Report - bobboro.com/

Report Overview

Visited public
2023-08-09 12:19:07
Tags
URL
bobboro.com/
Finishing URL
www.bobboro.com/
IP / ASN
172.67.158.48
#13335 CLOUDFLARENET
Title
bobboro.com

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
d38psrni17bvxu.cloudfront.net	unknown	2008-04-25	2022-09-22 18:48:38	2023-08-08 18:29:34	344 B	6.1 kB	54.230.245.130
www.google.com	7	1997-09-15	2015-05-10 13:11:19	2023-08-08 17:43:10	5.2 kB	123 kB	142.250.74.132
js.parkingcrew.net	94546	2011-01-24	2017-01-29 18:23:38	2023-08-08 17:35:41	1.8 kB	4.9 kB	185.53.178.30
ocsp.pki.goog	175	2016-06-13	2018-07-01 08:43:07	2023-08-08 17:39:17	2.0 kB	4.2 kB	142.250.74.131
bobboro.com	unknown	2022-08-03	2022-08-03 10:12:00	2023-07-15 02:20:54	264 B	692 B	104.21.14.77
i.cdnpark.com	93792	2011-11-09	2014-04-23 00:29:22	2019-03-24 18:17:58	1.1 kB	8.4 kB	143.204.55.68
afs.googleusercontent.com	12123	2008-11-17	2013-05-06 21:11:00	2023-08-08 18:19:30	969 B	2.1 kB	142.250.74.97
www.bobboro.com	unknown	2022-08-03	2022-11-09 23:16:14	2023-07-09 14:21:04	999 B	13 kB	172.67.158.48
parkingcrew.net	54699	2011-01-24	2013-04-19 03:41:17	2019-03-28 08:53:22	377 B	3.9 kB	185.53.179.29

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-08-09 12:18:59	low	104.21.14.77	Client IP	ET INFO Namecheap URL Forward

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (14)

	URL	From	Size	First Seen	Last Seen
	www.bobboro.com/	ScriptElement	0 B	0001-01-01	2025-05-09
Pretty URL www.bobboro.com/ IP 172.67.158.48 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-09 06:37 Times Seen4634371 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	parkingcrew.net/jsparkcaf.php?regcn=243142&_v=2&_h=www.bobboro.com&_t=1691583530087	ScriptElement	3.6 kB	2023-08-09	2023-08-09
Pretty URL parkingcrew.net/jsparkcaf.php?regcn=243142&_v=2&_h=www.bobboro.com&_t=1691583530087 IP 185.53.179.29 ASN #61969 Team Internet AG Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-09 14:19 Last Seen2023-08-09 14:19 Times Seen1 Hash 98a321540155290505b7879e691bd742 f8a6dd0ee9266d94064add0f663b2a238530e24b 9a06cde6da2676ebc746bb93effc885dd958898d6fade2a0b4a68375ddbda089 Loading...

	www.google.com/adsense/domains/caf.js?abp=1	ScriptElement	151 kB	2023-08-03	2024-08-21
Pretty URL www.google.com/adsense/domains/caf.js?abp=1 IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-03 16:53 Last Seen2024-08-21 09:44 Times Seen48 Hash dc9692b353efc515603a410838bc49f5 9e8c14c6e4c1e73154da3d5278b23f3ba9e6ec90 275ceb6ea2293a5d54621ffabc7cf3e46d2d4e128b5bc1e8e56cf4082aac0217 Loading...

	d38psrni17bvxu.cloudfront.net/scripts/jsparkcaf.js	ScriptElement	5.6 kB	2023-03-07	2023-09-26
Pretty URL d38psrni17bvxu.cloudfront.net/scripts/jsparkcaf.js IP 54.230.245.130 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07 Last Seen2023-09-26 11:43 Times Seen664 Hash 6f95d346f97b06c2d81a5cb147d35de0 c591eaa19ed0d227b4555f5e699b668b05aa40b0 35ca990c39f9194a5a17ff664a0fdcc7dfb6cb433ea6844e2960d9744bd9b9b6 Loading...

	www.bobboro.com/	ScriptElement	0 B	0001-01-01	2025-05-09
Pretty URL www.bobboro.com/ IP 172.67.158.48 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-09 06:37 Times Seen4634371 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	js.parkingcrew.net/assets/scripts/registrar-caf/243142.js	ScriptElement	3.0 kB	2023-03-07	2023-09-26
Pretty URL js.parkingcrew.net/assets/scripts/registrar-caf/243142.js IP 185.53.178.30 ASN #19905 NEUSTAR-AS6 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07 Last Seen2023-09-26 11:43 Times Seen582 Hash 23316d6bbbe4b9d7c85945ce4c9428e5 f7c03d2a03416a697d658cf799620684f958664b 119710c0d9e01024bc9d65493a77b661196c02706ce008f5152f78b3c224a981 Loading...

	www.bobboro.com/	ScriptElement	0 B	0001-01-01	2025-05-09
Pretty URL www.bobboro.com/ IP 172.67.158.48 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-09 06:37 Times Seen4634371 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.google.com/afs/ads/i/iframe.html	ScriptElement	1.3 kB	2023-04-05	2025-03-02
Pretty URL www.google.com/afs/ads/i/iframe.html IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-05 04:36 Last Seen2025-03-02 05:25 Times Seen67768 Hash 33839cb72649c81ab58b763c95b4a163 0c9b62881e660fded013cee58439ae287690065a cdded269406c9b2b49a3066d12e75913abf338cdd7fa00e31fff299efef1cb76 Loading...

	www.google.com/afs/ads?pcsa=false&channel=000001&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.bobboro.com%2F%3Fcaf&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2744431292869648&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301293%2C17301321%2C17301323&format=r10%7Cs&nocache=7601691583531191&num=0&output=afd_ads&domain_name=www.bobboro.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1691583531197&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=329&frm=0&cl=552777282&uio=--&cont=tc_holder1&jsid=caf&jsv=552777282&rurl=http%3A%2F%2Fwww.bobboro.com%2F&adbw=slave-1-1%3A720%2Cmaster-1%3A720	ScriptElement	1.6 kB	2024-08-21	2024-08-21
Pretty URL www.google.com/afs/ads?pcsa=false&channel=000001&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.bobboro.com%2F%3Fcaf&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2744431292869648&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301293%2C17301321%2C17301323&format=r10%7Cs&nocache=7601691583531191&num=0&output=afd_ads&domain_name=www.bobboro.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1691583531197&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=329&frm=0&cl=552777282&uio=--&cont=tc_holder1&jsid=caf&jsv=552777282&rurl=http%3A%2F%2Fwww.bobboro.com%2F&adbw=slave-1-1%3A720%2Cmaster-1%3A720 IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 09:41 Last Seen2024-08-21 09:41 Times Seen1 Hash bae503f7ad694b639893ce603b5bf153 db5d9371f366add0344532c013bc58b7446f8dc3 37948e33669795eee9605e0ab46fb1f84777ca3eaa76e1f7f1390150839c23c2 Loading...

	www.google.com/adsense/domains/caf.js	ScriptElement	151 kB	2023-08-03	2024-08-21
Pretty URL www.google.com/adsense/domains/caf.js IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-03 16:12 Last Seen2024-08-21 09:44 Times Seen75 Hash 8c04cbb21143eb9334fa0d8105e4a495 3761bc1426b40376fb73b20873d35ab219dfbc27 3af5c6f62a108c044061672621c081fe890691f5fec2001687fa8680b879c91d Loading...

		Size	First Seen	Last Seen
	#1 Write - 38cd9463cfd81c97218fd596f4a5ede1	76 B	2023-03-07 18:52	2024-08-21 09:44
Pretty Observations First Seen2023-03-07 18:52 Last Seen2024-08-21 09:44 Times Seen665 Hash 38cd9463cfd81c97218fd596f4a5ede1 7e4a49ebcc195fc07468badbee81aea7d4c14c8f 6f9c01bfa9404b8a13f98b0befe67694ae9e479f6b1066c1779d1c737af78231 Loading...

	#2 Write - e81c63f6590e78d2bffd5648f34a89b4	88 B	2023-03-07 01:07	2024-08-21 09:44
Pretty Observations First Seen2023-03-07 01:07 Last Seen2024-08-21 09:44 Times Seen584 Hash e81c63f6590e78d2bffd5648f34a89b4 06040b1ff40d4857c5f7ebced925af93e8074d13 9b3e5b0d0240e600f7ddf3c50decf1920acc8aa95234773b18a9dc0b9d4d9e22 Loading...

	#3 Write - 96a6aa0d780de8428d5e3c4d23466d48	137 B	2024-08-21 09:41	2024-08-21 09:41
Pretty Observations First Seen2024-08-21 09:41 Last Seen2024-08-21 09:41 Times Seen1 Hash 96a6aa0d780de8428d5e3c4d23466d48 0e16b0e70573c86e65b99ea64c6c7f6f21f21f6e dd1a2e7c92acc08fb6f5f4004426f027c4088fdd907eed84a825b7c098fbbb55 Loading...

	#4 Write - 58909f7a8f9d6f81fd53aabc82acd4f9	69 B	2023-03-13 14:03	2024-08-21 09:44
Pretty Observations First Seen2023-03-13 14:03 Last Seen2024-08-21 09:44 Times Seen665 Hash 58909f7a8f9d6f81fd53aabc82acd4f9 5b0209eb64794c055142858fed1207d5398cb837 c321c2a6c6bf4db2cc23a72b8df7734b0da497fae55543b1606d1fdffbc70a68 Loading...

HTTP Transactions (29)

URL IP Response Size

bobboro.com/

104.21.14.77

302 Found

46 B

URL User Request GET HTTP/2
bobboro.com/
IP
104.21.14.77:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintB8:9C:B7:B3:1E:CC:24:7D:89:F0:00:2D:B7:B7:52:36:35:E8:5D:1F
ValiditySat, 28 Jan 2023 00:00:00 GMT - Sun, 28 Jan 2024 23:59:59 GMT

File type
HTML document, ASCII text
Size
46 B (46 bytes)
Hash
0efb6b96c40be85cfb3409ee3482b908
00e3d237ac135d726abcf0dfe2ec6230edc9b131
1fd41759b83a934a75ac36351825c6c4a03fb0db7a834f9311450fa3b20871e6

Detections

NIDS	Severity	Alert
suricata	low	ET INFO Namecheap URL Forward

HTTP Headers

GET / HTTP/1.1
Host: bobboro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Date: Wed, 09 Aug 2023 12:18:52 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://www.bobboro.com/
X-Served-By: Namecheap URL Forward
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0gF3cDaFAtBEPSBS7sJdoG%2B72CLZ5N7UGXIaOJUJQS3UOLp%2B6XPDOX8rUqlbugpnJw9%2FlrRxuiFaQszk54Wt2bHzvKoRoKiXlT7LQfBH2pj717TTqkOpgfIkxa5dWg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7f3ff1b20a6b0b45-OSL
alt-svc: h2=":443"; ma=60

www.bobboro.com/

172.67.158.48

200 OK

1.8 kB

URL User Request GET HTTP/1.1
www.bobboro.com/
IP
172.67.158.48:80
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (319), with CRLF line terminators
Size
1.8 kB (1840 bytes)
Hash
d701a9195caa3d6ec2fc85c08d8472fb
9b66cb47fc8925b61f7fe0790a4c406777a96802
f1b7b566df1f8a31be43c9f28c7bdba2a387c665f9646c0f28a158654e232335

HTTP Headers

GET / HTTP/1.1
Host: www.bobboro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 09 Aug 2023 12:18:52 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
X-CST: MISS, HIT
Allow: GET, HEAD
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=37hnLXLZnFCJVjHtLr3fY5nPK4SA58SpxkdEudwRJD12B6G7GjqlFofqiqmqvanOYixhBAwaNNj9X4KYmLexfJQm7McFbU16PzweU%2BBC%2FaY7wEWb0i%2F%2F%2Fqp22rTp1jplVvI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7f3ff1b43a820b59-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

www.bobboro.com/

104.21.14.77

200 OK

1.8 kB

URL User Request GET HTTP/1.1
www.bobboro.com/
IP
104.21.14.77:80
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (319), with CRLF line terminators
Size
1.8 kB (1840 bytes)
Hash
d701a9195caa3d6ec2fc85c08d8472fb
9b66cb47fc8925b61f7fe0790a4c406777a96802
f1b7b566df1f8a31be43c9f28c7bdba2a387c665f9646c0f28a158654e232335

HTTP Headers

GET / HTTP/1.1
Host: www.bobboro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 09 Aug 2023 12:18:52 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
X-CST: MISS, HIT
Allow: GET, HEAD
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FMMNpbIqGXfWlgtLZPVeNq7YzyqHfzIYL0A63crE2tz5BGUzIX1YAP1GKWLLuDHlMI%2BTOJ1A0DLNE0F%2BUFzf3utstTuAIpOSXSUusVLyffkKS2AFeqo9K26jI%2F1ZpP7dYcc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7f3ff1b44929b512-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

i.cdnpark.com/themes/assets/style.css

143.204.55.68

200 OK

359 B

URL GET HTTP/1.1
i.cdnpark.com/themes/assets/style.css
IP
143.204.55.68:80
ASN
#16509 AMAZON-02

Requested by
http://www.bobboro.com/

File type
ASCII text
Size
359 B (359 bytes)
Hash
e42aacc9e34f351a935e6e83f2cb4a05
539587b5cb2e9383fbf115c0f7f99406079341f9
9cb157f272caecfbd484a0e3b6a8e2f7821e78c6422653ef83530ed9f73b607b

HTTP Headers

GET /themes/assets/style.css HTTP/1.1
Host: i.cdnpark.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.bobboro.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Last-Modified: Mon, 28 Nov 2022 10:41:35 GMT
Content-Encoding: gzip
Date: Tue, 08 Aug 2023 23:57:58 GMT
ETag: W/"6384905f-37c"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 4AziYQCuBm4jv68yTP_267lk49SIpe-L-4hxILu0B2ljAvGSuQ8Dqw==
Age: 44454

i.cdnpark.com/themes/registrar/style_namecheap.css

143.204.55.68

200 OK

1.8 kB

URL GET HTTP/1.1
i.cdnpark.com/themes/registrar/style_namecheap.css
IP
143.204.55.68:80
ASN
#16509 AMAZON-02

Requested by
http://www.bobboro.com/

File type
ASCII text, with very long lines (1313)
Size
1.8 kB (1769 bytes)
Hash
fcfbf44db7a3eca961510e9df77868bf
c378750ca8a6119c78bffa548104947a42edb2df
8cf5887217a8a780e49a5c6ce3773c70e79b33429212ef3325d8f6e0094a0899

HTTP Headers

GET /themes/registrar/style_namecheap.css HTTP/1.1
Host: i.cdnpark.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.bobboro.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
Content-Encoding: gzip
Date: Tue, 08 Aug 2023 14:09:07 GMT
ETag: W/"5ebab1f0-fa0"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: I_6Kjg6WAnGBSjgT6MF03KMqPBrioGoyhetFFgv-noVlnzySYCn2Jg==
Age: 79785

i.cdnpark.com/themes/registrar/images/logo_namecheap.png

143.204.55.68

200 OK

4.9 kB

URL GET HTTP/1.1
i.cdnpark.com/themes/registrar/images/logo_namecheap.png
IP
143.204.55.68:80
ASN
#16509 AMAZON-02

Requested by
http://www.bobboro.com/

File type
PNG image data, 260 x 60, 8-bit colormap, non-interlaced\012- data
Size
4.9 kB (4917 bytes)
Hash
24cfc82dfacb3ecc2e1ba6600391576d
49eaca85596996a749c9d7407189fdb86845667e
903046ac1355826e49c089ca2dd88c720bff908adb1760ee6e1884755b6041f1

HTTP Headers

GET /themes/registrar/images/logo_namecheap.png HTTP/1.1
Host: i.cdnpark.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.bobboro.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 4917
Connection: keep-alive
Server: nginx
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
Accept-Ranges: bytes
Date: Tue, 08 Aug 2023 19:14:53 GMT
ETag: "5ebab1f0-1335"
X-Cache: Hit from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5ay7VNn_IVbuN_DNPCTDVlmIsVwJIKrYl4Xmk9-veAnwKXr4Jqsm2A==
Age: 61808

parkingcrew.net/jsparkcaf.php?regcn=243142&_v=2&_h=www.bobboro.com&_t=1691583530087

185.53.179.29

200 OK

3.6 kB

URL GET HTTP/1.1
parkingcrew.net/jsparkcaf.php?regcn=243142&_v=2&_h=www.bobboro.com&_t=1691583530087
IP
185.53.179.29:80
ASN
#61969 Team Internet AG

Requested by
http://www.bobboro.com/

File type
HTML document, ASCII text, with very long lines (2966)
Size
3.6 kB (3598 bytes)
Hash
98a321540155290505b7879e691bd742
f8a6dd0ee9266d94064add0f663b2a238530e24b
9a06cde6da2676ebc746bb93effc885dd958898d6fade2a0b4a68375ddbda089

HTTP Headers

GET /jsparkcaf.php?regcn=243142&_v=2&_h=www.bobboro.com&_t=1691583530087 HTTP/1.1
Host: parkingcrew.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.bobboro.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 09 Aug 2023 12:18:53 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Language: norwegian
X-Domain: bobboro.com
X-Subdomain: www
X-Template: tpl_CleanPeppermintBlack_twoclick

d38psrni17bvxu.cloudfront.net/scripts/jsparkcaf.js

54.230.245.130

200 OK

5.6 kB

URL GET HTTP/1.1
d38psrni17bvxu.cloudfront.net/scripts/jsparkcaf.js
IP
54.230.245.130:80
ASN
#16509 AMAZON-02

Requested by
http://www.bobboro.com/

File type
ASCII text
Size
5.6 kB (5638 bytes)
Hash
6f95d346f97b06c2d81a5cb147d35de0
c591eaa19ed0d227b4555f5e699b668b05aa40b0
35ca990c39f9194a5a17ff664a0fdcc7dfb6cb433ea6844e2960d9744bd9b9b6

HTTP Headers

GET /scripts/jsparkcaf.js HTTP/1.1
Host: d38psrni17bvxu.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.bobboro.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 5638
Connection: keep-alive
Server: nginx
Date: Wed, 09 Aug 2023 01:30:30 GMT
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
Accept-Ranges: bytes
ETag: "5ebab1f0-1606"
X-Cache: Hit from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: nRs2yPfajMCsV42TsPpVe1sqei3K2GtW5EJ0Tr6t2tK_gwiIMaTfvg==
Age: 38903

www.google.com/adsense/domains/caf.js?abp=1

142.250.74.132

200 OK

55 kB

URL GET HTTP/1.1
www.google.com/adsense/domains/caf.js?abp=1
IP
142.250.74.132:80
ASN
#15169 GOOGLE

Requested by
http://www.bobboro.com/

File type
ASCII text, with very long lines (2067)
Size
55 kB (54963 bytes)
Hash
dc9692b353efc515603a410838bc49f5
9e8c14c6e4c1e73154da3d5278b23f3ba9e6ec90
275ceb6ea2293a5d54621ffabc7cf3e46d2d4e128b5bc1e8e56cf4082aac0217

HTTP Headers

GET /adsense/domains/caf.js?abp=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.bobboro.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Type: text/javascript; charset=UTF-8
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="ads-afs-ui"
Report-To: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
Date: Wed, 09 Aug 2023 12:18:53 GMT
Expires: Wed, 09 Aug 2023 12:18:53 GMT
Cache-Control: private, max-age=3600
ETag: "3537441341589967593"
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: sffe
X-XSS-Protection: 0

js.parkingcrew.net/ls.php?t=64d3842d&token=9f51ab3bbee54deaf6f40603efb93a85b0eeba81

185.53.178.30

201 Created

16 B

URL GET HTTP/1.1
js.parkingcrew.net/ls.php?t=64d3842d&token=9f51ab3bbee54deaf6f40603efb93a85b0eeba81
IP
185.53.178.30:80
ASN
#19905 NEUSTAR-AS6

Requested by
http://www.bobboro.com/

File type
JSON data\012- , ASCII text, with no line terminators
Size
16 B (16 bytes)
Hash
7363e85fe9edee6f053a4b319588c086
a15e2127145548437173fc17f3e980e3f3dee2d0
c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97

HTTP Headers

GET /ls.php?t=64d3842d&token=9f51ab3bbee54deaf6f40603efb93a85b0eeba81 HTTP/1.1
Host: js.parkingcrew.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.bobboro.com
DNT: 1
Connection: keep-alive
Referer: http://www.bobboro.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 201 Created
Server: nginx
Date: Wed, 09 Aug 2023 12:18:53 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
X-Log-Success: 64d3842d998d310a9f7502a1
Charset: utf-8
Access-Control-Allow-Origin: http://www.bobboro.com
Access-Control-Allow-Methods: POST, OPTIONS
Access-Control-Max-Age: 86400
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_CPQ0AA3RFc2YD1+Ze2YOULtHYUueD0aUADenh25LJrwo/QeDsA+0IGBQpNlw4ev3CfSE5lXqP01gROd2+niVsQ==

js.parkingcrew.net/track.php?domain=bobboro.com&toggle=browserjs&uid=MTY5MTU4MzUzMy4wMjU4OjhjMDFhZWIxZDQ0YWYwOGE3MzVjNjhkM2JkM2FkODYzNGNlMTFlODk0Nzc3OWZiMmVjOTNjMWQ4NDExYTg1MDI6NjRkMzg0MmQwNjRkMQ%3D%3D

185.53.178.30

200 OK

20 B

URL GET HTTP/1.1
js.parkingcrew.net/track.php?domain=bobboro.com&toggle=browserjs&uid=MTY5MTU4MzUzMy4wMjU4OjhjMDFhZWIxZDQ0YWYwOGE3MzVjNjhkM2JkM2FkODYzNGNlMTFlODk0Nzc3OWZiMmVjOTNjMWQ4NDExYTg1MDI6NjRkMzg0MmQwNjRkMQ%3D%3D
IP
185.53.178.30:80
ASN
#19905 NEUSTAR-AS6

Requested by
http://www.bobboro.com/

File type
gzip compressed data, max speed, from Unix\012- data
Size
20 B (20 bytes)
Hash
a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf

HTTP Headers

GET /track.php?domain=bobboro.com&toggle=browserjs&uid=MTY5MTU4MzUzMy4wMjU4OjhjMDFhZWIxZDQ0YWYwOGE3MzVjNjhkM2JkM2FkODYzNGNlMTFlODk0Nzc3OWZiMmVjOTNjMWQ4NDExYTg1MDI6NjRkMzg0MmQwNjRkMQ%3D%3D HTTP/1.1
Host: js.parkingcrew.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.bobboro.com
DNT: 1
Connection: keep-alive
Referer: http://www.bobboro.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 09 Aug 2023 12:18:53 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Custom-Track: browserjs
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Access-Control-Allow-Origin: *
Content-Encoding: gzip

js.parkingcrew.net/assets/scripts/registrar-caf/243142.js

185.53.178.30

200 OK

3.0 kB

URL GET HTTP/1.1
js.parkingcrew.net/assets/scripts/registrar-caf/243142.js
IP
185.53.178.30:80
ASN
#19905 NEUSTAR-AS6

Requested by
http://www.bobboro.com/

File type
ASCII text
Size
3.0 kB (2994 bytes)
Hash
23316d6bbbe4b9d7c85945ce4c9428e5
f7c03d2a03416a697d658cf799620684f958664b
119710c0d9e01024bc9d65493a77b661196c02706ce008f5152f78b3c224a981

HTTP Headers

GET /assets/scripts/registrar-caf/243142.js HTTP/1.1
Host: js.parkingcrew.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.bobboro.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 09 Aug 2023 12:18:53 GMT
Content-Type: application/javascript
Content-Length: 2994
Connection: keep-alive
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
ETag: "5ebab1f0-bb2"
Accept-Ranges: bytes

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6a0431e041b0f1c59234adc8073173f1
072c2be3afc140f811e6f285b61e7fe7ea24f456
c46b8db80067b884d0f54525e129a27b27288fefa20093fd3648650fe909de2c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Aug 2023 12:18:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6a0431e041b0f1c59234adc8073173f1
072c2be3afc140f811e6f285b61e7fe7ea24f456
c46b8db80067b884d0f54525e129a27b27288fefa20093fd3648650fe909de2c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Aug 2023 12:18:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/afs/ads/i/iframe.html

142.250.74.132

200 OK

727 B

URL GET HTTP/2
www.google.com/afs/ads/i/iframe.html
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
http://www.bobboro.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint20:21:FE:C7:62:A5:FF:E8:45:8C:F7:77:23:E8:3D:DD:38:5B:2F:12
ValidityMon, 10 Jul 2023 08:21:46 GMT - Mon, 02 Oct 2023 08:21:45 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1559)
Size
727 B (727 bytes)
Hash
f4cf055fce3f0e3bb2f18d5f5ddc3e22
5b42439a72250bba93281b7eebc52726930682a9
a3bc99e406c17c2e08a8b3c0c29fc48467e8404a002818343826e65fe70cf4fc

HTTP Headers

GET /afs/ads/i/iframe.html HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.bobboro.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/html
content-security-policy: script-src 'nonce-AtvFYxR-sWUBk9xxHiSJvQ' 'report-sample' 'strict-dynamic' 'unsafe-eval' 'unsafe-inline' http: https:; object-src 'none'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui; base-uri 'none'
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
content-length: 727
date: Wed, 09 Aug 2023 12:18:54 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
last-modified: Mon, 18 Oct 2021 14:30:00 GMT
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.com/afs/ads?pcsa=false&channel=000001&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.bobboro.com%2F%3Fcaf&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2744431292869648&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301293%2C17301321%2C17301323&format=r10%7Cs&nocache=7601691583531191&num=0&output=afd_ads&domain_name=www.bobboro.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1691583531197&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=329&frm=0&cl=552777282&uio=--&cont=tc_holder1&jsid=caf&jsv=552777282&rurl=http%3A%2F%2Fwww.bobboro.com%2F&adbw=slave-1-1%3A720%2Cmaster-1%3A720

142.250.74.132

200 OK

4.1 kB

URL GET HTTP/2
www.google.com/afs/ads?pcsa=false&channel=000001&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.bobboro.com%2F%3Fcaf&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2744431292869648&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301293%2C17301321%2C17301323&format=r10%7Cs&nocache=7601691583531191&num=0&output=afd_ads&domain_name=www.bobboro.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1691583531197&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=329&frm=0&cl=552777282&uio=--&cont=tc_holder1&jsid=caf&jsv=552777282&rurl=http%3A%2F%2Fwww.bobboro.com%2F&adbw=slave-1-1%3A720%2Cmaster-1%3A720
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
http://www.bobboro.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint20:21:FE:C7:62:A5:FF:E8:45:8C:F7:77:23:E8:3D:DD:38:5B:2F:12
ValidityMon, 10 Jul 2023 08:21:46 GMT - Mon, 02 Oct 2023 08:21:45 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (28786)
Size
4.1 kB (4097 bytes)
Hash
7ecf8886068dd00919ceb4d0f2ba920e
22293a1b1b4013f8d255cbabbe6fa8f940cdf6cc
0b6b348f05896ea3caecdeacbaac8fbab991df3a4dffc08f6f7a9f675bafc21a

HTTP Headers

GET /afs/ads?pcsa=false&channel=000001&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.bobboro.com%2F%3Fcaf&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2744431292869648&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301293%2C17301321%2C17301323&format=r10%7Cs&nocache=7601691583531191&num=0&output=afd_ads&domain_name=www.bobboro.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1691583531197&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=329&frm=0&cl=552777282&uio=--&cont=tc_holder1&jsid=caf&jsv=552777282&rurl=http%3A%2F%2Fwww.bobboro.com%2F&adbw=slave-1-1%3A720%2Cmaster-1%3A720 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.bobboro.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-disposition: inline
date: Wed, 09 Aug 2023 12:18:54 GMT
expires: Wed, 09 Aug 2023 12:18:54 GMT
cache-control: private, max-age=3600
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-ECCu8vmWGyANzVBowqEkhA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-encoding: br
server: gws
content-length: 4097
x-xss-protection: 0
set-cookie: NID=511=Vs_46BmfFGhQuopiPlJEpdz8K6lu8bHjD1oOcjZZXaPKfogXPNsolEtCKV6alWrvBUr4MOHxfLCq5nXyYO9W4_TNWCdgvxKEvj60xTFOLLdWAft-ojXFIvBrWggECp9kOs7NBLDApsuEDHMYCr5PSGcM-rJHezKbFji71oAff5Y; expires=Thu, 08-Feb-2024 12:18:54 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+377; expires=Fri, 08-Aug-2025 12:18:54 GMT; path=/; domain=.google.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
71b42672d113a146924c329b2783c55b
e39d977903fa4760cfde9c1c1825959237257a18
e522c2863f0c730b1b9f55c3dc1bb53b21d2eb7a0517bd42c334aacc05c0f119

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Aug 2023 12:18:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.bobboro.com/favicon.ico

104.21.14.77

520

7.2 kB

URL GET HTTP/1.1
www.bobboro.com/favicon.ico
IP
104.21.14.77:80
ASN
#13335 CLOUDFLARENET

Requested by
http://www.bobboro.com/

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (525)
Size
7.2 kB (7179 bytes)
Hash
2f3e653457ebfdf7870e93ab22dbd1b0
4241d13c860778b031cf7389904bb6bb9826b3c2
01afdd7c2789c353feaff0c72abc4c250f31211f354f0cc876561f2619b4cfd9

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.bobboro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.bobboro.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 520 
Date: Wed, 09 Aug 2023 12:18:54 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 7179
Connection: keep-alive
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qpceqtHASKu3oBmHGQPDr1qofOJpwbZOeYpAkvMx9TJpSSSatpqc2ZHrOlXfga9yAdIvcWlTPVTNK1cR52yaWYtd0cpajMZJYEktT%2FyL3oCIuBiFQLZTYnk4JKv8CGflL1I%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Server: cloudflare
CF-RAY: 7f3ff1bf8b18b512-OSL
alt-svc: h2=":443"; ma=60

js.parkingcrew.net/track.php?domain=bobboro.com&caf=1&toggle=answercheck&answer=yes&uid=MTY5MTU4MzUzMy4wMjU4OjhjMDFhZWIxZDQ0YWYwOGE3MzVjNjhkM2JkM2FkODYzNGNlMTFlODk0Nzc3OWZiMmVjOTNjMWQ4NDExYTg1MDI6NjRkMzg0MmQwNjRkMQ%3D%3D

185.53.178.30

200 OK

20 B

URL GET HTTP/1.1
js.parkingcrew.net/track.php?domain=bobboro.com&caf=1&toggle=answercheck&answer=yes&uid=MTY5MTU4MzUzMy4wMjU4OjhjMDFhZWIxZDQ0YWYwOGE3MzVjNjhkM2JkM2FkODYzNGNlMTFlODk0Nzc3OWZiMmVjOTNjMWQ4NDExYTg1MDI6NjRkMzg0MmQwNjRkMQ%3D%3D
IP
185.53.178.30:80
ASN
#19905 NEUSTAR-AS6

Requested by
http://www.bobboro.com/

File type
gzip compressed data, max speed, from Unix\012- data
Size
20 B (20 bytes)
Hash
a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf

HTTP Headers

GET /track.php?domain=bobboro.com&caf=1&toggle=answercheck&answer=yes&uid=MTY5MTU4MzUzMy4wMjU4OjhjMDFhZWIxZDQ0YWYwOGE3MzVjNjhkM2JkM2FkODYzNGNlMTFlODk0Nzc3OWZiMmVjOTNjMWQ4NDExYTg1MDI6NjRkMzg0MmQwNjRkMQ%3D%3D HTTP/1.1
Host: js.parkingcrew.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.bobboro.com
DNT: 1
Connection: keep-alive
Referer: http://www.bobboro.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 09 Aug 2023 12:18:54 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Custom-Track: answercheck
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Access-Control-Allow-Origin: *
Content-Encoding: gzip

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
345cc77a7f46a5fcdba1d1a0ac248905
f46a5c27ed36e63b8f78b5934a58666d72a2b3db
ae7afdafce77a9770dad1027940a622ad8bea5a5a0ec2a26a8f27057ca5e2476

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Aug 2023 12:18:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
345cc77a7f46a5fcdba1d1a0ac248905
f46a5c27ed36e63b8f78b5934a58666d72a2b3db
ae7afdafce77a9770dad1027940a622ad8bea5a5a0ec2a26a8f27057ca5e2476

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Aug 2023 12:18:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%231967D2

142.250.74.97

200 OK

273 B

URL GET HTTP/2
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%231967D2
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/afs/ads?pcsa=false&channel=000001&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.bobboro.com%2F%3Fcaf&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2744431292869648&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301293%2C17301321%2C17301323&format=r10%7Cs&nocache=7601691583531191&num=0&output=afd_ads&domain_name=www.bobboro.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1691583531197&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=329&frm=0&cl=552777282&uio=--&cont=tc_holder1&jsid=caf&jsv=552777282&rurl=http%3A%2F%2Fwww.bobboro.com%2F&adbw=slave-1-1%3A720%2Cmaster-1%3A720
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintCA:EC:20:3A:FD:8A:76:1E:0C:99:7C:DB:33:65:0A:87:1A:3D:3E:EB
ValidityMon, 10 Jul 2023 08:20:48 GMT - Mon, 02 Oct 2023 08:20:47 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (390)
Size
273 B (273 bytes)
Hash
6751e07e0f93bd43ab90822f4b2eb62a
d1d0c6f0b4697b0a4e61ffbf171e8c60eac7c832
ff563f41765da081fe9fd40e8bb33a623df033b10050a8ae8c1b46e15107d8f1

HTTP Headers

GET /ad_icons/standard/publisher_icon_image/search.svg?c=%231967D2 HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 273
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 09 Aug 2023 07:47:53 GMT
expires: Thu, 10 Aug 2023 06:47:53 GMT
cache-control: public, max-age=82800
age: 16261
last-modified: Thu, 20 Jul 2023 22:48:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.com/adsense/domains/caf.js

142.250.74.132

200 OK

55 kB

URL GET HTTP/3
www.google.com/adsense/domains/caf.js
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/afs/ads?pcsa=false&channel=000001&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.bobboro.com%2F%3Fcaf&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2744431292869648&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301293%2C17301321%2C17301323&format=r10%7Cs&nocache=7601691583531191&num=0&output=afd_ads&domain_name=www.bobboro.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1691583531197&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=329&frm=0&cl=552777282&uio=--&cont=tc_holder1&jsid=caf&jsv=552777282&rurl=http%3A%2F%2Fwww.bobboro.com%2F&adbw=slave-1-1%3A720%2Cmaster-1%3A720
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7A:D9:CE:59:01:29:9A:BD:8B:2F:38:C6:15:94:76:52:A8:FB:56:03
ValidityMon, 10 Jul 2023 08:16:18 GMT - Mon, 02 Oct 2023 08:16:17 GMT

File type
ASCII text, with very long lines (2067)
Size
55 kB (55104 bytes)
Hash
bc19ea0be350c885acd43d0a46647cfc
b2c5f91ab4ea867bea45e0b2b113cab2568d4d2c
c997c80d0aee8e5eab728e896e4eab749d3721231eca76a9da930abd2f83bd0e

HTTP Headers

GET /adsense/domains/caf.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Wed, 09 Aug 2023 12:18:54 GMT
expires: Wed, 09 Aug 2023 12:18:54 GMT
cache-control: private, max-age=3600
etag: "13543664632348227449"
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
345cc77a7f46a5fcdba1d1a0ac248905
f46a5c27ed36e63b8f78b5934a58666d72a2b3db
ae7afdafce77a9770dad1027940a622ad8bea5a5a0ec2a26a8f27057ca5e2476

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Aug 2023 12:18:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=j4oem3qj4p8t&aqid=LoTTZK7pDIWxxdwP6ZKw-AY&pbt=bs&adbx=280&adby=807&adbh=36&adbw=720&adbn=slave-1-1&eawp=partner-dp-teaminternet09_3ph&errv=552777282&csala=6%7C0%7C311%7C193%7C342&lle=0&ifv=1&usr=0&hpt=1

142.250.74.132

204 No Content

0 B

URL GET HTTP/3
www.google.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=j4oem3qj4p8t&aqid=LoTTZK7pDIWxxdwP6ZKw-AY&pbt=bs&adbx=280&adby=807&adbh=36&adbw=720&adbn=slave-1-1&eawp=partner-dp-teaminternet09_3ph&errv=552777282&csala=6%7C0%7C311%7C193%7C342&lle=0&ifv=1&usr=0&hpt=1
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
http://www.bobboro.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7A:D9:CE:59:01:29:9A:BD:8B:2F:38:C6:15:94:76:52:A8:FB:56:03
ValidityMon, 10 Jul 2023 08:16:18 GMT - Mon, 02 Oct 2023 08:16:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=j4oem3qj4p8t&aqid=LoTTZK7pDIWxxdwP6ZKw-AY&pbt=bs&adbx=280&adby=807&adbh=36&adbw=720&adbn=slave-1-1&eawp=partner-dp-teaminternet09_3ph&errv=552777282&csala=6%7C0%7C311%7C193%7C342&lle=0&ifv=1&usr=0&hpt=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.bobboro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-YxKyUNlK-Zozmb6SRh_18A' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
date: Wed, 09 Aug 2023 12:18:56 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: NID=511=KjUguGCznBGQegXedhgz-dVTW2QUTE3IQT5ncrTNjW4LkzKSTL6wcQNex-FL8i4qTX98pZ4NwaKVRJym5B3HUbxIH9jHE5u6Ccxp7SmOZJ-3_g0SePTBXYVwBrWBRKKEiyBkMibv1WXKMPN7eNHkk4fQwq1fY_mFbwEpf_Iuopk; expires=Thu, 08-Feb-2024 12:18:56 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+535; expires=Fri, 08-Aug-2025 12:18:56 GMT; path=/; domain=.google.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=rwxwymyvfqqg&aqid=LoTTZK7pDIWxxdwP6ZKw-AY&pbt=bs&adbx=280&adby=169&adbh=594&adbw=720&adbah=56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=552777282&csala=19%7C0%7C298%7C193%7C342&lle=0&ifv=1&usr=0&hpt=1

142.250.74.132

204 No Content

0 B

URL GET HTTP/3
www.google.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=rwxwymyvfqqg&aqid=LoTTZK7pDIWxxdwP6ZKw-AY&pbt=bs&adbx=280&adby=169&adbh=594&adbw=720&adbah=56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=552777282&csala=19%7C0%7C298%7C193%7C342&lle=0&ifv=1&usr=0&hpt=1
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
http://www.bobboro.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7A:D9:CE:59:01:29:9A:BD:8B:2F:38:C6:15:94:76:52:A8:FB:56:03
ValidityMon, 10 Jul 2023 08:16:18 GMT - Mon, 02 Oct 2023 08:16:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=rwxwymyvfqqg&aqid=LoTTZK7pDIWxxdwP6ZKw-AY&pbt=bs&adbx=280&adby=169&adbh=594&adbw=720&adbah=56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=552777282&csala=19%7C0%7C298%7C193%7C342&lle=0&ifv=1&usr=0&hpt=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.bobboro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-WMmFT4jKev67nN0JDOYjrw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
date: Wed, 09 Aug 2023 12:18:56 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: NID=511=ueih2eAphfqTEg9OCA6OwFKEBFH8jGutRSKuV2cUJB5G9UMWwtcESSi7cSw3x7K1Vq3T-No8tmxSCZx1Rs50h9RsHkjaT8xUqsTRZUpzi_lkNLVKdu_PZMLdeud9cGaEBKWQ6ijc5LGytjg93wFGhHxsg3bxF4JkAKByECxRRhY; expires=Thu, 08-Feb-2024 12:18:56 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+425; expires=Fri, 08-Aug-2025 12:18:56 GMT; path=/; domain=.google.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=592abj20a4by&aqid=LoTTZK7pDIWxxdwP6ZKw-AY&pbt=bv&adbx=280&adby=807&adbh=36&adbw=720&adbn=slave-1-1&eawp=partner-dp-teaminternet09_3ph&errv=552777282&csala=6%7C0%7C311%7C193%7C342&lle=0&ifv=1&usr=0&hpt=1

142.250.74.132

204 No Content

0 B

URL GET HTTP/3
www.google.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=592abj20a4by&aqid=LoTTZK7pDIWxxdwP6ZKw-AY&pbt=bv&adbx=280&adby=807&adbh=36&adbw=720&adbn=slave-1-1&eawp=partner-dp-teaminternet09_3ph&errv=552777282&csala=6%7C0%7C311%7C193%7C342&lle=0&ifv=1&usr=0&hpt=1
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
http://www.bobboro.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7A:D9:CE:59:01:29:9A:BD:8B:2F:38:C6:15:94:76:52:A8:FB:56:03
ValidityMon, 10 Jul 2023 08:16:18 GMT - Mon, 02 Oct 2023 08:16:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=592abj20a4by&aqid=LoTTZK7pDIWxxdwP6ZKw-AY&pbt=bv&adbx=280&adby=807&adbh=36&adbw=720&adbn=slave-1-1&eawp=partner-dp-teaminternet09_3ph&errv=552777282&csala=6%7C0%7C311%7C193%7C342&lle=0&ifv=1&usr=0&hpt=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.bobboro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-KFO7uXxXguqu1eoHiMIZwQ' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
date: Wed, 09 Aug 2023 12:18:56 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: NID=511=OMJNieEkc7JmbgdnshbXZCcSsSZBpIZUEE-NcGoaKv9N9ud7rXKTJR9B6fJe0kQaZp5fciZ_O61aCCykwD-PFuXhD8lYtyZTsyTWtasBPaA8nwuerZxVImASsXCnxuZvLzgP-pgcTEYfeOPiTIKnTEKigoMCatgn0Yk0BeNwvxY; expires=Thu, 08-Feb-2024 12:18:56 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+627; expires=Fri, 08-Aug-2025 12:18:56 GMT; path=/; domain=.google.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=cxk0x5k41pz&aqid=LoTTZK7pDIWxxdwP6ZKw-AY&pbt=bv&adbx=280&adby=169&adbh=594&adbw=720&adbah=56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=552777282&csala=19%7C0%7C298%7C193%7C342&lle=0&ifv=1&usr=0&hpt=1

142.250.74.132

204 No Content

0 B

URL GET HTTP/3
www.google.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=cxk0x5k41pz&aqid=LoTTZK7pDIWxxdwP6ZKw-AY&pbt=bv&adbx=280&adby=169&adbh=594&adbw=720&adbah=56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=552777282&csala=19%7C0%7C298%7C193%7C342&lle=0&ifv=1&usr=0&hpt=1
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
http://www.bobboro.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7A:D9:CE:59:01:29:9A:BD:8B:2F:38:C6:15:94:76:52:A8:FB:56:03
ValidityMon, 10 Jul 2023 08:16:18 GMT - Mon, 02 Oct 2023 08:16:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=cxk0x5k41pz&aqid=LoTTZK7pDIWxxdwP6ZKw-AY&pbt=bv&adbx=280&adby=169&adbh=594&adbw=720&adbah=56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=552777282&csala=19%7C0%7C298%7C193%7C342&lle=0&ifv=1&usr=0&hpt=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.bobboro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-juhLpGbuc887JeyE5sT71g' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
date: Wed, 09 Aug 2023 12:18:56 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: NID=511=GYYVZXW2vvxEOQabZzFqFJEJSDpbXOwH7Vwq1o1eyQzEqPXbL6dt_fdpLPytcWRErAqrBS3nTaYIKEtMATars-oNCOWfflGTpNb13aIolae5RMiH5OkgryRuqo4oe-mfDlHwvkpYjBFJjhyCgdudPD1iEGeQhVN0wBXsVUMNu5A; expires=Thu, 08-Feb-2024 12:18:56 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+610; expires=Fri, 08-Aug-2025 12:18:56 GMT; path=/; domain=.google.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%231967D2

142.250.74.97

200 OK

200 B

URL GET HTTP/2
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%231967D2
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/afs/ads?pcsa=false&channel=000001&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.bobboro.com%2F%3Fcaf&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2744431292869648&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301293%2C17301321%2C17301323&format=r10%7Cs&nocache=7601691583531191&num=0&output=afd_ads&domain_name=www.bobboro.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1691583531197&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=329&frm=0&cl=552777282&uio=--&cont=tc_holder1&jsid=caf&jsv=552777282&rurl=http%3A%2F%2Fwww.bobboro.com%2F&adbw=slave-1-1%3A720%2Cmaster-1%3A720
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintCA:EC:20:3A:FD:8A:76:1E:0C:99:7C:DB:33:65:0A:87:1A:3D:3E:EB
ValidityMon, 10 Jul 2023 08:20:48 GMT - Mon, 02 Oct 2023 08:20:47 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Size
200 B (200 bytes)
Hash
c2f9f9b2de7be29dbdd2a707760bd8d7
3c1ca2c1f77ab056138e753c2633d807036b601b
9425ae6c4f167f3464382a52467482368a5fa21c246a0deffa13f3293db7ec80

HTTP Headers

GET /ad_icons/standard/publisher_icon_image/chevron.svg?c=%231967D2 HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 174
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 09 Aug 2023 03:46:19 GMT
expires: Thu, 10 Aug 2023 02:46:19 GMT
cache-control: public, max-age=82800
age: 30755
last-modified: Tue, 27 Jun 2023 17:28:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (14)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by