Report - networkdeliverycurated.com/25082-185328/101562?uid=77ZTGezSLbgNWc9bL6BvPqZ5gaN1AGHcZ7zkrG&prom_type=regular&prom

Report Overview

URL

networkdeliverycurated.com/25082-185328/101562?uid=77ZTGezSLbgNWc9bL6BvPqZ5gaN1AGHcZ7zkrG&prom_type=regular&prom_id=214654&pld=26L81sNgpwNGXF&answer-1=4
IP

54.167.34.126

ASN

#14618 AMAZON-AES
Submitted

2023-05-26T16:50:53Z

Access

public
Tags

None
urlquery detections

No alerts detected

Detections

urlquery

0
Network Intrusion Detection

0
Threat Detection Systems

18

Domain Summary

Domain	Rank	First Seen	Last Seen	Sent	Received	IP
networkdeliverycurated.com (27)	unknown	2022-01-04 03:40:52	2023-05-08 16:50:09	15874	700820	54.167.34.126
polyfill.io (2)	102644	2016-02-12 01:04:58	2023-05-26 07:56:06	1058	2060	151.101.129.26
ocsp.globalsign.com (2)	2075	2012-07-20 19:46:16	2023-05-26 05:13:09	716	3840	104.18.21.226
cdn.cookielaw.org (10)	502	2013-12-28 14:20:36	2023-05-26 08:20:53	4744	207539	104.18.169.114
checkr.com (35)	90456	2015-03-19 05:33:31	2023-05-25 22:00:05	19277	854370	23.185.0.2
cdn.pdst.fm (1)	3387	2019-01-23 15:37:22	2023-05-26 08:18:27	394	6660	35.244.142.80
us-central1-adaptive-growth.cloudfunctions.net (2)	3390	2017-06-26 11:18:55	2023-05-26 07:54:57	1094	1056	216.239.36.54
info.checkr.com (1)	unknown	2018-06-20 16:59:38	2023-05-21 02:32:37	454	193185	104.17.71.206
stackpath.bootstrapcdn.com (1)	2467	2018-06-15 22:36:43	2023-05-26 08:34:10	479	28699	104.18.11.207
code.jquery.com (2)	634	2012-05-21 19:28:02	2023-05-26 05:09:53	846	62666	69.16.175.10
cdn.jsdelivr.net (1)	439	2012-09-30 02:15:09	2023-05-26 06:23:15	460	9182	151.101.1.229
use.typekit.net (2)	494	2012-07-05 03:42:39	2023-05-26 05:09:03	870	9020	23.33.119.19
ocsp.pki.goog (12)	175	2018-07-01 08:43:07	2023-05-26 05:09:27	4024	8422	142.250.74.131
p.typekit.net (1)	620	2012-05-23 16:28:57	2023-05-26 05:09:03	885	338	23.33.119.26
fonts.googleapis.com (7)	8877	2013-06-10 22:14:26	2023-05-26 08:47:13	3576	154765	142.250.74.74
fonts.gstatic.com (2)	unknown	2014-09-09 02:40:21	2023-05-26 08:15:38	1076	33154	216.58.207.227
www.googletagmanager.com (1)	75	2013-05-22 04:07:37	2023-05-26 07:54:02	416	101700	142.250.74.40
geolocation.onetrust.com (1)	802	2018-02-07 12:23:41	2023-05-26 09:36:04	465	953	104.18.28.38
cdnjs.cloudflare.com (3)	235	2015-04-17 22:46:33	2023-05-26 05:10:13	1347	75400	104.17.24.14

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator
2023-05-26	medium	networkdeliverycurated.com/ckeditor/contents.css?t=N2NK
2023-05-26	medium	networkdeliverycurated.com/ckeditor/plugins/formBuilder/styles/formBuilder.css?v=1.3.1684500771327
2023-05-26	medium	networkdeliverycurated.com/lib/jq/validator/fb.validation.js
2023-05-26	medium	networkdeliverycurated.com/lib/jq/fb.utils.js
2023-05-26	medium	networkdeliverycurated.com/uploads/uploadedFonts/fontsImport.css?v=1685119831
2023-05-26	medium	networkdeliverycurated.com/lib/jq/cqParams/fb.cqParams.js
2023-05-26	medium	networkdeliverycurated.com/lib/uri/uri.js
2023-05-26	medium	networkdeliverycurated.com/lib/jq/otherInput/fb.otherInput.js
2023-05-26	medium	networkdeliverycurated.com/lib/jq/fb.autoSubmit.js
2023-05-26	medium	networkdeliverycurated.com/lpScripts/assetsBehavior.js?v=1
2023-05-26	medium	networkdeliverycurated.com/lib/jq/validator/localization/jq_validation_localizations.boundled.js
2023-05-26	medium	networkdeliverycurated.com/uploads/c_25082/logos/Checkr_Logo_Wordmark_Aqua.svg
2023-05-26	medium	networkdeliverycurated.com/uploads/uploadedFonts/92/Regular/Segoe-UI.ttf
2023-05-26	medium	networkdeliverycurated.com/ckeditor/contents.css?t=N2NK
2023-05-26	medium	networkdeliverycurated.com/ckeditor/plugins/formBuilder/styles/formBuilder.css?v=1.3.1683879093946
2023-05-26	medium	networkdeliverycurated.com/lpScripts/assetsBehavior.js?v=1
2023-05-26	medium	networkdeliverycurated.com/uploads/uploadedFonts/fontsImport.css?v=1685119832
2023-05-26	medium	networkdeliverycurated.com/lib/uri/uri.js

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

HTTP Transactions (113)

URL IP Response Size

networkdeliverycurated.com/25082-185328/101562?uid=77ZTGezSLbgNWc9bL6BvPqZ5gaN1AGHcZ7zkrG&prom_type=regular&prom_id=214654&pld=26L81sNgpwNGXF&answer-1=4

54.167.34.126

8296

URL

networkdeliverycurated.com/25082-185328/101562?uid=77ZTGezSLbgNWc9bL6BvPqZ5gaN1AGHcZ7zkrG&prom_type=regular&prom_id=214654&pld=26L81sNgpwNGXF&answer-1=4
IP

54.167.34.126:0
ASN

#14618 AMAZON-AES

Magic

HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (15037)

Size

8296
Hash

c8b0346c63fa9c2be8d9bb1f3fa852ae

29ade47e3a322d9d24f490dc8981fb7a49353143

4eb2217fe40ed079b5638b44c7b579fd1854a3e3e3abb2a779f30e699af670b6

HTTP Headers

                                        GET /25082-185328/101562?uid=77ZTGezSLbgNWc9bL6BvPqZ5gaN1AGHcZ7zkrG&prom_type=regular&prom_id=214654&pld=26L81sNgpwNGXF&answer-1=4 HTTP/1.1
Host: networkdeliverycurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx/1.22.1
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.26
Cache-Control: max-age=0, must-revalidate, private
Date: Fri, 26 May 2023 16:50:31 GMT
Expires: Fri, 26 May 2023 16:50:31 GMT
Content-Encoding: gzip

cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js

104.17.24.14

27958

URL

cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js
IP

104.17.24.14:0
ASN

#13335 CLOUDFLARENET

Magic

ASCII text, with very long lines (65451)

Size

27958
Hash

dc5e7f18c8d36ac1d3d4753a87c98d0a

c8e1c8b386dc5b7a9184c763c88d19a346eb3342

f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d

HTTP Headers

                                        GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://networkdeliverycurated.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 200 OK
date: Fri, 26 May 2023 16:50:31 GMT
content-type: application/javascript; charset=utf-8
content-length: 27958
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb09ed3-15d84"
last-modified: Mon, 04 May 2020 23:01:39 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 10966290
expires: Wed, 15 May 2024 16:50:31 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q9j8JCNRWr7zDcXvIGaEkc8ZIq0jbix7gyfRztPBqc6CRFqFsXADGmyjO3bNteasfYUQ80VuuplSFxzcoJM1fFGNRk2ZdyfWN4VBFt2x7p30lTdLPgB%2BRXh354B8ZoNN0IOUN67Y"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7cd784843b6eb524-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/select2/4.0.13/js/select2.min.js

104.17.24.14

16456

URL

cdnjs.cloudflare.com/ajax/libs/select2/4.0.13/js/select2.min.js
IP

104.17.24.14:0
ASN

#13335 CLOUDFLARENET

Magic

Unicode text, UTF-8 text, with very long lines (64131)

Size

16456
Hash

0f64f3a3a0c620a6756d36abaff1b4a6

4738d7f9885db2cb9370766974c8f6b22e9ec29d

00501810e93307a8882a74d864e7547fd1458deea539361dc1124ac133799a4b

HTTP Headers

                                        GET /ajax/libs/select2/4.0.13/js/select2.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://networkdeliverycurated.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 200 OK
date: Fri, 26 May 2023 16:50:31 GMT
content-type: application/javascript; charset=utf-8
content-length: 16456
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5ecc8659-114c3"
last-modified: Tue, 26 May 2020 03:00:41 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 847221
expires: Wed, 15 May 2024 16:50:31 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QRV7wA3I9uVj1n3hewdLuwIdhVn8wniILJvmB7Mz2wS%2BmrMxkeN53Db4iopqcQombbBlTImbSbC4Dzk6ua18rwN4q%2F%2Bbq8fABZuMee2D0GU%2BcWkbUdCVwOdkEk0Jt5SMRJH7w6ag"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7cd784844a930b69-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

polyfill.io/v3/polyfill.min.js?version=3.52.1&features=URL%2CURLSearchParams%2Ces5%2Ces6%2Ces7

151.101.129.26

113

URL

polyfill.io/v3/polyfill.min.js?version=3.52.1&features=URL%2CURLSearchParams%2Ces5%2Ces6%2Ces7
IP

151.101.129.26:0
ASN

#54113 FASTLY

Magic

ASCII text

Size

113
Hash

200a5f97dca74c3f50f25d5992b2509f

1c696dfee387bf0f5fd0d13f254a7a67ba6b11a6

5e8245f74bb3b5a6a427cb68b028830456233ea1e669bf9582a84dd9ca9ab255

HTTP Headers

                                        GET /v3/polyfill.min.js?version=3.52.1&features=URL%2CURLSearchParams%2Ces5%2Ces6%2Ces7 HTTP/1.1
Host: polyfill.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://networkdeliverycurated.com
DNT: 1
Connection: keep-alive
Referer: https://networkdeliverycurated.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 200 OK
fastly_service_version: 195
cache-control: public, s-maxage=31536000, max-age=604800, stale-while-revalidate=604800, stale-if-error=604800
content-type: text/javascript; charset=UTF-8
last-modified: Wed, 03 May 2023 00:17:37 GMT
useragent_normaliser: firefox/111.0.0
content-encoding: gzip
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
referrer-policy: origin-when-cross-origin
timing-allow-origin: *
normalized-user-agent: firefox/111.0.0
detected-user-agent: Firefox/111.0.
accept-ranges: bytes
date: Fri, 26 May 2023 16:50:31 GMT
age: 780411
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
vary: User-Agent, Accept-Encoding
server-timing: HIT-CLUSTER, fastly;desc="Edge time";dur=2
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 113
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/jquery-validation@1.19.1/dist/jquery.validate.min.js

151.101.1.229

8397

URL

cdn.jsdelivr.net/npm/jquery-validation@1.19.1/dist/jquery.validate.min.js
IP

151.101.1.229:0
ASN

#54113 FASTLY

Magic

Unicode text, UTF-8 text, with very long lines (24237)

Size

8397
Hash

8a25965d822705f957a243443d219787

0da4c535b50bdb4dffa3b5fae3e999aeee137cb5

b0f074179d185032b4a2d0e7b1f3476b0626039334a638d47f84ef44990616b2

HTTP Headers

                                        GET /npm/jquery-validation@1.19.1/dist/jquery.validate.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://networkdeliverycurated.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.19.1
x-jsd-version-type: version
etag: W/"5f38-DaTFNbUL203/o7X64+mZru4TfLU"
content-encoding: br
accept-ranges: bytes
date: Fri, 26 May 2023 16:50:31 GMT
age: 895879
x-served-by: cache-fra-eddf8230087-FRA, cache-bma1671-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 8397
X-Firefox-Spdy: h2

networkdeliverycurated.com/ckeditor/contents.css?t=N2NK

54.167.34.126

2886

URL

networkdeliverycurated.com/ckeditor/contents.css?t=N2NK
IP

54.167.34.126:0
ASN

#14618 AMAZON-AES

Magic

ASCII text

Size

2886
Hash

ea34863bd1770c4274d7ed7c58449f2a

1aefe351289c27d7b741cd38baaaad3398e306ba

43b78285c786c968e35d8a44aafb06df291e840e106bd01ddf36df96ce84ff5d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

                                        GET /ckeditor/contents.css?t=N2NK HTTP/1.1
Host: networkdeliverycurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://networkdeliverycurated.com/25082-185328/101562?uid=77ZTGezSLbgNWc9bL6BvPqZ5gaN1AGHcZ7zkrG&prom_type=regular&prom_id=214654&pld=26L81sNgpwNGXF&answer-1=4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Fri, 26 May 2023 16:50:31 GMT
Content-Type: text/css
Content-Length: 2886
Last-Modified: Fri, 21 Apr 2023 19:40:04 GMT
Connection: keep-alive
ETag: "6442e694-b46"
Expires: Fri, 26 May 2023 16:50:31 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4

104.18.21.226

1462

URL

ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP

104.18.21.226:0
ASN

#13335 CLOUDFLARENET

Magic

data

Size

1462
Hash

80a5d2ab4b3ec8693982c83b33a39fe7

f32bed17840584e983b524d6401c7c030544494e

a569f6d3dc72e804e87034264ca6ab4811d0249aeb5d6db9d6fc8b8916134708

HTTP Headers

                                        POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Date: Fri, 26 May 2023 16:50:31 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "C36AB291D60A3497F2225D27BD420408F1FB8156"
Expires: Sat, 27 May 2023 03:00:00 GMT
Last-Modified: Fri, 26 May 2023 15:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 3564
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7cd78485bf200b45-OSL

ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4

104.18.21.226

1462

URL

ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP

104.18.21.226:0
ASN

#13335 CLOUDFLARENET

Magic

data

Size

1462
Hash

b3bd7f1edf56066d646d529059ee2e0b

16aa813b9ba156111084510b20425bcf5b8c26c0

4ca50229575885cc664dd42b548d0b3c4d2f08b607780b3551e0d8eef4aa5802

HTTP Headers

                                        POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Date: Fri, 26 May 2023 16:50:31 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "7DAD60BAA0FCBAF7A519CFEB8F4535344AE98919"
Expires: Sat, 27 May 2023 03:00:00 GMT
Last-Modified: Fri, 26 May 2023 15:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 3367
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7cd78485bba71bfa-OSL

networkdeliverycurated.com/ckeditor/plugins/formBuilder/styles/formBuilder.css?v=1.3.1684500771327

54.167.34.126

5201

URL

networkdeliverycurated.com/ckeditor/plugins/formBuilder/styles/formBuilder.css?v=1.3.1684500771327
IP

54.167.34.126:0
ASN

#14618 AMAZON-AES

Magic

ASCII text

Size

5201
Hash

e741d2aa47efe7dda9dfe0a5014fef0e

30ebfe60d0832bb8114c6ba155f0ddb15c1a527c

68c2e3489d098db2a6e2ddba9f32ff172d1c0ff0983b9b3c3c0b59c8a850cf20

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

                                        GET /ckeditor/plugins/formBuilder/styles/formBuilder.css?v=1.3.1684500771327 HTTP/1.1
Host: networkdeliverycurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://networkdeliverycurated.com/25082-185328/101562?uid=77ZTGezSLbgNWc9bL6BvPqZ5gaN1AGHcZ7zkrG&prom_type=regular&prom_id=214654&pld=26L81sNgpwNGXF&answer-1=4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Fri, 26 May 2023 16:50:31 GMT
Content-Type: text/css
Content-Length: 5201
Last-Modified: Fri, 21 Apr 2023 19:40:04 GMT
Connection: keep-alive
ETag: "6442e694-1451"
Expires: Fri, 26 May 2023 16:50:31 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

networkdeliverycurated.com/ckeditor/plugins/lpLinkV2/css/styles.css

54.167.34.126

2159

URL

networkdeliverycurated.com/ckeditor/plugins/lpLinkV2/css/styles.css
IP

54.167.34.126:0
ASN

#14618 AMAZON-AES

Magic

ASCII text, with very long lines (2158)

Size

2159
Hash

20944bcec784ce7e2b95b62808da9869

29fa6fc754e5f8cda684cfcadad4b996f7404e61

479da2477e3d7631c8cca6c411d1b2afad9d5e66bc6bb7acc8b1bdafadd75499

HTTP Headers

                                        GET /ckeditor/plugins/lpLinkV2/css/styles.css HTTP/1.1
Host: networkdeliverycurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://networkdeliverycurated.com/25082-185328/101562?uid=77ZTGezSLbgNWc9bL6BvPqZ5gaN1AGHcZ7zkrG&prom_type=regular&prom_id=214654&pld=26L81sNgpwNGXF&answer-1=4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Fri, 26 May 2023 16:50:31 GMT
Content-Type: text/css
Content-Length: 2159
Last-Modified: Fri, 21 Apr 2023 19:40:04 GMT
Connection: keep-alive
ETag: "6442e694-86f"
Expires: Fri, 26 May 2023 16:50:31 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

networkdeliverycurated.com/ckeditor/plugins/assetImageEditor/styles/assetImageEditor.css

54.167.34.126

14634

URL

networkdeliverycurated.com/ckeditor/plugins/assetImageEditor/styles/assetImageEditor.css
IP

54.167.34.126:0
ASN

#14618 AMAZON-AES

Magic

ASCII text, with very long lines (14633)

Size

14634
Hash

787386e5e10ff3bb89548b79491676c9

91954bf6893e1369d4d29eed13684241e114474e

83f3a7c1ef45aec623457bf7f8165b0ec4ef1699a7822796ded8fa4ee7f67562

HTTP Headers

                                        GET /ckeditor/plugins/assetImageEditor/styles/assetImageEditor.css HTTP/1.1
Host: networkdeliverycurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://networkdeliverycurated.com/25082-185328/101562?uid=77ZTGezSLbgNWc9bL6BvPqZ5gaN1AGHcZ7zkrG&prom_type=regular&prom_id=214654&pld=26L81sNgpwNGXF&answer-1=4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Fri, 26 May 2023 16:50:31 GMT
Content-Type: text/css
Content-Length: 14634
Last-Modified: Fri, 21 Apr 2023 19:40:04 GMT
Connection: keep-alive
ETag: "6442e694-392a"
Expires: Fri, 26 May 2023 16:50:31 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

networkdeliverycurated.com/lib/jq/validator/fb.validation.js

54.167.34.126

2258

URL

networkdeliverycurated.com/lib/jq/validator/fb.validation.js
IP

54.167.34.126:0
ASN

#14618 AMAZON-AES

Magic

ASCII text

Size

2258
Hash

0b0aa4474dad1eddbecef64e3965741d

5aa56316fef252cc71edfc14a6442e332070d379

3d995784f4fac1d1fd84d4bdc4d863a253677bdae17f19ef403c8b2fcb6748e0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

                                        GET /lib/jq/validator/fb.validation.js HTTP/1.1
Host: networkdeliverycurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://networkdeliverycurated.com/25082-185328/101562?uid=77ZTGezSLbgNWc9bL6BvPqZ5gaN1AGHcZ7zkrG&prom_type=regular&prom_id=214654&pld=26L81sNgpwNGXF&answer-1=4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Fri, 26 May 2023 16:50:32 GMT
Content-Type: application/javascript
Content-Length: 2258
Last-Modified: Mon, 20 Mar 2023 09:05:30 GMT
Connection: keep-alive
ETag: "641821da-8d2"
Expires: Fri, 26 May 2023 16:50:32 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

networkdeliverycurated.com/lib/jq/fb.utils.js

54.167.34.126

28796

URL

networkdeliverycurated.com/lib/jq/fb.utils.js
IP

54.167.34.126:0
ASN

#14618 AMAZON-AES

Magic

Unicode text, UTF-8 text

Size

28796
Hash

b9522bce07dcd7f24f315c0e187b4340

77f727f4faea9cdaf82e95ae189d95de90bbc38f

d33ec1f4e2f2f8edb5f6b2331c0f7e7ffdc5702f693e974d3c645c387753695d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

                                        GET /lib/jq/fb.utils.js HTTP/1.1
Host: networkdeliverycurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://networkdeliverycurated.com/25082-185328/101562?uid=77ZTGezSLbgNWc9bL6BvPqZ5gaN1AGHcZ7zkrG&prom_type=regular&prom_id=214654&pld=26L81sNgpwNGXF&answer-1=4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Fri, 26 May 2023 16:50:31 GMT
Content-Type: application/javascript
Content-Length: 28796
Last-Modified: Sat, 01 Apr 2023 09:06:31 GMT
Connection: keep-alive
ETag: "6427f417-707c"
Expires: Fri, 26 May 2023 16:50:31 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

networkdeliverycurated.com/uploads/uploadedFonts/fontsImport.css?v=1685119831

54.167.34.126

116117

URL

networkdeliverycurated.com/uploads/uploadedFonts/fontsImport.css?v=1685119831
IP

54.167.34.126:0
ASN

#14618 AMAZON-AES

Magic

ASCII text, with very long lines (508)

Size

116117
Hash

e273fbe4753c76c64ff0e2625a49bb4d

8689267cc90d2de6f3498d894032eccb8a833606

8d05b4bd6b3826423e200dc0abda71cf4f4d939f1ad45c92e3d3f0ea836eb196

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

                                        GET /uploads/uploadedFonts/fontsImport.css?v=1685119831 HTTP/1.1
Host: networkdeliverycurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://networkdeliverycurated.com/25082-185328/101562?uid=77ZTGezSLbgNWc9bL6BvPqZ5gaN1AGHcZ7zkrG&prom_type=regular&prom_id=214654&pld=26L81sNgpwNGXF&answer-1=4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Fri, 26 May 2023 16:50:31 GMT
Content-Type: text/css
Content-Length: 116117
Last-Modified: Mon, 08 May 2023 16:11:22 GMT
Connection: keep-alive
ETag: "64591f2a-1c595"
Expires: Fri, 26 May 2023 16:50:31 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

networkdeliverycurated.com/lib/jq/cqParams/fb.cqParams.js

54.167.34.126

2815

URL

networkdeliverycurated.com/lib/jq/cqParams/fb.cqParams.js
IP

54.167.34.126:0
ASN

#14618 AMAZON-AES

Magic

ASCII text

Size

2815
Hash

55159908ed60d22fd3992732aa7e42d3

57976f1953d1da224e9746296eaac849d69dc5f3

c6b1e77cd2f103d2fa292bf088a9680848a4f94b6c1ef6ee2017c2ba530a03c5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

                                        GET /lib/jq/cqParams/fb.cqParams.js HTTP/1.1
Host: networkdeliverycurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://networkdeliverycurated.com/25082-185328/101562?uid=77ZTGezSLbgNWc9bL6BvPqZ5gaN1AGHcZ7zkrG&prom_type=regular&prom_id=214654&pld=26L81sNgpwNGXF&answer-1=4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Fri, 26 May 2023 16:50:32 GMT
Content-Type: application/javascript
Content-Length: 2815
Last-Modified: Tue, 14 Sep 2021 10:49:24 GMT
Connection: keep-alive
ETag: "61407e34-aff"
Expires: Fri, 26 May 2023 16:50:32 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

networkdeliverycurated.com/lib/uri/uri.js

54.167.34.126

76862

URL

networkdeliverycurated.com/lib/uri/uri.js
IP

54.167.34.126:0
ASN

#14618 AMAZON-AES

Magic

Unicode text, UTF-8 text, with very long lines (1107)

Size

76862
Hash

64437cd33e2fa1a40e6850ee6388639e

809078716153b491c00852f366ca3f8d6e03df22

96361c580499a6dd7afa83f352fb2a27c159a39daf794e2e6813514be8a8fbe9

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

                                        GET /lib/uri/uri.js HTTP/1.1
Host: networkdeliverycurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://networkdeliverycurated.com/25082-185328/101562?uid=77ZTGezSLbgNWc9bL6BvPqZ5gaN1AGHcZ7zkrG&prom_type=regular&prom_id=214654&pld=26L81sNgpwNGXF&answer-1=4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Fri, 26 May 2023 16:50:31 GMT
Content-Type: application/javascript
Content-Length: 76862
Last-Modified: Mon, 12 Apr 2021 20:19:39 GMT
Connection: keep-alive
ETag: "6074ab5b-12c3e"
Expires: Fri, 26 May 2023 16:50:31 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

networkdeliverycurated.com/lib/jq/otherInput/fb.otherInput.js

54.167.34.126

2332

URL

networkdeliverycurated.com/lib/jq/otherInput/fb.otherInput.js
IP

54.167.34.126:0
ASN

#14618 AMAZON-AES

Magic

ASCII text

Size

2332
Hash

98ddf73de28f5fef1378553ea90dc407

9c76c82d52e3512a2fe53c754b135c5a91f1e97c

0bf7b8a2f9d4ebc076ca6ecbfad616bca4bb4d489ab2d021d935c4854585a0d0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

                                        GET /lib/jq/otherInput/fb.otherInput.js HTTP/1.1
Host: networkdeliverycurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://networkdeliverycurated.com/25082-185328/101562?uid=77ZTGezSLbgNWc9bL6BvPqZ5gaN1AGHcZ7zkrG&prom_type=regular&prom_id=214654&pld=26L81sNgpwNGXF&answer-1=4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Fri, 26 May 2023 16:50:32 GMT
Content-Type: application/javascript
Content-Length: 2332
Last-Modified: Fri, 07 Oct 2022 13:13:57 GMT
Connection: keep-alive
ETag: "63402615-91c"
Expires: Fri, 26 May 2023 16:50:32 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

networkdeliverycurated.com/lib/jq/fb.autoSubmit.js

54.167.34.126

604

URL

networkdeliverycurated.com/lib/jq/fb.autoSubmit.js
IP

54.167.34.126:0
ASN

#14618 AMAZON-AES

Magic

ASCII text

Size

604
Hash

0a52231b24a9f8a0f2489261a3aac5db

a2d0829b6030e795da8f556c17acedce1fb58a5a

aa704c7c7552d95db32e393c6002b674df0e2fe05e586f891e631d9213794813

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

                                        GET /lib/jq/fb.autoSubmit.js HTTP/1.1
Host: networkdeliverycurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://networkdeliverycurated.com/25082-185328/101562?uid=77ZTGezSLbgNWc9bL6BvPqZ5gaN1AGHcZ7zkrG&prom_type=regular&prom_id=214654&pld=26L81sNgpwNGXF&answer-1=4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Fri, 26 May 2023 16:50:32 GMT
Content-Type: application/javascript
Content-Length: 604
Last-Modified: Wed, 04 Jan 2023 12:09:12 GMT
Connection: keep-alive
ETag: "63b56c68-25c"
Expires: Fri, 26 May 2023 16:50:32 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

use.typekit.net/mgr2odi.css

23.33.119.19

4083

URL

use.typekit.net/mgr2odi.css
IP

23.33.119.19:0
ASN

#20940 Akamai International B.V.

Magic

Unicode text, UTF-8 text, with very long lines (520)

Size

4083
Hash

b066736e383c26c8c916c9b7cf5c6392

7f04b94e62f6c0d7ad0fb9f73748d7bc86d698c6

94ea9ecfade3997e20a57f106702223f0c5018d3a2ef4b62226f92d4d440ca33

HTTP Headers

                                        GET /mgr2odi.css HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://networkdeliverycurated.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 200 OK
server: nginx
content-type: text/css;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: private, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 4083
date: Fri, 26 May 2023 16:50:32 GMT
X-Firefox-Spdy: h2

networkdeliverycurated.com/lpScripts/assetsBehavior.js?v=1

54.167.34.126

13979

URL

networkdeliverycurated.com/lpScripts/assetsBehavior.js?v=1
IP

54.167.34.126:0
ASN

#14618 AMAZON-AES

Magic

ASCII text

Size

13979
Hash

d1056cb49ba8b8bc93c5cccb4d7b545c

dc035118d8bd8d1b5ae19401caca6f4de6980286

9152766f8d87664efe6266d3745f4f8dacf744596b809060a717a50355e8bae2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

                                        GET /lpScripts/assetsBehavior.js?v=1 HTTP/1.1
Host: networkdeliverycurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://networkdeliverycurated.com/25082-185328/101562?uid=77ZTGezSLbgNWc9bL6BvPqZ5gaN1AGHcZ7zkrG&prom_type=regular&prom_id=214654&pld=26L81sNgpwNGXF&answer-1=4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Fri, 26 May 2023 16:50:32 GMT
Content-Type: application/javascript
Content-Length: 13979
Last-Modified: Sat, 01 Apr 2023 09:06:31 GMT
Connection: keep-alive
ETag: "6427f417-369b"
Expires: Fri, 26 May 2023 16:50:32 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

ocsp.pki.goog/gts1c3

142.250.74.131

472

URL

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

472
Hash

13b26f5afbecdd78566b3b54ab77caed

6b16c5910ad9ea57236d6954290be6fce8f62c6b

9fd32213a6b40b68ac06d5d6bf9c6ab0793f7f0464407b348c6e290f91870a90

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 16:50:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

472

URL

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

472
Hash

13b26f5afbecdd78566b3b54ab77caed

6b16c5910ad9ea57236d6954290be6fce8f62c6b

9fd32213a6b40b68ac06d5d6bf9c6ab0793f7f0464407b348c6e290f91870a90

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 16:50:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

networkdeliverycurated.com/lib/jq/validator/localization/jq_validation_localizations.boundled.js

54.167.34.126

110412

URL

networkdeliverycurated.com/lib/jq/validator/localization/jq_validation_localizations.boundled.js
IP

54.167.34.126:0
ASN

#14618 AMAZON-AES

Magic

Unicode text, UTF-8 text

Size

110412
Hash

0316503c9195ac855edffa261d07d42b

d1d0da53a844c2f517f598418eaf05b257590266

03e0bf480bf30758d96d540e13a4086d7011b09d88179305355509d9b2f2576a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

                                        GET /lib/jq/validator/localization/jq_validation_localizations.boundled.js HTTP/1.1
Host: networkdeliverycurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://networkdeliverycurated.com/25082-185328/101562?uid=77ZTGezSLbgNWc9bL6BvPqZ5gaN1AGHcZ7zkrG&prom_type=regular&prom_id=214654&pld=26L81sNgpwNGXF&answer-1=4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Fri, 26 May 2023 16:50:32 GMT
Content-Type: application/javascript
Content-Length: 110412
Last-Modified: Wed, 04 Jan 2023 12:09:12 GMT
Connection: keep-alive
ETag: "63b56c68-1af4c"
Expires: Fri, 26 May 2023 16:50:32 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

ocsp.pki.goog/gts1c3

142.250.74.131

472

URL

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

472
Hash

13b26f5afbecdd78566b3b54ab77caed

6b16c5910ad9ea57236d6954290be6fce8f62c6b

9fd32213a6b40b68ac06d5d6bf9c6ab0793f7f0464407b348c6e290f91870a90

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 16:50:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

472

URL

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

472
Hash

8fdba15b1e036bbb416fbd6c272e5543

20193b9d3ced059164358e60bad68a0ea1bc87b9

1d3d0b81779aae77441b81abe782f4a37a1b88fd2863360de0865784279a7438

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 16:50:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

472

URL

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

472
Hash

13b26f5afbecdd78566b3b54ab77caed

6b16c5910ad9ea57236d6954290be6fce8f62c6b

9fd32213a6b40b68ac06d5d6bf9c6ab0793f7f0464407b348c6e290f91870a90

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 16:50:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

p.typekit.net/p.css?s=1&k=mgr2odi&ht=tk&f=137.138.139.140.169.170.171.172.173.174.175.176.5474.5475.25136.25137.143.144.147.148.156.157.161.162.2003.2004.2005.2006.2007.2008.2009.2010.2011.2012.9938.9939.39002.39004.12046.12047.12048.12049.12050.12051.12053.12054.12055.12056.17398.17399.17400.17401.22618.22619.14032.14033.14034.14035.26425.26426.35617.35620.26435.35615.26438.26439.35630.35633.26448.35628.26893.26894.26897.26898.26909.26910.26913.26914.29382.29383&a=14392602&app=typekit&e=css

23.33.119.26

URL

p.typekit.net/p.css?s=1&k=mgr2odi&ht=tk&f=137.138.139.140.169.170.171.172.173.174.175.176.5474.5475.25136.25137.143.144.147.148.156.157.161.162.2003.2004.2005.2006.2007.2008.2009.2010.2011.2012.9938.9939.39002.39004.12046.12047.12048.12049.12050.12051.12053.12054.12055.12056.17398.17399.17400.17401.22618.22619.14032.14033.14034.14035.26425.26426.35617.35620.26435.35615.26438.26439.35630.35633.26448.35628.26893.26894.26897.26898.26909.26910.26913.26914.29382.29383&a=14392602&app=typekit&e=css
IP

23.33.119.26:0
ASN

#20940 Akamai International B.V.

Magic

ASCII text

Size

5
Hash

83d24d4b43cc7eef2b61e66c95f3d158

f0cafc285ee23bb6c28c5166f305493c4331c84d

1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb

HTTP Headers

                                        GET /p.css?s=1&k=mgr2odi&ht=tk&f=137.138.139.140.169.170.171.172.173.174.175.176.5474.5475.25136.25137.143.144.147.148.156.157.161.162.2003.2004.2005.2006.2007.2008.2009.2010.2011.2012.9938.9939.39002.39004.12046.12047.12048.12049.12050.12051.12053.12054.12055.12056.17398.17399.17400.17401.22618.22619.14032.14033.14034.14035.26425.26426.35617.35620.26435.35615.26438.26439.35630.35633.26448.35628.26893.26894.26897.26898.26909.26910.26913.26914.29382.29383&a=14392602&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 200 OK
server: nginx
content-type: text/css
content-length: 5
last-modified: Wed, 08 Mar 2023 23:45:59 GMT
etag: "64091e37-5"
cache-control: public, max-age=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Fri, 26 May 2023 16:50:32 GMT
X-Firefox-Spdy: h2

networkdeliverycurated.com/uploads/c_25082/logos/Checkr_Logo_Wordmark_Aqua.svg

54.167.34.126

1679

URL

networkdeliverycurated.com/uploads/c_25082/logos/Checkr_Logo_Wordmark_Aqua.svg
IP

54.167.34.126:0
ASN

#14618 AMAZON-AES

Magic

SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (1679), with no line terminators

Size

1679
Hash

b43074b8766afa034f2c58877cb4406d

5640c7f653b675826787b91ea5a874116641611f

6c49e5c1f6d38e83d495501b906bee6985043d7ed20352c0926b90b36b78f180

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

                                        GET /uploads/c_25082/logos/Checkr_Logo_Wordmark_Aqua.svg HTTP/1.1
Host: networkdeliverycurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://networkdeliverycurated.com/25082-185328/101562?uid=77ZTGezSLbgNWc9bL6BvPqZ5gaN1AGHcZ7zkrG&prom_type=regular&prom_id=214654&pld=26L81sNgpwNGXF&answer-1=4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Fri, 26 May 2023 16:50:32 GMT
Content-Type: image/svg+xml
Content-Length: 1679
Last-Modified: Fri, 12 May 2023 08:10:14 GMT
Connection: keep-alive
ETag: "645df466-68f"
Accept-Ranges: bytes

fonts.googleapis.com/css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap

142.250.74.74

1674

URL

fonts.googleapis.com/css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap
IP

142.250.74.74:0
ASN

#15169 GOOGLE

Magic

gzip compressed data, max compression\012- data

Size

1674
Hash

ac51cbb5924557f182c23f319ae54b08

a2b64dd324319c52d0b17c021cf52ee74fd5f192

2ade8e682778a5df9babb8a7420dd4adc0863f14c8f21585e24e7dac4b96d3f7

HTTP Headers

                                        GET /css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://networkdeliverycurated.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 May 2023 16:50:32 GMT
date: Fri, 26 May 2023 16:50:32 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

networkdeliverycurated.com/uploads/uploadedFonts/92/Regular/Segoe-UI.ttf

54.167.34.126

34164

URL

networkdeliverycurated.com/uploads/uploadedFonts/92/Regular/Segoe-UI.ttf
IP

54.167.34.126:0
ASN

#14618 AMAZON-AES

Magic

TrueType Font data, 18 tables, 1st "FFTM", 48 names, Macintosh\012- data

Size

34164
Hash

0e7e9a9b5c4abaadef7bc8f4e4574084

995e37cfba0e3df9a716891a4cf9a05b38b118f9

3745c347d168dd938971aed573ab2140b6a766f658c4f353f06ddc05e976ff7a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

                                        GET /uploads/uploadedFonts/92/Regular/Segoe-UI.ttf HTTP/1.1
Host: networkdeliverycurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://networkdeliverycurated.com/uploads/uploadedFonts/fontsImport.css?v=1685119831
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Fri, 26 May 2023 16:50:32 GMT
Content-Type: application/octet-stream
Content-Length: 34164
Last-Modified: Fri, 24 Feb 2023 15:46:13 GMT
Connection: keep-alive
ETag: "63f8dbc5-8574"
Expires: Fri, 26 May 2023 17:50:32 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

ocsp.pki.goog/gts1c3

142.250.74.131

472

URL

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

472
Hash

fc757271ec057273ef886c129a7bffd0

2e6c8df3cbe82d4dde32cdf7f71a6668dd536287

72cd2bbd96698941fa58cb6a7dfa4340187c0eb2499bd5a0e6cf4d7240c3a225

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 16:50:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

15744

URL

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP

216.58.207.227:0
ASN

#15169 GOOGLE

Magic

Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data

Size

15744
Hash

15d9f621c3bd1599f0169dcf0bd5e63e

7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52

f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

                                        GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://networkdeliverycurated.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 May 2023 07:44:41 GMT
expires: Sun, 19 May 2024 07:44:41 GMT
cache-control: public, max-age=31536000
age: 551151
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

networkdeliverycurated.com/favicon.ico

54.167.34.126

34494

URL

networkdeliverycurated.com/favicon.ico
IP

54.167.34.126:0
ASN

#14618 AMAZON-AES

Magic

MS Windows icon resource - 5 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel\012- data

Size

34494
Hash

d4a95c780824be97bc45a187ab7ad24b

53aeb2d44190d91ec2006379b3ddbd202b865d24

502322d8592de8395d6e7c2c37b18e04904e62d8f8b3caaa53858e4ebc64b692

HTTP Headers

                                        GET /favicon.ico HTTP/1.1
Host: networkdeliverycurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://networkdeliverycurated.com/25082-185328/101562?uid=77ZTGezSLbgNWc9bL6BvPqZ5gaN1AGHcZ7zkrG&prom_type=regular&prom_id=214654&pld=26L81sNgpwNGXF&answer-1=4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Fri, 26 May 2023 16:50:32 GMT
Content-Type: image/x-icon
Content-Length: 34494
Last-Modified: Wed, 14 Sep 2022 11:51:00 GMT
Connection: keep-alive
ETag: "6321c024-86be"
Expires: Fri, 26 May 2023 17:50:32 GMT
Cache-Control: max-age=3600
Accept-Ranges: bytes

fonts.googleapis.com/css?family=Muli

142.250.74.74

899

URL

fonts.googleapis.com/css?family=Muli
IP

142.250.74.74:0
ASN

#15169 GOOGLE

Magic

gzip compressed data, max compression\012- data

Size

899
Hash

b6065c491fdb75b13a5c5eceb87e645c

c281fd42c967ef1b2058e7d783e05539924d8e0c

1224ca02b327810424257fc55821b56a0fb6f77126926c4980db1ef0e6bbb01f

HTTP Headers

                                        GET /css?family=Muli HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://networkdeliverycurated.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 May 2023 16:50:32 GMT
date: Fri, 26 May 2023 16:50:32 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

networkdeliverycurated.com/25082-185328/101562?uid=77ZTGezSLbgNWc9bL6BvPqZ5gaN1AGHcZ7zkrG&prom_type=regular&prom_id=214654&pld=26L81sNgpwNGXF&answer-1=4

54.167.34.126

URL

networkdeliverycurated.com/25082-185328/101562?uid=77ZTGezSLbgNWc9bL6BvPqZ5gaN1AGHcZ7zkrG&prom_type=regular&prom_id=214654&pld=26L81sNgpwNGXF&answer-1=4
IP

54.167.34.126:0
ASN

#14618 AMAZON-AES

Magic

gzip compressed data, max speed, from Unix\012- data

Size

20
Hash

a4745abc5e7fdb89cc6df3069f3c6e69

74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed

d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf

HTTP Headers

                                        POST /25082-185328/101562?uid=77ZTGezSLbgNWc9bL6BvPqZ5gaN1AGHcZ7zkrG&prom_type=regular&prom_id=214654&pld=26L81sNgpwNGXF&answer-1=4 HTTP/1.1
Host: networkdeliverycurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 67
Origin: https://networkdeliverycurated.com
DNT: 1
Connection: keep-alive
Referer: https://networkdeliverycurated.com/25082-185328/101562?uid=77ZTGezSLbgNWc9bL6BvPqZ5gaN1AGHcZ7zkrG&prom_type=regular&prom_id=214654&pld=26L81sNgpwNGXF&answer-1=4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx/1.22.1
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.26
Cache-Control: max-age=0, must-revalidate, private
Date: Fri, 26 May 2023 16:50:32 GMT
Expires: Fri, 26 May 2023 16:50:32 GMT
Content-Encoding: gzip

networkdeliverycurated.com/25082-185327-typ/101562?uid=77ZTGezSLbgNWc9bL6BvPqZ5gaN1AGHcZ7zkrG

54.167.34.126

2338

URL

networkdeliverycurated.com/25082-185327-typ/101562?uid=77ZTGezSLbgNWc9bL6BvPqZ5gaN1AGHcZ7zkrG
IP

54.167.34.126:0
ASN

#14618 AMAZON-AES

Magic

HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1817)

Size

2338
Hash

2ae33d235068413f7dd28742ff25f2e8

2d5f2ae5f26f420c6b19be8d787efa1f1d90b408

58581a2fddaa9b011d2e9391cdeac493415c187de4df363d6c6f545a3e6e7363

HTTP Headers

                                        GET /25082-185327-typ/101562?uid=77ZTGezSLbgNWc9bL6BvPqZ5gaN1AGHcZ7zkrG HTTP/1.1
Host: networkdeliverycurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://networkdeliverycurated.com/25082-185328/101562?uid=77ZTGezSLbgNWc9bL6BvPqZ5gaN1AGHcZ7zkrG&prom_type=regular&prom_id=214654&pld=26L81sNgpwNGXF&answer-1=4
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx/1.22.1
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.26
Cache-Control: no-cache, private
Date: Fri, 26 May 2023 16:50:32 GMT
Content-Encoding: gzip

cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js

104.17.24.14

27958

URL

cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js
IP

104.17.24.14:0
ASN

#13335 CLOUDFLARENET

Magic

ASCII text, with very long lines (65451)

Size

27958
Hash

dc5e7f18c8d36ac1d3d4753a87c98d0a

c8e1c8b386dc5b7a9184c763c88d19a346eb3342

f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d

HTTP Headers

                                        GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://networkdeliverycurated.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

Report Overview

URL

IP

ASN

Submitted

Access

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (42)

#1 JS:Script (size: 129850)

#2 JS:Script (size: 15672)

#3 JS:Script (size: 89501)

#4 JS:Script (size: 72843)

#5 JS:Script (size: 53255)

#6 JS:Script (size: 99)

#7 JS:Script (size: 71)

#8 JS:Script (size: 74551)

#9 JS:Script (size: 259)

#10 JS:Script (size: 162879)

#11 JS:Script (size: 340)

#12 JS:Script (size: 84)

#13 JS:Script (size: 15396)

#14 JS:Script (size: 331774)

#15 JS:Script (size: 33)

#16 JS:Script (size: 45010)

#17 JS:Script (size: 15432)

#18 JS:Script (size: 370)

#19 JS:Script (size: 26948)

#20 JS:Script (size: 245)

#21 JS:Script (size: 237569)

#22 JS:Script (size: 10666)

#23 JS:Script (size: 97155)

#24 JS:Script (size: 71098)

#25 JS:Script (size: 4963)

#26 JS:Script (size: 10469)

#27 JS:Script (size: 2945)

#28 JS:Script (size: 9813)

#29 JS:Script (size: 373)

#30 JS:Script (size: 582747)

#31 JS:Script (size: 7646)

#32 JS:Script (size: 8438)

#33 JS:Script (size: 82)

#34 JS:Script (size: 387)

#35 JS:Script (size: 2786)

#36 JS:Script (size: 2211)

#37 JS:Script (size: 85)

#38 JS:Script (size: 21414)

#39 JS:Script (size: 413096)

#40 JS:Script (size: 295)

#41 JS:Script (size: 47188)

#42 JS:Script (size: 134186)

HTTP Transactions (113)

URL

IP

ASN

Magic

Size

Hash

HTTP Headers

URL

IP

ASN

Magic

Size

Hash