Report - rent2.xyz/

Report Overview

Submitted URL
rent2.xyz/
IP
13.248.148.254
ASN
#16509 AMAZON-02
Submitted
2023-05-22 07:29:28
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
rent2.xyz	unknown	unknown	2022-06-03	2023-05-13	2.3 kB	15 kB	13.248.148.254
www.google.com	7	1997-09-15	2015-05-10	2023-05-21	3.6 kB	115 kB	142.250.74.164
parking.parklogic.com	121827	2007-02-28	2015-10-23	2023-05-22	350 B	1.3 kB	67.225.218.50
d38psrni17bvxu.cloudfront.net	unknown	2008-04-25	2022-09-22	2023-05-22	391 B	12 kB	54.230.245.22
afs.googleusercontent.com	12123	2008-11-17	2013-05-06	2023-05-22	969 B	2.1 kB	216.58.211.1
parking3.parklogic.com	unknown	2007-02-28	2023-05-10	2023-05-22	442 B	48 kB	45.79.244.209

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-05-22	medium	rent2.xyz/
2023-05-22	medium	rent2.xyz/

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (15)

	URL	Size	First Seen	Last Seen
	parking.parklogic.com/page/enhance.js?pcId=12&domain=rent2.xyz	991 B	2023-05-14	2023-05-27
Pretty URL parking.parklogic.com/page/enhance.js?pcId=12&domain=rent2.xyz IP 67.225.218.50 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-14 09:28:12 Last Seen2023-05-27 09:29:25 Times Seen6 Hash 9b01d6e17fe5fedbc918404a38ae52ac 6d2ef1a9018e731a86f99be343aa531944b96a6d 2ffa116f7762f7e3b1aa5497bef52b6283c65995ac5db105bd31d8f0ae11fc14 Loading...

	rent2.xyz/	968 B	2023-03-08	2024-05-07
Pretty URL rent2.xyz/ IP 13.248.148.254 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 02:24:08 Last Seen2024-05-07 15:49:04 Times Seen27929 Hash c77554570ae0fa8e4fb31747dc213058 e989fbde07e6a68975c7a31e1d4df76afd90b96f c3f831fe1717c6d76a8950ac5e7dc88ceee7440d079b11584be5c6c5b3269e77 Loading...

	rent2.xyz/	645 B	2023-05-22	2023-05-22
Pretty URL rent2.xyz/ IP 13.248.148.254 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-22 09:29:29 Last Seen2023-05-22 09:29:29 Times Seen1 Hash 48f404989005ae9dfca940f804dc81bb 234993344663b9e6b229a2be56ca19f0f0decb4c a557a24a2d7e881f5ee6fabce84eb6948b3b62ff23875b3495d0d0b1383cead8 Loading...

	rent2.xyz/	246 B	2023-05-22	2023-05-22
Pretty URL rent2.xyz/ IP 13.248.148.254 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-22 09:29:29 Last Seen2023-05-22 09:29:29 Times Seen1 Hash ecbc8d2d7a1b8020ed212d27b953e08e d82e41da6de64fa602337c1011832f8d1ed55876 cadd57f885e471cd5abb9ce1cce56618cd7f6501f4fd76e0814c24cae8d5bef1 Loading...

	rent2.xyz/	7.0 kB	2023-03-13	2024-01-03
Pretty URL rent2.xyz/ IP 13.248.148.254 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 06:10:31 Last Seen2024-01-03 14:22:39 Times Seen25920 Hash 04b2b624f94797c26d17a57f399d9356 3143986e839c47a5c1eff03bd9df63ecc54dca9c 233b1cbfb295a0629bcf68a2a4198a62132f02ee1f061ada2ce7143bd5d2dabb Loading...

	www.google.com/afs/ads?adtest=off&psid=8676772880&pcsa=false&channel=000001%2Cbucket102&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Frent2.xyz%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQxMDJ8fHx8fHw2NDZiMTljOWUyMWVjfHx8MTY4NDc0MDU1My45MzEyfDIyZGZiZTE3ZmZkM2I2ZWU4MzlhNmM2YTIyNzQ5MmRkYTM4NDZhYTF8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXw3MWVjOTU4ZDQ3NTYwOTg3NTQ3NmY2Y2IyZDYwZTQ0MWZmNmQwNGY4fDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MA%253D%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2204919519437054&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301157%2C17301160&format=r3%7Cs&nocache=9441684740554384&num=0&output=afd_ads&domain_name=rent2.xyz&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1684740554386&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=920&frm=0&cl=532122288&uio=--&cont=tc&jsid=caf&jsv=532122288&rurl=http%3A%2F%2Frent2.xyz%2F&adbw=master-1%3A530	7.0 kB	2023-05-22	2023-05-22
Pretty URL www.google.com/afs/ads?adtest=off&psid=8676772880&pcsa=false&channel=000001%2Cbucket102&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Frent2.xyz%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQxMDJ8fHx8fHw2NDZiMTljOWUyMWVjfHx8MTY4NDc0MDU1My45MzEyfDIyZGZiZTE3ZmZkM2I2ZWU4MzlhNmM2YTIyNzQ5MmRkYTM4NDZhYTF8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXw3MWVjOTU4ZDQ3NTYwOTg3NTQ3NmY2Y2IyZDYwZTQ0MWZmNmQwNGY4fDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MA%253D%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2204919519437054&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301157%2C17301160&format=r3%7Cs&nocache=9441684740554384&num=0&output=afd_ads&domain_name=rent2.xyz&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1684740554386&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=920&frm=0&cl=532122288&uio=--&cont=tc&jsid=caf&jsv=532122288&rurl=http%3A%2F%2Frent2.xyz%2F&adbw=master-1%3A530 IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-22 09:29:29 Last Seen2023-05-22 09:29:29 Times Seen1 Hash 51af73474dc190a54a01d4cc4f1712d5 6cc606c25696686549aff98988f852cfef608d01 c59d53c9cc619e538c2e9ca578ba18b809261900e2bd711c345c8b74a389ff78 Loading...

	rent2.xyz/	1.1 kB	2023-05-22	2023-05-22
Pretty URL rent2.xyz/ IP 13.248.148.254 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-22 09:29:29 Last Seen2023-05-22 09:29:29 Times Seen1 Hash 875f272b582983e8d9bb1dcbf4c7d46e 74a51c9f22a9b2b620ae43023faa0a8204fff439 4893b9e437b02fa94c41f7827ad8e933e80fa120c35fc51bab63e35f7003bccd Loading...

	rent2.xyz/	20 B	2023-03-12	2024-01-03
Pretty URL rent2.xyz/ IP 13.248.148.254 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 13:00:05 Last Seen2024-01-03 14:22:39 Times Seen13851 Hash bb9472ed191ad69435d630c50e139a17 4efa10c70dbfe37ec4c8bb5a04b907c549de7e3d eec645c8d410f4d6accc5c4c3326bbff80fdd9d105e423ad50c5c87b22845492 Loading...

	rent2.xyz/	65 B	2023-05-10	2024-01-03
Pretty URL rent2.xyz/ IP 13.248.148.254 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-10 12:50:45 Last Seen2024-01-03 12:53:29 Times Seen1130 Hash 0b6a424fedf3c6831f280e735d3da127 3e4220834c4b66746dbf14c91758ad207fb29c9e 76a295f09b40f5b5cf4a40d6a5dbd1cc25dd4fa0f8fc7e5e0e1607fc7b43c2c0 Loading...

	rent2.xyz/	472 B	2023-03-13	2024-01-03
Pretty URL rent2.xyz/ IP 13.248.148.254 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 06:13:46 Last Seen2024-01-03 14:22:39 Times Seen25251 Hash d31eefc1e54bdae9204297e4ae5b9cce fc49bf319586a623670a81c01d43bbd93b477fbb 2683a6247a15433dd269eaefbc7131b1326c7bc0146361913ea10ad8fa23bb14 Loading...

	www.google.com/adsense/domains/caf.js	148 kB	2023-05-17	2023-05-25
Pretty URL www.google.com/adsense/domains/caf.js IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-17 19:40:02 Last Seen2023-05-25 22:50:30 Times Seen1921 Hash 2fa18d5de1a97b94c6d9266d3752a636 26ac0047e099bf31ce3316546bd6eac89632a51d 6ccdb41aee6fed023c7bec289543a2a8475434cf481f672c1edcb68778b7e16b Loading...

	rent2.xyz/	669 B	2023-05-22	2023-05-22
Pretty URL rent2.xyz/ IP 13.248.148.254 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-22 09:29:29 Last Seen2023-05-22 09:29:29 Times Seen1 Hash a4208b31cea9130f19b7ea8808a0ed34 2a5f4e138ae33df0b88c3b7936469292c2f8fc58 7a17e72e61f716df876a2ab5f7c6d95dbee8a2cf12ef8494a74170ebab11ef22 Loading...

	rent2.xyz/	40 B	2023-04-18	2023-06-27
Pretty URL rent2.xyz/ IP 13.248.148.254 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-18 09:10:37 Last Seen2023-06-27 14:44:07 Times Seen10821 Hash bcdb5f35f5da29644017c63a72a72921 5bd1c81154b546c01c88b02fdb29b687f0c9cef3 a71d2bc0274b66fc2cb2c8daf1bf8b8a6a4cbfd5bd1e30574e9abb61aa9c3983 Loading...

	www.google.com/adsense/domains/caf.js?abp=1	148 kB	2023-05-18	2023-05-25
Pretty URL www.google.com/adsense/domains/caf.js?abp=1 IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-18 16:42:27 Last Seen2023-05-25 22:26:03 Times Seen107 Hash 3566da8e56bf4c7b8c5d45a83abdc1b8 51bbb5f07d1431a1b53cf2278fd5b337ad5d43d0 01c57e7e4d9e179272b101f6cef46f182d58dc7b33e2accd04b6543432c2cb95 Loading...

	rent2.xyz/	71 B	2023-03-08	2024-01-04
Pretty URL rent2.xyz/ IP 13.248.148.254 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 02:23:53 Last Seen2024-01-04 08:38:22 Times Seen25410 Hash 1a5a5e1b6a26f57b95e3dd42f60612f4 b62a27e55a59b49084e682bd3c1588f6a40881ab 4066da16910907c7962da8e7011bf0cd62b6f2dcddb1911e3ea2de03ce3e1dc7 Loading...

HTTP Transactions (16)

URL IP Response Size

rent2.xyz/

13.248.148.254

200 OK

5.6 kB

URL User Request GET HTTP/1.1
rent2.xyz/
IP
13.248.148.254:80
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1183)
Size
5.6 kB (5621 bytes)
Hash
ef66129502c54ab2f52e35d23bdef774
852b5a5d82f683a543e5630a42637182a4f80028
dc5dba131342bfc8dcf541371f7243f1e425a9044b25b942b95949f045ce9338

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: rent2.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 22 May 2023 07:29:13 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-Buckets: bucket103
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_iOQuwWFJaYnhLupUVnH2HEFNyDNno3VS+rhpBtknDef3ASA+gAu8yJil2p/SFiuEnqkYyn/exOoef+STQkz27A==
X-Template: tpl_CleanPeppermintBlack_twoclick
X-Language: norwegian
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
X-Domain: rent2.xyz
X-Subdomain: 
Content-Encoding: gzip

rent2.xyz/

13.248.148.254

200 OK

5.6 kB

URL User Request GET HTTP/1.1
rent2.xyz/
IP
13.248.148.254:80
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1151)
Size
5.6 kB (5606 bytes)
Hash
ca7e53bf45921c0b716e09b9c1487557
600fbe703aa5db4feeebf4589478148ce110f61b
7a9bf75027e74a91cf8ca697468f79a0f00c9ddcad20135509eba5df7f2fd5a9

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: rent2.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 22 May 2023 07:29:13 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-Buckets: bucket102
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_iOQuwWFJaYnhLupUVnH2HEFNyDNno3VS+rhpBtknDef3ASA+gAu8yJil2p/SFiuEnqkYyn/exOoef+STQkz27A==
X-Template: tpl_CleanPeppermintBlack_twoclick
X-Language: norwegian
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
X-Domain: rent2.xyz
X-Subdomain: 
Content-Encoding: gzip

www.google.com/adsense/domains/caf.js?abp=1

142.250.74.164

200 OK

54 kB

URL GET HTTP/1.1
www.google.com/adsense/domains/caf.js?abp=1
IP
142.250.74.164:80
ASN
#15169 GOOGLE

Requested by
http://rent2.xyz/

File type
ASCII text, with very long lines (2125)
Size
54 kB (53781 bytes)
Hash
3566da8e56bf4c7b8c5d45a83abdc1b8
51bbb5f07d1431a1b53cf2278fd5b337ad5d43d0
01c57e7e4d9e179272b101f6cef46f182d58dc7b33e2accd04b6543432c2cb95

HTTP Headers

GET /adsense/domains/caf.js?abp=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://rent2.xyz/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Type: text/javascript; charset=UTF-8
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="ads-afs-ui"
Report-To: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
Date: Mon, 22 May 2023 07:29:14 GMT
Expires: Mon, 22 May 2023 07:29:14 GMT
Cache-Control: private, max-age=3600
ETag: "13387382068244967612"
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: sffe
X-XSS-Protection: 0

parking.parklogic.com/page/enhance.js?pcId=12&domain=rent2.xyz

67.225.218.50

200 OK

991 B

URL GET HTTP/1.1
parking.parklogic.com/page/enhance.js?pcId=12&domain=rent2.xyz
IP
67.225.218.50:80
ASN
#32244 LIQUIDWEB

Requested by
http://rent2.xyz/

File type
HTML document, ASCII text, with very long lines (718)
Size
991 B (991 bytes)
Hash
9b01d6e17fe5fedbc918404a38ae52ac
6d2ef1a9018e731a86f99be343aa531944b96a6d
2ffa116f7762f7e3b1aa5497bef52b6283c65995ac5db105bd31d8f0ae11fc14

HTTP Headers

GET /page/enhance.js?pcId=12&domain=rent2.xyz HTTP/1.1
Host: parking.parklogic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://rent2.xyz/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 22 May 2023 07:29:14 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9
X-Powered-By: PHP/5.4.16
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/javascript

rent2.xyz/track.php?domain=rent2.xyz&toggle=browserjs&uid=MTY4NDc0MDU1My45MjYyOmY5MDY3MWEwNmYyZjU4OWVkZmNkNTc3MzVlNzlkZWJmNmM0YTI5M2FmYTliZjA2ZTcyYzI0Y2ViMzZkOGFlMGE6NjQ2YjE5YzllMjIwOQ%3D%3D

13.248.148.254

200 OK

20 B

URL GET HTTP/1.1
rent2.xyz/track.php?domain=rent2.xyz&toggle=browserjs&uid=MTY4NDc0MDU1My45MjYyOmY5MDY3MWEwNmYyZjU4OWVkZmNkNTc3MzVlNzlkZWJmNmM0YTI5M2FmYTliZjA2ZTcyYzI0Y2ViMzZkOGFlMGE6NjQ2YjE5YzllMjIwOQ%3D%3D
IP
13.248.148.254:80
ASN
#16509 AMAZON-02

Requested by
http://rent2.xyz/

File type
gzip compressed data, max speed, from Unix\012- data
Size
20 B (20 bytes)
Hash
a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf

HTTP Headers

GET /track.php?domain=rent2.xyz&toggle=browserjs&uid=MTY4NDc0MDU1My45MjYyOmY5MDY3MWEwNmYyZjU4OWVkZmNkNTc3MzVlNzlkZWJmNmM0YTI5M2FmYTliZjA2ZTcyYzI0Y2ViMzZkOGFlMGE6NjQ2YjE5YzllMjIwOQ%3D%3D HTTP/1.1
Host: rent2.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://rent2.xyz/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 22 May 2023 07:29:14 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-Custom-Track: browserjs
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Access-Control-Allow-Origin: *
Content-Encoding: gzip

rent2.xyz/ls.php?t=646b19c9&token=71ec958d475609875476f6cb2d60e441ff6d04f8

13.248.148.254

201 Created

16 B

URL GET HTTP/1.1
rent2.xyz/ls.php?t=646b19c9&token=71ec958d475609875476f6cb2d60e441ff6d04f8
IP
13.248.148.254:80
ASN
#16509 AMAZON-02

Requested by
http://rent2.xyz/

File type
JSON data\012- , ASCII text, with no line terminators
Size
16 B (16 bytes)
Hash
7363e85fe9edee6f053a4b319588c086
a15e2127145548437173fc17f3e980e3f3dee2d0
c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97

HTTP Headers

GET /ls.php?t=646b19c9&token=71ec958d475609875476f6cb2d60e441ff6d04f8 HTTP/1.1
Host: rent2.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://rent2.xyz/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 201 Created
Date: Mon, 22 May 2023 07:29:14 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
X-Log-Success: 646b19ca13321452646ef51a
Charset: utf-8
Access-Control-Allow-Origin: 
Access-Control-Allow-Methods: POST, OPTIONS
Access-Control-Max-Age: 86400
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_EpHeJEP1RRowOvgoTQxLeJyEKTyV2kqlHD/2yjaVuFU2uHdjwl8lYr+dhUlBV5EP8DgOqL55TlGmmFse7nKTQg==

www.google.com/afs/ads?adtest=off&psid=8676772880&pcsa=false&channel=000001%2Cbucket102&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Frent2.xyz%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQxMDJ8fHx8fHw2NDZiMTljOWUyMWVjfHx8MTY4NDc0MDU1My45MzEyfDIyZGZiZTE3ZmZkM2I2ZWU4MzlhNmM2YTIyNzQ5MmRkYTM4NDZhYTF8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXw3MWVjOTU4ZDQ3NTYwOTg3NTQ3NmY2Y2IyZDYwZTQ0MWZmNmQwNGY4fDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MA%253D%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2204919519437054&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301157%2C17301160&format=r3%7Cs&nocache=9441684740554384&num=0&output=afd_ads&domain_name=rent2.xyz&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1684740554386&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=920&frm=0&cl=532122288&uio=--&cont=tc&jsid=caf&jsv=532122288&rurl=http%3A%2F%2Frent2.xyz%2F&adbw=master-1%3A530

142.250.74.164

200 OK

2.5 kB

URL GET HTTP/2
www.google.com/afs/ads?adtest=off&psid=8676772880&pcsa=false&channel=000001%2Cbucket102&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Frent2.xyz%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQxMDJ8fHx8fHw2NDZiMTljOWUyMWVjfHx8MTY4NDc0MDU1My45MzEyfDIyZGZiZTE3ZmZkM2I2ZWU4MzlhNmM2YTIyNzQ5MmRkYTM4NDZhYTF8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXw3MWVjOTU4ZDQ3NTYwOTg3NTQ3NmY2Y2IyZDYwZTQ0MWZmNmQwNGY4fDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MA%253D%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2204919519437054&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301157%2C17301160&format=r3%7Cs&nocache=9441684740554384&num=0&output=afd_ads&domain_name=rent2.xyz&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1684740554386&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=920&frm=0&cl=532122288&uio=--&cont=tc&jsid=caf&jsv=532122288&rurl=http%3A%2F%2Frent2.xyz%2F&adbw=master-1%3A530
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
http://rent2.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint85:AD:43:66:C0:73:07:1B:B5:5D:4A:83:4B:76:3F:DA:4B:2B:E1:F8
ValidityMon, 24 Apr 2023 12:01:16 GMT - Mon, 17 Jul 2023 12:01:15 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6120)
Size
2.5 kB (2503 bytes)
Hash
252964293e59a0a73e910688fa97c636
085ee85f45736644b72e7bd6233e229374bc1a19
7d075108836a29dac58aa96261bdeab90debfdf99d1480f942f04927cd551b9b

HTTP Headers

GET /afs/ads?adtest=off&psid=8676772880&pcsa=false&channel=000001%2Cbucket102&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Frent2.xyz%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQxMDJ8fHx8fHw2NDZiMTljOWUyMWVjfHx8MTY4NDc0MDU1My45MzEyfDIyZGZiZTE3ZmZkM2I2ZWU4MzlhNmM2YTIyNzQ5MmRkYTM4NDZhYTF8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXw3MWVjOTU4ZDQ3NTYwOTg3NTQ3NmY2Y2IyZDYwZTQ0MWZmNmQwNGY4fDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MA%253D%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2204919519437054&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301157%2C17301160&format=r3%7Cs&nocache=9441684740554384&num=0&output=afd_ads&domain_name=rent2.xyz&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1684740554386&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=920&frm=0&cl=532122288&uio=--&cont=tc&jsid=caf&jsv=532122288&rurl=http%3A%2F%2Frent2.xyz%2F&adbw=master-1%3A530 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://rent2.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-disposition: inline
date: Mon, 22 May 2023 07:29:14 GMT
expires: Mon, 22 May 2023 07:29:14 GMT
cache-control: private, max-age=3600
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-GcKDuXRTJuYvBiUEo-uTng' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-encoding: br
server: gws
content-length: 2503
x-xss-protection: 0
set-cookie: NID=511=tCtTsW0zwf113LeoeN5b3KqiL3zauDqlnKCQ9Y-BsB-rlR6xrxXAm3axeIUaFWBUZUNNNMzRmIWkRsF4599AfzwTD7hqfmOnSbf6k3bhWDWbxhUENAbJ0M5Wy3MRehuIwugrr-ZyVAbagzYIYp50Q89IbuIhk3XVlIFlc6NwzBY; expires=Tue, 21-Nov-2023 07:29:14 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+335; expires=Wed, 21-May-2025 07:29:14 GMT; path=/; domain=.google.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

d38psrni17bvxu.cloudfront.net/themes/cleanPeppermintBlack_657d9013/img/arrows.png

54.230.245.22

200 OK

11 kB

URL GET HTTP/1.1
d38psrni17bvxu.cloudfront.net/themes/cleanPeppermintBlack_657d9013/img/arrows.png
IP
54.230.245.22:80
ASN
#16509 AMAZON-02

