Report - www.overstockcardexchange.com/start

Report Overview

Visitedpublic

2025-05-15 12:18:04

Tags

Submit Tags

URL

www.overstockcardexchange.com/start

Finishing URL

www.overstockcardexchange.com/start

IP / ASN

104.26.2.38

#13335 CLOUDFLARENET

Title

Suspected phishing site | Cloudflare

Detections

urlquery

0

Network Intrusion Detection

0

Threat Detection Systems

0

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
www.overstockcardexchange.com	unknown	2016-12-12	2025-05-15	2025-05-15	2.5 kB	38 kB	104.26.2.38

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (3)

	URL	From	Size	First Seen	Last Seen
	www.overstockcardexchange.com/start	ScriptElement	210 B	2023-03-07	2025-08-03
URL www.overstockcardexchange.com/start IP / ASN 172.67.74.236 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2023-03-07 Last Seen 2025-08-03 Times Seen 162762 Size 210 B (210 bytes) MD5 ab1ac4cf0f484cc9f859c0a7983353e0 SHA1 2da142b1135bd10cdbed4a7353e4483acc30ebe9 SHA256 50e878a18b2b5be7071dc7c10297381bcfcb55f17c27760ee857af9e31133324 Format Code Loading...

	www.overstockcardexchange.com/start	ScriptElement	375 B	2023-03-07	2025-08-03
URL www.overstockcardexchange.com/start IP / ASN 172.67.74.236 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2023-03-07 Last Seen 2025-08-03 Times Seen 168787 Size 375 B (375 bytes) MD5 56df91490fa1984fa82b297dcb23c22d SHA1 2050f127b73f50d21eb9b0a2a3f2aea7d4372ba9 SHA256 275407540ae2d5516300e4027ce994e1c97f958d464e137d0fff116d7acf0f24 Format Code Loading...

	www.overstockcardexchange.com/start	ScriptElement	38 B	2023-03-07	2025-08-03
URL www.overstockcardexchange.com/start IP / ASN 172.67.74.236 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2023-03-07 Last Seen 2025-08-03 Times Seen 124937 Size 38 B (38 bytes) MD5 eb2ee6e4b3d4e81bacdb2474d9b3c2f5 SHA1 6588855b25c975b224e0fd1b50ca1b3f36cd46ed SHA256 3dd83a652b2e60d8dfc699cd2006f70007b826a92b49e61e9194bf422481ac05 Format Code Loading...

HTTP Transactions (6)

	URL	IP	Response	Size
	GET www.overstockcardexchange.com/cdn-cgi/images/icon-exclamation.png?1376755637	104.26.2.38	200 OK	452 B
URL GET HTTP www.overstockcardexchange.com/cdn-cgi/images/icon-exclamation.png?1376755637 IP / ASN 104.26.2.38 #13335 CLOUDFLARENET Requested byhttp://www.overstockcardexchange.com/start Resource Info File typePNG image data, 54 x 54, 8-bit colormap, non-interlaced First Seen2023-04-12 Last Seen2025-08-04 Times Seen201086 Size452 B (452 bytes) MD5c33de66281e933259772399d10a6afe8 SHA1b9f9d500f8814381451011d4dcf59cd2d90ad94f SHA256f1591a5221136c49438642155691ae6c68e25b7241f3d7ebe975b09a77662016 HTTP Headers `GET /cdn-cgi/images/icon-exclamation.png?1376755637 HTTP/1.1 Host: www.overstockcardexchange.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.overstockcardexchange.com/cdn-cgi/styles/cf.errors.css Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Thu, 15 May 2025 12:17:43 GMT Content-Type: image/png Content-Length: 452 Connection: keep-alive Last-Modified: Mon, 12 May 2025 09:59:03 GMT ETag: "6821c667-1c4" Server: cloudflare CF-RAY: 940292e86cdd2c37-FRA X-Frame-Options: DENY X-Content-Type-Options: nosniff Vary: Accept-Encoding Expires: Thu, 15 May 2025 14:17:43 GMT Cache-Control: max-age=7200, public Accept-Ranges: bytes`

	GET www.overstockcardexchange.com/favicon.ico	104.26.2.38	301 Moved Permanently	0 B
URL GET HTTP www.overstockcardexchange.com/favicon.ico IP / ASN 104.26.2.38 #13335 CLOUDFLARENET Requested byhttp://www.overstockcardexchange.com/start Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-04 Times Seen5648343 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: www.overstockcardexchange.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.overstockcardexchange.com/start Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 301 Moved Permanently Date: Thu, 15 May 2025 12:17:43 GMT Content-Type: text/html Content-Length: 167 Connection: keep-alive Cache-Control: max-age=3600 Expires: Thu, 15 May 2025 13:17:43 GMT Location: https://www.overstockcardexchange.com/favicon.ico Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uXd%2F6TAh4I9%2Bqu9aLosSHEsnMfwTFGGbjqzKYkxD7%2Bunfivs2vHkprW9xfz6ynTc0N34uQDHpxdw2PQtdpO7wT9r5ZCKPaCiP9%2BD6i8q30Z4i5D46B9oOkoeGB5MvwbmcIqsG7LtTuj5XyAY3Diq"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 940292e89d122c37-FRA alt-svc: h2=":443"; ma=60 server-timing: cfL4;desc="?proto=TCP&rtt=21970&min_rtt=21570&rtt_var=1265&sent=10&recv=15&lost=0&retrans=0&sent_bytes=8344&recv_bytes=1603&delivery_rate=321591&cwnd=77&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"

	GET www.overstockcardexchange.com/favicon.ico	104.26.2.38	404 Not Found	0 B
URL GET HTTPS www.overstockcardexchange.com/favicon.ico IP / ASN 104.26.2.38 #13335 CLOUDFLARENET Requested byhttp://www.overstockcardexchange.com/start Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-04 Times Seen5648343 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerGoogle Trust Services Subjectoverstockcardexchange.com Fingerprint41:C8:01:FB:78:68:DA:AE:1E:C9:FA:1A:C6:0F:7C:6B:27:5C:5D:EB ValiditySun, 30 Mar 2025 02:04:18 GMT - Sat, 28 Jun 2025 03:04:11 GMT HTTP Headers `GET /favicon.ico HTTP/1.1 Host: www.overstockcardexchange.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: http://www.overstockcardexchange.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 404 Not Found date: Thu, 15 May 2025 12:17:44 GMT content-type: text/html;charset=utf-8 expires: Sat, 18 Jun 1983 07:07:07 GMT last-modified: 15 May 2025 12:17:44 GMT cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 pragma: no-cache p3p: CP="This is not a privacy policy." cf-cache-status: BYPASS set-cookie: AWSALB=hj/313EdVIgGdpRTCushvN/q9kd1FkS/KfsR70Tc2jACy3cdPpVbiX/SLLDvGMQ6V0ogU1LBkF+CPO8L2o+OLsB55rIlJhcwA9XgYt93Hso3J8RxDPkqp4Le4MlT; Expires=Thu, 22 May 2025 12:17:44 GMT; Path=/ AWSALBCORS=hj/313EdVIgGdpRTCushvN/q9kd1FkS/KfsR70Tc2jACy3cdPpVbiX/SLLDvGMQ6V0ogU1LBkF+CPO8L2o+OLsB55rIlJhcwA9XgYt93Hso3J8RxDPkqp4Le4MlT; Expires=Thu, 22 May 2025 12:17:44 GMT; Path=/; SameSite=None report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EhYafrNzTfC766u5J%2FGgnT2czxZdY%2B8SApWC9Aqxdw4omE%2Fv3gN1wU%2FJzClsLz4bw9zwfSldPs3XDsr3DOkHFKSCgb1VdZLNGmmZIPVQlH2bSngEF35hXuwJttLk2P7N%2BTvF2vBpz5TG44KLbxd0"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 940292e97b152c36-FRA content-encoding: br server-timing: cfL4;desc="?proto=TCP&rtt=27626&min_rtt=21672&rtt_var=14433&sent=8&recv=11&lost=0&retrans=0&sent_bytes=3238&recv_bytes=1094&delivery_rate=199513&cwnd=255&unsent_bytes=0&cid=8c6837872cfe87fa&ts=771&x=0" X-Firefox-Spdy: h2

	GET www.overstockcardexchange.com/start	172.67.74.236	403 Forbidden	4.6 kB
URL User Request GET HTTPS www.overstockcardexchange.com/start IP / ASN 172.67.74.236 #13335 CLOUDFLARENET Requested byN/A Resource Info File typeHTML document, ASCII text, with very long lines (394) First Seen2025-05-15 Last Seen2025-05-15 Times Seen1 Size4.6 kB (4550 bytes) MD51bd227fdd4f51a0f5e613c173f3413e1 SHA152fc18711bce5a34503e291fa76e2d5e365efef6 SHA256af9323af1cb5c1b60863fdc06eb5fb047ea15977e036dba7ef6315e653859c39 Certificate Info IssuerGoogle Trust Services Subjectoverstockcardexchange.com Fingerprint41:C8:01:FB:78:68:DA:AE:1E:C9:FA:1A:C6:0F:7C:6B:27:5C:5D:EB ValiditySun, 30 Mar 2025 02:04:18 GMT - Sat, 28 Jun 2025 03:04:11 GMT HTTP Headers `GET /start HTTP/1.1 Host: www.overstockcardexchange.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 403 Forbidden date: Thu, 15 May 2025 12:17:43 GMT content-type: text/html; charset=UTF-8 x-frame-options: SAMEORIGIN report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7Vg2FtyAQc2g30hVfXEh%2FGaJD%2Fb1L3koz7HhQR80OoynDPGs6Z5Onwm0oNTwJdmFN2Mz3SWCEtf1%2BxDolkevataVQ1ozl0%2BizhGtFz%2BDnd%2FjGXpDL5SzdwbcwR7v56DN%2BfuJe2K3Lb3%2BZR0AplNj"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 940292e5a96c2c3b-FRA content-encoding: gzip X-Firefox-Spdy: h2

	GET www.overstockcardexchange.com/start	104.26.2.38	403 Forbidden	4.6 kB
URL User Request GET HTTP www.overstockcardexchange.com/start IP / ASN 104.26.2.38 #13335 CLOUDFLARENET Requested byN/A Resource Info File typeHTML document, ASCII text, with very long lines (394) First Seen2025-05-15 Last Seen2025-05-15 Times Seen1 Size4.6 kB (4550 bytes) MD5e2161cccc6728ce203e61211a1a4a22e SHA1d52b433961630aadbe571b76507d9f95aa354958 SHA256403f4f735241c0b6032ccdd03c35244ad5be859faedacd435a42f34a1e937fb1 HTTP Headers `GET /start HTTP/1.1 Host: www.overstockcardexchange.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 403 Forbidden Date: Thu, 15 May 2025 12:17:43 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive X-Frame-Options: SAMEORIGIN Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FBxdr13jqqrNiJlaqkdQHud4wChzUwvPuKCcG9JubwmlRjeZVQCCLBodsUa5QvF4m3oxRykKPR1EJq5rDYf8yRHfaYDgeT5gvRtPpCzzyWFsvymm0Zn%2FRPxOJ6BlMfOfimmcfpA2EhyxGZ9dR%2BLz"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 940292e6bbc02c37-FRA Content-Encoding: gzip alt-svc: h2=":443"; ma=60

	GET www.overstockcardexchange.com/cdn-cgi/styles/cf.errors.css	104.26.2.38	200 OK	24 kB
URL GET HTTP www.overstockcardexchange.com/cdn-cgi/styles/cf.errors.css IP / ASN 104.26.2.38 #13335 CLOUDFLARENET Requested byhttp://www.overstockcardexchange.com/start Resource Info File typeASCII text, with very long lines (24050) First Seen0001-01-01 Last Seen2025-08-04 Times Seen230895 Size24 kB (24051 bytes) MD55e8c69a459a691b5d1b9be442332c87d SHA1f24dd1ad7c9080575d92a9a9a2c42620725ef836 SHA25684e3c77025ace5af143972b4a40fc834dcdfd4e449d4b36a57e62326f16b3091 HTTP Headers `GET /cdn-cgi/styles/cf.errors.css HTTP/1.1 Host: www.overstockcardexchange.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.overstockcardexchange.com/start Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Thu, 15 May 2025 12:17:43 GMT Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Mon, 12 May 2025 09:59:03 GMT ETag: W/"6821c667-5df3" Server: cloudflare CF-RAY: 940292e7ec9a2c37-FRA X-Frame-Options: DENY X-Content-Type-Options: nosniff Vary: Accept-Encoding Expires: Thu, 15 May 2025 14:17:43 GMT Cache-Control: max-age=7200, public Content-Encoding: gzip`