Report - tailocker.com/?s1=abl2&s5=2XXX5wjn13uf18HKzXNCfri0q

Report Overview

Submitted URL
tailocker.com/?s1=abl2&s5=2XXX5wjn13uf18HKzXNCfri0q
IP
199.59.243.225
ASN
#16509 AMAZON-02
Submitted
2024-05-01 21:57:38
Access
public
Website Title
Tailocker.com
Final URL
tailocker.com/?s1=abl2&s5=2XXX5wjn13uf18HKzXNCfri0q
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
8

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
tailocker.com	unknown	unknown	No data	No data	2.2 kB	39 kB	199.59.243.225
www.adsensecustomsearchads.com	unknown	2011-01-28	2015-09-02	2024-04-30	3.2 kB	80 kB	216.58.211.14
afs.googleusercontent.com	12123	2008-11-17	2013-05-06	2024-05-01	1.0 kB	2.1 kB	142.250.74.97
parking3.parklogic.com	unknown	2007-02-28	2023-05-10	2024-04-17	441 B	236 B	45.79.244.209
www.google.com	7	1997-09-15	2015-05-10	2024-03-23	428 B	191 kB	216.58.211.4

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-01	medium	tailocker.com	Sinkholed
2024-05-01	medium	tailocker.com	Sinkholed
2024-05-01	medium	tailocker.com	Sinkholed
2024-05-01	medium	tailocker.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (8)

	URL	Size	First Seen	Last Seen
	www.adsensecustomsearchads.com/afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol202%2Cpid-bodis-gcontrol47%2Cpid-bodis-gcontrol321%2Cpid-bodis-gcontrol151%2Cpid-bodis-gcontrol487&client=dp-bodis30_3ph&r=m&hl=en&ivt=0&rpbu=https%3A%2F%2Ftailocker.com%2F%3Fcaf%3D1%26s1%3Dabl2%26s5%3D2XXX5wjn13uf18HKzXNCfri0q&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2112176488433794&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301437%2C17301439%2C17301442&client_gdprApplies=1&format=r3&nocache=3981714600632766&num=0&output=afd_ads&domain_name=tailocker.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1714600632768&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=922&frm=0&uio=-&cont=rs&drt=0&jsid=caf&jsv=629216002&rurl=https%3A%2F%2Ftailocker.com%2F%3Fs1%3Dabl2%26s5%3D2XXX5wjn13uf18HKzXNCfri0q	609 B	2024-05-01	2024-05-01
Pretty URL www.adsensecustomsearchads.com/afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol202%2Cpid-bodis-gcontrol47%2Cpid-bodis-gcontrol321%2Cpid-bodis-gcontrol151%2Cpid-bodis-gcontrol487&client=dp-bodis30_3ph&r=m&hl=en&ivt=0&rpbu=https%3A%2F%2Ftailocker.com%2F%3Fcaf%3D1%26s1%3Dabl2%26s5%3D2XXX5wjn13uf18HKzXNCfri0q&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2112176488433794&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301437%2C17301439%2C17301442&client_gdprApplies=1&format=r3&nocache=3981714600632766&num=0&output=afd_ads&domain_name=tailocker.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1714600632768&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=922&frm=0&uio=-&cont=rs&drt=0&jsid=caf&jsv=629216002&rurl=https%3A%2F%2Ftailocker.com%2F%3Fs1%3Dabl2%26s5%3D2XXX5wjn13uf18HKzXNCfri0q IP 216.58.211.14 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-01 23:57:44 Last Seen2024-05-01 23:57:44 Times Seen1 Hash 61c00821d89c123f0eb414d67731755b c1163d5d2cc052e656491eb1d4f3167c740e7d86 ee0778df69b7eb80b6feb9b4cc348808fd14e33dfde8af5b55cc385cc32e2f4a Loading...

	www.adsensecustomsearchads.com/adsense/domains/caf.js	190 kB	2024-05-01	2024-05-09
Pretty URL www.adsensecustomsearchads.com/adsense/domains/caf.js IP 216.58.211.14 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-01 23:23:36 Last Seen2024-05-09 21:37:37 Times Seen429 Hash 05cdc16af5144421b57e90bb7829bf6f 2c5532ffeffb3aeb0433090bd6ebde249135e980 f0b42282a575a397fe85ec9e664f66017cac3dfc4254fddb8517ae922994fbfb Loading...

	parking3.parklogic.com/page/enhance.js?pcId=7&&domain=Tailocker.com	0 B	2023-03-07	2024-05-15
Pretty URL parking3.parklogic.com/page/enhance.js?pcId=7&&domain=Tailocker.com IP 45.79.244.209 ASN #63949 Akamai Connected Cloud Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-15 20:17:18 Times Seen37674293 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	tailocker.com/?s1=abl2&s5=2XXX5wjn13uf18HKzXNCfri0q	411 B	2024-05-01	2024-05-01
Pretty URL tailocker.com/?s1=abl2&s5=2XXX5wjn13uf18HKzXNCfri0q IP 199.59.243.225 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-01 23:57:44 Last Seen2024-05-01 23:57:44 Times Seen1 Hash ea1729a27928733ce08a4bbca50aef12 28c1b002f58c5fe2dff1c1022e9b9519f1d1aab6 517c01510f86b010216ac45e293d0b8cc447adfb38f0775e945f5b39f091cedc Loading...

	tailocker.com/bMTeSMDfG.js	34 kB	2024-04-22	2024-05-15
Pretty URL tailocker.com/bMTeSMDfG.js IP 199.59.243.225 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-22 21:49:17 Last Seen2024-05-15 20:17:18 Times Seen6563 Hash f48baec69cc4dc0852d118259eff2d56 e64c6e4423421da5b35700154810cb67160bc32b 463d99ca5448f815a05b2d946ddae9eed3e21c335c0f4cfe7a16944e3512f76c Loading...

	www.google.com/adsense/domains/caf.js?abp=1&bodis=true	190 kB	2024-05-01	2024-05-09
Pretty URL www.google.com/adsense/domains/caf.js?abp=1&bodis=true IP 216.58.211.4 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-01 21:44:02 Last Seen2024-05-09 21:37:37 Times Seen250 Hash 631289b7a0e4721036bfcfb933467a2f 72b62ff85c96533a4076b8d7b24517aaccc2f8c8 f19350981ca3c5d662cdb93fbfea40ad431a693f835010b267e3e26b3e36a4f3 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 145b97bea610ee9ceb7a9151af9ee2b9	411 B	2024-04-07	2024-05-02
Pretty Observations First Seen2024-04-07 09:56:26 Last Seen2024-05-02 01:04:26 Times Seen24 Hash 145b97bea610ee9ceb7a9151af9ee2b9 5c402f6b61b58000006a1f52a771239b273f7a1b b1a3af97be3ea1801ca1bb62f55ad961dcba803bae3170cec6860230fbceb8bf Loading...

		Size	First Seen	Last Seen
	#1 Write - e864e3f8ec6afafe5af3f3ef63488365	179 B	2024-05-01	2024-05-02
Pretty Observations First Seen2024-05-01 20:40:08 Last Seen2024-05-02 01:04:26 Times Seen4 Hash e864e3f8ec6afafe5af3f3ef63488365 8a07a80d5d2687866e4da8dcae45d73efb4405d9 d683b2a8d65fe70a864fb14127a7d285a21a95710e6988222a654b2053a5f8ac Loading...

HTTP Transactions (12)

URL IP Response Size

tailocker.com/?s1=abl2&s5=2XXX5wjn13uf18HKzXNCfri0q

199.59.243.225

200 OK

1.2 kB

URL User Request GET HTTP/1.1
tailocker.com/?s1=abl2&s5=2XXX5wjn13uf18HKzXNCfri0q
IP
199.59.243.225:443
ASN
#16509 AMAZON-02

Certificate
IssuerLet's Encrypt
Subjecttailocker.com
Fingerprint55:F2:A7:21:52:87:32:D3:25:7C:F8:AC:6D:9C:4D:C2:3B:52:3B:EC
ValidityWed, 01 May 2024 09:00:41 GMT - Tue, 30 Jul 2024 09:00:40 GMT

File type
HTML document, ASCII text, with very long lines (426)
Size
1.2 kB (1158 bytes)
Hash
d9315f43758860707a3a8c37c77ea9c5
e6504736311a2d37e3dab8e3388d0360ff859cd0
f55927c6bdfd7d59d5b6941831919de8629ab83429f0eca3098de661330a545c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?s1=abl2&s5=2XXX5wjn13uf18HKzXNCfri0q HTTP/1.1
Host: tailocker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 01 May 2024 21:57:11 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 1158
X-Request-Id: d83b7d4a-aacf-4b3a-817a-efe17d2e0a2d
Cache-Control: no-store, max-age=0
Accept-Ch: sec-ch-prefers-color-scheme
Critical-Ch: sec-ch-prefers-color-scheme
Vary: sec-ch-prefers-color-scheme
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_ss8vnoIEf3sPnQ4z+fKEE4V7MTHdH/LJP1KPwo1OnsscBtoDs4Bn+jKsozUTF17eGgup846YqAAg78PtLAlkVQ==
Set-Cookie: parking_session=d83b7d4a-aacf-4b3a-817a-efe17d2e0a2d; expires=Wed, 01 May 2024 22:12:11 GMT; path=/
Connection: close

tailocker.com/bMTeSMDfG.js

199.59.243.225

200 OK

34 kB

URL GET HTTP/1.1
tailocker.com/bMTeSMDfG.js
IP
199.59.243.225:443
ASN
#16509 AMAZON-02

Requested by
https://tailocker.com/?s1=abl2&s5=2XXX5wjn13uf18HKzXNCfri0q
Certificate
IssuerLet's Encrypt
Subjecttailocker.com
Fingerprint55:F2:A7:21:52:87:32:D3:25:7C:F8:AC:6D:9C:4D:C2:3B:52:3B:EC
ValidityWed, 01 May 2024 09:00:41 GMT - Tue, 30 Jul 2024 09:00:40 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (33788)
Size
34 kB (33791 bytes)
Hash
f48baec69cc4dc0852d118259eff2d56
e64c6e4423421da5b35700154810cb67160bc32b
463d99ca5448f815a05b2d946ddae9eed3e21c335c0f4cfe7a16944e3512f76c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /bMTeSMDfG.js HTTP/1.1
Host: tailocker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tailocker.com/?s1=abl2&s5=2XXX5wjn13uf18HKzXNCfri0q
Cookie: parking_session=d83b7d4a-aacf-4b3a-817a-efe17d2e0a2d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 01 May 2024 21:57:12 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 33791
X-Request-Id: b90d0184-fb3c-4238-a79a-8d180aaaf57c
Set-Cookie: parking_session=d83b7d4a-aacf-4b3a-817a-efe17d2e0a2d; expires=Wed, 01 May 2024 22:12:12 GMT
Connection: close

tailocker.com/_fd?s1=abl2&s5=2XXX5wjn13uf18HKzXNCfri0q

199.59.243.225

200 OK

2.4 kB

URL POST HTTP/1.1
tailocker.com/_fd?s1=abl2&s5=2XXX5wjn13uf18HKzXNCfri0q
IP
199.59.243.225:443
ASN
#16509 AMAZON-02

Requested by
https://tailocker.com/?s1=abl2&s5=2XXX5wjn13uf18HKzXNCfri0q
Certificate
IssuerLet's Encrypt
Subjecttailocker.com
Fingerprint55:F2:A7:21:52:87:32:D3:25:7C:F8:AC:6D:9C:4D:C2:3B:52:3B:EC
ValidityWed, 01 May 2024 09:00:41 GMT - Tue, 30 Jul 2024 09:00:40 GMT

File type
ASCII text, with very long lines (4817), with no line terminators
Size
2.4 kB (2410 bytes)
Hash
6b04829bf7e8316be5044dcd6670eac5
ea5f4909547419066db3e4ae4127f5cdf2109068
cd10d12d8f4ce0314fa527e2f302484bd708fc6da68725b4ae5b5ce681b69eda

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /_fd?s1=abl2&s5=2XXX5wjn13uf18HKzXNCfri0q HTTP/1.1
Host: tailocker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tailocker.com/?s1=abl2&s5=2XXX5wjn13uf18HKzXNCfri0q
Content-Type: application/json
Origin: https://tailocker.com
DNT: 1
Connection: keep-alive
Cookie: parking_session=d83b7d4a-aacf-4b3a-817a-efe17d2e0a2d
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/1.1 200 OK
Server: openresty
Date: Wed, 01 May 2024 21:57:12 GMT
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Content-Length: 2410
X-Version: 2.118.0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: parking_session=d83b7d4a-aacf-4b3a-817a-efe17d2e0a2d; expires=Wed, 01 May 2024 22:12:12 GMT; Max-Age=900; path=/; httponly
Connection: close

www.adsensecustomsearchads.com/afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol202%2Cpid-bodis-gcontrol47%2Cpid-bodis-gcontrol321%2Cpid-bodis-gcontrol151%2Cpid-bodis-gcontrol487&client=dp-bodis30_3ph&r=m&hl=en&ivt=0&rpbu=https%3A%2F%2Ftailocker.com%2F%3Fcaf%3D1%26s1%3Dabl2%26s5%3D2XXX5wjn13uf18HKzXNCfri0q&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2112176488433794&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301437%2C17301439%2C17301442&client_gdprApplies=1&format=r3&nocache=3981714600632766&num=0&output=afd_ads&domain_name=tailocker.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1714600632768&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=922&frm=0&uio=-&cont=rs&drt=0&jsid=caf&jsv=629216002&rurl=https%3A%2F%2Ftailocker.com%2F%3Fs1%3Dabl2%26s5%3D2XXX5wjn13uf18HKzXNCfri0q

216.58.211.14

200 OK

2.6 kB

URL GET HTTP/2
www.adsensecustomsearchads.com/afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol202%2Cpid-bodis-gcontrol47%2Cpid-bodis-gcontrol321%2Cpid-bodis-gcontrol151%2Cpid-bodis-gcontrol487&client=dp-bodis30_3ph&r=m&hl=en&ivt=0&rpbu=https%3A%2F%2Ftailocker.com%2F%3Fcaf%3D1%26s1%3Dabl2%26s5%3D2XXX5wjn13uf18HKzXNCfri0q&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2112176488433794&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301437%2C17301439%2C17301442&client_gdprApplies=1&format=r3&nocache=3981714600632766&num=0&output=afd_ads&domain_name=tailocker.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1714600632768&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=922&frm=0&uio=-&cont=rs&drt=0&jsid=caf&jsv=629216002&rurl=https%3A%2F%2Ftailocker.com%2F%3Fs1%3Dabl2%26s5%3D2XXX5wjn13uf18HKzXNCfri0q
IP
216.58.211.14:443
ASN
#15169 GOOGLE

Requested by
https://tailocker.com/?s1=abl2&s5=2XXX5wjn13uf18HKzXNCfri0q
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
Fingerprint13:C7:40:78:3B:C5:3E:4C:BF:6E:15:DC:37:54:F1:48:24:A2:83:80
ValidityMon, 08 Apr 2024 06:40:27 GMT - Mon, 01 Jul 2024 06:40:26 GMT

File type
HTML document, ASCII text, with very long lines (13150)
Size
2.6 kB (2567 bytes)
Hash
77e426a1b84a08eeef465aac2d0cd5b4
dbb28772be77ad3e78b40965c567ce4077390d3f
881ea900e91d5a6b9ad0f9d71f32de446a4c0a5f2e2a2cc289ea12cbb890b77d

HTTP Headers

GET /afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol202%2Cpid-bodis-gcontrol47%2Cpid-bodis-gcontrol321%2Cpid-bodis-gcontrol151%2Cpid-bodis-gcontrol487&client=dp-bodis30_3ph&r=m&hl=en&ivt=0&rpbu=https%3A%2F%2Ftailocker.com%2F%3Fcaf%3D1%26s1%3Dabl2%26s5%3D2XXX5wjn13uf18HKzXNCfri0q&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2112176488433794&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301437%2C17301439%2C17301442&client_gdprApplies=1&format=r3&nocache=3981714600632766&num=0&output=afd_ads&domain_name=tailocker.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1714600632768&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=922&frm=0&uio=-&cont=rs&drt=0&jsid=caf&jsv=629216002&rurl=https%3A%2F%2Ftailocker.com%2F%3Fs1%3Dabl2%26s5%3D2XXX5wjn13uf18HKzXNCfri0q HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tailocker.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-disposition: inline
date: Wed, 01 May 2024 21:57:12 GMT
expires: Wed, 01 May 2024 21:57:12 GMT
cache-control: private, max-age=3600
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-pd3CQo8nUeXzqpR2dlmNvg' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
content-encoding: br
server: gws
content-length: 2567
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/call_to_action_arrow.svg?c=%23ffffff

142.250.74.97

200 OK

278 B

URL GET HTTP/2
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/call_to_action_arrow.svg?c=%23ffffff
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://www.adsensecustomsearchads.com/afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol202%2Cpid-bodis-gcontrol47%2Cpid-bodis-gcontrol321%2Cpid-bodis-gcontrol151%2Cpid-bodis-gcontrol487&client=dp-bodis30_3ph&r=m&hl=en&ivt=0&rpbu=https%3A%2F%2Ftailocker.com%2F%3Fcaf%3D1%26s1%3Dabl2%26s5%3D2XXX5wjn13uf18HKzXNCfri0q&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2112176488433794&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301437%2C17301439%2C17301442&client_gdprApplies=1&format=r3&nocache=3981714600632766&num=0&output=afd_ads&domain_name=tailocker.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1714600632768&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=922&frm=0&uio=-&cont=rs&drt=0&jsid=caf&jsv=629216002&rurl=https%3A%2F%2Ftailocker.com%2F%3Fs1%3Dabl2%26s5%3D2XXX5wjn13uf18HKzXNCfri0q
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintD1:64:F1:6B:AC:65:FC:D3:5F:42:54:08:AE:BC:0A:AC:D1:EA:88:2C
ValidityMon, 08 Apr 2024 07:27:47 GMT - Mon, 01 Jul 2024 07:27:46 GMT

File type
SVG Scalable Vector Graphics image
Size
278 B (278 bytes)
Hash
fe7dd8c3c629cc6e9cd6d3e4d3cbe905
59ef3b8e4a17169a4cb45fba65bf0d2bf49c8a18
5455d8d4b8ae5150039ff7a83a6679d4338a435945985fa9f8d0ecbea9ae2f6e

HTTP Headers

GET /ad_icons/standard/publisher_icon_image/call_to_action_arrow.svg?c=%23ffffff HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.adsensecustomsearchads.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 278
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 May 2024 01:08:55 GMT
expires: Thu, 02 May 2024 00:08:55 GMT
cache-control: public, max-age=82800
age: 74898
last-modified: Tue, 27 Jun 2023 17:28:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%2302198b

142.250.74.97

200 OK

174 B

URL GET HTTP/2
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%2302198b
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://www.adsensecustomsearchads.com/afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol202%2Cpid-bodis-gcontrol47%2Cpid-bodis-gcontrol321%2Cpid-bodis-gcontrol151%2Cpid-bodis-gcontrol487&client=dp-bodis30_3ph&r=m&hl=en&ivt=0&rpbu=https%3A%2F%2Ftailocker.com%2F%3Fcaf%3D1%26s1%3Dabl2%26s5%3D2XXX5wjn13uf18HKzXNCfri0q&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2112176488433794&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301437%2C17301439%2C17301442&client_gdprApplies=1&format=r3&nocache=3981714600632766&num=0&output=afd_ads&domain_name=tailocker.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1714600632768&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=922&frm=0&uio=-&cont=rs&drt=0&jsid=caf&jsv=629216002&rurl=https%3A%2F%2Ftailocker.com%2F%3Fs1%3Dabl2%26s5%3D2XXX5wjn13uf18HKzXNCfri0q
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintD1:64:F1:6B:AC:65:FC:D3:5F:42:54:08:AE:BC:0A:AC:D1:EA:88:2C
ValidityMon, 08 Apr 2024 07:27:47 GMT - Mon, 01 Jul 2024 07:27:46 GMT

File type
SVG Scalable Vector Graphics image
Size
174 B (174 bytes)
Hash
d47125b2ba92be53dcff07ba322ce1de
e4a70c8a133bacf1699fdfa4c10e24ed5b3e0c28
5a0687ea8c9aa404a7724490f046e30023ec6b5aa81d01ae4f225889a64174f6

HTTP Headers

GET /ad_icons/standard/publisher_icon_image/chevron.svg?c=%2302198b HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.adsensecustomsearchads.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 174
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 May 2024 19:53:32 GMT
expires: Thu, 02 May 2024 18:53:32 GMT
cache-control: public, max-age=82800
age: 7421
last-modified: Thu, 02 Nov 2023 22:48:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

tailocker.com/_tr

199.59.243.225

200 OK

22 B

URL POST HTTP/1.1
tailocker.com/_tr
IP
199.59.243.225:443
ASN
#16509 AMAZON-02

Requested by
https://tailocker.com/?s1=abl2&s5=2XXX5wjn13uf18HKzXNCfri0q
Certificate
IssuerLet's Encrypt
Subjecttailocker.com
Fingerprint55:F2:A7:21:52:87:32:D3:25:7C:F8:AC:6D:9C:4D:C2:3B:52:3B:EC
ValidityWed, 01 May 2024 09:00:41 GMT - Tue, 30 Jul 2024 09:00:40 GMT

File type
ASCII text, with no line terminators
Size
22 B (22 bytes)
Hash
444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /_tr HTTP/1.1
Host: tailocker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tailocker.com/?s1=abl2&s5=2XXX5wjn13uf18HKzXNCfri0q
Content-Type: application/json
Content-Length: 1785
Origin: https://tailocker.com
DNT: 1
Connection: keep-alive
Cookie: parking_session=d83b7d4a-aacf-4b3a-817a-efe17d2e0a2d
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: openresty
Date: Wed, 01 May 2024 21:57:12 GMT
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Content-Length: 22
X-Version: 2.118.0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: parking_session=d83b7d4a-aacf-4b3a-817a-efe17d2e0a2d; expires=Wed, 01 May 2024 22:12:13 GMT; Max-Age=900; path=/; httponly
Connection: close

www.adsensecustomsearchads.com/adsense/domains/caf.js

216.58.211.14

200 OK

74 kB

URL GET HTTP/3
www.adsensecustomsearchads.com/adsense/domains/caf.js
IP
216.58.211.14:443
ASN
#15169 GOOGLE