Requested by
http://rent2.xyz/

File type
PNG image data, 1500 x 600, 8-bit colormap, non-interlaced\012- data
Size
11 kB (11375 bytes)
Hash
0cb2e5165dc9324eb462199f04e1ffa9
9e0f89847ec8a98d98a6020bc5c4ed32b7a48bf8
67dff0aad873050f12609885f2264417ccdd0d438311000a704c89f0865f7865

HTTP Headers

GET /themes/cleanPeppermintBlack_657d9013/img/arrows.png HTTP/1.1
Host: d38psrni17bvxu.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://rent2.xyz/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 11375
Connection: keep-alive
Server: nginx
Date: Mon, 22 May 2023 01:24:54 GMT
Last-Modified: Thu, 23 Jun 2022 10:44:43 GMT
Accept-Ranges: bytes
ETag: "62b4441b-2c6f"
X-Cache: Hit from cloudfront
Via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 6f4FOvXRww4Eh3Cl-vtoSJldj1XUYeO_nF70BVe67930sbee2o8ToQ==
Age: 21860

rent2.xyz/favicon.ico

13.248.148.254

200 OK

0 B

URL GET HTTP/1.1
rent2.xyz/favicon.ico
IP
13.248.148.254:80
ASN
#16509 AMAZON-02

Requested by
http://rent2.xyz/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: rent2.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://rent2.xyz/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 22 May 2023 07:29:14 GMT
Content-Type: image/x-icon
Content-Length: 0
Connection: keep-alive
Server: nginx
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
ETag: "5ebab1f0-0"
Accept-Ranges: bytes

www.google.com/adsense/domains/caf.js

142.250.74.164

200 OK

54 kB

URL GET HTTP/3
www.google.com/adsense/domains/caf.js
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/afs/ads?adtest=off&psid=8676772880&pcsa=false&channel=000001%2Cbucket102&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Frent2.xyz%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQxMDJ8fHx8fHw2NDZiMTljOWUyMWVjfHx8MTY4NDc0MDU1My45MzEyfDIyZGZiZTE3ZmZkM2I2ZWU4MzlhNmM2YTIyNzQ5MmRkYTM4NDZhYTF8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXw3MWVjOTU4ZDQ3NTYwOTg3NTQ3NmY2Y2IyZDYwZTQ0MWZmNmQwNGY4fDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MA%253D%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2204919519437054&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301157%2C17301160&format=r3%7Cs&nocache=9441684740554384&num=0&output=afd_ads&domain_name=rent2.xyz&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1684740554386&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=920&frm=0&cl=532122288&uio=--&cont=tc&jsid=caf&jsv=532122288&rurl=http%3A%2F%2Frent2.xyz%2F&adbw=master-1%3A530
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT

File type
ASCII text, with very long lines (2125)
Size
54 kB (53919 bytes)
Hash
8fcc56526295d747502a98d041b21bfb
322bd669f57ca2715a57c8d06fc237704e5a0b1e
659cc2d02376d67fd27b4be42007848d53997a9b02e58eea1b94497228a4bfe0

HTTP Headers

GET /adsense/domains/caf.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Mon, 22 May 2023 07:29:14 GMT
expires: Mon, 22 May 2023 07:29:14 GMT
cache-control: private, max-age=3600
etag: "12249362901339110014"
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%23ffffff

216.58.211.1

200 OK

270 B

URL GET HTTP/2
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%23ffffff
IP
216.58.211.1:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/afs/ads?adtest=off&psid=8676772880&pcsa=false&channel=000001%2Cbucket102&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Frent2.xyz%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQxMDJ8fHx8fHw2NDZiMTljOWUyMWVjfHx8MTY4NDc0MDU1My45MzEyfDIyZGZiZTE3ZmZkM2I2ZWU4MzlhNmM2YTIyNzQ5MmRkYTM4NDZhYTF8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXw3MWVjOTU4ZDQ3NTYwOTg3NTQ3NmY2Y2IyZDYwZTQ0MWZmNmQwNGY4fDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MA%253D%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2204919519437054&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301157%2C17301160&format=r3%7Cs&nocache=9441684740554384&num=0&output=afd_ads&domain_name=rent2.xyz&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1684740554386&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=920&frm=0&cl=532122288&uio=--&cont=tc&jsid=caf&jsv=532122288&rurl=http%3A%2F%2Frent2.xyz%2F&adbw=master-1%3A530
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint49:A1:78:AA:CC:58:2A:18:8D:75:CC:D3:F4:F7:DD:A5:5D:58:B0:B1
ValidityMon, 24 Apr 2023 12:00:35 GMT - Mon, 17 Jul 2023 12:00:34 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (390)
Size
270 B (270 bytes)
Hash
8959ddcd9712196961d93f58064ed655
62ab1e38e7e9fbf58a04381b76c2d96a9c829f24
17c7a89bf169c2ee400e31b042cea68513f06b9cd7d1e8990dbec800f0d771c7

HTTP Headers

GET /ad_icons/standard/publisher_icon_image/search.svg?c=%23ffffff HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 270
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 05:36:16 GMT
expires: Tue, 23 May 2023 04:36:16 GMT
cache-control: public, max-age=82800
age: 6778
last-modified: Thu, 19 Dec 2019 14:15:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

rent2.xyz/track.php?domain=rent2.xyz&caf=1&toggle=answercheck&answer=yes&uid=MTY4NDc0MDU1My45MjYyOmY5MDY3MWEwNmYyZjU4OWVkZmNkNTc3MzVlNzlkZWJmNmM0YTI5M2FmYTliZjA2ZTcyYzI0Y2ViMzZkOGFlMGE6NjQ2YjE5YzllMjIwOQ%3D%3D

13.248.148.254

200 OK

20 B

URL GET HTTP/1.1
rent2.xyz/track.php?domain=rent2.xyz&caf=1&toggle=answercheck&answer=yes&uid=MTY4NDc0MDU1My45MjYyOmY5MDY3MWEwNmYyZjU4OWVkZmNkNTc3MzVlNzlkZWJmNmM0YTI5M2FmYTliZjA2ZTcyYzI0Y2ViMzZkOGFlMGE6NjQ2YjE5YzllMjIwOQ%3D%3D
IP
13.248.148.254:80
ASN
#16509 AMAZON-02

Requested by
http://rent2.xyz/

File type
gzip compressed data, max speed, from Unix\012- data
Size
20 B (20 bytes)
Hash
a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf

HTTP Headers

GET /track.php?domain=rent2.xyz&caf=1&toggle=answercheck&answer=yes&uid=MTY4NDc0MDU1My45MjYyOmY5MDY3MWEwNmYyZjU4OWVkZmNkNTc3MzVlNzlkZWJmNmM0YTI5M2FmYTliZjA2ZTcyYzI0Y2ViMzZkOGFlMGE6NjQ2YjE5YzllMjIwOQ%3D%3D HTTP/1.1
Host: rent2.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://rent2.xyz/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 22 May 2023 07:29:14 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-Custom-Track: answercheck
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Access-Control-Allow-Origin: *
Content-Encoding: gzip

parking3.parklogic.com/page/images/pe262/hero_nc.svg

45.79.244.209

200 OK

48 kB

URL GET HTTP/1.1
parking3.parklogic.com/page/images/pe262/hero_nc.svg
IP
45.79.244.209:443
ASN
#63949 Linode, LLC

Requested by
http://rent2.xyz/
Certificate
IssuerSectigo Limited
Subject*.parklogic.com
FingerprintD2:96:70:5E:83:A7:30:EF:05:87:20:AD:05:88:37:B5:E5:2E:0B:2F
ValidityMon, 19 Dec 2022 00:00:00 GMT - Fri, 19 Jan 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1738)
Size
48 kB (48097 bytes)
Hash
5a2c392e7acdf6e9de6e00129500503c
c8d0f80381e4ce180b5eb3c4c98539907292a7bb
878da09a057ec8f1775cdc522e5f7ec44966df547a87a9c29826ba114833c24b

HTTP Headers

GET /page/images/pe262/hero_nc.svg HTTP/1.1
Host: parking3.parklogic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://rent2.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Mon, 22 May 2023 07:29:14 GMT
server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.5.38
last-modified: Mon, 08 Mar 2021 23:04:00 GMT
etag: "bbe1-5bd0e72fe1800"
accept-ranges: bytes
content-length: 48097
content-type: image/svg+xml
connection: close

www.google.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=nl194ntdm7nr&aqid=yhlrZNzIHoWi7APd94GoBQ&psid=8676772880&pbt=bs&adbx=375&adby=238&adbh=500&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=532122288&csala=11%7C0%7C262%7C146%7C273&lle=0&ifv=1&usr=1

