sedo.com
Open in
urlscan Pro
2606:4700::6810:8c72
Public Scan
Effective URL: https://sedo.com/search/details/?domain=nalozhka.youla.pay.pay.food4fun.com&campaignId=329145&origin=sales_lander_15
Submission: On May 16 via api from US — Scanned from DE
Summary
TLS certificate: Issued by GeoTrust TLS RSA CA G1 on May 11th 2023. Valid for: a year.
This is the only time sedo.com was scanned on urlscan.io!
urlscan.io Verdict: No classification
Domain & IP information
IP Address | AS Autonomous System | ||
---|---|---|---|
2 2 | 91.195.241.232 91.195.241.232 | 47846 (SEDO-AS) (SEDO-AS) | |
5 | 2606:4700::68... 2606:4700::6810:8c72 | 13335 (CLOUDFLAR...) (CLOUDFLARENET) | |
1 | 104.17.2.184 104.17.2.184 | 13335 (CLOUDFLAR...) (CLOUDFLARENET) | |
1 | 104.17.3.184 104.17.3.184 | 13335 (CLOUDFLAR...) (CLOUDFLARENET) | |
9 | 4 |
Apex Domain Subdomains |
Transfer | |
---|---|---|
5 |
sedo.com
sedo.com — Cisco Umbrella Rank: 194841 |
129 KB |
2 |
cloudflare.com
challenges.cloudflare.com — Cisco Umbrella Rank: 4500 |
14 KB |
2 |
food4fun.com
2 redirects
nalozhka.youla.pay.pay.food4fun.com |
298 B |
9 | 3 |
Domain | Requested by | |
---|---|---|
5 | sedo.com |
sedo.com
|
2 | challenges.cloudflare.com |
sedo.com
challenges.cloudflare.com |
2 | nalozhka.youla.pay.pay.food4fun.com | 2 redirects |
9 | 3 |
This site contains no links.
Subject Issuer | Validity | Valid | |
---|---|---|---|
*.sedo.com GeoTrust TLS RSA CA G1 |
2023-05-11 - 2024-05-31 |
a year | crt.sh |
challenges.cloudflare.com Cloudflare Inc ECC CA-3 |
2023-08-18 - 2024-08-17 |
a year | crt.sh |
This page contains 2 frames:
Primary Page:
https://sedo.com/search/details/?domain=nalozhka.youla.pay.pay.food4fun.com&campaignId=329145&origin=sales_lander_15
Frame ID: 25FC42B70262B90372519193F96F9A46
Requests: 8 HTTP requests in this frame
Frame:
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/4603v/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Frame ID: E524B11D22593BF23A47589D22C74FF2
Requests: 1 HTTP requests in this frame
Screenshot
Page Title
Nur einen Moment…Page URL History Show full URLs
-
http://nalozhka.youla.pay.pay.food4fun.com/
HTTP 307
https://nalozhka.youla.pay.pay.food4fun.com/ HTTP 307
http://nalozhka.youla.pay.pay.food4fun.com/ HTTP 301
https://sedo.com/search/details/?domain=nalozhka.youla.pay.pay.food4fun.com&campaignId=329145... HTTP 307
http://nalozhka.youla.pay.pay.food4fun.com/ HTTP 301
https://sedo.com/search/details/?domain=nalozhka.youla.pay.pay.food4fun.com&campaignId=329145... Page URL
Page Statistics
0 Outgoing links
These are links going to different origins than the main page.
Page URL History
This captures the URL locations of the websites, including HTTP redirects and client-side redirects via JavaScript or Meta fields.
-
http://nalozhka.youla.pay.pay.food4fun.com/
HTTP 307
https://nalozhka.youla.pay.pay.food4fun.com/ HTTP 307
http://nalozhka.youla.pay.pay.food4fun.com/ HTTP 301
https://sedo.com/search/details/?domain=nalozhka.youla.pay.pay.food4fun.com&campaignId=329145&origin=sales_lander_15 HTTP 307
http://nalozhka.youla.pay.pay.food4fun.com/ HTTP 301
https://sedo.com/search/details/?domain=nalozhka.youla.pay.pay.food4fun.com&campaignId=329145&origin=sales_lander_15 Page URL
Redirected requests
There were HTTP redirect chains for the following requests:
9 HTTP transactions
Method Protocol |
Resource Path |
Size x-fer |
Type MIME-Type |
||||||||||||||||||||||||||||||||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
GET H2 |
Primary Request
/
sedo.com/search/details/ Redirect Chain
|
16 KB 8 KB |
Document
text/html |
||||||||||||||||||||||||||||||||||||||||||||||||||||
General
Request headers
Response headers
Redirect headers
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||
GET H2 |
v1
sedo.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/ |
397 KB 109 KB |
Script
application/javascript |
||||||||||||||||||||||||||||||||||||||||||||||||||||
General
Request headers
Response headers
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||
GET H3 |
api.js
challenges.cloudflare.com/turnstile/v0/g/1b3559406bc8/ |
42 KB 14 KB |
Script
application/javascript |
||||||||||||||||||||||||||||||||||||||||||||||||||||
General
Request headers
Response headers
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||
GET H2 |
favicon.ico
sedo.com/ |
1 KB 527 B |
Image
image/x-icon |
||||||||||||||||||||||||||||||||||||||||||||||||||||
General
Request headers
Response headers
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||
GET BLOB |
ad9236fb-15bc-4e37-9bbc-a29a53fee7eb
https://sedo.com/ |
13 B 0 |
Other
text/javascript |
||||||||||||||||||||||||||||||||||||||||||||||||||||
General
Request headers
Response headers
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||
GET H2 |
favicon.ico
sedo.com/ |
1 KB 0 |
Other
image/x-icon |
||||||||||||||||||||||||||||||||||||||||||||||||||||
General
Request headers
Response headers
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||
POST H2 |
56ab0f2e3a59280
sedo.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1479946574:1715840924:lJDXgIJhsEAUB3F2TvuWKT21Oomm926Dg_EQsuB9-FA/8849b5360e9265d4/ |
16 KB 12 KB |
XHR
text/plain |
||||||||||||||||||||||||||||||||||||||||||||||||||||
General
Request headers
Response headers
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||
GET H3 |
normal
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/4603v/0x4AAAAAAADnPIDROrmt1Wwj/light/ Frame E524 |
0 0 |
Document
text/html |
||||||||||||||||||||||||||||||||||||||||||||||||||||
General
Request headers
Response headers
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||
GET BLOB |
1ad16dd3-3f92-47c8-a820-83dbc5bb30fe
https://sedo.com/ |
80 B 0 |
Other
text/javascript |
||||||||||||||||||||||||||||||||||||||||||||||||||||
General
Request headers
Response headers
|
Verdicts & Comments Add Verdict or Comment
18 JavaScript Global Variables
These are the non-standard "global" variables defined on the window object. These can be helpful in identifying possible client-side frameworks and code.
object| 0 object| _cf_chl_opt function| rNqJA9 function| mjbwH2 function| mrJTop8 function| KtsCKf7 boolean| ugFj7 function| rUBPto0 function| vOGikd2 function| wHaB8 object| CQkmn6 object| rsHy1 object| eXLuJ7 number| ZegIW4 object| angular object| turnstile boolean| GRpbPA1 string| pNBA11 Cookies
Cookies are little pieces of information stored in the browser of a user. Whenever a user visits the site again, he will also send his cookie values, thus allowing the website to re-identify him even if he changed locations. This is how permanent logins work.
Domain/Path | Expires | Name / Value |
---|---|---|
.sedo.com/ | Name: __cf_bm Value: KwZwcQllspjla1k86lva1d2ZRG.qpBMxovLrJ3D.Zs8-1715845103-1.0.1.1-b5GlsUg.Rw1NhKJvE4pG2AVkwLrVOfDZ0iAr_7rW8fsuuawNDW3rmAY_J97GISInWh8ThYS5R_zS1n3GcIWi.A |
3 Console Messages
A page may trigger messages to the console to be logged. These are often error messages about being unable to load a resource or execute a piece of JavaScript. Sometimes they also provide insight into the technology behind a website.
Source | Level | URL Text |
---|
Security Headers
This page lists any security headers set by the main page. If you want to understand what these mean and how to use them, head on over to this page
Header | Value |
---|---|
X-Frame-Options | SAMEORIGIN |
Indicators
This is a term in the security industry to describe indicators such as IPs, Domains, Hashes, etc. This does not imply that any of these indicate malicious activity.
challenges.cloudflare.com
nalozhka.youla.pay.pay.food4fun.com
sedo.com
104.17.2.184
104.17.3.184
2606:4700::6810:8c72
91.195.241.232
31c034bdeab31f0172b2f5afbfa9fd3dc5c5c7c16c3472efb1c10495ef3ef3b1
35759d31a326e0dd495e0fa2649d95d91e9771766f1fa7c10d1b2980613fa5ca
376fee9ef08941afb3967e334afe7a7ed355ab08fb8e0b6cc58811f134f4291e
8860e7fef89219a219cb11d18bd8e4a322f32072613f86e935e7fe162ab69c04
ae0e2e45f84d7d3d06526aafc20d4a95b486e8747bf80895f3aeb8c4aebee7f4
bfe5e4dd874ed7a044e961c8fa2c293376113f84d5645f5a2ee902f56c29eb85
f3418640c1204265881221580b9d1554424f6ed49549d408da50c690ab29f400