Requested by
https://www.adsensecustomsearchads.com/afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol202%2Cpid-bodis-gcontrol47%2Cpid-bodis-gcontrol321%2Cpid-bodis-gcontrol151%2Cpid-bodis-gcontrol487&client=dp-bodis30_3ph&r=m&hl=en&ivt=0&rpbu=https%3A%2F%2Ftailocker.com%2F%3Fcaf%3D1%26s1%3Dabl2%26s5%3D2XXX5wjn13uf18HKzXNCfri0q&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2112176488433794&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301437%2C17301439%2C17301442&client_gdprApplies=1&format=r3&nocache=3981714600632766&num=0&output=afd_ads&domain_name=tailocker.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1714600632768&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=922&frm=0&uio=-&cont=rs&drt=0&jsid=caf&jsv=629216002&rurl=https%3A%2F%2Ftailocker.com%2F%3Fs1%3Dabl2%26s5%3D2XXX5wjn13uf18HKzXNCfri0q
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
Fingerprint13:C7:40:78:3B:C5:3E:4C:BF:6E:15:DC:37:54:F1:48:24:A2:83:80
ValidityMon, 08 Apr 2024 06:40:27 GMT - Mon, 01 Jul 2024 06:40:26 GMT

File type
JavaScript source, ASCII text, with very long lines (2247)
Size
74 kB (74013 bytes)
Hash
05cdc16af5144421b57e90bb7829bf6f
2c5532ffeffb3aeb0433090bd6ebde249135e980
f0b42282a575a397fe85ec9e664f66017cac3dfc4254fddb8517ae922994fbfb

HTTP Headers

GET /adsense/domains/caf.js HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.adsensecustomsearchads.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Wed, 01 May 2024 21:57:13 GMT
expires: Wed, 01 May 2024 21:57:13 GMT
cache-control: private, max-age=3600
etag: "8198968192214571772"
x-content-type-options: nosniff
link: <https://www.adsensecustomsearchads.com>; rel="preconnect"
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.adsensecustomsearchads.com/afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=n82nv1hbrbug&aqid=uLoyZqeSNOWaxdwP4M-P2Ag&psid=3113057640&pbt=bs&adbx=290&adby=193&adbh=481&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=629216002&csala=7%7C0%7C432%7C58%7C28&lle=0&ifv=1&hpt=0

216.58.211.14

204 No Content

0 B

URL GET HTTP/3
www.adsensecustomsearchads.com/afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=n82nv1hbrbug&aqid=uLoyZqeSNOWaxdwP4M-P2Ag&psid=3113057640&pbt=bs&adbx=290&adby=193&adbh=481&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=629216002&csala=7%7C0%7C432%7C58%7C28&lle=0&ifv=1&hpt=0
IP
216.58.211.14:443
ASN
#15169 GOOGLE

Requested by
https://tailocker.com/?s1=abl2&s5=2XXX5wjn13uf18HKzXNCfri0q
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
Fingerprint13:C7:40:78:3B:C5:3E:4C:BF:6E:15:DC:37:54:F1:48:24:A2:83:80
ValidityMon, 08 Apr 2024 06:40:27 GMT - Mon, 01 Jul 2024 06:40:26 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=n82nv1hbrbug&aqid=uLoyZqeSNOWaxdwP4M-P2Ag&psid=3113057640&pbt=bs&adbx=290&adby=193&adbh=481&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=629216002&csala=7%7C0%7C432%7C58%7C28&lle=0&ifv=1&hpt=0 HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tailocker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-3syP2wDFJBNSpiBMk6_gAg' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Wed, 01 May 2024 21:57:14 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.adsensecustomsearchads.com/afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=7sq9isvz9a4w&aqid=uLoyZqeSNOWaxdwP4M-P2Ag&psid=3113057640&pbt=bv&adbx=290&adby=193&adbh=481&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=629216002&csala=7%7C0%7C432%7C58%7C28&lle=0&ifv=1&hpt=0

216.58.211.14

204 No Content

0 B

URL GET HTTP/3
www.adsensecustomsearchads.com/afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=7sq9isvz9a4w&aqid=uLoyZqeSNOWaxdwP4M-P2Ag&psid=3113057640&pbt=bv&adbx=290&adby=193&adbh=481&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=629216002&csala=7%7C0%7C432%7C58%7C28&lle=0&ifv=1&hpt=0
IP
216.58.211.14:443
ASN
#15169 GOOGLE

Requested by
https://tailocker.com/?s1=abl2&s5=2XXX5wjn13uf18HKzXNCfri0q
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
Fingerprint13:C7:40:78:3B:C5:3E:4C:BF:6E:15:DC:37:54:F1:48:24:A2:83:80
ValidityMon, 08 Apr 2024 06:40:27 GMT - Mon, 01 Jul 2024 06:40:26 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=7sq9isvz9a4w&aqid=uLoyZqeSNOWaxdwP4M-P2Ag&psid=3113057640&pbt=bv&adbx=290&adby=193&adbh=481&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=629216002&csala=7%7C0%7C432%7C58%7C28&lle=0&ifv=1&hpt=0 HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tailocker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-zawlC8R3isFtEQndXE0HAw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Wed, 01 May 2024 21:57:15 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

parking3.parklogic.com/page/enhance.js?pcId=7&&domain=Tailocker.com

45.79.244.209

200 OK

0 B

URL GET HTTP/1.1
parking3.parklogic.com/page/enhance.js?pcId=7&&domain=Tailocker.com
IP
45.79.244.209:443
ASN
#63949 Akamai Connected Cloud

Requested by
https://tailocker.com/?s1=abl2&s5=2XXX5wjn13uf18HKzXNCfri0q
Certificate
IssuerSectigo Limited
Subject*.parklogic.com
FingerprintA5:25:E3:1A:B4:C8:32:BD:0D:BA:C8:B4:19:22:F9:75:D4:D3:88:3F
ValiditySat, 20 Jan 2024 00:00:00 GMT - Wed, 19 Feb 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /page/enhance.js?pcId=7&&domain=Tailocker.com HTTP/1.1
Host: parking3.parklogic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tailocker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Wed, 01 May 2024 21:57:13 GMT
server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.5.38
x-powered-by: PHP/5.5.38
transfer-encoding: chunked
content-type: text/javascript;charset=UTF-8
connection: close

www.google.com/adsense/domains/caf.js?abp=1&bodis=true

216.58.211.4

200 OK

190 kB

URL GET HTTP/2
www.google.com/adsense/domains/caf.js?abp=1&bodis=true
IP
216.58.211.4:443
ASN
#15169 GOOGLE

Requested by
https://tailocker.com/?s1=abl2&s5=2XXX5wjn13uf18HKzXNCfri0q
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintF3:75:C9:48:E6:A5:11:C7:87:C8:8D:9A:C4:16:F8:09:4E:88:7C:5A
ValidityMon, 08 Apr 2024 07:33:48 GMT - Mon, 01 Jul 2024 07:33:47 GMT

File type
JavaScript source, ASCII text, with very long lines (2247)
Size
190 kB (190021 bytes)
Hash
631289b7a0e4721036bfcfb933467a2f
72b62ff85c96533a4076b8d7b24517aaccc2f8c8
f19350981ca3c5d662cdb93fbfea40ad431a693f835010b267e3e26b3e36a4f3

HTTP Headers

GET /adsense/domains/caf.js?abp=1&bodis=true HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tailocker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Wed, 01 May 2024 21:57:12 GMT
expires: Wed, 01 May 2024 21:57:12 GMT
cache-control: private, max-age=3600
etag: "6994515115610601966"
x-content-type-options: nosniff
link: <https://www.adsensecustomsearchads.com>; rel="preconnect"
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (8)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

Observations

Hash

HTTP Transactions (12)

URL User Request GET HTTP/1.1

IP

ASN

Certificate

File type

Size

Hash