142.250.74.164

204 No Content

0 B

URL GET HTTP/3
www.google.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=nl194ntdm7nr&aqid=yhlrZNzIHoWi7APd94GoBQ&psid=8676772880&pbt=bs&adbx=375&adby=238&adbh=500&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=532122288&csala=11%7C0%7C262%7C146%7C273&lle=0&ifv=1&usr=1
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
http://rent2.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=nl194ntdm7nr&aqid=yhlrZNzIHoWi7APd94GoBQ&psid=8676772880&pbt=bs&adbx=375&adby=238&adbh=500&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=532122288&csala=11%7C0%7C262%7C146%7C273&lle=0&ifv=1&usr=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://rent2.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-MidnJBIG7t7YqwDel7IFdg' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
date: Mon, 22 May 2023 07:29:16 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: NID=511=UDxz9haRhCQnJmskBeEut0wMixOePlY2at42O6D9x1XeuPgdPDsH9qQgNdhmZZcXUzzB4-WZ3iSnXA5uFbuUMuym6-vpfTUNHwlE4LYgebrMASPFQyuZcUO1aBoustCAKfGxx_cAPSPZGpXPIHMn97CdVzqv3CxnCLPn41042e8; expires=Tue, 21-Nov-2023 07:29:16 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+474; expires=Wed, 21-May-2025 07:29:16 GMT; path=/; domain=.google.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=9bdtuf3565od&aqid=yhlrZNzIHoWi7APd94GoBQ&psid=8676772880&pbt=bv&adbx=375&adby=238&adbh=500&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=532122288&csala=11%7C0%7C262%7C146%7C273&lle=0&ifv=1&usr=1

142.250.74.164

204 No Content

0 B

URL GET HTTP/3
www.google.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=9bdtuf3565od&aqid=yhlrZNzIHoWi7APd94GoBQ&psid=8676772880&pbt=bv&adbx=375&adby=238&adbh=500&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=532122288&csala=11%7C0%7C262%7C146%7C273&lle=0&ifv=1&usr=1
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
http://rent2.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=9bdtuf3565od&aqid=yhlrZNzIHoWi7APd94GoBQ&psid=8676772880&pbt=bv&adbx=375&adby=238&adbh=500&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=532122288&csala=11%7C0%7C262%7C146%7C273&lle=0&ifv=1&usr=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://rent2.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-I_y3HRPLq0wgbKEUVoBtAA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
date: Mon, 22 May 2023 07:29:17 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: NID=511=syTfUSNoJFpAL6pRksZy-c2JXtO7Fap-sDVLsqV4LlZ0DXo3e1vdy7tdzM1YNo5G8SWtA8-XOWydoDCw-jGFpJYo4Ldpk8gxwFK_YHbT1x8CTazX7YUwdh0y_K8L1GeTmZRnL6GIB-asDYGPJDDCjMLAS9Wv4BuJI6e7eHEWsLg; expires=Tue, 21-Nov-2023 07:29:17 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+864; expires=Wed, 21-May-2025 07:29:17 GMT; path=/; domain=.google.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff

216.58.211.1

200 OK

200 B

URL GET HTTP/2
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff
IP
216.58.211.1:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/afs/ads?adtest=off&psid=8676772880&pcsa=false&channel=000001%2Cbucket102&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Frent2.xyz%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQxMDJ8fHx8fHw2NDZiMTljOWUyMWVjfHx8MTY4NDc0MDU1My45MzEyfDIyZGZiZTE3ZmZkM2I2ZWU4MzlhNmM2YTIyNzQ5MmRkYTM4NDZhYTF8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXw3MWVjOTU4ZDQ3NTYwOTg3NTQ3NmY2Y2IyZDYwZTQ0MWZmNmQwNGY4fDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MA%253D%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2204919519437054&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301157%2C17301160&format=r3%7Cs&nocache=9441684740554384&num=0&output=afd_ads&domain_name=rent2.xyz&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1684740554386&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=920&frm=0&cl=532122288&uio=--&cont=tc&jsid=caf&jsv=532122288&rurl=http%3A%2F%2Frent2.xyz%2F&adbw=master-1%3A530
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint49:A1:78:AA:CC:58:2A:18:8D:75:CC:D3:F4:F7:DD:A5:5D:58:B0:B1
ValidityMon, 24 Apr 2023 12:00:35 GMT - Mon, 17 Jul 2023 12:00:34 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Size
200 B (200 bytes)
Hash
592bbd56abac313ab322bc38f7027496
ecc40e55421cbfc9cc24e256c999a497b84d997f
fe3a1073d51df0f353dfa771acde9ea020e215a74edf7b24775e50282b6d6eda

HTTP Headers

GET /ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 174
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 05:36:23 GMT
expires: Tue, 23 May 2023 04:36:23 GMT
cache-control: public, max-age=82800
age: 6771
last-modified: Thu, 22 Oct 2020 21:45:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (15)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML