208d5cc078ae06ce390652d2621ff84 f5b3e0b1781f3fbbec437303884a58af2cefd4c6a66eaf0eb66f61a57be1d7be HTTP Headers `GET /js/omgrd.min.js?v=1714737732 HTTP/1.1 Host: saledelivery.zone User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saledelivery.zone/?cp=fmlcqhob Cookie: CGISID=b4d7rmmkrhseeeheud7g3p2q07m5ujml Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Wed, 08 May 2024 20:06:22 GMT Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Fri, 03 May 2024 12:02:12 GMT ETag: W/"6634d244-38c2" Expires: Thu, 08 May 2025 12:12:08 GMT Cache-Control: max-age=31536000, public, public Content-Encoding: gzip Strict-Transport-Security: max-age=31536000 Content-Security-Policy: img-src https: data:; upgrade-insecure-requests`

	saledelivery.zone/themes/common/css/fonts.min.css?v=1714737736	104.168.101.21	200 OK	183 B
URL GET HTTP/1.1 saledelivery.zone/themes/common/css/fonts.min.css?v=1714737736 IP 104.168.101.21:443 ASN #36352 AS-COLOCROSSING Requested by https://saledelivery.zone/?cp=fmlcqhob Certificate IssuerLet's Encrypt Subjectsaledelivery.zone Fingerprint40:30:CC:AB:96:06:27:EC:B9:4A:52:BD:71:A9:DD:BB:95:36:F3:1F ValidityFri, 22 Mar 2024 15:06:34 GMT - Thu, 20 Jun 2024 15:06:33 GMT File type ASCII text, with very long lines (472), with no line terminators Size 183 B (183 bytes) Hash c75229c404d812bed7e45178cb5de880 60d577f786a85ae2da0ce10fb5d2ad44f891d350 03b7968aebb847843841403a6c90ca504fd44d6aa876724710f632e94e91eb03 HTTP Headers `GET /themes/common/css/fonts.min.css?v=1714737736 HTTP/1.1 Host: saledelivery.zone User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saledelivery.zone/?cp=fmlcqhob Cookie: CGISID=b4d7rmmkrhseeeheud7g3p2q07m5ujml Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Wed, 08 May 2024 20:06:22 GMT Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Fri, 03 May 2024 12:02:16 GMT ETag: W/"6634d248-1d8" Expires: Thu, 08 May 2025 12:12:07 GMT Cache-Control: max-age=31536000, public, public Content-Encoding: gzip Strict-Transport-Security: max-age=31536000 Content-Security-Policy: img-src https: data:; upgrade-insecure-requests`

	saledelivery.zone/js/check.min.js?v=1714737732	104.168.101.21	200 OK	4.5 kB
URL GET HTTP/1.1 saledelivery.zone/js/check.min.js?v=1714737732 IP 104.168.101.21:443 ASN #36352 AS-COLOCROSSING Requested by https://saledelivery.zone/?cp=fmlcqhob Certificate IssuerLet's Encrypt Subjectsaledelivery.zone Fingerprint40:30:CC:AB:96:06:27:EC:B9:4A:52:BD:71:A9:DD:BB:95:36:F3:1F ValidityFri, 22 Mar 2024 15:06:34 GMT - Thu, 20 Jun 2024 15:06:33 GMT File type JavaScript source, ASCII text, with very long lines (15085), with no line terminators Size 4.5 kB (4538 bytes) Hash dbdb97c2f91c01502910b22e27fc0b24 5f51141d704b71675da200e9593c9b004700cee3 41a7a2af77c7c8a201bcf46c4a09f4b0eb69add9c988c7cb34e9c3ad9aec0a2d HTTP Headers `GET /js/check.min.js?v=1714737732 HTTP/1.1 Host: saledelivery.zone User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saledelivery.zone/?cp=fmlcqhob Cookie: CGISID=b4d7rmmkrhseeeheud7g3p2q07m5ujml Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Wed, 08 May 2024 20:06:22 GMT Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Fri, 03 May 2024 12:02:12 GMT ETag: W/"6634d244-3aed" Expires: Thu, 08 May 2025 12:12:08 GMT Cache-Control: max-age=31536000, public, public Content-Encoding: gzip Strict-Transport-Security: max-age=31536000 Content-Security-Policy: img-src https: data:; upgrade-insecure-requests`

	saledelivery.zone/themes/common/js/jquery-3.3.1.min.js?v=1714737736	104.168.101.21	200 OK	35 kB
URL GET HTTP/1.1 saledelivery.zone/themes/common/js/jquery-3.3.1.min.js?v=1714737736 IP 104.168.101.21:443 ASN #36352 AS-COLOCROSSING Requested by https://saledelivery.zone/?cp=fmlcqhob Certificate IssuerLet's Encrypt Subjectsaledelivery.zone Fingerprint40:30:CC:AB:96:06:27:EC:B9:4A:52:BD:71:A9:DD:BB:95:36:F3:1F ValidityFri, 22 Mar 2024 15:06:34 GMT - Thu, 20 Jun 2024 15:06:33 GMT File type JavaScript source, ASCII text, with very long lines (65451) Size 35 kB (35358 bytes) Hash a09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef HTTP Headers `GET /themes/common/js/jquery-3.3.1.min.js?v=1714737736 HTTP/1.1 Host: saledelivery.zone User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saledelivery.zone/?cp=fmlcqhob Cookie: CGISID=b4d7rmmkrhseeeheud7g3p2q07m5ujml Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Wed, 08 May 2024 20:06:22 GMT Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Fri, 03 May 2024 12:02:16 GMT ETag: W/"6634d248-1538f" Expires: Thu, 08 May 2025 12:12:08 GMT Cache-Control: max-age=31536000, public, public Content-Encoding: gzip Strict-Transport-Security: max-age=31536000 Content-Security-Policy: img-src https: data:; upgrade-insecure-requests`

	saledelivery.zone/img/icon-loading-white.png	104.168.101.21	200 OK	2.3 kB
URL GET HTTP/1.1 saledelivery.zone/img/icon-loading-white.png IP 104.168.101.21:443 ASN #36352 AS-COLOCROSSING Requested by https://saledelivery.zone/?cp=fmlcqhob Certificate IssuerLet's Encrypt Subjectsaledelivery.zone Fingerprint40:30:CC:AB:96:06:27:EC:B9:4A:52:BD:71:A9:DD:BB:95:36:F3:1F ValidityFri, 22 Mar 2024 15:06:34 GMT - Thu, 20 Jun 2024 15:06:33 GMT File type PNG image data, 48 x 48, 8-bit/color RGBA, interlaced Size 2.3 kB (2298 bytes) Hash b472e76889226a02dfc44e43fe2bbb02 fe89e773206a3f904c28363c405c0dd97eb3a530 91287e5ed0f61955da9df08e382552661fdaeb4962a6f1de229795f4ea36ade0 HTTP Headers GET /img/icon-loading-white.png HTTP/1.1 Host: saledelivery.zone User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saledelivery.zone/themes/common/css/checking.min.css?v=1714737736 Cookie: CGISID=b4d7rmmkrhseeeheud7g3p2q07m5ujml Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Server: nginx Date: Wed, 08 May 2024 20:06:22 GMT Content-Type: image/png Content-Length: 2298 Connection: keep-alive Last-Modified: Fri, 03 May 2024 12:03:24 GMT ETag: "6634d28c-8fa" Expires: Thu, 09 May 2024 19:10:43 GMT Cache-Control: max-age=86400, public, public Strict-Transport-Security: max-age=31536000 Content-Security-Policy: img-src https: data:; upgrade-insecure-requests Accept-Ranges: bytes`

	saledelivery.zone/themes/common/fonts/roboto-regular.woff2	104.168.101.21	200 OK	65 kB
URL GET HTTP/1.1 saledelivery.zone/themes/common/fonts/roboto-regular.woff2 IP 104.168.101.21:443 ASN #36352 AS-COLOCROSSING Requested by https://saledelivery.zone/?cp=fmlcqhob Certificate IssuerLet's Encrypt Subjectsaledelivery.zone Fingerprint40:30:CC:AB:96:06:27:EC:B9:4A:52:BD:71:A9:DD:BB:95:36:F3:1F ValidityFri, 22 Mar 2024 15:06:34 GMT - Thu, 20 Jun 2024 15:06:33 GMT File type Web Open Font Format (Version 2), TrueType, length 64692, version 1.0 Size 65 kB (64692 bytes) Hash 8fa8a82f0969cd7d7027c1171ca08061 bf4da7aa5737d5567f826fb83e000db8d171ab16 4b9f4b6894c43b1ad68c54790e1b7d0f3aa0947b3fff960452ea6d8e172b4683 HTTP Headers GET /themes/common/fonts/roboto-regular.woff2 HTTP/1.1 Host: saledelivery.zone User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity DNT: 1 Connection: keep-alive Referer: https://saledelivery.zone/themes/common/css/fonts.min.css?v=1714737736 Cookie: CGISID=b4d7rmmkrhseeeheud7g3p2q07m5ujml Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Server: nginx Date: Wed, 08 May 2024 20:06:22 GMT Content-Type: application/octet-stream Content-Length: 64692 Connection: keep-alive Last-Modified: Fri, 03 May 2024 12:02:16 GMT ETag: "6634d248-fcb4" Expires: Thu, 09 May 2024 16:38:24 GMT Cache-Control: max-age=86400, public, public Strict-Transport-Security: max-age=31536000 Content-Security-Policy: img-src https: data:; upgrade-insecure-requests Accept-Ranges: bytes`

	saledelivery.zone/user-verification/	104.168.101.21	200 OK	34 B
URL POST HTTP/1.1 saledelivery.zone/user-verification/ IP 104.168.101.21:443 ASN #36352 AS-COLOCROSSING Requested by https://saledelivery.zone/?cp=fmlcqhob Certificate IssuerLet's Encrypt Subjectsaledelivery.zone Fingerprint40:30:CC:AB:96:06:27:EC:B9:4A:52:BD:71:A9:DD:BB:95:36:F3:1F ValidityFri, 22 Mar 2024 15:06:34 GMT - Thu, 20 Jun 2024 15:06:33 GMT File type JSON text data Size 34 B (34 bytes) Hash 624f8e41fd7a95854660bfe31cb0ac3e 45cf60ee80d3cdf3bbb4314b17d89841cd173b66 ba0b925b2ea4c2f40cb949c350915a5b1434ef7c9380701838c9850ea4879875 HTTP Headers POST /user-verification/ HTTP/1.1 Host: saledelivery.zone User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded; charset=UTF-8 X-Requested-With: XMLHttpRequest Content-Length: 10 Origin: https://saledelivery.zone DNT: 1 Connection: keep-alive Referer: https://saledelivery.zone/?cp=fmlcqhob Cookie: CGISID=b4d7rmmkrhseeeheud7g3p2q07m5ujml Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Server: nginx Date: Wed, 08 May 2024 20:06:22 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Content-Encoding: gzip Strict-Transport-Security: max-age=31536000 Content-Security-Policy: img-src https: data:; upgrade-insecure-requests`

	saledelivery.zone/themes/506/assets/img/favicon.ico	104.168.101.21	200 OK	22 kB
URL GET HTTP/1.1 saledelivery.zone/themes/506/assets/img/favicon.ico IP 104.168.101.21:443 ASN #36352 AS-COLOCROSSING Requested by https://saledelivery.zone/?cp=fmlcqhob Certificate IssuerLet's Encrypt Subjectsaledelivery.zone Fingerprint40:30:CC:AB:96:06:27:EC:B9:4A:52:BD:71:A9:DD:BB:95:36:F3:1F ValidityFri, 22 Mar 2024 15:06:34 GMT - Thu, 20 Jun 2024 15:06:33 GMT File type MS Windows icon resource - 5 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel Size 22 kB (21822 bytes) Hash d48da7d7caa19c8546b4e0ae854b9a0c d780395316a595d2692d478d708aeab2ede95322 b964ba4aacbd02615978663ee33b6d313d4af0c7d5253e97cc3104eea14549f2 HTTP Headers `GET /themes/506/assets/img/favicon.ico HTTP/1.1 Host: saledelivery.zone User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saledelivery.zone/?cp=fmlcqhob Cookie: CGISID=b4d7rmmkrhseeeheud7g3p2q07m5ujml Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Wed, 08 May 2024 20:06:22 GMT Content-Type: image/x-icon Content-Length: 21822 Connection: keep-alive Last-Modified: Fri, 03 May 2024 12:02:15 GMT ETag: "6634d247-553e" Expires: Thu, 09 May 2024 17:49:06 GMT Cache-Control: max-age=86400, public, public Strict-Transport-Security: max-age=31536000 Content-Security-Policy: img-src https: data:; upgrade-insecure-requests Accept-Ranges: bytes`

	saledelivery.zone/img/icon-check.svg	104.168.101.21	200 OK	494 B
URL GET HTTP/1.1 saledelivery.zone/img/icon-check.svg IP 104.168.101.21:443 ASN #36352 AS-COLOCROSSING Requested by https://saledelivery.zone/?cp=fmlcqhob Certificate IssuerLet's Encrypt Subjectsaledelivery.zone Fingerprint40:30:CC:AB:96:06:27:EC:B9:4A:52:BD:71:A9:DD:BB:95:36:F3:1F ValidityFri, 22 Mar 2024 15:06:34 GMT - Thu, 20 Jun 2024 15:06:33 GMT File type SVG Scalable Vector Graphics image Size 494 B (494 bytes) Hash 3f03a8bf472dfa36e6521da93da0b512 68649ff75b674752184b1a711ac00f02164ea3f7 a46b9e16fdb4ec63902f7de4814add0b738e2896691f084766f900f310f013fa HTTP Headers GET /img/icon-check.svg HTTP/1.1 Host: saledelivery.zone User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saledelivery.zone/themes/common/css/checking.min.css?v=1714737736 Cookie: CGISID=b4d7rmmkrhseeeheud7g3p2q07m5ujml Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Server: nginx Date: Wed, 08 May 2024 20:06:25 GMT Content-Type: image/svg+xml Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Fri, 03 May 2024 12:02:11 GMT ETag: W/"6634d243-38b" Expires: Thu, 09 May 2024 13:40:09 GMT Cache-Control: max-age=86400, public, public Content-Encoding: gzip Strict-Transport-Security: max-age=31536000 Content-Security-Policy: img-src https: data:; upgrade-insecure-requests`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (4)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (12)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers

URL User Request GET HTTP/1.1

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers