Report - mywebprotectionguard.com/1326cbf2f489?clickid=bj4kdjlk3gp&bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph

Report Overview

Submitted URL
mywebprotectionguard.com/1326cbf2f489?clickid=bj4kdjlk3gp&bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph
IP
104.21.54.83
ASN
#13335 CLOUDFLARENET
Submitted
2023-05-12 08:03:54
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
translate.google.com	1156	1997-09-15	2012-05-30	2023-05-12	470 B	29 kB	216.58.211.14
mywebprotectionguard.com	unknown	unknown	2022-10-21	2023-01-31	600 B	6.2 kB	104.21.54.83
cdn-adef.akamaized.net	125719	2014-03-18	2018-02-06	2023-05-11	4.4 kB	30 kB	95.101.10.34
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2023-05-12	2.7 kB	85 kB	142.250.74.163
route.frest.pro	unknown	2022-10-19	2023-01-02	2023-05-06	544 B	770 B	104.21.77.196
www.gstatic.com	unknown	2008-02-11	2016-07-26	2023-05-12	1.6 kB	9.1 kB	142.250.74.67
translate.googleapis.com	1005	2005-01-25	2012-05-31	2023-05-12	1.8 kB	79 kB	142.250.74.170
translate-pa.googleapis.com	1620	2005-01-25	2021-11-04	2023-05-12	552 B	2.3 kB	142.250.74.170
ptm.totalhighlyefficientdefence.site	unknown	unknown	2023-01-05	2023-04-14	618 B	5.8 kB	52.51.27.131
cdnjs.claudflare.io	unknown	2021-08-09	2021-08-12	2023-05-06	466 B	92 kB	206.189.196.86
ocsp.pki.goog	175	2016-06-13	2018-07-01	2023-05-12	3.0 kB	6.3 kB	142.250.74.131

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-05-12	medium	claudflare.io

ThreatFox

No alerts detected

JavaScript (8)

	URL	Size	First Seen	Last Seen
	cdn-adef.akamaized.net/landings/277880/1672929850/js/translete.js?1672929850	1.4 kB	2023-03-07	2024-04-06
Pretty URL cdn-adef.akamaized.net/landings/277880/1672929850/js/translete.js?1672929850 IP 95.101.10.34 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-04-06 19:00:00 Times Seen122 Hash ec54980cfed635492cef5628111560d2 a5dbc3628701447711d16decd4409070c9967714 b402b988b04cea3b1ba157a14aa973998a6f5cad4d079dfc81622d77c3ba7558 Loading...

	translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.Q6C7JDODQ_U.O/d=1/exm=el_conf/ed=1/rs=AN8SPfqetTnnfHrhXZ82n5nqJ2AxgFIXtw/m=el_main	217 kB	2023-05-11	2023-05-25
Pretty URL translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.Q6C7JDODQ_U.O/d=1/exm=el_conf/ed=1/rs=AN8SPfqetTnnfHrhXZ82n5nqJ2AxgFIXtw/m=el_main IP 142.250.74.170 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-11 23:23:20 Last Seen2023-05-25 10:47:20 Times Seen379 Hash 89af2a4f63a21bece623f32a2a129e50 b1b6e9d7ee3a1fd4256f92cdd9347173014dc34c ebde9f239364de4d5178cf65e57cafd8a33acf780df5cb60ecf38a1e6769380b Loading...

	cdnjs.claudflare.io/ajax/libs/jquery/3.6.0/b/jquery.min.js?1672929850	92 kB	2023-04-18	2023-05-26
Pretty URL cdnjs.claudflare.io/ajax/libs/jquery/3.6.0/b/jquery.min.js?1672929850 IP 206.189.196.86 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-18 16:54:49 Last Seen2023-05-26 10:03:14 Times Seen6 Hash c8cd1d171d2f9b2297250ce8808385eb 5e09427e80066156f0b5d4916982d70ed64a9b17 5c2c0bb8c88580c3a8edd2039a81971a50905f0e60484c7b3151450de42531a8 Loading...

	cdn-adef.akamaized.net/landings/277880/1672929850/js/js.cockie.min.js?1672929850	2.3 kB	2023-03-07	2024-03-03
Pretty URL cdn-adef.akamaized.net/landings/277880/1672929850/js/js.cockie.min.js?1672929850 IP 95.101.10.34 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-03-03 21:18:43 Times Seen100 Hash ee34078cc4ca5f836c668cdabfea8637 5e344a985d5544b25695323eecf113e5f147767a 2977fda7a224fff42e1ff6b1d7a93448597c69555326e14a147abc6cab313ed7 Loading...

	ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp	654 B	2023-04-09	2024-02-28
Pretty URL ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp IP 52.51.27.131 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-09 07:00:51 Last Seen2024-02-28 13:42:11 Times Seen13 Hash 72b5b8b1f950721e729519a81907197a 61168b6905f4d568545da5a8b17aa08aeb07cdf0 856d9fb75a5a8efe476edc9cc8d6d7ac1b88d202bca915a1a02adf1ed2050514 Loading...

	ptm.totalhighlyefficientdefence.site/_/translate_http/_/js/k=translate_http.tr.no.Q6C7JDODQ_U.O/d=1/rs=AN8SPfqetTnnfHrhXZ82n5nqJ2AxgFIXtw/m=el_conf	80 kB	2023-05-12	2023-05-12
Pretty URL ptm.totalhighlyefficientdefence.site/_/translate_http/_/js/k=translate_http.tr.no.Q6C7JDODQ_U.O/d=1/rs=AN8SPfqetTnnfHrhXZ82n5nqJ2AxgFIXtw/m=el_conf IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-12 10:03:55 Last Seen2023-05-12 10:14:27 Times Seen3 Hash 98f187b6318cd16928c665ab3f652194 654df8c3288722a5625589a61981915f60408fa6 69ed64808a4b00fea9a09502246ec0a7fb6f57f27cc0f0109db2672443dc6c99 Loading...

	cdn-adef.akamaized.net/landings/277880/1672929850/js/site-protect2.0.js?1672929850	3.1 kB	2023-03-07	2024-03-03
Pretty URL cdn-adef.akamaized.net/landings/277880/1672929850/js/site-protect2.0.js?1672929850 IP 95.101.10.34 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-03-03 21:18:43 Times Seen271 Hash fc96ab06b0f9fcea6731405215ae5daf 8af9f27d895eb69754919a2fc0d74760fecd3860 9243e166cbcd628fd992eba59544ebf99328fd4db7c0c08c2fb28a7af14d759e Loading...

	cdn-adef.akamaized.net/landings/277880/1672929850/js/second_back_multi.js?1672929850	2.2 kB	2023-03-07	2024-02-28
Pretty URL cdn-adef.akamaized.net/landings/277880/1672929850/js/second_back_multi.js?1672929850 IP 95.101.10.34 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-02-28 14:02:55 Times Seen141 Hash 4034050f2be05cd41b77c4bb153f89eb 395187f1b6ad0a67fcdede70756a1c455903d84d 717b9e3b39eb201ec4cf8ade5f0ce9f2f2537b02b0b7f822ae159a8d1496df60 Loading...

HTTP Transactions (35)

URL IP Response Size

cdn-adef.akamaized.net/landings/277880/1672929850/js/translete.js?1672929850

95.101.10.34

200 OK

559 B

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/277880/1672929850/js/translete.js?1672929850
IP
95.101.10.34:443
ASN
#20940 Akamai International B.V.

Requested by
https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
ASCII text
Size
559 B (559 bytes)
Hash
ec54980cfed635492cef5628111560d2
a5dbc3628701447711d16decd4409070c9967714
b402b988b04cea3b1ba157a14aa973998a6f5cad4d079dfc81622d77c3ba7558

HTTP Headers

GET /landings/277880/1672929850/js/translete.js?1672929850 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ptm.totalhighlyefficientdefence.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: vFZe1twy45P/ZoEIHe3455BdvEiLL0HpIcYOXcvU2U34Ef91qh0NvUk8jxWJds71PrE9LUlhRAo=
x-amz-request-id: J9Z8A5QA1B1APGET
Last-Modified: Thu, 05 Jan 2023 14:44:12 GMT
ETag: "ec54980cfed635492cef5628111560d2"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 12 May 2023 08:03:37 GMT
Content-Length: 559
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/277880/1672929850/js/second_back_multi.js?1672929850

95.101.10.34

200 OK

779 B

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/277880/1672929850/js/second_back_multi.js?1672929850
IP
95.101.10.34:443
ASN
#20940 Akamai International B.V.

Requested by
https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
HTML document, ASCII text
Size
779 B (779 bytes)
Hash
4034050f2be05cd41b77c4bb153f89eb
395187f1b6ad0a67fcdede70756a1c455903d84d
717b9e3b39eb201ec4cf8ade5f0ce9f2f2537b02b0b7f822ae159a8d1496df60

HTTP Headers

GET /landings/277880/1672929850/js/second_back_multi.js?1672929850 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ptm.totalhighlyefficientdefence.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: 704FEAJNxbpYP8DcZUUYkVkma9ZYVDFMsEa07ugGtP/eaUJm8reubFZT6JgSwrRpGbDnuxGsd+A=
x-amz-request-id: GP5D2FQ41MDQARM6
Last-Modified: Thu, 05 Jan 2023 14:44:12 GMT
ETag: "4034050f2be05cd41b77c4bb153f89eb"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 12 May 2023 08:03:37 GMT
Content-Length: 779
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/277880/1672929850/js/js.cockie.min.js?1672929850

95.101.10.34

200 OK

921 B

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/277880/1672929850/js/js.cockie.min.js?1672929850
IP
95.101.10.34:443
ASN
#20940 Akamai International B.V.

Requested by
https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
ASCII text
Size
921 B (921 bytes)
Hash
ee34078cc4ca5f836c668cdabfea8637
5e344a985d5544b25695323eecf113e5f147767a
2977fda7a224fff42e1ff6b1d7a93448597c69555326e14a147abc6cab313ed7

HTTP Headers

GET /landings/277880/1672929850/js/js.cockie.min.js?1672929850 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ptm.totalhighlyefficientdefence.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: MTotl9ob077Y6JieqvG0LfT3g6h4qLEzkAXc2GnfEdlO+w4WHIcuIHVWnPjv9NXf6j2I0bIw4SQ=
x-amz-request-id: JBB596H06230R044
Last-Modified: Thu, 05 Jan 2023 14:44:12 GMT
ETag: "ee34078cc4ca5f836c668cdabfea8637"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 12 May 2023 08:03:37 GMT
Content-Length: 921
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/277880/1672929850/css/style.css?1672929850

95.101.10.34

200 OK

2.1 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/277880/1672929850/css/style.css?1672929850
IP
95.101.10.34:443
ASN
#20940 Akamai International B.V.

Requested by
https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
2.1 kB (2072 bytes)
Hash
5bed53ec2acdb0d3942f5aad30cf38ef
b91e33fc134e51aea656b0a94d63df04a8456675
ab74489bd7cfaf882a6244d8bd14c6c5755d87b85f92c4cf1b122d7a6fbb8803

HTTP Headers

GET /landings/277880/1672929850/css/style.css?1672929850 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ptm.totalhighlyefficientdefence.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: eLWs/tI0ejBbHTpDBtC0y4JpmyWMbrNULDO7K5FjJsvYC0WJXvsIUO4VOeTIg/DnLhOxBNSXxRM=
x-amz-request-id: ZSK73WQNKF7GHNG4
Last-Modified: Thu, 05 Jan 2023 14:44:12 GMT
ETag: "5bed53ec2acdb0d3942f5aad30cf38ef"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 12 May 2023 08:03:37 GMT
Content-Length: 2072
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/277880/1672929850/js/site-protect2.0.js?1672929850

95.101.10.34

200 OK

1.1 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/277880/1672929850/js/site-protect2.0.js?1672929850
IP
95.101.10.34:443
ASN
#20940 Akamai International B.V.

Requested by
https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
ASCII text
Size
1.1 kB (1068 bytes)
Hash
fc96ab06b0f9fcea6731405215ae5daf
8af9f27d895eb69754919a2fc0d74760fecd3860
9243e166cbcd628fd992eba59544ebf99328fd4db7c0c08c2fb28a7af14d759e

HTTP Headers

GET /landings/277880/1672929850/js/site-protect2.0.js?1672929850 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ptm.totalhighlyefficientdefence.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: 1qWHVIwzl3Ne3lkb56N7NrBEk2cGYJb7WdMEuwHmKZrt4ykZpyNAtZhZdTm6CU7yOd8nAtedi7Y=
x-amz-request-id: 6VADZCEJ4HW24D8D
Last-Modified: Thu, 05 Jan 2023 14:44:12 GMT
ETag: "fc96ab06b0f9fcea6731405215ae5daf"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 12 May 2023 08:03:38 GMT
Content-Length: 1068
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdnjs.claudflare.io/ajax/libs/jquery/3.6.0/b/jquery.min.js?1672929850

206.189.196.86

200 OK

92 kB

URL GET HTTP/1.1
cdnjs.claudflare.io/ajax/libs/jquery/3.6.0/b/jquery.min.js?1672929850
IP
206.189.196.86:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate
IssuerLet's Encrypt
Subjectcdnjs.claudflare.io
FingerprintBF:D4:AB:9A:D0:EB:75:E1:A0:33:BA:D0:58:58:99:64:E0:75:B9:0C
ValidityThu, 06 Apr 2023 22:54:27 GMT - Wed, 05 Jul 2023 22:54:26 GMT

File type
ASCII text, with very long lines (65447)
Size
92 kB (92013 bytes)
Hash
c8cd1d171d2f9b2297250ce8808385eb
5e09427e80066156f0b5d4916982d70ed64a9b17
5c2c0bb8c88580c3a8edd2039a81971a50905f0e60484c7b3151450de42531a8

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /ajax/libs/jquery/3.6.0/b/jquery.min.js?1672929850 HTTP/1.1
Host: cdnjs.claudflare.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ptm.totalhighlyefficientdefence.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.22.0 (Ubuntu)
Date: Fri, 12 May 2023 08:03:38 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 92013
Connection: keep-alive
Cache-Control: public, max-age=43200
Expires: Fri, 12 May 2023 20:03:38 GMT

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
89df013e8608d07679738c5bed6b85f6
49951a3cf8def7832e44ef5d8448ccea2f9c0391
2680bd8acd47863cffaafb8d8c7384abe08358ce137bdb2e4fcf9ab61840f7e6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 12 May 2023 08:03:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
89df013e8608d07679738c5bed6b85f6
49951a3cf8def7832e44ef5d8448ccea2f9c0391
2680bd8acd47863cffaafb8d8c7384abe08358ce137bdb2e4fcf9ab61840f7e6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 12 May 2023 08:03:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.163

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ptm.totalhighlyefficientdefence.site
DNT: 1
Connection: keep-alive
Referer: https://cdn-adef.akamaized.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 06 May 2023 20:50:05 GMT
expires: Sun, 05 May 2024 20:50:05 GMT
cache-control: public, max-age=31536000
age: 472413
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
89df013e8608d07679738c5bed6b85f6
49951a3cf8def7832e44ef5d8448ccea2f9c0391
2680bd8acd47863cffaafb8d8c7384abe08358ce137bdb2e4fcf9ab61840f7e6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 12 May 2023 08:03:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
89df013e8608d07679738c5bed6b85f6
49951a3cf8def7832e44ef5d8448ccea2f9c0391
2680bd8acd47863cffaafb8d8c7384abe08358ce137bdb2e4fcf9ab61840f7e6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 12 May 2023 08:03:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
89df013e8608d07679738c5bed6b85f6
49951a3cf8def7832e44ef5d8448ccea2f9c0391
2680bd8acd47863cffaafb8d8c7384abe08358ce137bdb2e4fcf9ab61840f7e6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 12 May 2023 08:03:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

142.250.74.163

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ptm.totalhighlyefficientdefence.site
DNT: 1
Connection: keep-alive
Referer: https://cdn-adef.akamaized.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 06 May 2023 20:54:29 GMT
expires: Sun, 05 May 2024 20:54:29 GMT
cache-control: public, max-age=31536000
age: 472149
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

142.250.74.163

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Size
16 kB (15920 bytes)
Hash
3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ptm.totalhighlyefficientdefence.site
DNT: 1
Connection: keep-alive
Referer: https://cdn-adef.akamaized.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 06 May 2023 06:02:59 GMT
expires: Sun, 05 May 2024 06:02:59 GMT
cache-control: public, max-age=31536000
age: 525639
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2

142.250.74.163

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Size
16 kB (15752 bytes)
Hash
b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ptm.totalhighlyefficientdefence.site
DNT: 1
Connection: keep-alive
Referer: https://cdn-adef.akamaized.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 06 May 2023 11:41:27 GMT
expires: Sun, 05 May 2024 11:41:27 GMT
cache-control: public, max-age=31536000
age: 505331
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51S7ACc6CsQ.woff2

142.250.74.163

200 OK

17 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51S7ACc6CsQ.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT

File type
Web Open Font Format (Version 2), TrueType, length 17336, version 1.0\012- data
Size
17 kB (17336 bytes)
Hash
eec8dbfc49267c4d33cf31b49661bf37
0f49d4563cf9e22e3af6907d0785b9a6facadbf0
661d4b208656c006e7aab58acf7784857963123675de2302279fbe6c05313547

HTTP Headers

GET /s/roboto/v30/KFOjCnqEu92Fr1Mu51S7ACc6CsQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ptm.totalhighlyefficientdefence.site
DNT: 1
Connection: keep-alive
Referer: https://cdn-adef.akamaized.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17336
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 10 May 2023 13:44:56 GMT
expires: Thu, 09 May 2024 13:44:56 GMT
cache-control: public, max-age=31536000
age: 152322
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
89df013e8608d07679738c5bed6b85f6
49951a3cf8def7832e44ef5d8448ccea2f9c0391
2680bd8acd47863cffaafb8d8c7384abe08358ce137bdb2e4fcf9ab61840f7e6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 12 May 2023 08:03:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn-adef.akamaized.net/landings/277880/1672929850/images/logo.png

95.101.10.34

200 OK

3.6 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/277880/1672929850/images/logo.png
IP
95.101.10.34:443
ASN
#20940 Akamai International B.V.

Requested by
https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
PNG image data, 100 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size
3.6 kB (3619 bytes)
Hash
fac400941652b9e4da713b818ca13822
67546046d8f76504855e095ba9dcc5e4bcaddd0e
0da8e901848697aca8328a2a3c26a024b7163bd0eeafddf72f4ac119553fba87

HTTP Headers

GET /landings/277880/1672929850/images/logo.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ptm.totalhighlyefficientdefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: VKgAB15X2MxKAMS9ivGIra5qG6xzDyDk89gJ2NHmje44s2rsbozHzLLIAciZIfUmNwdVSDDymoM=
x-amz-request-id: 6VA1B5H88H0NZ2VS
Last-Modified: Thu, 05 Jan 2023 14:44:12 GMT
ETag: "fac400941652b9e4da713b818ca13822"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 3619
Date: Fri, 12 May 2023 08:03:38 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/277880/1672929850/images/logo-red.png

95.101.10.34

200 OK

5.4 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/277880/1672929850/images/logo-red.png
IP
95.101.10.34:443
ASN
#20940 Akamai International B.V.

Requested by
https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
PNG image data, 100 x 115, 8-bit/color RGBA, non-interlaced\012- data
Size
5.4 kB (5391 bytes)
Hash
af5ea8de2e2fa7543cdacc04ad53d4ca
09b884ce4522058ca7fcad459c40d5f30ac3b111
f2a23eb9ee6b06f7b3daaa71257a75fb51832c3956c091741026536b14e4414b

HTTP Headers

GET /landings/277880/1672929850/images/logo-red.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ptm.totalhighlyefficientdefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: PgFqjVlYxMObn7m2ZjgA/1rhRePw5+o9hDZMjtx56cBhk180qXRFO4UaxV+vaGDJnfC9AYTg164=
x-amz-request-id: 6VA2NR2002BN7B8T
Last-Modified: Thu, 05 Jan 2023 14:44:12 GMT
ETag: "af5ea8de2e2fa7543cdacc04ad53d4ca"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 5391
Date: Fri, 12 May 2023 08:03:38 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

route.frest.pro/is_redirect

104.21.77.196

200 OK

17 B

URL POST HTTP/2
route.frest.pro/is_redirect
IP
104.21.77.196:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate
IssuerGoogle Trust Services LLC
Subjectfrest.pro
FingerprintBF:79:17:15:EB:F6:8D:E0:44:93:02:1B:18:9B:0E:C8:06:68:24:E1
ValidityFri, 14 Apr 2023 08:42:39 GMT - Thu, 13 Jul 2023 08:42:38 GMT

File type
JSON data\012- , ASCII text
Size
17 B (17 bytes)
Hash
6dec798efb56f56f33660938f6249ff6
e889219883cef38754dc1e5df7ca5277b3b314c8
b493cdb3b30ea63f6a924f814dfccfcfe305dac02106f9994ce2bcb2e8ed28c4

HTTP Headers

POST /is_redirect HTTP/1.1
Host: route.frest.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 10
Origin: https://ptm.totalhighlyefficientdefence.site
DNT: 1
Connection: keep-alive
Referer: https://ptm.totalhighlyefficientdefence.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 12 May 2023 08:03:39 GMT
content-type: application/json
content-length: 17
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type, Access-Control-Allow-Headers, X-Requested-With
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nYbk0yU0zGBNPDpz80N%2BZXr98uPERiqSPY2DhSppHGgpZSWmOW3KPfIpYkIlKGsukTgF9BS9V%2BYOWoQc6J7MCirWa9Ugqss%2BAoot1YWShgGqRuQ6dedkxDexgXfuwDtYBLM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6125763a13b4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f67ed24ef92a917ab3c0584fd8978994
9e9be41ca20730ecf2e56a76b9d0a185c2f86f28
c91cfd8a184c61920cadaf8b7d646755cac912da9e61944d51994368be3a9c08

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 12 May 2023 08:03:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn-adef.akamaized.net/landings/277880/1672929850/images/favicon.png?t=20230512080337

95.101.10.34

200 OK

5.4 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/277880/1672929850/images/favicon.png?t=20230512080337
IP
95.101.10.34:443
ASN
#20940 Akamai International B.V.

Requested by
https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
PNG image data, 100 x 115, 8-bit/color RGBA, non-interlaced\012- data
Size
5.4 kB (5391 bytes)
Hash
af5ea8de2e2fa7543cdacc04ad53d4ca
09b884ce4522058ca7fcad459c40d5f30ac3b111
f2a23eb9ee6b06f7b3daaa71257a75fb51832c3956c091741026536b14e4414b

HTTP Headers

GET /landings/277880/1672929850/images/favicon.png?t=20230512080337 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ptm.totalhighlyefficientdefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: HGyxc8ddzrtlYBTtyiDzP0Q3hotttxsCtMCKj+MwsNUIn9tibN27INko47MH3GxWzUCa7RurwbM=
x-amz-request-id: K8KZCEB50R1GCQEM
Last-Modified: Thu, 05 Jan 2023 14:44:12 GMT
ETag: "af5ea8de2e2fa7543cdacc04ad53d4ca"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 5391
Date: Fri, 12 May 2023 08:03:39 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/277880/1672929850/images/favicon.png?t=20230512080337

95.101.10.34

200 OK

5.4 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/277880/1672929850/images/favicon.png?t=20230512080337
IP
95.101.10.34:443
ASN
#20940 Akamai International B.V.

Requested by
https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
PNG image data, 100 x 115, 8-bit/color RGBA, non-interlaced\012- data
Size
5.4 kB (5391 bytes)
Hash
af5ea8de2e2fa7543cdacc04ad53d4ca
09b884ce4522058ca7fcad459c40d5f30ac3b111
f2a23eb9ee6b06f7b3daaa71257a75fb51832c3956c091741026536b14e4414b

HTTP Headers

GET /landings/277880/1672929850/images/favicon.png?t=20230512080337 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ptm.totalhighlyefficientdefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: HGyxc8ddzrtlYBTtyiDzP0Q3hotttxsCtMCKj+MwsNUIn9tibN27INko47MH3GxWzUCa7RurwbM=
x-amz-request-id: K8KZCEB50R1GCQEM
Last-Modified: Thu, 05 Jan 2023 14:44:12 GMT
ETag: "af5ea8de2e2fa7543cdacc04ad53d4ca"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 5391
Date: Fri, 12 May 2023 08:03:39 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

translate.google.com/translate_a/element.js?cb=googleTranslateElementInit

216.58.211.14

200 OK

28 kB

URL GET HTTP/2
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP
216.58.211.14:443
ASN
#15169 GOOGLE

Requested by
https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintA3:4E:A3:86:10:DA:6C:D1:8C:73:54:AB:E6:8F:7D:21:72:2C:B4:D5
ValidityMon, 17 Apr 2023 08:16:32 GMT - Mon, 10 Jul 2023 08:16:31 GMT

File type
gzip compressed data, max compression\012- data
Size
28 kB (28339 bytes)
Hash
90477a1a095f08150feef5b7abb3686d
69417cbcbec91918b6937217c69fb64c6792a0b5
9f441ba389849aabc1137bf4a31b64e97fc43299a249a0aacf022fcabb0fa486

HTTP Headers

GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ptm.totalhighlyefficientdefence.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 12 May 2023 08:03:39 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+287; expires=Sun, 11-May-2025 08:03:39 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.vneFu3d_4ck.L.F4.O/d=0/rs=AN8SPfrNa1b9K5rCmaIpu9SqE3A5sBDBfg/m=el_main_css

142.250.74.67

200 OK

4.2 kB

URL GET HTTP/2
www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.vneFu3d_4ck.L.F4.O/d=0/rs=AN8SPfrNa1b9K5rCmaIpu9SqE3A5sBDBfg/m=el_main_css
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT

File type
ASCII text, with very long lines (23228), with no line terminators
Size
4.2 kB (4205 bytes)
Hash
edf649e1b11a33833272345187bd4eec
73427e2ab282e5f89021e1c7d20f83eaf9830283
553d768412bca504a0c8771705f681dad359370bdcea637298ca5aa486017a06

HTTP Headers

GET /_/translate_http/_/ss/k=translate_http.tr.vneFu3d_4ck.L.F4.O/d=0/rs=AN8SPfrNa1b9K5rCmaIpu9SqE3A5sBDBfg/m=el_main_css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ptm.totalhighlyefficientdefence.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 4205
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 10 May 2023 00:16:38 GMT
expires: Thu, 09 May 2024 00:16:38 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 12 Mar 2023 00:11:57 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
age: 200821
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4ca643eb908b2ebf8e99708e63435736
f5fe3576d1fab4b0958e51a59e1c12e2e927de03
a9377a71a606b86c932196ab7efadacb7ec1b93d67e1e3df06d5bfac71161d56

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 12 May 2023 08:03:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.Q6C7JDODQ_U.O/d=1/exm=el_conf/ed=1/rs=AN8SPfqetTnnfHrhXZ82n5nqJ2AxgFIXtw/m=el_main

142.250.74.170

200 OK

76 kB

URL GET HTTP/2
translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.Q6C7JDODQ_U.O/d=1/exm=el_conf/ed=1/rs=AN8SPfqetTnnfHrhXZ82n5nqJ2AxgFIXtw/m=el_main
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint78:3F:7F:CC:E7:90:DA:64:23:AC:13:1E:55:7A:62:1E:2B:E4:30:5C
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT

File type
ASCII text, with very long lines (1573)
Size
76 kB (76181 bytes)
Hash
89af2a4f63a21bece623f32a2a129e50
b1b6e9d7ee3a1fd4256f92cdd9347173014dc34c
ebde9f239364de4d5178cf65e57cafd8a33acf780df5cb60ecf38a1e6769380b

HTTP Headers

GET /_/translate_http/_/js/k=translate_http.tr.no.Q6C7JDODQ_U.O/d=1/exm=el_conf/ed=1/rs=AN8SPfqetTnnfHrhXZ82n5nqJ2AxgFIXtw/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ptm.totalhighlyefficientdefence.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 76181
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 May 2023 19:29:44 GMT
expires: Fri, 10 May 2024 19:29:44 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 10 May 2023 21:13:57 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 45235
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4ca643eb908b2ebf8e99708e63435736
f5fe3576d1fab4b0958e51a59e1c12e2e927de03
a9377a71a606b86c932196ab7efadacb7ec1b93d67e1e3df06d5bfac71161d56

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 12 May 2023 08:03:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gstatic.com/images/branding/product/1x/translate_24dp.png

142.250.74.67

200 OK

846 B

URL GET HTTP/3
www.gstatic.com/images/branding/product/1x/translate_24dp.png
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT

File type
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size
846 B (846 bytes)
Hash
e9cd262114358f26b7608b56905185dc
6dbde0a96deaab2b529723ce26c62043cf9180ab
5a861509b658aa24fc3aed2867ac3c061e7d818d90b9990959afc6d1b5d4ff99

HTTP Headers

GET /images/branding/product/1x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ptm.totalhighlyefficientdefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 846
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 10 May 2023 07:43:02 GMT
expires: Thu, 09 May 2024 07:43:02 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
vary: Origin
age: 174037
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/images/branding/product/2x/translate_24dp.png

142.250.74.67

200 OK

1.8 kB

URL GET HTTP/3
www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1842 bytes)
Hash
c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82

HTTP Headers

GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.vneFu3d_4ck.L.F4.O/d=0/rs=AN8SPfrNa1b9K5rCmaIpu9SqE3A5sBDBfg/m=el_main_css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 09 May 2023 05:58:08 GMT
expires: Wed, 08 May 2024 05:58:08 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
vary: Origin
age: 266731
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback

142.250.74.170

1.4 kB

URL
translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback
IP
142.250.74.170:0
ASN
#15169 GOOGLE

File type
Unicode text, UTF-8 text
Size
1.4 kB (1392 bytes)
Hash
a3eefe14b1b4698460d992bd1673a26b
a2fca6ebb00b8bdcca3eda88654d02d2c165b9c4
87514750a90cd70dd22c8673cfa80d804ef55840bd0755950af2118d8d218067

HTTP Headers

GET /v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback HTTP/1.1
Host: translate-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ptm.totalhighlyefficientdefence.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-type: text/javascript; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 12 May 2023 08:03:39 GMT
server: ESF
cache-control: private
content-length: 1392
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=GQ-UFp-MoeZYuNPALZA2oBDFIXq12WjGz6zJYKRVZ6VoAxG3hFQ3_WZ3rhvl0_vqk6U3ulNKT86KNFuQDD8rhv5R0A5QCC3xy4YDScU5pDM_JUu7E1rEHm7bAWk6wwSU9i5F0VjNlgCqy8TXwzxDN01_qt4A52euk9tJBkE4gyg; expires=Sat, 11-Nov-2023 08:03:39 GMT; path=/; domain=.translate-pa.googleapis.com; HttpOnly
CONSENT=PENDING+824; expires=Sun, 11-May-2025 08:03:39 GMT; path=/; domain=.googleapis.com; Secure
expires: Fri, 12 May 2023 08:03:39 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0

142.250.74.170

200 OK

0 B

URL OPTIONS HTTP/3
translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint78:3F:7F:CC:E7:90:DA:64:23:AC:13:1E:55:7A:62:1E:2B:E4:30:5C
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-encoding,content-type,x-goog-authuser
Referer: https://ptm.totalhighlyefficientdefence.site/
Origin: https://ptm.totalhighlyefficientdefence.site
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: https://ptm.totalhighlyefficientdefence.site
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,content-encoding,content-type,x-goog-authuser,origin
content-type: text/plain; charset=UTF-8
date: Fri, 12 May 2023 08:03:49 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+635; expires=Sun, 11-May-2025 08:03:49 GMT; path=/; domain=.googleapis.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Fri, 12 May 2023 08:03:49 GMT
cache-control: private

translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0

142.250.74.170

200 OK

131 B

URL OPTIONS HTTP/3
translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint78:3F:7F:CC:E7:90:DA:64:23:AC:13:1E:55:7A:62:1E:2B:E4:30:5C
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
131 B (131 bytes)
Hash
ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358

HTTP Headers

POST /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-AuthUser: 0
Content-Encoding: gzip
Content-Type: application/binary
Content-Length: 226
Origin: https://ptm.totalhighlyefficientdefence.site
DNT: 1
Connection: keep-alive
Referer: https://ptm.totalhighlyefficientdefence.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: https://ptm.totalhighlyefficientdefence.site
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Fri, 12 May 2023 08:03:49 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+918; expires=Sun, 11-May-2025 08:03:49 GMT; path=/; domain=.googleapis.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Fri, 12 May 2023 08:03:49 GMT

mywebprotectionguard.com/1326cbf2f489?clickid=bj4kdjlk3gp&bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph

104.21.54.83

302 Found

5.3 kB

URL User Request GET HTTP/2
mywebprotectionguard.com/1326cbf2f489?clickid=bj4kdjlk3gp&bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph
IP
104.21.54.83:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint63:06:D4:C7:38:67:5A:1C:DC:84:A2:2F:24:08:01:FD:7C:2E:57:CC
ValidityFri, 17 Feb 2023 00:00:00 GMT - Fri, 16 Feb 2024 23:59:59 GMT

File type

Size
5.3 kB (5258 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /1326cbf2f489?clickid=bj4kdjlk3gp&bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph HTTP/1.1
Host: mywebprotectionguard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Fri, 12 May 2023 08:03:36 GMT
content-type: text/html; charset=utf-8
location: https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type, Access-Control-Allow-Headers, X-Requested-With
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=829EQuVaU9QT30VgTYCVjWPTvpfFhqWFHusSuikXfnlP0zqZjrkCVG6g17DObuQpko5os%2FOiCr05PLkucvF39CWOWKG5Zl726fV65BeMlkvfh6LsSAQZu8atvIFJwmqBRGH23rQyNgmxW5c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6125678a5d067b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp

52.51.27.131

200 OK

5.3 kB

URL User Request GET HTTP/2
ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
IP
52.51.27.131:443
ASN
#16509 AMAZON-02

Certificate
IssuerLet's Encrypt
Subjectptm.totalhighlyefficientdefence.site
Fingerprint6C:44:B8:57:B1:B1:95:38:CF:7B:C9:26:FA:24:C3:7D:00:FB:7F:A6
ValidityTue, 21 Mar 2023 00:31:17 GMT - Mon, 19 Jun 2023 00:31:16 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5504), with no line terminators
Size
5.3 kB (5258 bytes)
Hash
a155d6901ce2fa6fe7dc11354da5adfa
d6489b8e1a467132b6136e68c709bd752a005c5a
457ecaed057fec240e78f858183c8476090e37c2ee7a7ff103a5d3b89eba54af

HTTP Headers

GET /c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp HTTP/1.1
Host: ptm.totalhighlyefficientdefence.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 12 May 2023 08:03:37 GMT
content-type: text/html; charset=utf-8
set-cookie: unique_id=645df2d9000f729b; Path=/; Expires=Tue, 11 Jul 2023 08:03:37 GMT; Secure; SameSite=None
unique_id2=645df2d9000f7be1; Path=/; Expires=Thu, 10 Aug 2023 08:03:37 GMT; Secure; SameSite=None
impression=; Path=/; Expires=Fri, 12 May 2023 08:03:37 GMT; Secure; SameSite=None
645df2d9000f7be1_sl=[277880]; Path=/; Expires=Fri, 26 May 2023 08:03:37 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (8)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML