Report - sdcsalesar.live/product_details/43650361.html

Report Overview

Submitted URL
sdcsalesar.live/product_details/43650361.html
IP
172.67.135.103
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-26 23:39:37
Access
public
Website Title
Vorel of the Hull Clade Magic: the Gathering MTG Cards - Online Store
Final URL
sdcsalesar.live/product_details/43650361.html
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
62

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdn1.mtggoldfish.com	246080	2012-05-20	2015-03-04	2023-11-18	421 B	108 kB	54.230.111.74
qph.cf2.quoracdn.net	21563	2011-12-23	2022-01-13	2024-04-23	423 B	64 kB	162.159.152.17
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-25	441 B	2.9 kB	142.250.74.106
manuals.plus	71158	2019-01-04	2019-01-29	2024-04-20	413 B	46 kB	172.66.43.157
sdcsalesar.live	unknown	2024-03-23	2024-03-23	2024-04-18	37 kB	2.1 MB	172.67.135.103
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-04-25	2.0 kB	170 kB	104.17.25.14
static.wikia.nocookie.net	6940	2007-10-19	2014-02-27	2024-04-26	474 B	139 kB	74.120.188.204
ae01.alicdn.com	7254	2008-06-25	2015-11-26	2024-04-26	527 B	49 kB	47.246.44.251
i.rtings.com	161936	2011-11-23	2016-11-13	2024-02-10	425 B	230 kB	54.230.111.6
s3-us-west-2.amazonaws.com	unknown	2005-08-18	2017-01-29	2024-03-24	456 B	238 kB	52.218.133.184
i.etsystatic.com	7793	2011-04-11	2018-05-18	2024-04-26	440 B	119 kB	23.36.76.235
cdn.cardsrealm.com	unknown	2018-04-04	2020-07-05	2023-07-18	470 B	80 kB	194.242.11.186

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-26	medium	sdcsalesar.live	Sinkholed
2024-04-26	medium	sdcsalesar.live	Sinkholed
2024-04-26	medium	sdcsalesar.live	Sinkholed
2024-04-26	medium	sdcsalesar.live	Sinkholed
2024-04-26	medium	sdcsalesar.live	Sinkholed
2024-04-26	medium	sdcsalesar.live	Sinkholed
2024-04-26	medium	sdcsalesar.live	Sinkholed
2024-04-26	medium	sdcsalesar.live	Sinkholed
2024-04-26	medium	sdcsalesar.live	Sinkholed
2024-04-26	medium	sdcsalesar.live	Sinkholed
2024-04-26	medium	sdcsalesar.live	Sinkholed
2024-04-26	medium	sdcsalesar.live	Sinkholed
2024-04-26	medium	sdcsalesar.live	Sinkholed
2024-04-26	medium	sdcsalesar.live	Sinkholed
2024-04-26	medium	sdcsalesar.live	Sinkholed
2024-04-26	medium	sdcsalesar.live	Sinkholed
2024-04-26	medium	sdcsalesar.live	Sinkholed
2024-04-26	medium	sdcsalesar.live	Sinkholed
2024-04-26	medium	sdcsalesar.live	Sinkholed
2024-04-26	medium	sdcsalesar.live	Sinkholed
2024-04-26	medium	sdcsalesar.live	Sinkholed
2024-04-26	medium	sdcsalesar.live	Sinkholed
2024-04-26	medium	sdcsalesar.live	Sinkholed
2024-04-26	medium	sdcsalesar.live	Sinkholed
2024-04-26	medium	sdcsalesar.live	Sinkholed
2024-04-26	medium	sdcsalesar.live	Sinkholed
2024-04-26	medium	sdcsalesar.live	Sinkholed
2024-04-26	medium	sdcsalesar.live	Sinkholed
2024-04-26	medium	sdcsalesar.live	Sinkholed
2024-04-26	medium	sdcsalesar.live	Sinkholed
2024-04-26	medium	sdcsalesar.live	Sinkholed

ThreatFox

No alerts detected

JavaScript (48)

	URL	Size	First Seen	Last Seen
	unknown	1.0 kB	2023-07-26	2024-05-07
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-07-26 13:37:44 Last Seen2024-05-07 01:49:03 Times Seen59 Hash e7e3b8fcf88dd9ccb044ef5dd45915cb 426037acb5a39793686b9b444fe700489bae963c 4079fce41d344828c2fc2659868de4578d5129a9835311215fb1941d2c3773f9 Loading...

	unknown	2.0 kB	2023-07-26	2024-05-07
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-07-26 13:37:44 Last Seen2024-05-07 01:49:03 Times Seen59 Hash aea6fdd0c50b5b2544fe2899a9a3b288 24fbf69d79b94bc623913211666a265d9c6fdff7 dab897deb7e6f1a9f27fa21ca6027a348e789937b09c02d64d783fd4d5c6c6a3 Loading...

	unknown	134 B	2023-11-10	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-11-10 18:31:23 Last Seen2024-05-04 01:58:20 Times Seen5 Hash dbacdac91216139aabb12bcb6427125b 5448aac15e08e034943c5cc113a5b2533aafddfe f6cac7047b23f97e2d9c550964abd31ca31e5d6bb077bc114e85e7f62789895e Loading...

	unknown	1.5 kB	2023-07-26	2024-05-07
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-07-26 13:37:44 Last Seen2024-05-07 01:49:03 Times Seen53 Hash b43fa7cc5a45035a9f8a0abe1335b5a7 61933fd0d2e0e61647097d3cc72243ab77c85f1c b4967741000ab470155fd48a923ddec65a0247d5a4d7cd188b8027be2a4c6f69 Loading...

	sdcsalesar.live/product_details/43650361.html	1.4 kB	2023-11-09	2024-05-04
Pretty URL sdcsalesar.live/product_details/43650361.html IP 172.67.135.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-09 05:45:57 Last Seen2024-05-04 01:58:20 Times Seen9 Hash 77c094f85d10511aea5fc87df9f94313 79438a9d25555aff09626fa48d9dad47da7c66b0 75268f2efca1279ac46f02efe90754b31a4bbadcb4a47f83fc9f745fdb509b46 Loading...

	unknown	285 B	2024-04-22	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-04-22 16:37:54 Last Seen2024-05-04 01:58:20 Times Seen3 Hash d29ac3bfbf1cf50fbbbb98b95ac243b7 032ca2ddde7ae42b3b832cac1e5802a135a8c950 9f03192f42f6559a70ecbda1e82e34b3623f0146a076c26c8529edbc81f5a058 Loading...

	unknown	222 B	2024-04-22	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-04-22 16:37:54 Last Seen2024-05-04 01:58:20 Times Seen3 Hash 107e6a74d8170b01f386a434d9e01a3d 49deb1ce05cfa4c589625c96fd52264b2cb7d4e7 fc97c22f1da9620b1e85c8848874b50bc87e9021f0e3171c269716122cec952c Loading...

	unknown	223 B	2024-04-22	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-04-22 16:37:55 Last Seen2024-05-04 01:58:20 Times Seen3 Hash ea86045ab33290675c4498e5ff9fe240 265651d9e00b5f1b7bbb018872dc5b2e96cc8814 0249d46e5fdeb1db60d6f1be0ddf7d2fec90373f6562eb7145a6f2373b44eba8 Loading...

	unknown	3.7 kB	2023-07-26	2024-05-07
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-07-26 13:37:44 Last Seen2024-05-07 01:49:03 Times Seen59 Hash 2f797b61ef7cc74388b3bc5c632a4c57 e52321b18d3b6a29875706e551cd1ca6f07e5b08 10ff3612f665baabd79e069759e88e84aaa2ce013789606d079e58673650e4e2 Loading...

	unknown	783 B	2023-07-26	2024-05-07
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-07-26 13:37:44 Last Seen2024-05-07 01:49:03 Times Seen53 Hash 9d25de5926c79fb8d7af32dfe8f594f6 69976077fe199eb227b0c7c4c34d78798c588b6f 45579e258830652d2bc8751d671b616b0525608d7de4b9c05637788fbb07be24 Loading...

	unknown	12 kB	2023-11-10	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-11-10 18:31:23 Last Seen2024-05-04 01:58:20 Times Seen5 Hash 35175168f767cbd90466dcd2c7edbfb5 48a9869bcd916fdd91dc00be54668c6839621fc3 3cc4bcbd5fc10d7055d753666a0f170b55e255847dac7f1d240c73e3d4289fae Loading...

	unknown	199 B	2023-07-26	2024-05-07
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-07-26 13:37:44 Last Seen2024-05-07 01:49:03 Times Seen59 Hash 67a2c7b2c5a50b9967db9e9d1a0f4cc9 802c4eb3b2eaaa9cd03eafb632434d9bfcd6e99d e548dd3a15307e94b635e55caaee70050cfc332df229e5f8f341bee4f9ef1f76 Loading...

	unknown	220 B	2023-11-10	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-11-10 18:31:23 Last Seen2024-05-04 01:58:20 Times Seen5 Hash 6936f0ad9d86b562e43761ad678dc0f5 b238e6e67f3871f35442bb014489040863842b5f 965490cc3b547546ae3098daf6f21b392c92d3868b2175180f1c9c44a927740f Loading...

	sdcsalesar.live/product_details/43650361.html	1.5 kB	2023-11-09	2024-05-04
Pretty URL sdcsalesar.live/product_details/43650361.html IP 172.67.135.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-09 05:45:57 Last Seen2024-05-04 01:58:20 Times Seen9 Hash 0b2eded2f3d8b4f849aeba7f89a9c3fb 0369bf605fe738c3843ba5c43ecd9c4eb602d4d3 60a641a6adbe0eb21a20996fe19f56360ccd474010206548404eef9ed50405e7 Loading...

	sdcsalesar.live/product_details/43650361.html	1.6 kB	2023-11-09	2024-05-04
Pretty URL sdcsalesar.live/product_details/43650361.html IP 172.67.135.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-09 05:45:57 Last Seen2024-05-04 01:58:20 Times Seen9 Hash afddd21f648d3bb3886d6ba4d22e3321 12d3749f6e699b2f6e851be7e4fd5f053bb73c64 32591322c02fcf584839a99a5d0bef430ffc1e5bace74dd59038274b050505ca Loading...

	unknown	103 B	2023-11-10	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-11-10 18:31:23 Last Seen2024-05-04 01:58:20 Times Seen5 Hash bb80230f6aa3a266f88fb89358a7ffa8 32bb35a4d591504c077cb482ea4ae7c8eec22ec9 7acf0f2f034907f1e0a7fdde1e34dffe28dbb5d5cd5f90fa0ca405393c50b066 Loading...

	sdcsalesar.live/static/market/js/jquery.min.js	84 kB	2023-03-07	2024-05-07
Pretty URL sdcsalesar.live/static/market/js/jquery.min.js IP 172.67.135.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-05-07 01:49:04 Times Seen14051 Hash e40ec2161fe7993196f23c8a07346306 afb90752e0a90c24b7f724faca86c5f3d15d1178 874706b2b1311a0719b5267f7d1cf803057e367e94ae1ff7bf78c5450d30f5d4 Loading...

	sdcsalesar.live/static/default/js/delighters.js	2.6 kB	2023-03-12	2024-05-07
Pretty URL sdcsalesar.live/static/default/js/delighters.js IP 172.67.135.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 22:29:02 Last Seen2024-05-07 01:49:04 Times Seen185 Hash cc31823856831d96acd96628fe1bc12c 4441d2792dc7fb9f54cde379cd6dd5085ae7af33 0636cf1e7380cd58da452b76c4f7d8d902d25c735188b56d005c73a127bae19d Loading...

	unknown	2.2 kB	2023-07-26	2024-05-07
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-07-26 13:37:44 Last Seen2024-05-07 01:49:03 Times Seen53 Hash bbc2c87307db938ed18aeb60f8617bf0 9f0f41df245ddd5d0c19a0dd031d399d5f803eaf fbb802425d01b533be464a7177298f884d1f48f6a48143cf094c4dc52bc91e6b Loading...

	sdcsalesar.live/traffic_statistics?gurl=	0 B	2023-03-07	2024-05-07
Pretty URL sdcsalesar.live/traffic_statistics?gurl= IP 172.67.135.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-07 08:17:04 Times Seen37397481 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	sdcsalesar.live/product_details/43650361.html	8.1 kB	2024-04-22	2024-05-04
Pretty URL sdcsalesar.live/product_details/43650361.html IP 172.67.135.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-22 16:37:54 Last Seen2024-05-04 01:58:20 Times Seen3 Hash ce926bda47e7b8a17c2f8e61450c185f 6c6f327bdc0a66614d8975959bedc41e077b7360 3b8d39b09ac5c8fc1eec7ba50affb3a86a39458923b63ea7f336840af9d3189a Loading...

	cdnjs.cloudflare.com/ajax/libs/Swiper/8.3.2/swiper-bundle.js	338 kB	2023-03-07	2024-05-07
Pretty URL cdnjs.cloudflare.com/ajax/libs/Swiper/8.3.2/swiper-bundle.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:09 Last Seen2024-05-07 01:49:04 Times Seen263 Hash de581e420bf52d70e353080a13094ea8 7e727d99fea8c31c2f2e3173105d585ee3289d31 4eb89fcf77b0f8b3bb92ffae01f6a2773d836e9b15201337de8fe87e7e5c7fa5 Loading...

	sdcsalesar.live/product_details/43650361.html	10 kB	2024-04-27	2024-04-27
Pretty URL sdcsalesar.live/product_details/43650361.html IP 172.67.135.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-27 01:39:39 Last Seen2024-04-27 01:39:39 Times Seen1 Hash cb696c4da552692b91d3dd302627aaec 18da33011c49cdd5aed8fd14eee525fc0ed0b2ef 3200f6e95e04475b8a9f778b10eba01ca7df75b319b917a12878231f3f7b6210 Loading...

	sdcsalesar.live/product_details/43650361.html	2.0 kB	2024-04-22	2024-05-04
Pretty URL sdcsalesar.live/product_details/43650361.html IP 172.67.135.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-22 16:37:55 Last Seen2024-05-04 01:58:20 Times Seen3 Hash b0dd0ca8cfbd29b061e2543f71f2deea 24cf07cba08b69776fca5db38088639931c73ba7 c5add88e2756529fb7eea6d487fd34076bcb4c24ae09c19793bf3eb5d896774b Loading...

	unknown	256 B	2024-04-22	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-04-22 16:37:54 Last Seen2024-05-04 01:58:20 Times Seen3 Hash 5d29183a415c339a9cc0c590b113c7d8 9e00956a35113e6ff35544a32d6aaa9ce984eeba 273fdab82da8d394dddcbb5bfd533249bf932047f18a80a91fe5a9af5b8a1587 Loading...

	unknown	107 B	2023-11-09	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-11-09 05:45:57 Last Seen2024-05-04 01:58:20 Times Seen9 Hash ad1c234cf418d3df51cc9c173e97e918 aacaf06eb1ce5062043f5af7162aecac1c8bbf7d 54738d03da1e3daa277ea4503aaaae39feea92ac3da155d357aabcf277276ea1 Loading...

	cdnjs.cloudflare.com/ajax/libs/vue-resource/1.5.3/vue-resource.min.js	15 kB	2023-03-12	2024-05-07
Pretty URL cdnjs.cloudflare.com/ajax/libs/vue-resource/1.5.3/vue-resource.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 22:29:02 Last Seen2024-05-07 01:49:04 Times Seen270 Hash 5f4a59735ca9517d0478f395439bd517 f820c08cf114da8ec451e8eedc0da51dfcba5e02 ff5c4da48c495fd0e611aec47b2986097c0351d5e1a527ab1ea64085dcdcdbe9 Loading...

	unknown	177 B	2023-11-09	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-11-09 05:45:57 Last Seen2024-05-04 01:58:20 Times Seen9 Hash 983f084229ab638ef296fbf2aa967375 631b04ddde8919b7bdcdec254c39d12b92e70d98 c47a84cefe3b9e697449112ce9b448ce2bf97149357a67fc0b923ae6b3fa914f Loading...

	sdcsalesar.live/product_details/43650361.html	79 B	2023-03-12	2024-05-07
Pretty URL sdcsalesar.live/product_details/43650361.html IP 172.67.135.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 22:29:02 Last Seen2024-05-07 01:49:03 Times Seen125 Hash a71ddf2ef16448b1a9a116c9969bb84a 38f0cfe879b01e50b2022a5b46ccebe972b57afa f81cdd71a100042bdbdd3a8d1fa89581bc7763e26f2ff6eb7bbefda85e9143a3 Loading...

	unknown	162 B	2023-11-10	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-11-10 18:31:23 Last Seen2024-05-04 01:58:20 Times Seen5 Hash 3382d1a35f011d258f1894d6b52adf5f f7b13e58c2db2e70ae30ddf85639e80fec9880d5 a3ee400f412edf816a27960f07466d1cc4572459bdd7304338433dbb62e7fa71 Loading...

	unknown	147 B	2023-11-10	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-11-10 18:31:23 Last Seen2024-05-04 01:58:20 Times Seen5 Hash 57291bf47e973ba24fee1919d7a9fcde a0d6e2f23c706ec0ac6fad211bf69b79a2070d9e 9011a94a4e319e69bad7bdc0a22ee97ec97f55e8b41ccb626354525b0d4a2211 Loading...

	unknown	166 B	2023-11-10	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-11-10 18:31:23 Last Seen2024-05-04 01:58:20 Times Seen5 Hash f2f43009c151bcae4646ea09b8d836c2 e1f609bd5e14b86772e17c06793b79210a00a473 80957ed7179163d6f0cb40fa19cb7b02c4a99c316ffc2201840b3db6cc71ad24 Loading...

	unknown	773 B	2023-07-26	2024-05-07
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-07-26 13:37:44 Last Seen2024-05-07 01:49:03 Times Seen53 Hash 15a39005ea43b9fa5ff86c3516ab5ee5 5c3e809063e8aa46dd2b3406874a6879a80e5bf8 4cba25fcb224ea4dbc3d577db7476d616ac7d4e3dd4110830c16709f8375e0f2 Loading...

	sdcsalesar.live/product_details/43650361.html	696 B	2023-03-12	2024-05-07
Pretty URL sdcsalesar.live/product_details/43650361.html IP 172.67.135.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 22:29:02 Last Seen2024-05-07 01:49:03 Times Seen125 Hash 207792bcff09eca0993cd75875f72095 1f602949e3de9dd8638601085791e25c6cc0acda ae57e93366c984a79002b078c27040993cd88c77218f277655fc031b6bb3e1d5 Loading...

	unknown	776 B	2023-07-26	2024-05-07
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-07-26 13:37:44 Last Seen2024-05-07 01:49:03 Times Seen53 Hash be63d7a2a9f9124fc45a2742e182bfd9 3fd6281aaf80b0685b0ce1046a4153f9ae279b08 abd83281fb2c20c4a2c41fa07862c5f6ba8f59b20eabb2082dcb153524932118 Loading...

	unknown	54 B	2023-04-11	2024-05-07
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 22:34:44 Last Seen2024-05-07 06:39:41 Times Seen871 Hash 21ad6a5e027895d7fef5bee4de0a6c02 1997f8ca0f217c1001a42318dc5976a0d5a56469 6e97ed48cf9a0f9bf4e5199bc5546e24c1067a10e7a582b886143be40f479bb5 Loading...

	sdcsalesar.live/static/default/js/public.js	1.9 kB	2023-03-12	2024-05-07
Pretty URL sdcsalesar.live/static/default/js/public.js IP 172.67.135.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 22:29:02 Last Seen2024-05-07 01:49:03 Times Seen159 Hash 53ceae9d8b9f4372ad101d91439cdbb7 662fa3a84762aee5bcb1da67ebbe2e37b3eeb79e 535ee4fa0189e79bd9a7d6ae4aa466180c4ac5b82b47647482ddce74587ce249 Loading...

	cdnjs.cloudflare.com/ajax/libs/vant/2.12.48/vant.min.js	279 kB	2023-03-07	2024-05-07
Pretty URL cdnjs.cloudflare.com/ajax/libs/vant/2.12.48/vant.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:31 Last Seen2024-05-07 01:49:04 Times Seen264 Hash 0292da744fb4f768ae77370f868a674e 6dbafd633d187d11e2ef0a9a47044fd5646c70fb 068b71488c3a0d9ccf95e76a72a93678f9baf45786e87e0b2dc8f1be25f72468 Loading...

	unknown	380 B	2024-04-22	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-04-22 16:37:54 Last Seen2024-05-04 01:58:20 Times Seen3 Hash dc4b6bd5490b6abbe53624aa0a6d72c3 45f4398044ef21cf5499a98ad92dcb892fca0dca 95158b4561c1ec48c2b7a3b3cb113d331c9283383b40719850942888c7c910d3 Loading...

	unknown	1.1 kB	2023-07-26	2024-05-07
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-07-26 13:37:44 Last Seen2024-05-07 01:49:03 Times Seen53 Hash 45c5402410be51c5c0222c8519cf660d 471fdc790f50cc0271ca1be5461f17d012cc6555 b643a82352094041aa8ef10323c3c64a683a85b61451fb439b1099c79ee02514 Loading...

	unknown	2.0 kB	2023-07-26	2024-05-07
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-07-26 13:37:44 Last Seen2024-05-07 01:49:03 Times Seen53 Hash c7eddf752593ca75c567e9f5aff590a4 ad456b19bd0ae1195bbd25b57af0371a5af1e3f2 d7d6b5dd0a87711ee3904abe8d2dba182baf97146c007ac66045ab7c397074a6 Loading...

	sdcsalesar.live/static/default/js/vue.min.js	94 kB	2023-03-07	2024-05-07
Pretty URL sdcsalesar.live/static/default/js/vue.min.js IP 172.67.135.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:40 Last Seen2024-05-07 01:49:04 Times Seen1212 Hash b21b8531847604ab5f2f5caaef51ba31 da8d7a59f4e6cc55ea58abec33ef9cebb9ba67c1 9174c425c445377df4562ad9165ea08fdf9433a808296d7de5f619791df10e17 Loading...

	unknown	9.8 kB	2024-04-27	2024-04-27
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-04-27 01:39:40 Last Seen2024-04-27 01:39:40 Times Seen1 Hash 85e9148cee44be9d41ac74150ff35cd0 3b0e5f63024151196e1911913b3d508c3a6446ff d6b45da21e892463b04bbca0d84ed411da90a286406bd1b47ffda79617fcf813 Loading...

	unknown	266 B	2023-11-09	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-11-09 05:45:57 Last Seen2024-05-04 01:58:20 Times Seen9 Hash 57394e21f72d1ebb4c69daa923a19ee1 ae826313f5bf817ba98e08670733615a054be616 0b3b5bc806c4a801514fbf7d89b25f946ba21eabafaa406f0de5bb5003a75de5 Loading...

	unknown	385 B	2023-07-26	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-07-26 13:37:44 Last Seen2024-05-04 01:58:20 Times Seen15 Hash 974e1640c3de922bd877c075396877be 54e63e5491c4cd1b821c143ffb7de67e401b458e dd2255a57b4e1c9baefd86c325b70452bbe0566c41a3c84d519435c333728c05 Loading...

	sdcsalesar.live/product_details/43650361.html	151 B	2023-03-12	2024-05-07
Pretty URL sdcsalesar.live/product_details/43650361.html IP 172.67.135.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 22:29:02 Last Seen2024-05-07 01:49:04 Times Seen124 Hash 4cc479dfa9707e2f24a8e129c80429b6 a6e2c685240dd740b22e226767035173703473a4 120dbe66705b4abb82ad0b16aabbd8ff3acee9be1fdfc30e77a2557012a1181d Loading...

	unknown	108 B	2023-11-09	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-11-09 05:45:57 Last Seen2024-05-04 01:58:20 Times Seen9 Hash e793940aced14519a1c9e27f4b34b38f 220737528f69f8ac0ecd972821bad6abcfb8dd07 0461d175f0bb1b4bb3f8577565fc0551ecd8151a0eb4d0937ded2ca631856278 Loading...

		Size	First Seen	Last Seen
	#1 Write - ea47d7a66d8152302cd901d56844cb81	72 B	2023-03-12	2024-05-07
Pretty Observations First Seen2023-03-12 22:29:02 Last Seen2024-05-07 01:49:04 Times Seen128 Hash ea47d7a66d8152302cd901d56844cb81 235d8306b2b513c8851d054491a83beb3e194f94 ee7229be5e00ebb674d9f12a2aba9d62130a20978a0c27162a984e32530a1d5f Loading...

HTTP Transactions (46)

URL IP Response Size

sdcsalesar.live/static/market/img/payment.png

172.67.135.103

200 OK

15 kB

URL GET HTTP/3
sdcsalesar.live/static/market/img/payment.png
IP
172.67.135.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsdcsalesar.live
FingerprintB5:5F:94:30:B5:96:3C:E5:BB:A2:B2:86:CA:1E:35:72:05:4A:97:40
ValiditySat, 23 Mar 2024 02:20:43 GMT - Fri, 21 Jun 2024 02:20:42 GMT

File type
PNG image data, 342 x 26, 8-bit/color RGBA, non-interlaced
Size
15 kB (14874 bytes)
Hash
d9e27afb8d07e73a5d78c58219db8284
2c8e0b0821ae555b66a6d9ad9d3f3a97d8164f99
1567d764b3ee71f11f52d807789d9a970c60dd195b39f2b295d476308d76aeb3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/market/img/payment.png HTTP/1.1
Host: sdcsalesar.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sdcsalesar.live/product_details/43650361.html
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IlJWL1d2Ry84THRST1JqUkx6aDRjSWc9PSIsInZhbHVlIjoiMUE1V3pDV1dqZWtXTk4rSWNrNDUvZU9nSEk5MzZueEVtZGxaTi95U1FrQTIxdjNLeWN2MExueXVXdnoxNG5xclFFU2VZMWQ4SVpLbFZjVFgreFVnM2IzNXo4YXpoY2RjTnJtMjFQS3FMbUh4NDdZS25xd2VDQjBkSzNqQW1IK1oiLCJtYWMiOiJlZTM0NzFiN2ZiOWM3NWI5OWI5YTRlZWUyOTU0OWJkODhmZGJmZTQyZWIwNjFhODNmZmRmOWIyNTU4YTY2YmQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InVaYzRPelJtN29EUDJCajNkT2Z2b2c9PSIsInZhbHVlIjoiejZ1cWs2OEltTGlIMG9XdjQwcE1UTnlKUG15cTdnTFdnRkpQY252dmFOSitOYS9aVGhDZUFJMGFkTVRNVG93ZXVaYmRwaFhJcWhicTVUQnFKOFpaZ2xUd01lNWkzbjBVdS9OWTN5NEZMQ0dBdVNVZEt3cnNYSElPOVdXeVg4THIiLCJtYWMiOiI2ZWU4Zjk5OTk2ZTAzOGIxOWVjMzM0OWNjYmZlMjhjNTQ4NmZjMGI2YzcxMTliNjI5OGI0MDlhN2NlNjRhODZlIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:39:10 GMT
content-type: image/png
content-length: 14874
last-modified: Fri, 20 Oct 2023 06:16:20 GMT
etag: "3a1a-6081fcfa153f7"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4729
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LUtsbSEZa9W7RrzdOlORO0p8FlbTaOR%2BX4Ba5GqZCQgRy4Lx2Fn%2BAh%2BYnEU9iaV5oOysxwqzoh%2Bgybyqf6QhGp%2FePRm5RQ49ZWM14qujQonp%2B2pQM0Q8Jhw7XvHRlrQOu2k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa69204949b4f4-OSL
alt-svc: h3=":443"; ma=86400

sdcsalesar.live/static/logo.png

172.67.135.103

200 OK

4.3 kB

URL GET HTTP/3
sdcsalesar.live/static/logo.png
IP
172.67.135.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsdcsalesar.live
FingerprintB5:5F:94:30:B5:96:3C:E5:BB:A2:B2:86:CA:1E:35:72:05:4A:97:40
ValiditySat, 23 Mar 2024 02:20:43 GMT - Fri, 21 Jun 2024 02:20:42 GMT

File type
PNG image data, 240 x 80, 8-bit/color RGBA, non-interlaced
Size
4.3 kB (4317 bytes)
Hash
94dd3658355e6da944f2c85f725c07c5
61c1c97569401df34bcb475469b911a1fbeab880
e2ff9f0cc70d2cdb8230b7ffa54a2fdcf713cd3194d67e62044bf0562efef0f9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/logo.png HTTP/1.1
Host: sdcsalesar.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sdcsalesar.live/product_details/43650361.html
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IlJWL1d2Ry84THRST1JqUkx6aDRjSWc9PSIsInZhbHVlIjoiMUE1V3pDV1dqZWtXTk4rSWNrNDUvZU9nSEk5MzZueEVtZGxaTi95U1FrQTIxdjNLeWN2MExueXVXdnoxNG5xclFFU2VZMWQ4SVpLbFZjVFgreFVnM2IzNXo4YXpoY2RjTnJtMjFQS3FMbUh4NDdZS25xd2VDQjBkSzNqQW1IK1oiLCJtYWMiOiJlZTM0NzFiN2ZiOWM3NWI5OWI5YTRlZWUyOTU0OWJkODhmZGJmZTQyZWIwNjFhODNmZmRmOWIyNTU4YTY2YmQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InVaYzRPelJtN29EUDJCajNkT2Z2b2c9PSIsInZhbHVlIjoiejZ1cWs2OEltTGlIMG9XdjQwcE1UTnlKUG15cTdnTFdnRkpQY252dmFOSitOYS9aVGhDZUFJMGFkTVRNVG93ZXVaYmRwaFhJcWhicTVUQnFKOFpaZ2xUd01lNWkzbjBVdS9OWTN5NEZMQ0dBdVNVZEt3cnNYSElPOVdXeVg4THIiLCJtYWMiOiI2ZWU4Zjk5OTk2ZTAzOGIxOWVjMzM0OWNjYmZlMjhjNTQ4NmZjMGI2YzcxMTliNjI5OGI0MDlhN2NlNjRhODZlIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:39:10 GMT
content-type: image/png
content-length: 4317
last-modified: Mon, 23 Oct 2023 05:49:12 GMT
etag: "10dd-6085bc819a267"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4729
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9O7vlmU5k7SNBbX3iCO6FgURA86sb7OqrvaTmoEa9Xe6Wk%2BM4nVlDKqLNgPq1wn%2FiKi%2BiUCVN7CIwIKp%2BzxM52h%2F1yc%2Fb8aBboFNZHsBysczGNCry5xzI4Dwh6ShQN%2BO9ic%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa69204948b4f4-OSL
alt-svc: h3=":443"; ma=86400

cdnjs.cloudflare.com/ajax/libs/vant/2.12.48/index.css

104.17.25.14

200 OK

38 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/vant/2.12.48/index.css
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
38 kB (38108 bytes)
Hash
9a547188fa485f8ca9b2cc7d6d2524ef
7893335159a1f637eb24cd05aaba96ac156c7f65
897e513fc70a4e1759ceb06ed3c9348d036b36b724dc60d815f9f3124de6f433

HTTP Headers

GET /ajax/libs/vant/2.12.48/index.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 23:39:10 GMT
content-type: text/css; charset=utf-8
content-length: 38108
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "62b69136-94dc"
last-modified: Sat, 25 Jun 2022 04:38:14 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 184337
expires: Wed, 16 Apr 2025 23:39:10 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wfpoXJ3xE5wYM3J0d%2FXUjDnYGDOZ82G95Nyq81svkoEOQ7t%2F6kKd8dQPnJwUIDyfKBndFTF16dIcRor1tID8ISYLYB%2FoFXjXdRC1n8IeuumN3sqWgmxBTx17YPzEey%2FcjtgnjGNr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87aa69207e9a569f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/Swiper/8.3.2/swiper-bundle.min.css

104.17.25.14

200 OK

3.9 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/Swiper/8.3.2/swiper-bundle.min.css
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (16213)
Size
3.9 kB (3945 bytes)
Hash
951eae8c8a442c2940c54d180301ed41
771518669a370d915adf0d207f2a22092a768cd1
4359643e1b6350bffd6e16d543603ea7b393855957e792ac7f9178a81ed0b14d

HTTP Headers

GET /ajax/libs/Swiper/8.3.2/swiper-bundle.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 23:39:10 GMT
content-type: text/css; charset=utf-8
content-length: 3945
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "62dffbc4-f69"
last-modified: Tue, 26 Jul 2022 14:35:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 69784
expires: Wed, 16 Apr 2025 23:39:10 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=l4QD6Hf3Kjy3%2FiyWsNIxDtYRUFFGmmZJeiyYOmEA6tjH3Y%2BTC6tfdO5ysHr4ckbHXzi2D%2B5IyJGTkN9eD%2F6AjS%2F0xnU6dLeCKt2O9J8lqJ9TEJJNNckfNe51SmlAwgCFTECljLDe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87aa69209ea7569f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/Swiper/8.3.2/swiper-bundle.js

104.17.25.14

200 OK

50 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/Swiper/8.3.2/swiper-bundle.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text
Size
50 kB (49876 bytes)
Hash
de581e420bf52d70e353080a13094ea8
7e727d99fea8c31c2f2e3173105d585ee3289d31
4eb89fcf77b0f8b3bb92ffae01f6a2773d836e9b15201337de8fe87e7e5c7fa5

HTTP Headers

GET /ajax/libs/Swiper/8.3.2/swiper-bundle.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 23:39:10 GMT
content-type: application/javascript; charset=utf-8
content-length: 49876
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "62dffbc4-c2d4"
last-modified: Tue, 26 Jul 2022 14:35:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 8537109
expires: Wed, 16 Apr 2025 23:39:10 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aWbWrUv4MX3KIeQApbt%2B%2F1NK%2B%2FU88Rx%2BxwO3Ui7sKnKtLiJo1GZ7%2Fkmla8cq0ldM1eok5rTnRpWPzLKw%2FY%2B3F67WTBRc9eb1KB7z4friVBuhoh17mUeMx3oDp4qylxnuYuRYrFxD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87aa69209ea9569f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/vue-resource/1.5.3/vue-resource.min.js

104.17.25.14

200 OK

4.9 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/vue-resource/1.5.3/vue-resource.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (14957)
Size
4.9 kB (4866 bytes)
Hash
5f4a59735ca9517d0478f395439bd517
f820c08cf114da8ec451e8eedc0da51dfcba5e02
ff5c4da48c495fd0e611aec47b2986097c0351d5e1a527ab1ea64085dcdcdbe9

HTTP Headers

GET /ajax/libs/vue-resource/1.5.3/vue-resource.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 23:39:10 GMT
content-type: application/javascript; charset=utf-8
content-length: 4866
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "60c785b9-1302"
last-modified: Mon, 14 Jun 2021 16:37:13 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 70708
expires: Wed, 16 Apr 2025 23:39:10 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pNIwoHG2h%2BPujvvxaDvBbiRWw9yHJn2Jamn8dcqOSZcllgrSJRh62GJy8om4RUTmTrBRBC7cPfGmggHGIm2kYcvZbwB1S1h6Lje7r35wJvBixgbH6xk2jG8tQ%2FoDD7DRLAYm8E7F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87aa69209eaa569f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/vant/2.12.48/vant.min.js

104.17.25.14

200 OK

68 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/vant/2.12.48/vant.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (57307)
Size
68 kB (67811 bytes)
Hash
0292da744fb4f768ae77370f868a674e
6dbafd633d187d11e2ef0a9a47044fd5646c70fb
068b71488c3a0d9ccf95e76a72a93678f9baf45786e87e0b2dc8f1be25f72468

HTTP Headers

GET /ajax/libs/vant/2.12.48/vant.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 23:39:10 GMT
content-type: application/javascript; charset=utf-8
content-length: 67811
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "62b69136-108e3"
last-modified: Sat, 25 Jun 2022 04:38:14 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1402989
expires: Wed, 16 Apr 2025 23:39:10 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tLgcipC3Ag9mduVXdALqTstjv5HoCQde8NUOOpZkznIvepuHW52PaDOsoXg5gwX8SanleCb0nxh7rv1SkyF0sqBtprufqiHDVTyLuknAPyNIXl%2BsjfWkmVKVQxWkSMl9UeLsw7fY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87aa69209eab569f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

sdcsalesar.live/static/magento/css/css

172.67.135.103

200 OK

1.7 kB

URL GET HTTP/3
sdcsalesar.live/static/magento/css/css
IP
172.67.135.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsdcsalesar.live
FingerprintB5:5F:94:30:B5:96:3C:E5:BB:A2:B2:86:CA:1E:35:72:05:4A:97:40
ValiditySat, 23 Mar 2024 02:20:43 GMT - Fri, 21 Jun 2024 02:20:42 GMT

File type
data
Size
1.7 kB (1737 bytes)
Hash
a8f92ff4be823b7d0841ee51bff2b962
e1e2b8d5d0d24b4dfcc5782cce719c1fea700712
f8d2f59ea0a1cea1cae1d8fc655dae05bd1501856d66ef24ad32400cadae063e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/magento/css/css HTTP/1.1
Host: sdcsalesar.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sdcsalesar.live/product_details/43650361.html
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IlJWL1d2Ry84THRST1JqUkx6aDRjSWc9PSIsInZhbHVlIjoiMUE1V3pDV1dqZWtXTk4rSWNrNDUvZU9nSEk5MzZueEVtZGxaTi95U1FrQTIxdjNLeWN2MExueXVXdnoxNG5xclFFU2VZMWQ4SVpLbFZjVFgreFVnM2IzNXo4YXpoY2RjTnJtMjFQS3FMbUh4NDdZS25xd2VDQjBkSzNqQW1IK1oiLCJtYWMiOiJlZTM0NzFiN2ZiOWM3NWI5OWI5YTRlZWUyOTU0OWJkODhmZGJmZTQyZWIwNjFhODNmZmRmOWIyNTU4YTY2YmQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InVaYzRPelJtN29EUDJCajNkT2Z2b2c9PSIsInZhbHVlIjoiejZ1cWs2OEltTGlIMG9XdjQwcE1UTnlKUG15cTdnTFdnRkpQY252dmFOSitOYS9aVGhDZUFJMGFkTVRNVG93ZXVaYmRwaFhJcWhicTVUQnFKOFpaZ2xUd01lNWkzbjBVdS9OWTN5NEZMQ0dBdVNVZEt3cnNYSElPOVdXeVg4THIiLCJtYWMiOiI2ZWU4Zjk5OTk2ZTAzOGIxOWVjMzM0OWNjYmZlMjhjNTQ4NmZjMGI2YzcxMTliNjI5OGI0MDlhN2NlNjRhODZlIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:39:10 GMT
last-modified: Fri, 20 Oct 2023 06:16:20 GMT
etag: W/"4d2-6081fcf9f40b6-gzip"
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bSxHDgXiucy3bO0ULJd%2BT8Z2wYe2TCudYLope4F9vp7EaXEbACGoKfNMIjgijwMYHtwQ6pZj5sPI5XdmG7GqvrcS%2Bv5dzjDmKERpGVzYPSX8yJ6S5xZDlELexWUCiviACwg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa6920190db4f4-OSL
alt-svc: h3=":443"; ma=86400

sdcsalesar.live/static/magento/css/index.min.css

172.67.135.103

200 OK

567 B

URL GET HTTP/3
sdcsalesar.live/static/magento/css/index.min.css
IP
172.67.135.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsdcsalesar.live
FingerprintB5:5F:94:30:B5:96:3C:E5:BB:A2:B2:86:CA:1E:35:72:05:4A:97:40
ValiditySat, 23 Mar 2024 02:20:43 GMT - Fri, 21 Jun 2024 02:20:42 GMT

File type
JSON text data
Size
567 B (567 bytes)
Hash
a44c87b0d55afacf14c8327af92e948e
3ccbcb7c5e0d553ce51030580dec3732eb477f9d
a0587eb4f330926619e867180d0f81a594dde4e75ddd471d2f1414024c9163ab

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/magento/css/index.min.css HTTP/1.1
Host: sdcsalesar.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sdcsalesar.live/product_details/43650361.html
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IlJWL1d2Ry84THRST1JqUkx6aDRjSWc9PSIsInZhbHVlIjoiMUE1V3pDV1dqZWtXTk4rSWNrNDUvZU9nSEk5MzZueEVtZGxaTi95U1FrQTIxdjNLeWN2MExueXVXdnoxNG5xclFFU2VZMWQ4SVpLbFZjVFgreFVnM2IzNXo4YXpoY2RjTnJtMjFQS3FMbUh4NDdZS25xd2VDQjBkSzNqQW1IK1oiLCJtYWMiOiJlZTM0NzFiN2ZiOWM3NWI5OWI5YTRlZWUyOTU0OWJkODhmZGJmZTQyZWIwNjFhODNmZmRmOWIyNTU4YTY2YmQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InVaYzRPelJtN29EUDJCajNkT2Z2b2c9PSIsInZhbHVlIjoiejZ1cWs2OEltTGlIMG9XdjQwcE1UTnlKUG15cTdnTFdnRkpQY252dmFOSitOYS9aVGhDZUFJMGFkTVRNVG93ZXVaYmRwaFhJcWhicTVUQnFKOFpaZ2xUd01lNWkzbjBVdS9OWTN5NEZMQ0dBdVNVZEt3cnNYSElPOVdXeVg4THIiLCJtYWMiOiI2ZWU4Zjk5OTk2ZTAzOGIxOWVjMzM0OWNjYmZlMjhjNTQ4NmZjMGI2YzcxMTliNjI5OGI0MDlhN2NlNjRhODZlIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:39:11 GMT
content-type: application/json
cache-control: no-cache, private
vary: Accept-Encoding
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rl3z7DXVXpOBcKPRpI89W7WN7ruvMzC0SGF8aC0s8HUsMd4qgxCtPq0F1knrh8HhJmZbJ3mPuS5jy9VYY8v6rxlFbmsJonSpzVH0fu%2By3Ya1wF6H%2FIOmCeueDYD6MexDBVQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa6920190fb4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

sdcsalesar.live/static/default/js/public.js

172.67.135.103

200 OK

5.5 kB

URL GET HTTP/3
sdcsalesar.live/static/default/js/public.js
IP
172.67.135.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsdcsalesar.live
FingerprintB5:5F:94:30:B5:96:3C:E5:BB:A2:B2:86:CA:1E:35:72:05:4A:97:40
ValiditySat, 23 Mar 2024 02:20:43 GMT - Fri, 21 Jun 2024 02:20:42 GMT

File type
JavaScript source, Unicode text, UTF-8 text
Size
5.5 kB (5471 bytes)
Hash
53ceae9d8b9f4372ad101d91439cdbb7
662fa3a84762aee5bcb1da67ebbe2e37b3eeb79e
535ee4fa0189e79bd9a7d6ae4aa466180c4ac5b82b47647482ddce74587ce249

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/default/js/public.js HTTP/1.1
Host: sdcsalesar.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sdcsalesar.live/product_details/43650361.html
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IlJWL1d2Ry84THRST1JqUkx6aDRjSWc9PSIsInZhbHVlIjoiMUE1V3pDV1dqZWtXTk4rSWNrNDUvZU9nSEk5MzZueEVtZGxaTi95U1FrQTIxdjNLeWN2MExueXVXdnoxNG5xclFFU2VZMWQ4SVpLbFZjVFgreFVnM2IzNXo4YXpoY2RjTnJtMjFQS3FMbUh4NDdZS25xd2VDQjBkSzNqQW1IK1oiLCJtYWMiOiJlZTM0NzFiN2ZiOWM3NWI5OWI5YTRlZWUyOTU0OWJkODhmZGJmZTQyZWIwNjFhODNmZmRmOWIyNTU4YTY2YmQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InVaYzRPelJtN29EUDJCajNkT2Z2b2c9PSIsInZhbHVlIjoiejZ1cWs2OEltTGlIMG9XdjQwcE1UTnlKUG15cTdnTFdnRkpQY252dmFOSitOYS9aVGhDZUFJMGFkTVRNVG93ZXVaYmRwaFhJcWhicTVUQnFKOFpaZ2xUd01lNWkzbjBVdS9OWTN5NEZMQ0dBdVNVZEt3cnNYSElPOVdXeVg4THIiLCJtYWMiOiI2ZWU4Zjk5OTk2ZTAzOGIxOWVjMzM0OWNjYmZlMjhjNTQ4NmZjMGI2YzcxMTliNjI5OGI0MDlhN2NlNjRhODZlIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:39:10 GMT
content-type: application/javascript
last-modified: Fri, 20 Oct 2023 06:16:20 GMT
etag: W/"76f-6081fcf9e1006-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4729
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=drGPTR0jP2mx%2FnT2C%2BESp7LOgSLX8XVPSLgbGpU%2Fwo1f9RmVjwhPWyeFZwwtgT0VpinkryynPODLJmMSDuzlrWnjdBd1O%2FzFxgQv3IqU%2BlSBSE%2Fuzd5rpkPCRvCZcnakd4k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa69203929b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

sdcsalesar.live/static/magento/css/font/fontawesome-webfont.woff2?v=4.7.0

172.67.135.103

200 OK

86 kB

URL GET HTTP/3
sdcsalesar.live/static/magento/css/font/fontawesome-webfont.woff2?v=4.7.0
IP
172.67.135.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsdcsalesar.live
FingerprintB5:5F:94:30:B5:96:3C:E5:BB:A2:B2:86:CA:1E:35:72:05:4A:97:40
ValiditySat, 23 Mar 2024 02:20:43 GMT - Fri, 21 Jun 2024 02:20:42 GMT

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459
Size
86 kB (85819 bytes)
Hash
32e9f4b09f92c3c882202cb2147362f5
8fa2b00a2353ddc7d538939c71af727cd13a7ea8
8be6c2bc931e9ed23c31aa81805392d582385e3460f4e4c0e47b477cbd294e96

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/magento/css/font/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: sdcsalesar.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://sdcsalesar.live/static/magento/css/in.min.css?12
Cookie: XSRF-TOKEN=eyJpdiI6IlJWL1d2Ry84THRST1JqUkx6aDRjSWc9PSIsInZhbHVlIjoiMUE1V3pDV1dqZWtXTk4rSWNrNDUvZU9nSEk5MzZueEVtZGxaTi95U1FrQTIxdjNLeWN2MExueXVXdnoxNG5xclFFU2VZMWQ4SVpLbFZjVFgreFVnM2IzNXo4YXpoY2RjTnJtMjFQS3FMbUh4NDdZS25xd2VDQjBkSzNqQW1IK1oiLCJtYWMiOiJlZTM0NzFiN2ZiOWM3NWI5OWI5YTRlZWUyOTU0OWJkODhmZGJmZTQyZWIwNjFhODNmZmRmOWIyNTU4YTY2YmQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InVaYzRPelJtN29EUDJCajNkT2Z2b2c9PSIsInZhbHVlIjoiejZ1cWs2OEltTGlIMG9XdjQwcE1UTnlKUG15cTdnTFdnRkpQY252dmFOSitOYS9aVGhDZUFJMGFkTVRNVG93ZXVaYmRwaFhJcWhicTVUQnFKOFpaZ2xUd01lNWkzbjBVdS9OWTN5NEZMQ0dBdVNVZEt3cnNYSElPOVdXeVg4THIiLCJtYWMiOiI2ZWU4Zjk5OTk2ZTAzOGIxOWVjMzM0OWNjYmZlMjhjNTQ4NmZjMGI2YzcxMTliNjI5OGI0MDlhN2NlNjRhODZlIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:39:11 GMT
content-type: font/woff2
last-modified: Fri, 20 Oct 2023 06:16:20 GMT
etag: W/"12d68-6081fcf9f63de-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4488
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Lu7SE6ezhiEorRYoxdQetHoM%2BimA7yzlw3DPjo9wMnyPYag%2BFHR06jSke%2Fn0tTyh1Iy%2B3EHQi79CbwEGvxVG93JrBspmdfNSU9LWj5xYiuOCFtImJy0Yr2eHmVfHnFqzalg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa6924dd11b4f4-OSL
alt-svc: h3=":443"; ma=86400

sdcsalesar.live/static/default/js/delighters.js

172.67.135.103

200 OK

12 kB

URL GET HTTP/3
sdcsalesar.live/static/default/js/delighters.js
IP
172.67.135.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsdcsalesar.live
FingerprintB5:5F:94:30:B5:96:3C:E5:BB:A2:B2:86:CA:1E:35:72:05:4A:97:40
ValiditySat, 23 Mar 2024 02:20:43 GMT - Fri, 21 Jun 2024 02:20:42 GMT

File type
Unicode text, UTF-8 text
Size
12 kB (12220 bytes)
Hash
cc31823856831d96acd96628fe1bc12c
4441d2792dc7fb9f54cde379cd6dd5085ae7af33
0636cf1e7380cd58da452b76c4f7d8d902d25c735188b56d005c73a127bae19d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/default/js/delighters.js HTTP/1.1
Host: sdcsalesar.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sdcsalesar.live/product_details/43650361.html
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IlJWL1d2Ry84THRST1JqUkx6aDRjSWc9PSIsInZhbHVlIjoiMUE1V3pDV1dqZWtXTk4rSWNrNDUvZU9nSEk5MzZueEVtZGxaTi95U1FrQTIxdjNLeWN2MExueXVXdnoxNG5xclFFU2VZMWQ4SVpLbFZjVFgreFVnM2IzNXo4YXpoY2RjTnJtMjFQS3FMbUh4NDdZS25xd2VDQjBkSzNqQW1IK1oiLCJtYWMiOiJlZTM0NzFiN2ZiOWM3NWI5OWI5YTRlZWUyOTU0OWJkODhmZGJmZTQyZWIwNjFhODNmZmRmOWIyNTU4YTY2YmQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InVaYzRPelJtN29EUDJCajNkT2Z2b2c9PSIsInZhbHVlIjoiejZ1cWs2OEltTGlIMG9XdjQwcE1UTnlKUG15cTdnTFdnRkpQY252dmFOSitOYS9aVGhDZUFJMGFkTVRNVG93ZXVaYmRwaFhJcWhicTVUQnFKOFpaZ2xUd01lNWkzbjBVdS9OWTN5NEZMQ0dBdVNVZEt3cnNYSElPOVdXeVg4THIiLCJtYWMiOiI2ZWU4Zjk5OTk2ZTAzOGIxOWVjMzM0OWNjYmZlMjhjNTQ4NmZjMGI2YzcxMTliNjI5OGI0MDlhN2NlNjRhODZlIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:39:10 GMT
content-type: application/javascript
last-modified: Fri, 20 Oct 2023 06:16:20 GMT
etag: W/"a4b-6081fcf9e0836-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4729
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wqYbASWGysKaKPld93TUO2x9lZCoMFktoe6gfq7E4UFhvdWVNc1xMiSAwdd26fvI4Ap06ps4ooti42zzpGG7sfO%2BOpOVfFqwI8%2BWJWE1D3CyQ5edm94z3KEchN9OCkoYVCo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa6920393fb4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

sdcsalesar.live/static/magento/css/styles-l.min.css?12

172.67.135.103

200 OK

8.4 kB

URL GET HTTP/3
sdcsalesar.live/static/magento/css/styles-l.min.css?12
IP
172.67.135.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsdcsalesar.live
FingerprintB5:5F:94:30:B5:96:3C:E5:BB:A2:B2:86:CA:1E:35:72:05:4A:97:40
ValiditySat, 23 Mar 2024 02:20:43 GMT - Fri, 21 Jun 2024 02:20:42 GMT

File type
ASCII text, with very long lines (42779), with no line terminators
Size
8.4 kB (8407 bytes)
Hash
253f31e0684caa758291ddacd7e0fe9d
2bfe802de38f18c823f108bf1c158704e28e583c
649b7332bb93d26b8c3e42860e5f959eafb2b618cacedc5411acbe5c1ebdb29e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/magento/css/styles-l.min.css?12 HTTP/1.1
Host: sdcsalesar.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sdcsalesar.live/product_details/43650361.html
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IlJWL1d2Ry84THRST1JqUkx6aDRjSWc9PSIsInZhbHVlIjoiMUE1V3pDV1dqZWtXTk4rSWNrNDUvZU9nSEk5MzZueEVtZGxaTi95U1FrQTIxdjNLeWN2MExueXVXdnoxNG5xclFFU2VZMWQ4SVpLbFZjVFgreFVnM2IzNXo4YXpoY2RjTnJtMjFQS3FMbUh4NDdZS25xd2VDQjBkSzNqQW1IK1oiLCJtYWMiOiJlZTM0NzFiN2ZiOWM3NWI5OWI5YTRlZWUyOTU0OWJkODhmZGJmZTQyZWIwNjFhODNmZmRmOWIyNTU4YTY2YmQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InVaYzRPelJtN29EUDJCajNkT2Z2b2c9PSIsInZhbHVlIjoiejZ1cWs2OEltTGlIMG9XdjQwcE1UTnlKUG15cTdnTFdnRkpQY252dmFOSitOYS9aVGhDZUFJMGFkTVRNVG93ZXVaYmRwaFhJcWhicTVUQnFKOFpaZ2xUd01lNWkzbjBVdS9OWTN5NEZMQ0dBdVNVZEt3cnNYSElPOVdXeVg4THIiLCJtYWMiOiI2ZWU4Zjk5OTk2ZTAzOGIxOWVjMzM0OWNjYmZlMjhjNTQ4NmZjMGI2YzcxMTliNjI5OGI0MDlhN2NlNjRhODZlIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:39:10 GMT
content-type: text/css
last-modified: Fri, 20 Oct 2023 06:16:20 GMT
etag: W/"a71b-6081fcf9f7b4e-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4729
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=l1%2FfkYJ2C8REDoPraOfEwKhqu0Qr9Qal3r5bW%2FbGBJLV9yrRk3upKpkIGpEAcleg%2BgkilWJ9ofSM9zYnFPw9wzF7QpFOrWZ%2F5JlHumv5NOYZCaliEnaH7GbIlQAidhx6oxs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa69201910b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

sdcsalesar.live/codazon/themelayout/fonts/CodazonFont.woff

172.67.135.103

200 OK

79 kB

URL GET HTTP/3
sdcsalesar.live/codazon/themelayout/fonts/CodazonFont.woff
IP
172.67.135.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsdcsalesar.live
FingerprintB5:5F:94:30:B5:96:3C:E5:BB:A2:B2:86:CA:1E:35:72:05:4A:97:40
ValiditySat, 23 Mar 2024 02:20:43 GMT - Fri, 21 Jun 2024 02:20:42 GMT

File type
data
Size
79 kB (78707 bytes)
Hash
c25645402288c90d855755163ebb90d3
434a0805ae747a238ef053b17f8fb7c71ebb3dd8
23e18778f7e1a8361778ac57fb2df2924418e8c57dbcb9f26fff0417002e3b96

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /codazon/themelayout/fonts/CodazonFont.woff HTTP/1.1
Host: sdcsalesar.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://sdcsalesar.live/static/magento/css/product-view-styles.css?185542
Cookie: XSRF-TOKEN=eyJpdiI6IlJWL1d2Ry84THRST1JqUkx6aDRjSWc9PSIsInZhbHVlIjoiMUE1V3pDV1dqZWtXTk4rSWNrNDUvZU9nSEk5MzZueEVtZGxaTi95U1FrQTIxdjNLeWN2MExueXVXdnoxNG5xclFFU2VZMWQ4SVpLbFZjVFgreFVnM2IzNXo4YXpoY2RjTnJtMjFQS3FMbUh4NDdZS25xd2VDQjBkSzNqQW1IK1oiLCJtYWMiOiJlZTM0NzFiN2ZiOWM3NWI5OWI5YTRlZWUyOTU0OWJkODhmZGJmZTQyZWIwNjFhODNmZmRmOWIyNTU4YTY2YmQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imk3Nmd3ZzlMZEtLTkxRUGxoT0ZGc3c9PSIsInZhbHVlIjoiekhVVDlZdGdiZ0hoZnVjamJJRWw2NU03c1Q5UlB2YXZ4eEp5UjBkMm92b1daMGowVFBvNGFDMno2Tmg2ZmhFUGgyNUFwT1RsRVdZTnVuSnZlL25FRDdoVWFjdjIzOFJmN3JvNC9wc2pBQnEvM1B3ckp6a1hRd3c0aHNYb2RjcmkiLCJtYWMiOiIyMDIyZDk5ODg2MDYyYjBhYjNhNzdjMjY5MzFkZGEwMGM3OTBiODI1NTA1NDAwY2EwNjRmNjk5M2IzZTBkZWY3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:39:12 GMT
content-type: application/json
cache-control: no-cache, private
vary: Accept-Encoding
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pFoAd6Mf%2F5VF2jQp9RWZsJDTWEyTLLwGq%2B0giamlhSXEwrwv6awKDSVMUozq6lRj7ZqWdE5DoU%2B%2BsHucBoAr8%2Br68MkGae5hp2PkYWyOQ9OMiBdkVrjOVb7pObexl3rzmHg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa6928ef8eb4f4-OSL
alt-svc: h3=":443"; ma=86400

cdn1.mtggoldfish.com/images/h/Goblin-Rabblemaster-J22-672.jpg

54.230.111.74

200 OK

107 kB

URL GET HTTP/1.1
cdn1.mtggoldfish.com/images/h/Goblin-Rabblemaster-J22-672.jpg
IP
54.230.111.74:443
ASN
#16509 AMAZON-02

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerAmazon
Subject*.mtggoldfish.com
FingerprintA5:F3:86:31:8C:BB:5C:3E:CC:CC:59:E5:EE:3C:72:E8:FE:B1:0A:2D
ValidityWed, 07 Jun 2023 00:00:00 GMT - Thu, 04 Jul 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 672x938, components 3
Size
107 kB (107422 bytes)
Hash
5d7a3157f8f66e107a4946bb7dc33a73
399e2938de6dad24069cb10400dc82866cb7b760
ae14b556d3cf09add5b78137e71ac86718b94b297cdb5d045ef875109515af5f

HTTP Headers

GET /images/h/Goblin-Rabblemaster-J22-672.jpg HTTP/1.1
Host: cdn1.mtggoldfish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 107422
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 17:12:59 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Fri, 26 Apr 2024 07:54:51 GMT
ETag: "5d7a3157f8f66e107a4946bb7dc33a73"
X-Cache: Hit from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Dzcz-e1YS4j0luivFx9ptAle7UX4XawyFkiNrxHXguMBIXvjjinUuw==
Age: 56665

static.wikia.nocookie.net/yugioh/images/1/15/InvokedMagellanica-GEIM-EN-R-1E.png/revision/latest?cb=20201219164309

74.120.188.204

200 OK

138 kB

URL GET HTTP/2
static.wikia.nocookie.net/yugioh/images/1/15/InvokedMagellanica-GEIM-EN-R-1E.png/revision/latest?cb=20201219164309
IP
74.120.188.204:443
ASN
#22300 FANDOM

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerLet's Encrypt
Subject*.wikia.nocookie.net
FingerprintBD:6E:E7:A9:84:74:02:D1:B8:8C:03:05:98:8E:04:E0:BA:8B:BA:56
ValidityFri, 16 Feb 2024 17:47:23 GMT - Thu, 16 May 2024 17:47:22 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 483x700, Scaling: [none]x[none], YUV color, decoders should clamp
Size
138 kB (138226 bytes)
Hash
18781a2f49546dd7f8c08b644423a89d
bd737dd3e046d78816cbbd489639d35cb1048114
0a808a4dbce55010fea8f9df018c33c04c529896970a11c3d3eb9a714e7be52a

HTTP Headers

GET /yugioh/images/1/15/InvokedMagellanica-GEIM-EN-R-1E.png/revision/latest?cb=20201219164309 HTTP/1.1
Host: static.wikia.nocookie.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 05 Apr 2024 14:52:59 GMT
surrogate-key: 8d61f2fb4dc541603aa8b33fb0ff31a41ea41d94 wiki-yugioh thumblr original v:91b9419
content-disposition: inline; filename="InvokedMagellanica-GEIM-EN-R-1E.webp"; filename*=UTF-8''InvokedMagellanica-GEIM-EN-R-1E.webp
content-type: image/webp
etag: "GHgaL0lUbdf4wItkRCOonQ=="
x-thumbnailer: Thumblr
access-control-allow-origin: *
access-control-allow-headers: Range
cache-control: public, max-age=31536000
nel: {"report_to":"nel","max_age":604800,"failure_fraction":0.01}
report-to: {"group":"nel","endpoints":[{"url":"https://services.fandom.com/browser-errors/report"}],"max_age":604800,"include_subdomains":true}
content-length: 138226
x-envoy-upstream-service-time: 91
server: envoy
x-cacheable: YES
age: 1845976
accept-ranges: bytes
vary: Accept
x-cache: ORIGIN, HIT
timing-allow-origin: *
x-served-by: thumblr-768f47bf88-725b9, wk-cdn-f3
x-cache-hits: ORIGIN, 37
X-Firefox-Spdy: h2

qph.cf2.quoracdn.net/main-qimg-30045c98c02cb3ae52488f64b6b87708

162.159.152.17

200 OK

63 kB

URL GET HTTP/2
qph.cf2.quoracdn.net/main-qimg-30045c98c02cb3ae52488f64b6b87708
IP
162.159.152.17:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerLet's Encrypt
Subjectquora.com
FingerprintB0:EF:CB:8C:1F:11:42:62:F1:35:F2:63:13:E9:7A:70:16:ED:B0:1B
ValiditySun, 31 Mar 2024 16:22:00 GMT - Sat, 29 Jun 2024 16:21:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 602x401, components 3
Size
63 kB (63183 bytes)
Hash
f9d6861ed1b9dfbf2b52ec8e2f9595c0
1bd5b1c3f9a989af01cdb9a58cdf46fe86a685be
3e99a2905f3504462292722ee242cc77aa1ed5020fbecebf7585c45ce2f5169d

HTTP Headers

GET /main-qimg-30045c98c02cb3ae52488f64b6b87708 HTTP/1.1
Host: qph.cf2.quoracdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 23:39:16 GMT
content-type: image/jpeg
content-length: 63183
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=66574
etag: "30045c98c02cb3ae52488f64b6b87708"
expires: Mon, 24 Apr 2034 23:39:16 GMT
last-modified: Wed, 20 Sep 2023 18:15:51 GMT
x-amz-id-2: ojkgRqbStZBq3IbRmxfaZTTX6O7vHPhV467Ob0dhNGIQXfsjriDzonnDX5pjkr9UtwLdaPjRm/A=
x-amz-replication-status: COMPLETED
x-amz-request-id: AFK046PA91AP9CC8
x-amz-server-side-encryption: AES256
x-amz-version-id: MGYCc_drjDFdcb_ShWQ.oyemBYWuPLWq
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
server: cloudflare
cf-ray: 87aa6941b98e56bd-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

sdcsalesar.live/static/default/css/iconfont.css

172.67.135.103

200 OK

121 kB

URL GET HTTP/3
sdcsalesar.live/static/default/css/iconfont.css
IP
172.67.135.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsdcsalesar.live
FingerprintB5:5F:94:30:B5:96:3C:E5:BB:A2:B2:86:CA:1E:35:72:05:4A:97:40
ValiditySat, 23 Mar 2024 02:20:43 GMT - Fri, 21 Jun 2024 02:20:42 GMT

File type
ASCII text
Size
121 kB (121276 bytes)
Hash
717c6e58da97df4ca9866d0cf9f1eecb
53b035e4136e3fcbf6d710633c10562bbb8fb1eb
8b3c92ce43d9af1d42ae13507d542ff6de94684152fec5f111c1e138db769d5a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/default/css/iconfont.css HTTP/1.1
Host: sdcsalesar.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sdcsalesar.live/product_details/43650361.html
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IlJWL1d2Ry84THRST1JqUkx6aDRjSWc9PSIsInZhbHVlIjoiMUE1V3pDV1dqZWtXTk4rSWNrNDUvZU9nSEk5MzZueEVtZGxaTi95U1FrQTIxdjNLeWN2MExueXVXdnoxNG5xclFFU2VZMWQ4SVpLbFZjVFgreFVnM2IzNXo4YXpoY2RjTnJtMjFQS3FMbUh4NDdZS25xd2VDQjBkSzNqQW1IK1oiLCJtYWMiOiJlZTM0NzFiN2ZiOWM3NWI5OWI5YTRlZWUyOTU0OWJkODhmZGJmZTQyZWIwNjFhODNmZmRmOWIyNTU4YTY2YmQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InVaYzRPelJtN29EUDJCajNkT2Z2b2c9PSIsInZhbHVlIjoiejZ1cWs2OEltTGlIMG9XdjQwcE1UTnlKUG15cTdnTFdnRkpQY252dmFOSitOYS9aVGhDZUFJMGFkTVRNVG93ZXVaYmRwaFhJcWhicTVUQnFKOFpaZ2xUd01lNWkzbjBVdS9OWTN5NEZMQ0dBdVNVZEt3cnNYSElPOVdXeVg4THIiLCJtYWMiOiI2ZWU4Zjk5OTk2ZTAzOGIxOWVjMzM0OWNjYmZlMjhjNTQ4NmZjMGI2YzcxMTliNjI5OGI0MDlhN2NlNjRhODZlIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:39:10 GMT
content-type: text/css
last-modified: Fri, 20 Oct 2023 06:16:20 GMT
etag: W/"55c-6081fcf9d96ee-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4729
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qx1RB3YQ%2FaBbFsUuAszb7FB2zcUq%2FZmFpqbQ%2BGFpl8daMHK6jzNX0BWS1VI67ZuHDCnlRniJqk03qp4kPVPR4bMut5EYXwwZiig5Uvigb2zDWRqGA8QFoVmcgTt0I%2B1Edj4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa69202927b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ae01.alicdn.com/kf/Sad14b6a84d3e4d5080f5fd25852e5a14H/Retinol-Lifting-Firming-Face-Cream-Remove-Wrinkle-Anti-Aging-Fade-Fine-Line-Face-Cream-Whitening-Moisturizing.jpg

47.246.44.251

200 OK

48 kB

URL GET HTTP/2
ae01.alicdn.com/kf/Sad14b6a84d3e4d5080f5fd25852e5a14H/Retinol-Lifting-Firming-Face-Cream-Remove-Wrinkle-Anti-Aging-Fade-Fine-Line-Face-Cream-Whitening-Moisturizing.jpg
IP
47.246.44.251:443
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerGlobalSign nv-sa
Subject*.tbcdn.cn
Fingerprint29:04:BE:E6:49:30:F7:DC:C0:BE:56:8F:B4:AC:24:9B:50:1A:F7:E2
ValidityTue, 26 Dec 2023 03:36:04 GMT - Tue, 30 Jul 2024 02:26:11 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp
Size
48 kB (48170 bytes)
Hash
3c8d85b051901d6ea04d649822ac25e8
02f823059fddcefd08895709bc6cf1c221e40ef1
6d7822890dc4c4788d3cfac7d14a4d7bc15c42ffd7ec92b164049a7cc747c324

HTTP Headers

GET /kf/Sad14b6a84d3e4d5080f5fd25852e5a14H/Retinol-Lifting-Firming-Face-Cream-Remove-Wrinkle-Anti-Aging-Fade-Fine-Line-Face-Cream-Whitening-Moisturizing.jpg HTTP/1.1
Host: ae01.alicdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Tengine
content-type: image/webp
content-length: 48170
date: Fri, 26 Apr 2024 23:39:16 GMT
traceid: 2ff62ca817141747561181818e
last-modified: Tue, 10 May 2022 07:56:01 GMT
cache-control: max-age=86400000
access-control-allow-origin: *
eagleeye-traceid: 2ff62ca817141747561181818e
strict-transport-security: max-age=0
timing-allow-origin: *, *
ali-swift-global-savetime: 1714174756
via: cache8.l2de2[359,358,200-0,M], cache19.l2de2[361,0], ens-cache20.se2[382,381,200-0,M], ens-cache20.se2[382,0]
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Fri, 26 Apr 2024 23:39:16 GMT
x-swift-cachetime: 31104000
cdn-type: alibaba
eagleid: 2ff62ca817141747561181818e
X-Firefox-Spdy: h2

i.rtings.com/assets/products/ynzkbUP4/lg-qned90/design-medium.jpg

54.230.111.6

200 OK

230 kB

URL GET HTTP/2
i.rtings.com/assets/products/ynzkbUP4/lg-qned90/design-medium.jpg
IP
54.230.111.6:443
ASN
#16509 AMAZON-02

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerAmazon
Subjecti.rtings.com
FingerprintB2:F2:34:F6:CA:71:36:57:45:B3:76:1D:57:7B:8C:38:2D:1F:86:40
ValidityMon, 05 Feb 2024 00:00:00 GMT - Tue, 04 Mar 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 240x240, segment length 16, progressive, precision 8, 1000x563, components 3
Size
230 kB (229500 bytes)
Hash
4e0ad1d0c9dd93bd644de7d565ee8403
a6f828b5edf756e7200fe354ab25cdfa3924f84f
4236e89821bb378f81102817154ac898893ec31db8ff6392ea222324b2126104

HTTP Headers

GET /assets/products/ynzkbUP4/lg-qned90/design-medium.jpg HTTP/1.1
Host: i.rtings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
content-length: 229500
date: Fri, 26 Apr 2024 23:39:16 GMT
last-modified: Mon, 09 Aug 2021 18:10:08 GMT
etag: "4e0ad1d0c9dd93bd644de7d565ee8403"
cache-control: max-age=2592000, public, must-revalidate
content-disposition: inline
x-amz-meta-variable-name: lg-qned90
x-amz-version-id: kDPnI7QsFG1bJZ2NbDaz37r66Z7K7391
accept-ranges: bytes
server: RtingsZesty
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET,POST,OPTIONS,PUT,DELETE,PATCH
access-control-expose-headers: ETag
x-cache: Miss from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: d-0Sub-xQSOlU_-lwKsDWn0w7KllcCd0Ph-8g9XNUR9WUxP8XEaw3w==
X-Firefox-Spdy: h2

s3-us-west-2.amazonaws.com/cu-apr/auctions/-6017128071725520029/4749970910733646087/images/1.jpg

52.218.133.184

200 OK

237 kB

URL GET HTTP/1.1
s3-us-west-2.amazonaws.com/cu-apr/auctions/-6017128071725520029/4749970910733646087/images/1.jpg
IP
52.218.133.184:443
ASN
#16509 AMAZON-02

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerAmazon
Subject*.s3-us-west-2.amazonaws.com
Fingerprint6B:A0:F8:B2:43:23:23:C2:19:40:1C:DB:A4:9D:29:72:85:4C:58:C9
ValidityFri, 15 Mar 2024 00:00:00 GMT - Sat, 15 Feb 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 595x1000, components 3
Size
237 kB (237083 bytes)
Hash
925f9a68d4e16e264c5f15ec6057b9af
70497ffa45f24e191927d401ca663f26930e34d8
0a7a737aee2b0fe0c309719853531ae9d33516ad27def01e09f73696574b7dd3

HTTP Headers

GET /cu-apr/auctions/-6017128071725520029/4749970910733646087/images/1.jpg HTTP/1.1
Host: s3-us-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: wRIVI889Y8Pb5UolW3q0BVScx7Jc97mbSfL2MZn+zumx8ybeIVgXXW7GDCnDTGm12URlzLDhGOM=
x-amz-request-id: T7EEGX4BRZ6VRTZW
Date: Fri, 26 Apr 2024 23:39:17 GMT
Last-Modified: Wed, 28 Jun 2023 04:28:42 GMT
ETag: "925f9a68d4e16e264c5f15ec6057b9af"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 237083

sdcsalesar.live/static/magento/css/font/CodazonFont.woff2

172.67.135.103

200 OK

48 kB

URL GET HTTP/3
sdcsalesar.live/static/magento/css/font/CodazonFont.woff2
IP
172.67.135.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsdcsalesar.live
FingerprintB5:5F:94:30:B5:96:3C:E5:BB:A2:B2:86:CA:1E:35:72:05:4A:97:40
ValiditySat, 23 Mar 2024 02:20:43 GMT - Fri, 21 Jun 2024 02:20:42 GMT

File type
Web Open Font Format (Version 2), TrueType, length 38492, version 1.0
Size
48 kB (47513 bytes)
Hash
08b3facf30eaba9cbf41eefae1e07f8a
9d8e7d4b214490b15eb60a319fa1013b22d782e2
84b22736d59716ff074df9004efd44c4ddf88b500ea4c4fdbcfd862b5176dc1e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/magento/css/font/CodazonFont.woff2 HTTP/1.1
Host: sdcsalesar.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://sdcsalesar.live/static/magento/css/main-styles.css?12
Cookie: XSRF-TOKEN=eyJpdiI6Imt3SFRib2JwUEZmdnV3aDZFbEdvWEE9PSIsInZhbHVlIjoidTBNTUU5VExCR29tMmhHMG9UQXRjRVRFWXRhM09YcGdiYlkxMDhGdHhRSEpiWnV6S05CZVV6NlNPZ05GM0RXaFlyUjVhc0dhU09VUzNOUDR6NWlwZzQxYTF6UjhTVWNsRDRnUXR5OXZQbElGRmliaTFHazdEWjg0YnZLbm9BUzMiLCJtYWMiOiJhMDVmOTE3MWY0ZWMyOWNlZjhjZDBhMzAzYTAxYmMzNjdhZjQ0NzExOGU1OTVjZDdkOTdlOGZhZGI1MWJjZWM2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjBDZWk0ZGdoQlllODBPSnFiQ0piUnc9PSIsInZhbHVlIjoiQUIwcVdwVEVsZHEwN0RGZGV2SmtiMnhWejlLMWtsdUNjam1DM2YycndmVEtqZ29rck5HQTJqNjM5cU8wZkt1QjZzWmkwN3duUC9LT2NiSVNqUXdJZUw2eWpyR2tvU0NrZGkrL053MGs1SDlNWWhrY3k1cUF6QytrQnhrTE4yYlkiLCJtYWMiOiJiMzUyZDI5ZWI4MzVlZGRiMmVkYWUyOWM0MGE4MmFiMjdiMThhNmVhMmFhODA0MDg2NzhhMDI2ZWQ1OWVmNzMwIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:39:13 GMT
content-type: font/woff2
last-modified: Fri, 20 Oct 2023 06:16:20 GMT
etag: W/"965c-6081fcf9f4886-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6uqzOOoQTlyCKwXvh0IT5oexFCXBF3i2EiuRYS%2BGIXqRmGARN5vVYxWmqq2uCoW7V8Wtl2j2yBOtHqw2ibIlg8oLA%2FH92jXxOyxbdjODNfZfzinI79YaWjhFimXfZo%2FT55c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa692eabadb4f4-OSL
alt-svc: h3=":443"; ma=86400

sdcsalesar.live/traffic_statistics?gurl=

172.67.135.103

200 OK

5.7 kB

URL GET HTTP/3
sdcsalesar.live/traffic_statistics?gurl=
IP
172.67.135.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsdcsalesar.live
FingerprintB5:5F:94:30:B5:96:3C:E5:BB:A2:B2:86:CA:1E:35:72:05:4A:97:40
ValiditySat, 23 Mar 2024 02:20:43 GMT - Fri, 21 Jun 2024 02:20:42 GMT

File type
data
Size
5.7 kB (5711 bytes)
Hash
b3d7bc2cd7aef32b7c4b17e32c006578
521377168fff0c21a7ab6ddf02555b37a0c38dd4
9411e4aeb9ce00a547eb22b36e6c69662d229bd5a9ebeaf830a46f8f471981a6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /traffic_statistics?gurl= HTTP/1.1
Host: sdcsalesar.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sdcsalesar.live/product_details/43650361.html
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IlJWL1d2Ry84THRST1JqUkx6aDRjSWc9PSIsInZhbHVlIjoiMUE1V3pDV1dqZWtXTk4rSWNrNDUvZU9nSEk5MzZueEVtZGxaTi95U1FrQTIxdjNLeWN2MExueXVXdnoxNG5xclFFU2VZMWQ4SVpLbFZjVFgreFVnM2IzNXo4YXpoY2RjTnJtMjFQS3FMbUh4NDdZS25xd2VDQjBkSzNqQW1IK1oiLCJtYWMiOiJlZTM0NzFiN2ZiOWM3NWI5OWI5YTRlZWUyOTU0OWJkODhmZGJmZTQyZWIwNjFhODNmZmRmOWIyNTU4YTY2YmQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InVaYzRPelJtN29EUDJCajNkT2Z2b2c9PSIsInZhbHVlIjoiejZ1cWs2OEltTGlIMG9XdjQwcE1UTnlKUG15cTdnTFdnRkpQY252dmFOSitOYS9aVGhDZUFJMGFkTVRNVG93ZXVaYmRwaFhJcWhicTVUQnFKOFpaZ2xUd01lNWkzbjBVdS9OWTN5NEZMQ0dBdVNVZEt3cnNYSElPOVdXeVg4THIiLCJtYWMiOiI2ZWU4Zjk5OTk2ZTAzOGIxOWVjMzM0OWNjYmZlMjhjNTQ4NmZjMGI2YzcxMTliNjI5OGI0MDlhN2NlNjRhODZlIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:39:12 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6Imt3SFRib2JwUEZmdnV3aDZFbEdvWEE9PSIsInZhbHVlIjoidTBNTUU5VExCR29tMmhHMG9UQXRjRVRFWXRhM09YcGdiYlkxMDhGdHhRSEpiWnV6S05CZVV6NlNPZ05GM0RXaFlyUjVhc0dhU09VUzNOUDR6NWlwZzQxYTF6UjhTVWNsRDRnUXR5OXZQbElGRmliaTFHazdEWjg0YnZLbm9BUzMiLCJtYWMiOiJhMDVmOTE3MWY0ZWMyOWNlZjhjZDBhMzAzYTAxYmMzNjdhZjQ0NzExOGU1OTVjZDdkOTdlOGZhZGI1MWJjZWM2IiwidGFnIjoiIn0%3D; expires=Sat, 27-Apr-2024 01:39:12 GMT; Max-Age=7200; path=/; samesite=lax
laravel_session=eyJpdiI6IjBDZWk0ZGdoQlllODBPSnFiQ0piUnc9PSIsInZhbHVlIjoiQUIwcVdwVEVsZHEwN0RGZGV2SmtiMnhWejlLMWtsdUNjam1DM2YycndmVEtqZ29rck5HQTJqNjM5cU8wZkt1QjZzWmkwN3duUC9LT2NiSVNqUXdJZUw2eWpyR2tvU0NrZGkrL053MGs1SDlNWWhrY3k1cUF6QytrQnhrTE4yYlkiLCJtYWMiOiJiMzUyZDI5ZWI4MzVlZGRiMmVkYWUyOWM0MGE4MmFiMjdiMThhNmVhMmFhODA0MDg2NzhhMDI2ZWQ1OWVmNzMwIiwidGFnIjoiIn0%3D; expires=Sat, 27-Apr-2024 01:39:12 GMT; Max-Age=7200; path=/; httponly; samesite=lax
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=i7Hj3vB957r2KI6cSwe1CIaxWBtOePDv16BeRaY0dGiG2CrKk8q%2FKBZlyEDnkdVfGcBivFMnqz%2F07Tpdil%2Bg%2B1HjDodrSRNDgOe6HJFp1TRfM9Op4Mkg%2FajNs%2By%2BlAYm91k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa6925cdc7b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

sdcsalesar.live/static/store/css/checkout.css

172.67.135.103

200 OK

4.8 kB

URL GET HTTP/3
sdcsalesar.live/static/store/css/checkout.css
IP
172.67.135.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsdcsalesar.live
FingerprintB5:5F:94:30:B5:96:3C:E5:BB:A2:B2:86:CA:1E:35:72:05:4A:97:40
ValiditySat, 23 Mar 2024 02:20:43 GMT - Fri, 21 Jun 2024 02:20:42 GMT

File type
ASCII text, with very long lines (5046), with no line terminators
Size
4.8 kB (4824 bytes)
Hash
78004bf5e334b836b476f48fcb42d6b2
1b118f3acfd8329b2219397946fbdcdd2eb8a8a1
36ec4ba8f16410525a9046d41eab8c0acb179340bed5d10a795edb52fc899bb0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/store/css/checkout.css HTTP/1.1
Host: sdcsalesar.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sdcsalesar.live/product_details/43650361.html
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IlJWL1d2Ry84THRST1JqUkx6aDRjSWc9PSIsInZhbHVlIjoiMUE1V3pDV1dqZWtXTk4rSWNrNDUvZU9nSEk5MzZueEVtZGxaTi95U1FrQTIxdjNLeWN2MExueXVXdnoxNG5xclFFU2VZMWQ4SVpLbFZjVFgreFVnM2IzNXo4YXpoY2RjTnJtMjFQS3FMbUh4NDdZS25xd2VDQjBkSzNqQW1IK1oiLCJtYWMiOiJlZTM0NzFiN2ZiOWM3NWI5OWI5YTRlZWUyOTU0OWJkODhmZGJmZTQyZWIwNjFhODNmZmRmOWIyNTU4YTY2YmQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InVaYzRPelJtN29EUDJCajNkT2Z2b2c9PSIsInZhbHVlIjoiejZ1cWs2OEltTGlIMG9XdjQwcE1UTnlKUG15cTdnTFdnRkpQY252dmFOSitOYS9aVGhDZUFJMGFkTVRNVG93ZXVaYmRwaFhJcWhicTVUQnFKOFpaZ2xUd01lNWkzbjBVdS9OWTN5NEZMQ0dBdVNVZEt3cnNYSElPOVdXeVg4THIiLCJtYWMiOiI2ZWU4Zjk5OTk2ZTAzOGIxOWVjMzM0OWNjYmZlMjhjNTQ4NmZjMGI2YzcxMTliNjI5OGI0MDlhN2NlNjRhODZlIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:39:10 GMT
content-type: text/css
last-modified: Fri, 20 Oct 2023 06:16:20 GMT
etag: W/"12d8-6081fcfa34fc7-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4729
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lrnSnaK6RpvcamYrwRCKZqvmAT%2FbADLA4lBu%2FbnrHyDcpMCdqwweFFlXNkTNoilB8SRixNC7A4YkeqF7LW%2Fu3rbNCZ%2B2jUH%2FFU48pup0hReT6njN5hI%2F9LklaZv3xXRv2FU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa6920291eb4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

sdcsalesar.live/codazon/themelayout/images/tspr.png

172.67.135.103

200 OK

61 B

URL GET HTTP/3
sdcsalesar.live/codazon/themelayout/images/tspr.png
IP
172.67.135.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsdcsalesar.live
FingerprintB5:5F:94:30:B5:96:3C:E5:BB:A2:B2:86:CA:1E:35:72:05:4A:97:40
ValiditySat, 23 Mar 2024 02:20:43 GMT - Fri, 21 Jun 2024 02:20:42 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
61 B (61 bytes)
Hash
2d963171282c4de9d6969472b23e47e3
1ea3d4ba9fe4b01b4edf5b7dcd20ac246d2187d8
87ed5a5a37969aa977d6f4fc16ae7a094bc1abc454307e011b65036646b4d3ab

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /codazon/themelayout/images/tspr.png HTTP/1.1
Host: sdcsalesar.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sdcsalesar.live/static/magento/css/header-styles.css?12
Cookie: XSRF-TOKEN=eyJpdiI6IlJWL1d2Ry84THRST1JqUkx6aDRjSWc9PSIsInZhbHVlIjoiMUE1V3pDV1dqZWtXTk4rSWNrNDUvZU9nSEk5MzZueEVtZGxaTi95U1FrQTIxdjNLeWN2MExueXVXdnoxNG5xclFFU2VZMWQ4SVpLbFZjVFgreFVnM2IzNXo4YXpoY2RjTnJtMjFQS3FMbUh4NDdZS25xd2VDQjBkSzNqQW1IK1oiLCJtYWMiOiJlZTM0NzFiN2ZiOWM3NWI5OWI5YTRlZWUyOTU0OWJkODhmZGJmZTQyZWIwNjFhODNmZmRmOWIyNTU4YTY2YmQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InVaYzRPelJtN29EUDJCajNkT2Z2b2c9PSIsInZhbHVlIjoiejZ1cWs2OEltTGlIMG9XdjQwcE1UTnlKUG15cTdnTFdnRkpQY252dmFOSitOYS9aVGhDZUFJMGFkTVRNVG93ZXVaYmRwaFhJcWhicTVUQnFKOFpaZ2xUd01lNWkzbjBVdS9OWTN5NEZMQ0dBdVNVZEt3cnNYSElPOVdXeVg4THIiLCJtYWMiOiI2ZWU4Zjk5OTk2ZTAzOGIxOWVjMzM0OWNjYmZlMjhjNTQ4NmZjMGI2YzcxMTliNjI5OGI0MDlhN2NlNjRhODZlIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:39:12 GMT
content-type: application/json
cache-control: no-cache, private
vary: Accept-Encoding
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sSsQuWKo4VpiV0oxL0xBd%2BHeaMaZj0ST9UBUAKLLzZXs2de1080bHsKFsOj20OQAtK%2F7lVyAW6QK8R7xhJAw8wF81%2BptnV69eBtWxi0ruowdcj8%2BMKqrhmOWN3rAMa2xFwQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa69248cd7b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

sdcsalesar.live/static/default/js/vue.min.js

172.67.135.103

200 OK

94 kB

URL GET HTTP/3
sdcsalesar.live/static/default/js/vue.min.js
IP
172.67.135.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsdcsalesar.live
FingerprintB5:5F:94:30:B5:96:3C:E5:BB:A2:B2:86:CA:1E:35:72:05:4A:97:40
ValiditySat, 23 Mar 2024 02:20:43 GMT - Fri, 21 Jun 2024 02:20:42 GMT

File type
JavaScript source, ASCII text, with very long lines (65449)
Size
94 kB (94151 bytes)
Hash
b21b8531847604ab5f2f5caaef51ba31
da8d7a59f4e6cc55ea58abec33ef9cebb9ba67c1
9174c425c445377df4562ad9165ea08fdf9433a808296d7de5f619791df10e17

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/default/js/vue.min.js HTTP/1.1
Host: sdcsalesar.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sdcsalesar.live/product_details/43650361.html
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IlJWL1d2Ry84THRST1JqUkx6aDRjSWc9PSIsInZhbHVlIjoiMUE1V3pDV1dqZWtXTk4rSWNrNDUvZU9nSEk5MzZueEVtZGxaTi95U1FrQTIxdjNLeWN2MExueXVXdnoxNG5xclFFU2VZMWQ4SVpLbFZjVFgreFVnM2IzNXo4YXpoY2RjTnJtMjFQS3FMbUh4NDdZS25xd2VDQjBkSzNqQW1IK1oiLCJtYWMiOiJlZTM0NzFiN2ZiOWM3NWI5OWI5YTRlZWUyOTU0OWJkODhmZGJmZTQyZWIwNjFhODNmZmRmOWIyNTU4YTY2YmQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InVaYzRPelJtN29EUDJCajNkT2Z2b2c9PSIsInZhbHVlIjoiejZ1cWs2OEltTGlIMG9XdjQwcE1UTnlKUG15cTdnTFdnRkpQY252dmFOSitOYS9aVGhDZUFJMGFkTVRNVG93ZXVaYmRwaFhJcWhicTVUQnFKOFpaZ2xUd01lNWkzbjBVdS9OWTN5NEZMQ0dBdVNVZEt3cnNYSElPOVdXeVg4THIiLCJtYWMiOiI2ZWU4Zjk5OTk2ZTAzOGIxOWVjMzM0OWNjYmZlMjhjNTQ4NmZjMGI2YzcxMTliNjI5OGI0MDlhN2NlNjRhODZlIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:39:10 GMT
content-type: application/javascript
last-modified: Fri, 20 Oct 2023 06:16:20 GMT
etag: W/"16fc7-6081fcf9e2b5e-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4729
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0j1STrz%2FOSqVYMwXw6fgVVzPOlPo51TrIjl%2BospjivLxSmYOGhiTyGQO%2FTe0xcokmdPnJMOubPrLyAAndhJggev6E%2Fe4%2BRtFz9GqtHAW7BkzPill%2FDsyoGl3Ph1AodC4SGI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa69202928b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css?family=Roboto&display=swap

142.250.74.106

200 OK

2.3 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Roboto&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50
ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT

File type
ASCII text, with very long lines (2379), with no line terminators
Size
2.3 kB (2316 bytes)
Hash
03278c047a3192f4a25c4644284d910b
61fc733be8553b3e6d9847d43b4bef84b5ae947d
d5e8a5e5b7bfea2764abadded25ab112a034543a2315c942bb9fd3cbe7ece8fb

HTTP Headers

GET /css?family=Roboto&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sdcsalesar.live/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 Apr 2024 23:39:11 GMT
date: Fri, 26 Apr 2024 23:39:11 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

sdcsalesar.live/api/item/info?id=43650361

172.67.135.103

200 OK

6.5 kB

URL GET HTTP/3
sdcsalesar.live/api/item/info?id=43650361
IP
172.67.135.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsdcsalesar.live
FingerprintB5:5F:94:30:B5:96:3C:E5:BB:A2:B2:86:CA:1E:35:72:05:4A:97:40
ValiditySat, 23 Mar 2024 02:20:43 GMT - Fri, 21 Jun 2024 02:20:42 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (7250), with no line terminators
Size
6.5 kB (6469 bytes)
Hash
4b2f668fdbe96dd29c97df629b41bde5
6c592783a65553b84de281b03b46db2472ff9bee
473c4c0b5b4f9835075eba5a41f699e4e3725831ea3e76c9bcd69b83e81d45c9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /api/item/info?id=43650361 HTTP/1.1
Host: sdcsalesar.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sdcsalesar.live/product_details/43650361.html
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IlJWL1d2Ry84THRST1JqUkx6aDRjSWc9PSIsInZhbHVlIjoiMUE1V3pDV1dqZWtXTk4rSWNrNDUvZU9nSEk5MzZueEVtZGxaTi95U1FrQTIxdjNLeWN2MExueXVXdnoxNG5xclFFU2VZMWQ4SVpLbFZjVFgreFVnM2IzNXo4YXpoY2RjTnJtMjFQS3FMbUh4NDdZS25xd2VDQjBkSzNqQW1IK1oiLCJtYWMiOiJlZTM0NzFiN2ZiOWM3NWI5OWI5YTRlZWUyOTU0OWJkODhmZGJmZTQyZWIwNjFhODNmZmRmOWIyNTU4YTY2YmQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InVaYzRPelJtN29EUDJCajNkT2Z2b2c9PSIsInZhbHVlIjoiejZ1cWs2OEltTGlIMG9XdjQwcE1UTnlKUG15cTdnTFdnRkpQY252dmFOSitOYS9aVGhDZUFJMGFkTVRNVG93ZXVaYmRwaFhJcWhicTVUQnFKOFpaZ2xUd01lNWkzbjBVdS9OWTN5NEZMQ0dBdVNVZEt3cnNYSElPOVdXeVg4THIiLCJtYWMiOiI2ZWU4Zjk5OTk2ZTAzOGIxOWVjMzM0OWNjYmZlMjhjNTQ4NmZjMGI2YzcxMTliNjI5OGI0MDlhN2NlNjRhODZlIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:39:13 GMT
content-type: application/json
cache-control: no-cache, private
x-ratelimit-limit: 60
x-ratelimit-remaining: 59
access-control-allow-origin: *
set-cookie: laravel_session=eyJpdiI6ImN3OFAvKzdCcU16ZThscFIyK1ptL1E9PSIsInZhbHVlIjoiTUZZWUlXNXlRVjQxbnBiQkJ4MTJVeEFIRzZLaDhmN3J4QkYzb1VmZllNcVZVTnlmSlpMUmFHaXYwNHl4ck9ROFlhRExucjR6R2tzYnBETEswVTBEdnJ4eDE4KzlwRjFTMVk2ZVFSMWdDMis5S0Y1eXoyaWFWbFNheHF4SFlLbmYiLCJtYWMiOiJmMTg2ZDAxZWM1ZGNlNmEwZTk0YzJmYjQ2NTA1MmRjMjgwMWZmMGI4MjI0ZmFkZTQ5MGQ4NTk2NDE3NjQ2ZjQ3IiwidGFnIjoiIn0%3D; expires=Sat, 27-Apr-2024 01:39:13 GMT; Max-Age=7200; path=/; httponly; samesite=lax
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5ID61wAvbrfNtlt3mz77kdKJnUNV%2FFXER%2Fu6knNztShe3RYdwH93fD2HOZgYtwNdgsdcgm5yhjpzPX1evwrwDMaNigP4JcqRXKpbbbGRn%2BCz%2F1LM6c%2FUaN6997h483edGow%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa69250d3fb4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

sdcsalesar.live/static/magento/css/footer-styles.css?12

172.67.135.103

200 OK

11 kB

URL GET HTTP/3
sdcsalesar.live/static/magento/css/footer-styles.css?12
IP
172.67.135.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsdcsalesar.live
FingerprintB5:5F:94:30:B5:96:3C:E5:BB:A2:B2:86:CA:1E:35:72:05:4A:97:40
ValiditySat, 23 Mar 2024 02:20:43 GMT - Fri, 21 Jun 2024 02:20:42 GMT

File type
ASCII text, with very long lines (11153), with no line terminators
Size
11 kB (11153 bytes)
Hash
8c2c965fd589ea54541f8fc3ed3adb4a
bd6c7396680630285b961a857b27469246051e51
714367b4759e000c702ff15ad2e99a24eafd39190759c1bcee58d890df66aa4e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/magento/css/footer-styles.css?12 HTTP/1.1
Host: sdcsalesar.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sdcsalesar.live/product_details/43650361.html
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IlJWL1d2Ry84THRST1JqUkx6aDRjSWc9PSIsInZhbHVlIjoiMUE1V3pDV1dqZWtXTk4rSWNrNDUvZU9nSEk5MzZueEVtZGxaTi95U1FrQTIxdjNLeWN2MExueXVXdnoxNG5xclFFU2VZMWQ4SVpLbFZjVFgreFVnM2IzNXo4YXpoY2RjTnJtMjFQS3FMbUh4NDdZS25xd2VDQjBkSzNqQW1IK1oiLCJtYWMiOiJlZTM0NzFiN2ZiOWM3NWI5OWI5YTRlZWUyOTU0OWJkODhmZGJmZTQyZWIwNjFhODNmZmRmOWIyNTU4YTY2YmQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InVaYzRPelJtN29EUDJCajNkT2Z2b2c9PSIsInZhbHVlIjoiejZ1cWs2OEltTGlIMG9XdjQwcE1UTnlKUG15cTdnTFdnRkpQY252dmFOSitOYS9aVGhDZUFJMGFkTVRNVG93ZXVaYmRwaFhJcWhicTVUQnFKOFpaZ2xUd01lNWkzbjBVdS9OWTN5NEZMQ0dBdVNVZEt3cnNYSElPOVdXeVg4THIiLCJtYWMiOiI2ZWU4Zjk5OTk2ZTAzOGIxOWVjMzM0OWNjYmZlMjhjNTQ4NmZjMGI2YzcxMTliNjI5OGI0MDlhN2NlNjRhODZlIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:39:10 GMT
content-type: text/css
last-modified: Fri, 20 Oct 2023 06:16:20 GMT
etag: W/"2b91-6081fcf9f63de-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4729
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ibkWR6UkmyA%2Fg7vstH0RzgYvGTybiXEbbqWREitqPR4MPUQgyQ59pONhKkeL252mMLgVS2US8QUDUVmPXfEDBIga1iUQTXZZWsaF0yDEc43HWNgNxGb%2FkDSCbwnA4Rhg%2F6E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa69201915b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

sdcsalesar.live/product_details/43650361.html

172.67.135.103

200 OK

98 kB

URL User Request GET HTTP/2
sdcsalesar.live/product_details/43650361.html
IP
172.67.135.103:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectsdcsalesar.live
FingerprintB5:5F:94:30:B5:96:3C:E5:BB:A2:B2:86:CA:1E:35:72:05:4A:97:40
ValiditySat, 23 Mar 2024 02:20:43 GMT - Fri, 21 Jun 2024 02:20:42 GMT

File type

Size
98 kB (97885 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /product_details/43650361.html HTTP/1.1
Host: sdcsalesar.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 23:39:10 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6IlJWL1d2Ry84THRST1JqUkx6aDRjSWc9PSIsInZhbHVlIjoiMUE1V3pDV1dqZWtXTk4rSWNrNDUvZU9nSEk5MzZueEVtZGxaTi95U1FrQTIxdjNLeWN2MExueXVXdnoxNG5xclFFU2VZMWQ4SVpLbFZjVFgreFVnM2IzNXo4YXpoY2RjTnJtMjFQS3FMbUh4NDdZS25xd2VDQjBkSzNqQW1IK1oiLCJtYWMiOiJlZTM0NzFiN2ZiOWM3NWI5OWI5YTRlZWUyOTU0OWJkODhmZGJmZTQyZWIwNjFhODNmZmRmOWIyNTU4YTY2YmQ1IiwidGFnIjoiIn0%3D; expires=Sat, 27-Apr-2024 01:39:10 GMT; Max-Age=7200; path=/; samesite=lax
laravel_session=eyJpdiI6InVaYzRPelJtN29EUDJCajNkT2Z2b2c9PSIsInZhbHVlIjoiejZ1cWs2OEltTGlIMG9XdjQwcE1UTnlKUG15cTdnTFdnRkpQY252dmFOSitOYS9aVGhDZUFJMGFkTVRNVG93ZXVaYmRwaFhJcWhicTVUQnFKOFpaZ2xUd01lNWkzbjBVdS9OWTN5NEZMQ0dBdVNVZEt3cnNYSElPOVdXeVg4THIiLCJtYWMiOiI2ZWU4Zjk5OTk2ZTAzOGIxOWVjMzM0OWNjYmZlMjhjNTQ4NmZjMGI2YzcxMTliNjI5OGI0MDlhN2NlNjRhODZlIiwidGFnIjoiIn0%3D; expires=Sat, 27-Apr-2024 01:39:10 GMT; Max-Age=7200; path=/; httponly; samesite=lax
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=a0U2Vi2xUFsvNm9wcUiF%2BZYPcoQ6M1e2u39AWX%2F9q%2BozgZtr26%2FRxEJKXYHQmqv5NXTIhGWZf%2B1pNkCSnUVfpaWvqYRBjtFUsNCxVIwxUU4M07ztXcl14xn31Yhryfszn7g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa691aeb7ab51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

manuals.plus/wp-content/uploads/2023/01/0000-68.jpg

172.66.43.157

200 OK

45 kB

URL GET HTTP/2
manuals.plus/wp-content/uploads/2023/01/0000-68.jpg
IP
172.66.43.157:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerGoogle Trust Services LLC
Subjectmanuals.plus
FingerprintD6:15:F6:6D:05:10:10:CC:FC:04:88:C4:D6:03:F5:3D:69:5E:ED:60
ValiditySun, 14 Apr 2024 02:47:30 GMT - Sat, 13 Jul 2024 02:47:29 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1488x804, components 3
Size
45 kB (45088 bytes)
Hash
d82bc972f184c267be2b090893f40a21
6e6f16781386a006e32c424f616d9986a48dbbb4
8d19b1be59824b2b980a63f99c5562e612ecfc6fcb38302e49ecf41954974497

HTTP Headers

GET /wp-content/uploads/2023/01/0000-68.jpg HTTP/1.1
Host: manuals.plus
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 23:39:16 GMT
content-type: image/jpeg
access-control-allow-origin: *
cache-control: public, max-age=31536000
display: staticcontent_sol
etag: "b020-5f2a668f53bf5-gzip"
last-modified: Thu, 19 Jan 2023 23:37:02 GMT
vary: Accept-Encoding,X-Ezoic-Excludewebp,Origin
x-ez-proxy-out: true 2.4
x-ezoic-cdn: Hit ds;ms;ee60d10ce415a1cd701989f15cdce15e;2-309095-771;bee43767-d4fd-477e-6dcb-f09c38ec8a1d
x-ezoic-excludewebp: false
x-middleton-display: staticcontent_sol
x-middleton-response: 200
x-origin-cache-control: max-age=31536000
cf-cache-status: MISS
server: cloudflare
cf-ray: 87aa69417afe1bfa-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

sdcsalesar.live/favicon.ico

172.67.135.103

200 OK

61 B

URL GET HTTP/3
sdcsalesar.live/favicon.ico
IP
172.67.135.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsdcsalesar.live
FingerprintB5:5F:94:30:B5:96:3C:E5:BB:A2:B2:86:CA:1E:35:72:05:4A:97:40
ValiditySat, 23 Mar 2024 02:20:43 GMT - Fri, 21 Jun 2024 02:20:42 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
61 B (61 bytes)
Hash
2d963171282c4de9d6969472b23e47e3
1ea3d4ba9fe4b01b4edf5b7dcd20ac246d2187d8
87ed5a5a37969aa977d6f4fc16ae7a094bc1abc454307e011b65036646b4d3ab

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: sdcsalesar.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sdcsalesar.live/product_details/43650361.html
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6Imt3SFRib2JwUEZmdnV3aDZFbEdvWEE9PSIsInZhbHVlIjoidTBNTUU5VExCR29tMmhHMG9UQXRjRVRFWXRhM09YcGdiYlkxMDhGdHhRSEpiWnV6S05CZVV6NlNPZ05GM0RXaFlyUjVhc0dhU09VUzNOUDR6NWlwZzQxYTF6UjhTVWNsRDRnUXR5OXZQbElGRmliaTFHazdEWjg0YnZLbm9BUzMiLCJtYWMiOiJhMDVmOTE3MWY0ZWMyOWNlZjhjZDBhMzAzYTAxYmMzNjdhZjQ0NzExOGU1OTVjZDdkOTdlOGZhZGI1MWJjZWM2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjBDZWk0ZGdoQlllODBPSnFiQ0piUnc9PSIsInZhbHVlIjoiQUIwcVdwVEVsZHEwN0RGZGV2SmtiMnhWejlLMWtsdUNjam1DM2YycndmVEtqZ29rck5HQTJqNjM5cU8wZkt1QjZzWmkwN3duUC9LT2NiSVNqUXdJZUw2eWpyR2tvU0NrZGkrL053MGs1SDlNWWhrY3k1cUF6QytrQnhrTE4yYlkiLCJtYWMiOiJiMzUyZDI5ZWI4MzVlZGRiMmVkYWUyOWM0MGE4MmFiMjdiMThhNmVhMmFhODA0MDg2NzhhMDI2ZWQ1OWVmNzMwIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:39:12 GMT
content-type: application/json
cache-control: no-cache, private
vary: Accept-Encoding
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CaTt%2BXCUMiI9zvgavM7nmq2NAAje4Q5t3BVAXecLCjATv5ZlkNYXJmGPdQ4qlrIWeleK1SaWeerzl%2F%2FKCLjOLxwxoTOQN9TBbC42O52GjDxScpGidllxzwCuiKvXQ1%2FfEo8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa692b698fb4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

sdcsalesar.live/static/magento/css/in.min.css?12

172.67.135.103

200 OK

92 kB

URL GET HTTP/3
sdcsalesar.live/static/magento/css/in.min.css?12
IP
172.67.135.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsdcsalesar.live
FingerprintB5:5F:94:30:B5:96:3C:E5:BB:A2:B2:86:CA:1E:35:72:05:4A:97:40
ValiditySat, 23 Mar 2024 02:20:43 GMT - Fri, 21 Jun 2024 02:20:42 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (354)
Size
92 kB (91839 bytes)
Hash
3f944e588edf755c8d7ba688f306f452
d60683ae51c94272253a95a26f659773cb28aae7
261f75497a6e036ef06fa32427c6254a611c44533dcc2c4b6fb7749691207d92

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/magento/css/in.min.css?12 HTTP/1.1
Host: sdcsalesar.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sdcsalesar.live/product_details/43650361.html
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IlJWL1d2Ry84THRST1JqUkx6aDRjSWc9PSIsInZhbHVlIjoiMUE1V3pDV1dqZWtXTk4rSWNrNDUvZU9nSEk5MzZueEVtZGxaTi95U1FrQTIxdjNLeWN2MExueXVXdnoxNG5xclFFU2VZMWQ4SVpLbFZjVFgreFVnM2IzNXo4YXpoY2RjTnJtMjFQS3FMbUh4NDdZS25xd2VDQjBkSzNqQW1IK1oiLCJtYWMiOiJlZTM0NzFiN2ZiOWM3NWI5OWI5YTRlZWUyOTU0OWJkODhmZGJmZTQyZWIwNjFhODNmZmRmOWIyNTU4YTY2YmQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InVaYzRPelJtN29EUDJCajNkT2Z2b2c9PSIsInZhbHVlIjoiejZ1cWs2OEltTGlIMG9XdjQwcE1UTnlKUG15cTdnTFdnRkpQY252dmFOSitOYS9aVGhDZUFJMGFkTVRNVG93ZXVaYmRwaFhJcWhicTVUQnFKOFpaZ2xUd01lNWkzbjBVdS9OWTN5NEZMQ0dBdVNVZEt3cnNYSElPOVdXeVg4THIiLCJtYWMiOiI2ZWU4Zjk5OTk2ZTAzOGIxOWVjMzM0OWNjYmZlMjhjNTQ4NmZjMGI2YzcxMTliNjI5OGI0MDlhN2NlNjRhODZlIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:39:10 GMT
content-type: text/css
last-modified: Fri, 20 Oct 2023 06:16:20 GMT
etag: W/"166bf-6081fcf9f67c6-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4729
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZiTWZGvJmVV26xK5SW3Up2aZhzIWhoHCTQSnZVnb0ztwrXJON%2Bd2zX17bM9wgob2HQptARJMAmz7z6GT1ItGrflxebH%2BOBDBh55NRArYdj6qdg4qp46obBEj1VqCqrj1kz8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa69201912b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

sdcsalesar.live/api/item/random?num=4&name=new

172.67.135.103

200 OK

1.6 kB

URL GET HTTP/3
sdcsalesar.live/api/item/random?num=4&name=new
IP
172.67.135.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsdcsalesar.live
FingerprintB5:5F:94:30:B5:96:3C:E5:BB:A2:B2:86:CA:1E:35:72:05:4A:97:40
ValiditySat, 23 Mar 2024 02:20:43 GMT - Fri, 21 Jun 2024 02:20:42 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (1706), with no line terminators
Size
1.6 kB (1555 bytes)
Hash
e5ff6e9733dcb76e33d5253fc442287f
ecc3e1c7493d096096fed71476d7879584879b02
7fc6fb0681311ae9c724e97ed664069002797040965c9edecd65cccc05838a34

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /api/item/random?num=4&name=new HTTP/1.1
Host: sdcsalesar.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sdcsalesar.live/product_details/43650361.html
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6Imt3SFRib2JwUEZmdnV3aDZFbEdvWEE9PSIsInZhbHVlIjoidTBNTUU5VExCR29tMmhHMG9UQXRjRVRFWXRhM09YcGdiYlkxMDhGdHhRSEpiWnV6S05CZVV6NlNPZ05GM0RXaFlyUjVhc0dhU09VUzNOUDR6NWlwZzQxYTF6UjhTVWNsRDRnUXR5OXZQbElGRmliaTFHazdEWjg0YnZLbm9BUzMiLCJtYWMiOiJhMDVmOTE3MWY0ZWMyOWNlZjhjZDBhMzAzYTAxYmMzNjdhZjQ0NzExOGU1OTVjZDdkOTdlOGZhZGI1MWJjZWM2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImN3OFAvKzdCcU16ZThscFIyK1ptL1E9PSIsInZhbHVlIjoiTUZZWUlXNXlRVjQxbnBiQkJ4MTJVeEFIRzZLaDhmN3J4QkYzb1VmZllNcVZVTnlmSlpMUmFHaXYwNHl4ck9ROFlhRExucjR6R2tzYnBETEswVTBEdnJ4eDE4KzlwRjFTMVk2ZVFSMWdDMis5S0Y1eXoyaWFWbFNheHF4SFlLbmYiLCJtYWMiOiJmMTg2ZDAxZWM1ZGNlNmEwZTk0YzJmYjQ2NTA1MmRjMjgwMWZmMGI4MjI0ZmFkZTQ5MGQ4NTk2NDE3NjQ2ZjQ3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:39:16 GMT
content-type: application/json
cache-control: no-cache, private
x-ratelimit-limit: 60
x-ratelimit-remaining: 57
access-control-allow-origin: *
set-cookie: laravel_session=eyJpdiI6IkVERmdmNXZiU0tMRGZMZEI5TjFuMGc9PSIsInZhbHVlIjoiZGVGTWxmYlpoZ1piZE50eGF6dHRiaFA2Z2gvUVdEbktqSE9lcnhLMDk1Mkp2QkxBYnpkOGxPd3Q2VmZGcWN3WkFOY3JNdytvSUdobUNPVFVUb0V6a2tRU1BuMHMzUThsZDRVb3dXZ2ZwSTZqUkVRSUdzQnllck85ekMzRmtST3EiLCJtYWMiOiI0YTY5YTIwYzAyNTE3YmIzNGFkMGRjMDY3Mzg4OWJhOTQ3MDdkY2NhOTU0NGM4YzJjZmQ0MmY2MTE4NWRlMGMzIiwidGFnIjoiIn0%3D; expires=Sat, 27-Apr-2024 01:39:15 GMT; Max-Age=7200; path=/; httponly; samesite=lax
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rXHXHB6dPfJkFdfhRZTjzbytI0iidU9FZGnjAHFWluwcma0KtifIkZB%2FLExmZIViNIrGpZkL6hu0prpZWHU6Z3CwTD%2F0V9VDbnanZfc9V8XxSgRCNN%2Bfyqy9Tla69nVYkXM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa69325e06b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

sdcsalesar.live/static/market/js/jquery.min.js

172.67.135.103

200 OK

84 kB

URL GET HTTP/3
sdcsalesar.live/static/market/js/jquery.min.js
IP
172.67.135.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsdcsalesar.live
FingerprintB5:5F:94:30:B5:96:3C:E5:BB:A2:B2:86:CA:1E:35:72:05:4A:97:40
ValiditySat, 23 Mar 2024 02:20:43 GMT - Fri, 21 Jun 2024 02:20:42 GMT

File type
JavaScript source, ASCII text, with very long lines (32061)
Size
84 kB (84245 bytes)
Hash
e40ec2161fe7993196f23c8a07346306
afb90752e0a90c24b7f724faca86c5f3d15d1178
874706b2b1311a0719b5267f7d1cf803057e367e94ae1ff7bf78c5450d30f5d4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/market/js/jquery.min.js HTTP/1.1
Host: sdcsalesar.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sdcsalesar.live/product_details/43650361.html
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IlJWL1d2Ry84THRST1JqUkx6aDRjSWc9PSIsInZhbHVlIjoiMUE1V3pDV1dqZWtXTk4rSWNrNDUvZU9nSEk5MzZueEVtZGxaTi95U1FrQTIxdjNLeWN2MExueXVXdnoxNG5xclFFU2VZMWQ4SVpLbFZjVFgreFVnM2IzNXo4YXpoY2RjTnJtMjFQS3FMbUh4NDdZS25xd2VDQjBkSzNqQW1IK1oiLCJtYWMiOiJlZTM0NzFiN2ZiOWM3NWI5OWI5YTRlZWUyOTU0OWJkODhmZGJmZTQyZWIwNjFhODNmZmRmOWIyNTU4YTY2YmQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InVaYzRPelJtN29EUDJCajNkT2Z2b2c9PSIsInZhbHVlIjoiejZ1cWs2OEltTGlIMG9XdjQwcE1UTnlKUG15cTdnTFdnRkpQY252dmFOSitOYS9aVGhDZUFJMGFkTVRNVG93ZXVaYmRwaFhJcWhicTVUQnFKOFpaZ2xUd01lNWkzbjBVdS9OWTN5NEZMQ0dBdVNVZEt3cnNYSElPOVdXeVg4THIiLCJtYWMiOiI2ZWU4Zjk5OTk2ZTAzOGIxOWVjMzM0OWNjYmZlMjhjNTQ4NmZjMGI2YzcxMTliNjI5OGI0MDlhN2NlNjRhODZlIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:39:10 GMT
content-type: application/javascript
last-modified: Fri, 20 Oct 2023 06:16:20 GMT
etag: W/"14915-6081fcfa186bf-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4729
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JVTl3P76Lht8FM3ar2bDxKcDM3VkkthQc01scCRWjmzkYrFsXDnzxzQb58O%2BpvvoIrLRRyZD2bkqjAUPMAtOaQEACEye6pIA7oH1ktdCmefza5Umn9mTyNQHxIprgqeEzgI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa69202920b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

i.etsystatic.com/35828944/r/il/f9b537/4141997204/il_1080xN.4141997204_auao.jpg

23.36.76.235

200 OK

118 kB

URL GET HTTP/2
i.etsystatic.com/35828944/r/il/f9b537/4141997204/il_1080xN.4141997204_auao.jpg
IP
23.36.76.235:443
ASN
#20940 Akamai International B.V.

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerLet's Encrypt
Subjectim.i.etsystatic.com
Fingerprint59:F6:69:0A:05:C3:4A:36:0F:58:4C:2B:7F:25:E2:14:E0:29:33:4D
ValidityThu, 07 Mar 2024 10:18:01 GMT - Wed, 05 Jun 2024 10:18:00 GMT

File type
ISO Media, AVIF Image
Size
118 kB (118326 bytes)
Hash
8dc6437f362c61fff546697239530907
258425dbcaeb5d43bef78b7cde4714e3c25d5df2
936ba055b2c678d5e4ae9eb8d3956668b12ada460a6dfd9b0904811bd2e3325a

HTTP Headers

GET /35828944/r/il/f9b537/4141997204/il_1080xN.4141997204_auao.jpg HTTP/1.1
Host: i.etsystatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
etag: "e2e762d7e70f6762bc07f5df9d0038b2"
last-modified: Sun, 07 Apr 2024 13:49:40 GMT
server: Akamai Image Manager
content-length: 118326
content-type: image/avif
cache-control: private, no-transform, max-age=914968
expires: Tue, 07 May 2024 13:48:44 GMT
date: Fri, 26 Apr 2024 23:39:16 GMT
akamai-request-bc: [a=23.36.76.231,b=456151623,c=g,n=NO__OSLO,o=20940],[c=c,n=NL__AMSTERDAM,o=20940],[c=c,n=US_GA_ATLANTA,o=20940]
server-timing: clientrtt; dur=3, clienttt; dur=402, origin; dur=0 , cdntime; dur=402, cache_status; desc=MISS, cdn; desc=Akamai
akamai-cache-status: Miss from child, Miss from parent
timing-allow-origin: *
akamai-grn: 0.e74c2417.1714174755.1b305247
strict-transport-security: max-age=86400
X-Firefox-Spdy: h2

sdcsalesar.live/static/magento/css/product-view-styles.css?185542

172.67.135.103

200 OK

446 kB

URL GET HTTP/3
sdcsalesar.live/static/magento/css/product-view-styles.css?185542
IP
172.67.135.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsdcsalesar.live
FingerprintB5:5F:94:30:B5:96:3C:E5:BB:A2:B2:86:CA:1E:35:72:05:4A:97:40
ValiditySat, 23 Mar 2024 02:20:43 GMT - Fri, 21 Jun 2024 02:20:42 GMT

File type
ASCII text, with very long lines (690)
Size
446 kB (446228 bytes)
Hash
954065164950eee99f47dee50a8d0682
63f585205e9db0b1cb1d989d5ec49f6786e1186e
297b3c559ea74de6402f2c968b1929bd6c7c329aa4212ee6e03e204fcb739321

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/magento/css/product-view-styles.css?185542 HTTP/1.1
Host: sdcsalesar.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sdcsalesar.live/product_details/43650361.html
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IlJWL1d2Ry84THRST1JqUkx6aDRjSWc9PSIsInZhbHVlIjoiMUE1V3pDV1dqZWtXTk4rSWNrNDUvZU9nSEk5MzZueEVtZGxaTi95U1FrQTIxdjNLeWN2MExueXVXdnoxNG5xclFFU2VZMWQ4SVpLbFZjVFgreFVnM2IzNXo4YXpoY2RjTnJtMjFQS3FMbUh4NDdZS25xd2VDQjBkSzNqQW1IK1oiLCJtYWMiOiJlZTM0NzFiN2ZiOWM3NWI5OWI5YTRlZWUyOTU0OWJkODhmZGJmZTQyZWIwNjFhODNmZmRmOWIyNTU4YTY2YmQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InVaYzRPelJtN29EUDJCajNkT2Z2b2c9PSIsInZhbHVlIjoiejZ1cWs2OEltTGlIMG9XdjQwcE1UTnlKUG15cTdnTFdnRkpQY252dmFOSitOYS9aVGhDZUFJMGFkTVRNVG93ZXVaYmRwaFhJcWhicTVUQnFKOFpaZ2xUd01lNWkzbjBVdS9OWTN5NEZMQ0dBdVNVZEt3cnNYSElPOVdXeVg4THIiLCJtYWMiOiI2ZWU4Zjk5OTk2ZTAzOGIxOWVjMzM0OWNjYmZlMjhjNTQ4NmZjMGI2YzcxMTliNjI5OGI0MDlhN2NlNjRhODZlIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:39:10 GMT
content-type: text/css
last-modified: Fri, 20 Oct 2023 06:16:20 GMT
etag: W/"6cf14-6081fcf9f7766-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4729
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EUm3ZlYxFU5B29qDvM8k6TEcAl16C9x9LCw4HmGgep9j5J84eGed1gGpmctyhxkRrGridqK%2FI7oKbWyoPEd2GMmUvSNnfTyWJrPwqWCqH8tyiTGdYHMBQPtAbZnOvTJf4Gw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa6920291bb4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

sdcsalesar.live/api/cart/index

172.67.135.103

200 OK

139 B

URL GET HTTP/3
sdcsalesar.live/api/cart/index
IP
172.67.135.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsdcsalesar.live
FingerprintB5:5F:94:30:B5:96:3C:E5:BB:A2:B2:86:CA:1E:35:72:05:4A:97:40
ValiditySat, 23 Mar 2024 02:20:43 GMT - Fri, 21 Jun 2024 02:20:42 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
139 B (139 bytes)
Hash
44f293d1057e83d64adbd382f9753c0c
64b4ac33d19337d1a099cf6f41cacbf95d017ac6
e0b1b9c0ec1aa8b305e8ee8c3f3946d9de911e5b0d29b9a80dfe128ce623fa13

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /api/cart/index HTTP/1.1
Host: sdcsalesar.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sdcsalesar.live/product_details/43650361.html
Authorization: 
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IlJWL1d2Ry84THRST1JqUkx6aDRjSWc9PSIsInZhbHVlIjoiMUE1V3pDV1dqZWtXTk4rSWNrNDUvZU9nSEk5MzZueEVtZGxaTi95U1FrQTIxdjNLeWN2MExueXVXdnoxNG5xclFFU2VZMWQ4SVpLbFZjVFgreFVnM2IzNXo4YXpoY2RjTnJtMjFQS3FMbUh4NDdZS25xd2VDQjBkSzNqQW1IK1oiLCJtYWMiOiJlZTM0NzFiN2ZiOWM3NWI5OWI5YTRlZWUyOTU0OWJkODhmZGJmZTQyZWIwNjFhODNmZmRmOWIyNTU4YTY2YmQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InVaYzRPelJtN29EUDJCajNkT2Z2b2c9PSIsInZhbHVlIjoiejZ1cWs2OEltTGlIMG9XdjQwcE1UTnlKUG15cTdnTFdnRkpQY252dmFOSitOYS9aVGhDZUFJMGFkTVRNVG93ZXVaYmRwaFhJcWhicTVUQnFKOFpaZ2xUd01lNWkzbjBVdS9OWTN5NEZMQ0dBdVNVZEt3cnNYSElPOVdXeVg4THIiLCJtYWMiOiI2ZWU4Zjk5OTk2ZTAzOGIxOWVjMzM0OWNjYmZlMjhjNTQ4NmZjMGI2YzcxMTliNjI5OGI0MDlhN2NlNjRhODZlIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:39:12 GMT
content-type: application/json
cache-control: no-cache, private
x-ratelimit-limit: 60
x-ratelimit-remaining: 58
access-control-allow-origin: *
set-cookie: laravel_session=eyJpdiI6Imk3Nmd3ZzlMZEtLTkxRUGxoT0ZGc3c9PSIsInZhbHVlIjoiekhVVDlZdGdiZ0hoZnVjamJJRWw2NU03c1Q5UlB2YXZ4eEp5UjBkMm92b1daMGowVFBvNGFDMno2Tmg2ZmhFUGgyNUFwT1RsRVdZTnVuSnZlL25FRDdoVWFjdjIzOFJmN3JvNC9wc2pBQnEvM1B3ckp6a1hRd3c0aHNYb2RjcmkiLCJtYWMiOiIyMDIyZDk5ODg2MDYyYjBhYjNhNzdjMjY5MzFkZGEwMGM3OTBiODI1NTA1NDAwY2EwNjRmNjk5M2IzZTBkZWY3IiwidGFnIjoiIn0%3D; expires=Sat, 27-Apr-2024 01:39:12 GMT; Max-Age=7200; path=/; httponly; samesite=lax
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6q%2Fvw9ukVcZN11wl7gtGmexOC31Rwl6CBWToH6NuoXdNiJSEpW3MASJOM7RaDRgaDjAJXa1hguNHdYY58BuVPk%2B8k7xJkCN4TsVsFaPQgdqJR0mIKfvuFq2fV4KrS6Qv8Vw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa69243ca7b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

sdcsalesar.live/static/magento/css/main-styles.css?12

172.67.135.103

200 OK

419 kB

URL GET HTTP/3
sdcsalesar.live/static/magento/css/main-styles.css?12
IP
172.67.135.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsdcsalesar.live
FingerprintB5:5F:94:30:B5:96:3C:E5:BB:A2:B2:86:CA:1E:35:72:05:4A:97:40
ValiditySat, 23 Mar 2024 02:20:43 GMT - Fri, 21 Jun 2024 02:20:42 GMT

File type
assembler source, ASCII text, with very long lines (690)
Size
419 kB (419068 bytes)
Hash
a09801d1366cce1cc9fedcc4842b7bd0
d7b43297141a3bc4aee1d46e6a74ec15b304b7e2
4959615ffd7c9aa33318d40e17917ddf616667ca14e7a00105556dd4ff75a5c4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/magento/css/main-styles.css?12 HTTP/1.1
Host: sdcsalesar.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sdcsalesar.live/product_details/43650361.html
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IlJWL1d2Ry84THRST1JqUkx6aDRjSWc9PSIsInZhbHVlIjoiMUE1V3pDV1dqZWtXTk4rSWNrNDUvZU9nSEk5MzZueEVtZGxaTi95U1FrQTIxdjNLeWN2MExueXVXdnoxNG5xclFFU2VZMWQ4SVpLbFZjVFgreFVnM2IzNXo4YXpoY2RjTnJtMjFQS3FMbUh4NDdZS25xd2VDQjBkSzNqQW1IK1oiLCJtYWMiOiJlZTM0NzFiN2ZiOWM3NWI5OWI5YTRlZWUyOTU0OWJkODhmZGJmZTQyZWIwNjFhODNmZmRmOWIyNTU4YTY2YmQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InVaYzRPelJtN29EUDJCajNkT2Z2b2c9PSIsInZhbHVlIjoiejZ1cWs2OEltTGlIMG9XdjQwcE1UTnlKUG15cTdnTFdnRkpQY252dmFOSitOYS9aVGhDZUFJMGFkTVRNVG93ZXVaYmRwaFhJcWhicTVUQnFKOFpaZ2xUd01lNWkzbjBVdS9OWTN5NEZMQ0dBdVNVZEt3cnNYSElPOVdXeVg4THIiLCJtYWMiOiI2ZWU4Zjk5OTk2ZTAzOGIxOWVjMzM0OWNjYmZlMjhjNTQ4NmZjMGI2YzcxMTliNjI5OGI0MDlhN2NlNjRhODZlIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:39:10 GMT
content-type: text/css
last-modified: Fri, 20 Oct 2023 06:16:20 GMT
etag: W/"664fc-6081fcf9f7766-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4729
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Bxfx7vT%2BI%2BV5qnI64iXM6RfOYoo1T%2Fy4YUS5bRrUgyVnS74bhljFmlCdA%2F44xfKLH5eBi0%2BlrNB8s9vwmd0k5QlbarcuZKqPaLgynae3bn3M8xPH7RdQR44I%2FZsaHNBN8Kk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa69202918b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

sdcsalesar.live/codazon/themelayout/fonts/CodazonFont.woff2

172.67.135.103

200 OK

61 B

URL GET HTTP/3
sdcsalesar.live/codazon/themelayout/fonts/CodazonFont.woff2
IP
172.67.135.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsdcsalesar.live
FingerprintB5:5F:94:30:B5:96:3C:E5:BB:A2:B2:86:CA:1E:35:72:05:4A:97:40
ValiditySat, 23 Mar 2024 02:20:43 GMT - Fri, 21 Jun 2024 02:20:42 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
61 B (61 bytes)
Hash
2d963171282c4de9d6969472b23e47e3
1ea3d4ba9fe4b01b4edf5b7dcd20ac246d2187d8
87ed5a5a37969aa977d6f4fc16ae7a094bc1abc454307e011b65036646b4d3ab

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /codazon/themelayout/fonts/CodazonFont.woff2 HTTP/1.1
Host: sdcsalesar.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://sdcsalesar.live/static/magento/css/product-view-styles.css?185542
Cookie: XSRF-TOKEN=eyJpdiI6IlJWL1d2Ry84THRST1JqUkx6aDRjSWc9PSIsInZhbHVlIjoiMUE1V3pDV1dqZWtXTk4rSWNrNDUvZU9nSEk5MzZueEVtZGxaTi95U1FrQTIxdjNLeWN2MExueXVXdnoxNG5xclFFU2VZMWQ4SVpLbFZjVFgreFVnM2IzNXo4YXpoY2RjTnJtMjFQS3FMbUh4NDdZS25xd2VDQjBkSzNqQW1IK1oiLCJtYWMiOiJlZTM0NzFiN2ZiOWM3NWI5OWI5YTRlZWUyOTU0OWJkODhmZGJmZTQyZWIwNjFhODNmZmRmOWIyNTU4YTY2YmQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InVaYzRPelJtN29EUDJCajNkT2Z2b2c9PSIsInZhbHVlIjoiejZ1cWs2OEltTGlIMG9XdjQwcE1UTnlKUG15cTdnTFdnRkpQY252dmFOSitOYS9aVGhDZUFJMGFkTVRNVG93ZXVaYmRwaFhJcWhicTVUQnFKOFpaZ2xUd01lNWkzbjBVdS9OWTN5NEZMQ0dBdVNVZEt3cnNYSElPOVdXeVg4THIiLCJtYWMiOiI2ZWU4Zjk5OTk2ZTAzOGIxOWVjMzM0OWNjYmZlMjhjNTQ4NmZjMGI2YzcxMTliNjI5OGI0MDlhN2NlNjRhODZlIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:39:12 GMT
content-type: application/json
cache-control: no-cache, private
vary: Accept-Encoding
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vl9Lv59UM4gorAiqKBrnIfDEs6gMqJ%2F0OJxV7haiB7X7%2FAZLnxrbCbSBjQctT5hdvVw%2B208LJpSQ%2F3%2FHgX3uNCabrdI8U37nleTJiTJGUt2%2Bzbwlzjo%2Fdxa%2BdwNUNjdIlp4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa6924bcfbb4f4-OSL
alt-svc: h3=":443"; ma=86400

cdn.cardsrealm.com/images/cartas/ncc-new-capenna-commander/en/crop-med/vorel-of-the-hull-clade-357.jpeg?8421

194.242.11.186

200 OK

79 kB

URL GET HTTP/2
cdn.cardsrealm.com/images/cartas/ncc-new-capenna-commander/en/crop-med/vorel-of-the-hull-clade-357.jpeg?8421
IP
194.242.11.186:443
ASN
#34989 ServeTheWorld AS

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerLet's Encrypt
Subjectcdn.cardsrealm.com
Fingerprint1A:0C:66:E9:E3:29:3F:7D:5E:49:79:86:65:E7:18:74:9C:01:D6:F1
ValidityFri, 29 Mar 2024 11:05:28 GMT - Thu, 27 Jun 2024 11:05:27 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 626x457, Scaling: [none]x[none], YUV color, decoders should clamp
Size
79 kB (78646 bytes)
Hash
ada6091af47308c00c9bffa458ec33e1
81d85fd6fac383ee1faf40f7146e6fe50de66b3f
03c417d14801b3c5d10bb79b24aa17e0390ee70e7b7c9c75724652bebba8b545

HTTP Headers

GET /images/cartas/ncc-new-capenna-commander/en/crop-med/vorel-of-the-hull-clade-357.jpeg?8421 HTTP/1.1
Host: cdn.cardsrealm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 23:39:13 GMT
content-type: image/webp
content-length: 78646
server: BunnyCDN-NO1-830
cdn-pullzone: 149000
cdn-uid: a2989e0e-5aa0-44e4-ad69-0db968877438
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
last-modified: Fri, 26 Apr 2024 23:39:13 GMT
x-bo-server: DE-260
x-downloadsize: 96382
x-bo-origindownloadtime: 37
x-bo-processingtime: 3
x-bo-compressionratio: 18.4%
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/26/2024 23:39:13
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 453f98d0ce27c24445102166cfb154c3
cdn-cache: MISS
X-Firefox-Spdy: h2

sdcsalesar.live/static/store/css/bootstrap.min.css

172.67.135.103

200 OK

130 kB

URL GET HTTP/3
sdcsalesar.live/static/store/css/bootstrap.min.css
IP
172.67.135.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsdcsalesar.live
FingerprintB5:5F:94:30:B5:96:3C:E5:BB:A2:B2:86:CA:1E:35:72:05:4A:97:40
ValiditySat, 23 Mar 2024 02:20:43 GMT - Fri, 21 Jun 2024 02:20:42 GMT

File type
assembler source, ASCII text, with very long lines (544)
Size
130 kB (129834 bytes)
Hash
ea0bcbc5397b9eaf1abbd5a821d02a5b
37b8eefdc5236ae6bf13b60f04d6f8e6f7bed0bc
a4ec9b0dedfe1654b8891aa430668b1f3eee036f47aea1be886ebfeb45fef760

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/store/css/bootstrap.min.css HTTP/1.1
Host: sdcsalesar.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sdcsalesar.live/product_details/43650361.html
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IlJWL1d2Ry84THRST1JqUkx6aDRjSWc9PSIsInZhbHVlIjoiMUE1V3pDV1dqZWtXTk4rSWNrNDUvZU9nSEk5MzZueEVtZGxaTi95U1FrQTIxdjNLeWN2MExueXVXdnoxNG5xclFFU2VZMWQ4SVpLbFZjVFgreFVnM2IzNXo4YXpoY2RjTnJtMjFQS3FMbUh4NDdZS25xd2VDQjBkSzNqQW1IK1oiLCJtYWMiOiJlZTM0NzFiN2ZiOWM3NWI5OWI5YTRlZWUyOTU0OWJkODhmZGJmZTQyZWIwNjFhODNmZmRmOWIyNTU4YTY2YmQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InVaYzRPelJtN29EUDJCajNkT2Z2b2c9PSIsInZhbHVlIjoiejZ1cWs2OEltTGlIMG9XdjQwcE1UTnlKUG15cTdnTFdnRkpQY252dmFOSitOYS9aVGhDZUFJMGFkTVRNVG93ZXVaYmRwaFhJcWhicTVUQnFKOFpaZ2xUd01lNWkzbjBVdS9OWTN5NEZMQ0dBdVNVZEt3cnNYSElPOVdXeVg4THIiLCJtYWMiOiI2ZWU4Zjk5OTk2ZTAzOGIxOWVjMzM0OWNjYmZlMjhjNTQ4NmZjMGI2YzcxMTliNjI5OGI0MDlhN2NlNjRhODZlIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:39:10 GMT
content-type: text/css
last-modified: Fri, 20 Oct 2023 06:16:20 GMT
etag: W/"1fb2a-6081fcfa34fc7-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4729
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6FSjl%2BTs1M6NCkraHaz%2Fr4j4iOQR9gZ9DKnxYFnj67WullpRQksiEe8mn%2FY6pg%2FpZVaShR7qtkcMJKgiRif97v1XZwxkVQQrxrYa7yeDLnz9bQRuuq7pYSjPJGwpDvPZQxk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa6920190bb4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

sdcsalesar.live/static/magento/css/header-styles.css?12

172.67.135.103

200 OK

176 kB

URL GET HTTP/3
sdcsalesar.live/static/magento/css/header-styles.css?12
IP
172.67.135.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsdcsalesar.live
FingerprintB5:5F:94:30:B5:96:3C:E5:BB:A2:B2:86:CA:1E:35:72:05:4A:97:40
ValiditySat, 23 Mar 2024 02:20:43 GMT - Fri, 21 Jun 2024 02:20:42 GMT

File type
ASCII text, with very long lines (1116)
Size
176 kB (175901 bytes)
Hash
60e90b2bbb1bceb2c105b5f64650145a
eb93879d0cebf02d6ea83169b9832b07d521bbc8
cd38a5a4084a74454d2c1eaa934ef589cdfb4fb1107c2740fba0e0b8c49065ec

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/magento/css/header-styles.css?12 HTTP/1.1
Host: sdcsalesar.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sdcsalesar.live/product_details/43650361.html
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IlJWL1d2Ry84THRST1JqUkx6aDRjSWc9PSIsInZhbHVlIjoiMUE1V3pDV1dqZWtXTk4rSWNrNDUvZU9nSEk5MzZueEVtZGxaTi95U1FrQTIxdjNLeWN2MExueXVXdnoxNG5xclFFU2VZMWQ4SVpLbFZjVFgreFVnM2IzNXo4YXpoY2RjTnJtMjFQS3FMbUh4NDdZS25xd2VDQjBkSzNqQW1IK1oiLCJtYWMiOiJlZTM0NzFiN2ZiOWM3NWI5OWI5YTRlZWUyOTU0OWJkODhmZGJmZTQyZWIwNjFhODNmZmRmOWIyNTU4YTY2YmQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InVaYzRPelJtN29EUDJCajNkT2Z2b2c9PSIsInZhbHVlIjoiejZ1cWs2OEltTGlIMG9XdjQwcE1UTnlKUG15cTdnTFdnRkpQY252dmFOSitOYS9aVGhDZUFJMGFkTVRNVG93ZXVaYmRwaFhJcWhicTVUQnFKOFpaZ2xUd01lNWkzbjBVdS9OWTN5NEZMQ0dBdVNVZEt3cnNYSElPOVdXeVg4THIiLCJtYWMiOiI2ZWU4Zjk5OTk2ZTAzOGIxOWVjMzM0OWNjYmZlMjhjNTQ4NmZjMGI2YzcxMTliNjI5OGI0MDlhN2NlNjRhODZlIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:39:10 GMT
content-type: text/css
last-modified: Fri, 20 Oct 2023 06:16:20 GMT
etag: W/"2af1d-6081fcf9f63de-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4729
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wIQ5CdfkuTG6tl%2FYkSxXlxNBHwBpYhdu9tEeKzyAJywmUvSn76uXeFrQAR7z2%2Feit92Nvxa0GNF9MRPkMWlhFOdFaqp8Y5jVTgUHYrl4jVfMg%2FrlVXdfAMRko%2BTRG6JTeo4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa69201913b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

sdcsalesar.live/codazon/themelayout/fonts/CodazonFont.ttf

172.67.135.103

200 OK

61 B

URL GET HTTP/3
sdcsalesar.live/codazon/themelayout/fonts/CodazonFont.ttf
IP
172.67.135.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsdcsalesar.live
FingerprintB5:5F:94:30:B5:96:3C:E5:BB:A2:B2:86:CA:1E:35:72:05:4A:97:40
ValiditySat, 23 Mar 2024 02:20:43 GMT - Fri, 21 Jun 2024 02:20:42 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
61 B (61 bytes)
Hash
2d963171282c4de9d6969472b23e47e3
1ea3d4ba9fe4b01b4edf5b7dcd20ac246d2187d8
87ed5a5a37969aa977d6f4fc16ae7a094bc1abc454307e011b65036646b4d3ab

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /codazon/themelayout/fonts/CodazonFont.ttf HTTP/1.1
Host: sdcsalesar.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sdcsalesar.live/static/magento/css/product-view-styles.css?185542
Cookie: XSRF-TOKEN=eyJpdiI6Imt3SFRib2JwUEZmdnV3aDZFbEdvWEE9PSIsInZhbHVlIjoidTBNTUU5VExCR29tMmhHMG9UQXRjRVRFWXRhM09YcGdiYlkxMDhGdHhRSEpiWnV6S05CZVV6NlNPZ05GM0RXaFlyUjVhc0dhU09VUzNOUDR6NWlwZzQxYTF6UjhTVWNsRDRnUXR5OXZQbElGRmliaTFHazdEWjg0YnZLbm9BUzMiLCJtYWMiOiJhMDVmOTE3MWY0ZWMyOWNlZjhjZDBhMzAzYTAxYmMzNjdhZjQ0NzExOGU1OTVjZDdkOTdlOGZhZGI1MWJjZWM2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjBDZWk0ZGdoQlllODBPSnFiQ0piUnc9PSIsInZhbHVlIjoiQUIwcVdwVEVsZHEwN0RGZGV2SmtiMnhWejlLMWtsdUNjam1DM2YycndmVEtqZ29rck5HQTJqNjM5cU8wZkt1QjZzWmkwN3duUC9LT2NiSVNqUXdJZUw2eWpyR2tvU0NrZGkrL053MGs1SDlNWWhrY3k1cUF6QytrQnhrTE4yYlkiLCJtYWMiOiJiMzUyZDI5ZWI4MzVlZGRiMmVkYWUyOWM0MGE4MmFiMjdiMThhNmVhMmFhODA0MDg2NzhhMDI2ZWQ1OWVmNzMwIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:39:13 GMT
content-type: application/json
cache-control: no-cache, private
vary: Accept-Encoding
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wUK8P32zNWbFa%2F5uuuXaQuzRpJ9LIVKdKoZkiOw3eXLZrHQ1nwC7OUyKO8LGg5KJKDu%2BBxkShl0st%2BXq3Si1x96DSGPGh%2Bn5GwFHmWgEjeVeyriYJmS%2FWKXaDewvHtQ7UCM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa692bb9c4b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

sdcsalesar.live/api/item/randomByKeyword

172.67.135.103

200 OK

1.5 kB

URL POST HTTP/3
sdcsalesar.live/api/item/randomByKeyword
IP
172.67.135.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsdcsalesar.live
FingerprintB5:5F:94:30:B5:96:3C:E5:BB:A2:B2:86:CA:1E:35:72:05:4A:97:40
ValiditySat, 23 Mar 2024 02:20:43 GMT - Fri, 21 Jun 2024 02:20:42 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (1666), with no line terminators
Size
1.5 kB (1504 bytes)
Hash
7abf041b29f38a92a3ecabb2e0ea4cff
d71ab05a277051c9e295e927e861c9baf43ea022
487a662821f052847478aab283c16f99ab865235c0b7c902e2e4ed0c7af63ce0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /api/item/randomByKeyword HTTP/1.1
Host: sdcsalesar.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sdcsalesar.live/product_details/43650361.html
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
Content-Length: 101
Origin: https://sdcsalesar.live
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6Imt3SFRib2JwUEZmdnV3aDZFbEdvWEE9PSIsInZhbHVlIjoidTBNTUU5VExCR29tMmhHMG9UQXRjRVRFWXRhM09YcGdiYlkxMDhGdHhRSEpiWnV6S05CZVV6NlNPZ05GM0RXaFlyUjVhc0dhU09VUzNOUDR6NWlwZzQxYTF6UjhTVWNsRDRnUXR5OXZQbElGRmliaTFHazdEWjg0YnZLbm9BUzMiLCJtYWMiOiJhMDVmOTE3MWY0ZWMyOWNlZjhjZDBhMzAzYTAxYmMzNjdhZjQ0NzExOGU1OTVjZDdkOTdlOGZhZGI1MWJjZWM2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImN3OFAvKzdCcU16ZThscFIyK1ptL1E9PSIsInZhbHVlIjoiTUZZWUlXNXlRVjQxbnBiQkJ4MTJVeEFIRzZLaDhmN3J4QkYzb1VmZllNcVZVTnlmSlpMUmFHaXYwNHl4ck9ROFlhRExucjR6R2tzYnBETEswVTBEdnJ4eDE4KzlwRjFTMVk2ZVFSMWdDMis5S0Y1eXoyaWFWbFNheHF4SFlLbmYiLCJtYWMiOiJmMTg2ZDAxZWM1ZGNlNmEwZTk0YzJmYjQ2NTA1MmRjMjgwMWZmMGI4MjI0ZmFkZTQ5MGQ4NTk2NDE3NjQ2ZjQ3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:39:15 GMT
content-type: application/json
cache-control: no-cache, private
x-ratelimit-limit: 60
x-ratelimit-remaining: 57
access-control-allow-origin: *
set-cookie: laravel_session=eyJpdiI6InRsNTRWcUVOckNab2lrcWdEVlJrMXc9PSIsInZhbHVlIjoiL2VUbjUySFFxbXBJQkhxM3hTNDJIZEl6Wkt4NHU5dEZmeDRENFdXRFRvcStTcjVuOEpyVnBwamRmQTVDYW1PaE9rNlZzaGRUMFBPVHE3RExrTWJSS0dXVWZTOGdGWlkrdTBsaFhvM1dkY2dwdVRpU2l1SXNLOVlxQkRLc29qOFUiLCJtYWMiOiJlMmNkODkwMzdhNTMyNDdiNDU2NDQ4NzQ5NWExYjZjMTQzM2M2Mjc3ODliZTdkMWE1ZWVjMmE1NzFkMWU2YjNhIiwidGFnIjoiIn0%3D; expires=Sat, 27-Apr-2024 01:39:15 GMT; Max-Age=7200; path=/; httponly; samesite=lax
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sipFidJLtjjdld%2Fxqf5Zzjzx38ST%2BmueMjoawCBxxqRb98KxWNQ503gZT4tasYAVDy5FDRbHpeN1pUj3banV3vSpMJKsB6GMvvN6HjQ%2BWKTUC6ylPO22E662WihF2KGGKmw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa69325dfeb4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

sdcsalesar.live/api/item/secondCate

172.67.135.103

200 OK

147 kB

URL GET HTTP/3
sdcsalesar.live/api/item/secondCate
IP
172.67.135.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sdcsalesar.live/product_details/43650361.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsdcsalesar.live
FingerprintB5:5F:94:30:B5:96:3C:E5:BB:A2:B2:86:CA:1E:35:72:05:4A:97:40
ValiditySat, 23 Mar 2024 02:20:43 GMT - Fri, 21 Jun 2024 02:20:42 GMT

File type
JSON text data
Size
147 kB (147128 bytes)
Hash
76a1b9ff50adb9a19f5aa029429309cd
791023cb634dacc8012763833849a687936c31ec
8f1993d7e145ec30c33180bfa6aeb659790a96038e0fafc7caa62d4ecf2d7181

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /api/item/secondCate HTTP/1.1
Host: sdcsalesar.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sdcsalesar.live/product_details/43650361.html
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IlJWL1d2Ry84THRST1JqUkx6aDRjSWc9PSIsInZhbHVlIjoiMUE1V3pDV1dqZWtXTk4rSWNrNDUvZU9nSEk5MzZueEVtZGxaTi95U1FrQTIxdjNLeWN2MExueXVXdnoxNG5xclFFU2VZMWQ4SVpLbFZjVFgreFVnM2IzNXo4YXpoY2RjTnJtMjFQS3FMbUh4NDdZS25xd2VDQjBkSzNqQW1IK1oiLCJtYWMiOiJlZTM0NzFiN2ZiOWM3NWI5OWI5YTRlZWUyOTU0OWJkODhmZGJmZTQyZWIwNjFhODNmZmRmOWIyNTU4YTY2YmQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InVaYzRPelJtN29EUDJCajNkT2Z2b2c9PSIsInZhbHVlIjoiejZ1cWs2OEltTGlIMG9XdjQwcE1UTnlKUG15cTdnTFdnRkpQY252dmFOSitOYS9aVGhDZUFJMGFkTVRNVG93ZXVaYmRwaFhJcWhicTVUQnFKOFpaZ2xUd01lNWkzbjBVdS9OWTN5NEZMQ0dBdVNVZEt3cnNYSElPOVdXeVg4THIiLCJtYWMiOiI2ZWU4Zjk5OTk2ZTAzOGIxOWVjMzM0OWNjYmZlMjhjNTQ4NmZjMGI2YzcxMTliNjI5OGI0MDlhN2NlNjRhODZlIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:39:12 GMT
content-type: application/json
cache-control: no-cache, private
x-ratelimit-limit: 60
x-ratelimit-remaining: 58
access-control-allow-origin: *
set-cookie: laravel_session=eyJpdiI6Ilo5REtSZVBSYWhkcng5aDg2MFBYV1E9PSIsInZhbHVlIjoiVGNud0RORnRicXpiUGRNZUxpSDRmdkl3N1pwcHIxNllrVm5HdmVkL2M1ZW9YRlhlMEdjWWRQNGN5RkRBRFUyUFV6WGdFWklScmdvZytRcHQ2QUtITGhYOWtYdWoxeVJNamZydHRRZkNoclhaSHNuZlNYMUd4YndRZVdiOThPU0ciLCJtYWMiOiI0ZDczM2YyMTA5ZWUzNmNiMGJlYmI3ZmIzZDRlNDMyZDM3ZjgwMTRjOGE2NWU5OGY5Yjg0NThjMmRiMWFhMTRkIiwidGFnIjoiIn0%3D; expires=Sat, 27-Apr-2024 01:39:12 GMT; Max-Age=7200; path=/; httponly; samesite=lax
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1evMJGkaczSOblBfZhW7Rn4Jwd7dDgOIpXSyupwz9SIEzu7QeuaHNfos5kJtvLzo6a3oU4lZW1Dz9OWtJSU9vjWnbDelWlrGVKXEt7b6GW%2BsCY%2FPWXFG60aGlyueX4dpo2o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa69242c9eb4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (48)

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations