Report - cruise243479.icu/

Report Overview

Visited public
2025-03-14 17:25:29
Tags
URL
cruise243479.icu/
Finishing URL
cruise243479.icu/
IP / ASN
104.21.32.1
#13335 CLOUDFLARENET
Title
Royal Caribbean Cruise Information

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
afs.googleusercontent.com	12123	2008-11-17	2013-05-06	2025-03-12	1.0 kB	2.2 kB	142.250.74.33
syndicatedsearch.goog	unknown	2023-04-14	2023-09-25	2025-03-12	3.7 kB	168 kB	216.58.207.238
www.relevantlinks.net	unknown	2020-03-19	2020-07-18	2025-03-13	457 B	38 kB	172.66.43.65
partner.googleadservices.com	798	2003-06-19	2012-06-26	2025-03-09	553 B	911 B	142.250.74.66
www.google.com	7	1997-09-15	2015-05-10	2025-03-12	453 B	145 kB	142.250.74.68
cruise243479.icu	unknown	2024-11-11	2025-03-14	2025-03-14	4.5 kB	17 kB	104.21.32.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2025-03-14 17:25:07	medium	Client IP	104.21.32.1	ET INFO Suspicious Domain (*.icu) in TLS SNI

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (7)

	URL	From	Size	First Seen	Last Seen
	partner.googleadservices.com/gampad/cookie.js?domain=cruise243479.icu&client=partner-dp-domainactive23_3ph_xml&product=SAS&callback=__sasCookie&cookie_types=v1%2Cv2	ScriptElement	386 B	2025-03-14	2025-03-14
Pretty URL partner.googleadservices.com/gampad/cookie.js?domain=cruise243479.icu&client=partner-dp-domainactive23_3ph_xml&product=SAS&callback=__sasCookie&cookie_types=v1%2Cv2 IP 142.250.74.66 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-14 17:25 Last Seen2025-03-14 17:25 Times Seen1 Hash be8b8987bb8456090fb13d3e14d8e2cf 06a21aadbe0fc0ef66e068e4208facdc2ae84307 8c627866d8d3f2e0f0f594ea1550ab00bf210143fef144f3fb2f4651919c451c Loading...

	syndicatedsearch.goog/afs/ads?adsafe=medium&psid=6220593272&pcsa=false&channel=seg11&client=dp-domainactive23_3ph_xml&r=m&hl=en&ivt=0&rpbu=https%3A%2F%2Fcruise243479.icu%2F%3Fcaf_results%3D1%26acid%3D0%26asrc%3D%26at2%3D23%26at3%3Dseg11%26atxt%3D%26avid%3D%26ct%3D480%26psqs%3D%26sqs%3DRoyal%2BCaribbean%2BCruise%2BInformation%252CRoyal%2BCaribbean%2BCruises%252C2024%2BRoyal%2BCaribbean%2BCruises%252CCaribbean%2BCruises%252CEuropean%2BCruises%26t1%3D%26t2%3D%26t3%3D%26tpct%3D%26u%3D%26u2%3D%26uuid%3D88beba86-b4c3-4363-bdac-146004d5cbf6%26rfpi%3D%26ec%3D%26at4%3D6220593272%26sescnt%3D1&terms=Royal%20Caribbean%20Cruise%20Information%2CRoyal%20Caribbean%20Cruises%2C2024%20Royal%20Caribbean%20Cruises%2CCaribbean%20Cruises%2CEuropean%20Cruises&kw=Royal%20Caribbean%20Cruise%20Information&type=3&uiopt=false&swp=as-drid-2885672935738955&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002%2C17301437%2C17301439%2C17301442%2C17301548%2C17301266%2C72717108&format=r5&nocache=5081741973108900&num=0&output=afd_ads&domain_name=cruise243479.icu&v=3&bsl=8&pac=2&u_his=2&u_tz=0&dt=1741973108902&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=1024&frm=0&uio=-&cont=kwBlock1&drt=0&jsid=caf&jsv=735462593&rurl=https%3A%2F%2Fcruise243479.icu%2F	ScriptElement	656 B	2025-03-14	2025-03-14
Pretty URL syndicatedsearch.goog/afs/ads?adsafe=medium&psid=6220593272&pcsa=false&channel=seg11&client=dp-domainactive23_3ph_xml&r=m&hl=en&ivt=0&rpbu=https%3A%2F%2Fcruise243479.icu%2F%3Fcaf_results%3D1%26acid%3D0%26asrc%3D%26at2%3D23%26at3%3Dseg11%26atxt%3D%26avid%3D%26ct%3D480%26psqs%3D%26sqs%3DRoyal%2BCaribbean%2BCruise%2BInformation%252CRoyal%2BCaribbean%2BCruises%252C2024%2BRoyal%2BCaribbean%2BCruises%252CCaribbean%2BCruises%252CEuropean%2BCruises%26t1%3D%26t2%3D%26t3%3D%26tpct%3D%26u%3D%26u2%3D%26uuid%3D88beba86-b4c3-4363-bdac-146004d5cbf6%26rfpi%3D%26ec%3D%26at4%3D6220593272%26sescnt%3D1&terms=Royal%20Caribbean%20Cruise%20Information%2CRoyal%20Caribbean%20Cruises%2C2024%20Royal%20Caribbean%20Cruises%2CCaribbean%20Cruises%2CEuropean%20Cruises&kw=Royal%20Caribbean%20Cruise%20Information&type=3&uiopt=false&swp=as-drid-2885672935738955&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002%2C17301437%2C17301439%2C17301442%2C17301548%2C17301266%2C72717108&format=r5&nocache=5081741973108900&num=0&output=afd_ads&domain_name=cruise243479.icu&v=3&bsl=8&pac=2&u_his=2&u_tz=0&dt=1741973108902&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=1024&frm=0&uio=-&cont=kwBlock1&drt=0&jsid=caf&jsv=735462593&rurl=https%3A%2F%2Fcruise243479.icu%2F IP 216.58.207.238 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-14 17:25 Last Seen2025-03-14 17:25 Times Seen1 Hash 1010cce57b2aa64a25003a717138a128 de15609408661cd42b6754c9777ddea66c579964 5922dafd389b9ea7359c3270167e691ec13a127973a18541a813a9ed7acc8675 Loading...

	syndicatedsearch.goog/adsense/domains/caf.js	ScriptElement	144 kB	2025-03-13	2025-03-15
Pretty URL syndicatedsearch.goog/adsense/domains/caf.js IP 216.58.207.238 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-13 17:12 Last Seen2025-03-15 04:00 Times Seen597 Hash 0298a5ba4b44eb47609a7f966fbfef31 7134536eea215d7ab2e49ca0109590ce22aa6e4c d0f971cd8eb610adfe20bc932707005ae399a56c58f5469207b5630f6fbb4e4a Loading...

	cruise243479.icu/include/pxlt.php?uuid=88beba86-b4c3-4363-bdac-146004d5cbf6&cb=103505312	ScriptElement	2 B	2023-03-08	2025-03-15
Pretty URL cruise243479.icu/include/pxlt.php?uuid=88beba86-b4c3-4363-bdac-146004d5cbf6&cb=103505312 IP 104.21.32.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:26 Last Seen2025-03-15 03:57 Times Seen7232 Hash 4603e61bef0710b4258365ba29a3a659 1dcd8fc1a0be55707e0a434392312f2a5e1c3700 0889a34434e586e918436027c4e8b4c3380f84643731bdeb57024adb8745cf53 Loading...

	cruise243479.icu/da.php?act=2&gal=true&giev=0&gtp=%7B%22Caribbean%20Cruises%22%3A1%2C%22European%20Cruises%22%3A3%7D&acid=0&asrc=&at2=23&at3=seg11&atxt=&avid=&ct=480&psqs=&sqs=Royal+Caribbean+Cruise+Information%2CRoyal+Caribbean+Cruises%2C2024+Royal+Caribbean+Cruises%2CCaribbean+Cruises%2CEuropean+Cruises&t1=&t2=&t3=&tpct=&u=&u2=&uuid=88beba86-b4c3-4363-bdac-146004d5cbf6&rfpi=&ec=&at4=6220593272&sescnt=1&impact=	ScriptElement	0 B	0001-01-01	2025-03-15
Pretty URL cruise243479.icu/da.php?act=2&gal=true&giev=0&gtp=%7B%22Caribbean%20Cruises%22%3A1%2C%22European%20Cruises%22%3A3%7D&acid=0&asrc=&at2=23&at3=seg11&atxt=&avid=&ct=480&psqs=&sqs=Royal+Caribbean+Cruise+Information%2CRoyal+Caribbean+Cruises%2C2024+Royal+Caribbean+Cruises%2CCaribbean+Cruises%2CEuropean+Cruises&t1=&t2=&t3=&tpct=&u=&u2=&uuid=88beba86-b4c3-4363-bdac-146004d5cbf6&rfpi=&ec=&at4=6220593272&sescnt=1&impact= IP 104.21.32.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen0001-01-01 00:00 Last Seen2025-03-15 04:00 Times Seen4127080 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.google.com/adsense/domains/caf.js?abp=1&2va64smr560lx5k=true	ScriptElement	144 kB	2025-03-11	2025-03-15
Pretty URL www.google.com/adsense/domains/caf.js?abp=1&2va64smr560lx5k=true IP 142.250.74.68 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-11 18:13 Last Seen2025-03-15 03:57 Times Seen710 Hash fa053ccecbeb73ae8ebfe8179fa053a8 5d3685619ff5ca1107602ab5de842e2b0bd1b19c ab628349345fef3323e0454e2aa1691de3f1236ad84b19caa694a193463a662a Loading...

	cruise243479.icu/	ScriptElement	8.4 kB	2025-03-14	2025-03-14
Pretty URL cruise243479.icu/ IP 104.21.32.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-14 17:25 Last Seen2025-03-14 17:25 Times Seen1 Hash 5bc7bec48ba1001b87d3dbb6a185e81d 2f6c883d96d3a43ae905bfb62269c7de4ad5f2ec 7bc36b5a5b42ce421e88d5f1dc3c7eac23ef208b1dda6dbb0f05b05474c7d5fd Loading...

HTTP Transactions (16)

	URL	IP	Response	Size
	www.google.com/adsense/domains/caf.js?abp=1&2va64smr560lx5k=true	142.250.74.68	200 OK	144 kB
URL GET www.google.com/adsense/domains/caf.js?abp=1&2va64smr560lx5k=true IP 142.250.74.68:443 ASN #15169 GOOGLE Requested by https://cruise243479.icu/ Certificate IssuerGoogle Trust Services Subjectwww.google.com Fingerprint53:F5:E3:47:F6:DC:80:83:14:A1:CE:39:7B:A1:98:61:74:03:86:E2 ValidityMon, 06 Jan 2025 08:37:56 GMT - Mon, 31 Mar 2025 08:37:55 GMT File type JavaScript source, ASCII text, with very long lines (1831) Size 144 kB (144182 bytes) Hash fa053ccecbeb73ae8ebfe8179fa053a8 5d3685619ff5ca1107602ab5de842e2b0bd1b19c ab628349345fef3323e0454e2aa1691de3f1236ad84b19caa694a193463a662a HTTP Headers `GET /adsense/domains/caf.js?abp=1&2va64smr560lx5k=true HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://cruise243479.icu/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes vary: Accept-Encoding content-type: text/javascript; charset=UTF-8 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="ads-afs-ui" report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]} date: Fri, 14 Mar 2025 17:25:08 GMT expires: Fri, 14 Mar 2025 17:25:08 GMT cache-control: private, max-age=3600 etag: "14061899943934218922" x-content-type-options: nosniff link: <https://syndicatedsearch.goog>; rel="preconnect" content-encoding: gzip server: sffe x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	cruise243479.icu/include/pxlt.php?uuid=88beba86-b4c3-4363-bdac-146004d5cbf6&cb=103505312	104.21.32.1	200 OK	2 B
URL GET cruise243479.icu/include/pxlt.php?uuid=88beba86-b4c3-4363-bdac-146004d5cbf6&cb=103505312 IP 104.21.32.1:443 ASN #13335 CLOUDFLARENET Requested by https://cruise243479.icu/ Certificate IssuerGoogle Trust Services Subjectcruise243479.icu FingerprintE9:24:5B:CD:89:48:5A:4E:6E:39:A6:2E:53:0F:AC:1D:F8:54:0A:CE ValidityMon, 10 Mar 2025 03:14:03 GMT - Sun, 08 Jun 2025 04:12:18 GMT File type ASCII text, with no line terminators Size 2 B (2 bytes) Hash 4603e61bef0710b4258365ba29a3a659 1dcd8fc1a0be55707e0a434392312f2a5e1c3700 0889a34434e586e918436027c4e8b4c3380f84643731bdeb57024adb8745cf53 HTTP Headers GET /include/pxlt.php?uuid=88beba86-b4c3-4363-bdac-146004d5cbf6&cb=103505312 HTTP/1.1 Host: cruise243479.icu User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://cruise243479.icu/ Cookie: uuid=88beba86-b4c3-4363-bdac-146004d5cbf6 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Fri, 14 Mar 2025 17:25:10 GMT content-type: text/javascript;charset=UTF-8 content-length: 2 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kGO%2FX0BgnuD0xz2Mda7uKaHigesxFRZAWpXXgIroLYZMR7OH9MgdpLrKY9%2BpLxiF4fRjV9V6KfXvTs9rI530S8J3I8RMZ%2FPNu4ZS4RkR%2B3nCjgH25j7%2FqlhfalMhdhMClzlW"}],"group":"cf-nel","max_age":604800} cf-cache-status: DYNAMIC cf-ray: 920577fb28d67131-OSL server: cloudflare nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} alt-svc: h3=":443"; ma=86400

	cruise243479.icu/favicon.ico	104.21.32.1	200 OK	318 B
URL GET cruise243479.icu/favicon.ico IP 104.21.32.1:443 ASN #13335 CLOUDFLARENET Requested by https://cruise243479.icu/ Certificate IssuerGoogle Trust Services Subjectcruise243479.icu FingerprintE9:24:5B:CD:89:48:5A:4E:6E:39:A6:2E:53:0F:AC:1D:F8:54:0A:CE ValidityMon, 10 Mar 2025 03:14:03 GMT - Sun, 08 Jun 2025 04:12:18 GMT File type MS Windows icon resource - 1 icon, 16x16, 16 colors, 4 bits/pixel Size 318 B (318 bytes) Hash a37879018cca9782fc6c8ab5e6b527ee 6b1abd9908a5c32b9ee4daf898949903fc65c34e 63615a2b207899516aa6eb56ec330671ca1bb25ebe8eb4dd703f08e2906e344e HTTP Headers GET /favicon.ico HTTP/1.1 Host: cruise243479.icu User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://cruise243479.icu/ Cookie: uuid=88beba86-b4c3-4363-bdac-146004d5cbf6; __gsas=ID=8309fb00bdad0b3b:T=1741973109:RT=1741973109:S=ALNI_MYPW4qBHwY5vkn8l61kj60_gwt1Pw Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Fri, 14 Mar 2025 17:25:09 GMT content-type: image/vnd.microsoft.icon nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dfssV2DsRhCftJvbzGJl%2FyW2ElV%2FtOe%2Fq0CkVpirXBtASekcXQqvEktWTriuFu1Mzm08GJGd8C1%2BEp7EU9DkRSEBAtBK1p7okpGqObqpuboH75ukrW7D2eBYZOnU8HeVqIac"}],"group":"cf-nel","max_age":604800} last-modified: Thu, 20 Feb 2025 13:37:15 GMT etag: W/"13e-62e92f8d3d8c0" cache-control: public, max-age=2678400 cf-cache-status: MISS content-encoding: br cf-ray: 920577fd08db7131-OSL server: cloudflare vary: Accept-Encoding alt-svc: h3=":443"; ma=86400

	afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff	142.250.74.33	200 OK	200 B
URL GET afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff IP 142.250.74.33:443 ASN #15169 GOOGLE Requested by https://syndicatedsearch.goog/afs/ads?adsafe=medium&psid=6220593272&pcsa=false&channel=seg11&client=dp-domainactive23_3ph_xml&r=m&hl=en&ivt=0&rpbu=https%3A%2F%2Fcruise243479.icu%2F%3Fcaf_results%3D1%26acid%3D0%26asrc%3D%26at2%3D23%26at3%3Dseg11%26atxt%3D%26avid%3D%26ct%3D480%26psqs%3D%26sqs%3DRoyal%2BCaribbean%2BCruise%2BInformation%252CRoyal%2BCaribbean%2BCruises%252C2024%2BRoyal%2BCaribbean%2BCruises%252CCaribbean%2BCruises%252CEuropean%2BCruises%26t1%3D%26t2%3D%26t3%3D%26tpct%3D%26u%3D%26u2%3D%26uuid%3D88beba86-b4c3-4363-bdac-146004d5cbf6%26rfpi%3D%26ec%3D%26at4%3D6220593272%26sescnt%3D1&terms=Royal%20Caribbean%20Cruise%20Information%2CRoyal%20Caribbean%20Cruises%2C2024%20Royal%20Caribbean%20Cruises%2CCaribbean%20Cruises%2CEuropean%20Cruises&kw=Royal%20Caribbean%20Cruise%20Information&type=3&uiopt=false&swp=as-drid-2885672935738955&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002%2C17301437%2C17301439%2C17301442%2C17301548%2C17301266%2C72717108&format=r5&nocache=5081741973108900&num=0&output=afd_ads&domain_name=cruise243479.icu&v=3&bsl=8&pac=2&u_his=2&u_tz=0&dt=1741973108902&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=1024&frm=0&uio=-&cont=kwBlock1&drt=0&jsid=caf&jsv=735462593&rurl=https%3A%2F%2Fcruise243479.icu%2F Certificate IssuerGoogle Trust Services Subject.googleusercontent.com FingerprintF0:E7:0B:8F:93:C0:9E:F3:15:26:E3:94:7C:D8:3F:00:DE:01:8F:46 ValidityWed, 26 Feb 2025 15:33:54 GMT - Wed, 21 May 2025 15:33:53 GMT File type SVG Scalable Vector Graphics image Size 200 B (200 bytes) Hash 592bbd56abac313ab322bc38f7027496 ecc40e55421cbfc9cc24e256c999a497b84d997f fe3a1073d51df0f353dfa771acde9ea020e215a74edf7b24775e50282b6d6eda HTTP Headers `GET /ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff HTTP/1.1 Host: afs.googleusercontent.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://syndicatedsearch.goog/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers" report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]} content-length: 174 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 14 Mar 2025 08:42:22 GMT expires: Sat, 15 Mar 2025 07:42:22 GMT cache-control: public, max-age=82800 age: 31367 last-modified: Thu, 02 Nov 2023 22:48:00 GMT content-type: image/svg+xml vary: Accept-Encoding alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	cruise243479.icu/da.php?act=2&gal=true&giev=0&gtp=%7B%22Caribbean%20Cruises%22%3A1%2C%22European%20Cruises%22%3A3%7D&acid=0&asrc=&at2=23&at3=seg11&atxt=&avid=&ct=480&psqs=&sqs=Royal+Caribbean+Cruise+Information%2CRoyal+Caribbean+Cruises%2C2024+Royal+Caribbean+Cruises%2CCaribbean+Cruises%2CEuropean+Cruises&t1=&t2=&t3=&tpct=&u=&u2=&uuid=88beba86-b4c3-4363-bdac-146004d5cbf6&rfpi=&ec=&at4=6220593272&sescnt=1&impact=	104.21.32.1	200 OK	0 B
URL GET cruise243479.icu/da.php?act=2&gal=true&giev=0&gtp=%7B%22Caribbean%20Cruises%22%3A1%2C%22European%20Cruises%22%3A3%7D&acid=0&asrc=&at2=23&at3=seg11&atxt=&avid=&ct=480&psqs=&sqs=Royal+Caribbean+Cruise+Information%2CRoyal+Caribbean+Cruises%2C2024+Royal+Caribbean+Cruises%2CCaribbean+Cruises%2CEuropean+Cruises&t1=&t2=&t3=&tpct=&u=&u2=&uuid=88beba86-b4c3-4363-bdac-146004d5cbf6&rfpi=&ec=&at4=6220593272&sescnt=1&impact= IP 104.21.32.1:443 ASN #13335 CLOUDFLARENET Requested by https://cruise243479.icu/ Certificate IssuerGoogle Trust Services Subjectcruise243479.icu FingerprintE9:24:5B:CD:89:48:5A:4E:6E:39:A6:2E:53:0F:AC:1D:F8:54:0A:CE ValidityMon, 10 Mar 2025 03:14:03 GMT - Sun, 08 Jun 2025 04:12:18 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /da.php?act=2&gal=true&giev=0&gtp=%7B%22Caribbean%20Cruises%22%3A1%2C%22European%20Cruises%22%3A3%7D&acid=0&asrc=&at2=23&at3=seg11&atxt=&avid=&ct=480&psqs=&sqs=Royal+Caribbean+Cruise+Information%2CRoyal+Caribbean+Cruises%2C2024+Royal+Caribbean+Cruises%2CCaribbean+Cruises%2CEuropean+Cruises&t1=&t2=&t3=&tpct=&u=&u2=&uuid=88beba86-b4c3-4363-bdac-146004d5cbf6&rfpi=&ec=&at4=6220593272&sescnt=1&impact= HTTP/1.1 Host: cruise243479.icu User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://cruise243479.icu/ Cookie: uuid=88beba86-b4c3-4363-bdac-146004d5cbf6; __gsas=ID=8309fb00bdad0b3b:T=1741973109:RT=1741973109:S=ALNI_MYPW4qBHwY5vkn8l61kj60_gwt1Pw Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Fri, 14 Mar 2025 17:25:10 GMT content-type: text/javascript;charset=UTF-8 content-length: 0 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n5cux1DwdmMp%2BkhDVyHT1TDfHXM2gvtHN5CFAeQo0A4%2BXRd%2FM2OM0pWRBY%2FKkBC5nSxlqaI9zzvvPYjhg16vtTkQb7jfArDkhg05cSRO8W031AZ4yZ5t3FmvDUOQLJulk1gg"}],"group":"cf-nel","max_age":604800} access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-methods: POST, GET set-cookie: uuid=88beba86-b4c3-4363-bdac-146004d5cbf6 p3p: policyref="/w3c/p3p.xml",CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM" cache-control: no-cache, no-store, must-revalidate pragma: no-cache expires: 0 cf-cache-status: DYNAMIC cf-ray: 9205780238fd7131-OSL server: cloudflare nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} alt-svc: h3=":443"; ma=86400

	cruise243479.icu/	104.21.32.1	200 OK	11 kB
URL User Request GET cruise243479.icu/ IP 104.21.32.1:443 ASN #13335 CLOUDFLARENET Certificate IssuerGoogle Trust Services Subjectcruise243479.icu FingerprintE9:24:5B:CD:89:48:5A:4E:6E:39:A6:2E:53:0F:AC:1D:F8:54:0A:CE ValidityMon, 10 Mar 2025 03:14:03 GMT - Sun, 08 Jun 2025 04:12:18 GMT File type HTML document, ASCII text, with very long lines (855) Size 11 kB (11428 bytes) Hash 9862f65a504fd8fdbf8cfdc24d0ee9d4 660af77c214e33b68973dc0037fce1bb7170ebb3 a20c429ed3e029a65f764ca9ba3af4f4cc3ca8951477569ac1789319f5ea47e8 HTTP Headers `GET / HTTP/1.1 Host: cruise243479.icu User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 14 Mar 2025 17:25:08 GMT content-type: text/html; charset=UTF-8 set-cookie: uuid=88beba86-b4c3-4363-bdac-146004d5cbf6 x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAOkfkOV3lsGKqQ9j5bagzq3wjNQNxWwn/esVXnQFKykdGNnnz7w5UeA2I4OuWHWvh0oBKk747TbfSyNssqOrybkCAwEAAQ==_sjgkrz82tDtZ8c4gIqJ2QySwidgJWGsaTeDMw80GtAyYU8u/w1LpMQ2t7zTU/rq/7ILtRefE/A13T29gTrzm9g== vary: Accept-Encoding cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aPvCgBPStmxOUBO8zDJjti15xOY3gNlXZ%2BMjyW6gzXKQQFpBvhMNXRH7Ws6tDcbiBfX1BH87s%2FjeaOj3BEAnEmoEU8Ssp7VHEOZ8y8vUfTJaZoXKGzSeqrM%2BSfoXlgxWi6io"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 920577f49ae8b51e-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=6754&min_rtt=893&rtt_var=11067&sent=8&recv=11&lost=0&retrans=0&sent_bytes=3288&recv_bytes=1255&delivery_rate=4789415&cwnd=254&unsent_bytes=0&cid=c3d4eca9d624d9e9&ts=248&x=0" X-Firefox-Spdy: h2

	syndicatedsearch.goog/afs/ads?adsafe=medium&psid=6220593272&pcsa=false&channel=seg11&client=dp-domainactive23_3ph_xml&r=m&hl=en&ivt=0&rpbu=https%3A%2F%2Fcruise243479.icu%2F%3Fcaf_results%3D1%26acid%3D0%26asrc%3D%26at2%3D23%26at3%3Dseg11%26atxt%3D%26avid%3D%26ct%3D480%26psqs%3D%26sqs%3DRoyal%2BCaribbean%2BCruise%2BInformation%252CRoyal%2BCaribbean%2BCruises%252C2024%2BRoyal%2BCaribbean%2BCruises%252CCaribbean%2BCruises%252CEuropean%2BCruises%26t1%3D%26t2%3D%26t3%3D%26tpct%3D%26u%3D%26u2%3D%26uuid%3D88beba86-b4c3-4363-bdac-146004d5cbf6%26rfpi%3D%26ec%3D%26at4%3D6220593272%26sescnt%3D1&terms=Royal%20Caribbean%20Cruise%20Information%2CRoyal%20Caribbean%20Cruises%2C2024%20Royal%20Caribbean%20Cruises%2CCaribbean%20Cruises%2CEuropean%20Cruises&kw=Royal%20Caribbean%20Cruise%20Information&type=3&uiopt=false&swp=as-drid-2885672935738955&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002%2C17301437%2C17301439%2C17301442%2C17301548%2C17301266%2C72717108&format=r5&nocache=5081741973108900&num=0&output=afd_ads&domain_name=cruise243479.icu&v=3&bsl=8&pac=2&u_his=2&u_tz=0&dt=1741973108902&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=1024&frm=0&uio=-&cont=kwBlock1&drt=0&jsid=caf&jsv=735462593&rurl=https%3A%2F%2Fcruise243479.icu%2F	216.58.207.238	200 OK	21 kB
URL GET syndicatedsearch.goog/afs/ads?adsafe=medium&psid=6220593272&pcsa=false&channel=seg11&client=dp-domainactive23_3ph_xml&r=m&hl=en&ivt=0&rpbu=https%3A%2F%2Fcruise243479.icu%2F%3Fcaf_results%3D1%26acid%3D0%26asrc%3D%26at2%3D23%26at3%3Dseg11%26atxt%3D%26avid%3D%26ct%3D480%26psqs%3D%26sqs%3DRoyal%2BCaribbean%2BCruise%2BInformation%252CRoyal%2BCaribbean%2BCruises%252C2024%2BRoyal%2BCaribbean%2BCruises%252CCaribbean%2BCruises%252CEuropean%2BCruises%26t1%3D%26t2%3D%26t3%3D%26tpct%3D%26u%3D%26u2%3D%26uuid%3D88beba86-b4c3-4363-bdac-146004d5cbf6%26rfpi%3D%26ec%3D%26at4%3D6220593272%26sescnt%3D1&terms=Royal%20Caribbean%20Cruise%20Information%2CRoyal%20Caribbean%20Cruises%2C2024%20Royal%20Caribbean%20Cruises%2CCaribbean%20Cruises%2CEuropean%20Cruises&kw=Royal%20Caribbean%20Cruise%20Information&type=3&uiopt=false&swp=as-drid-2885672935738955&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002%2C17301437%2C17301439%2C17301442%2C17301548%2C17301266%2C72717108&format=r5&nocache=5081741973108900&num=0&output=afd_ads&domain_name=cruise243479.icu&v=3&bsl=8&pac=2&u_his=2&u_tz=0&dt=1741973108902&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=1024&frm=0&uio=-&cont=kwBlock1&drt=0&jsid=caf&jsv=735462593&rurl=https%3A%2F%2Fcruise243479.icu%2F IP 216.58.207.238:443 ASN #15169 GOOGLE Requested by https://cruise243479.icu/ Certificate IssuerGoogle Trust Services Subjectsyndicatedsearch.goog FingerprintE3:AE:D7:AE:AB:35:F7:9A:08:17:FA:68:16:8D:9D:D5:35:B1:DA:32 ValidityWed, 26 Feb 2025 15:36:03 GMT - Wed, 21 May 2025 15:36:02 GMT File type HTML document, ASCII text, with very long lines (20247) Size 21 kB (20848 bytes) Hash a909d35855723855beaf658200949a7d 5ff152f90c8a39ba936a9df3cfc4bff13651f792 29fea07bd0c0de11d255bf4df74387d74b1c1dcb6526e52d91b1187a7cf7bd40 HTTP Headers GET /afs/ads?adsafe=medium&psid=6220593272&pcsa=false&channel=seg11&client=dp-domainactive23_3ph_xml&r=m&hl=en&ivt=0&rpbu=https%3A%2F%2Fcruise243479.icu%2F%3Fcaf_results%3D1%26acid%3D0%26asrc%3D%26at2%3D23%26at3%3Dseg11%26atxt%3D%26avid%3D%26ct%3D480%26psqs%3D%26sqs%3DRoyal%2BCaribbean%2BCruise%2BInformation%252CRoyal%2BCaribbean%2BCruises%252C2024%2BRoyal%2BCaribbean%2BCruises%252CCaribbean%2BCruises%252CEuropean%2BCruises%26t1%3D%26t2%3D%26t3%3D%26tpct%3D%26u%3D%26u2%3D%26uuid%3D88beba86-b4c3-4363-bdac-146004d5cbf6%26rfpi%3D%26ec%3D%26at4%3D6220593272%26sescnt%3D1&terms=Royal%20Caribbean%20Cruise%20Information%2CRoyal%20Caribbean%20Cruises%2C2024%20Royal%20Caribbean%20Cruises%2CCaribbean%20Cruises%2CEuropean%20Cruises&kw=Royal%20Caribbean%20Cruise%20Information&type=3&uiopt=false&swp=as-drid-2885672935738955&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002%2C17301437%2C17301439%2C17301442%2C17301548%2C17301266%2C72717108&format=r5&nocache=5081741973108900&num=0&output=afd_ads&domain_name=cruise243479.icu&v=3&bsl=8&pac=2&u_his=2&u_tz=0&dt=1741973108902&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=1024&frm=0&uio=-&cont=kwBlock1&drt=0&jsid=caf&jsv=735462593&rurl=https%3A%2F%2Fcruise243479.icu%2F HTTP/1.1 Host: syndicatedsearch.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://cruise243479.icu/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: text/html; charset=UTF-8 content-disposition: inline date: Fri, 14 Mar 2025 17:25:09 GMT expires: Fri, 14 Mar 2025 17:25:09 GMT cache-control: private, max-age=3600 content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-d4hFtL-M4AIk_IL2zyGF3g' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other cross-origin-opener-policy: same-origin-allow-popups; report-to="gws" report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]} content-encoding: br server: gws content-length: 3232 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	syndicatedsearch.goog/adsense/domains/caf.js	216.58.207.238	200 OK	144 kB
URL GET syndicatedsearch.goog/adsense/domains/caf.js IP 216.58.207.238:443 ASN #15169 GOOGLE Requested by https://syndicatedsearch.goog/afs/ads?adsafe=medium&psid=6220593272&pcsa=false&channel=seg11&client=dp-domainactive23_3ph_xml&r=m&hl=en&ivt=0&rpbu=https%3A%2F%2Fcruise243479.icu%2F%3Fcaf_results%3D1%26acid%3D0%26asrc%3D%26at2%3D23%26at3%3Dseg11%26atxt%3D%26avid%3D%26ct%3D480%26psqs%3D%26sqs%3DRoyal%2BCaribbean%2BCruise%2BInformation%252CRoyal%2BCaribbean%2BCruises%252C2024%2BRoyal%2BCaribbean%2BCruises%252CCaribbean%2BCruises%252CEuropean%2BCruises%26t1%3D%26t2%3D%26t3%3D%26tpct%3D%26u%3D%26u2%3D%26uuid%3D88beba86-b4c3-4363-bdac-146004d5cbf6%26rfpi%3D%26ec%3D%26at4%3D6220593272%26sescnt%3D1&terms=Royal%20Caribbean%20Cruise%20Information%2CRoyal%20Caribbean%20Cruises%2C2024%20Royal%20Caribbean%20Cruises%2CCaribbean%20Cruises%2CEuropean%20Cruises&kw=Royal%20Caribbean%20Cruise%20Information&type=3&uiopt=false&swp=as-drid-2885672935738955&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002%2C17301437%2C17301439%2C17301442%2C17301548%2C17301266%2C72717108&format=r5&nocache=5081741973108900&num=0&output=afd_ads&domain_name=cruise243479.icu&v=3&bsl=8&pac=2&u_his=2&u_tz=0&dt=1741973108902&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=1024&frm=0&uio=-&cont=kwBlock1&drt=0&jsid=caf&jsv=735462593&rurl=https%3A%2F%2Fcruise243479.icu%2F Certificate IssuerGoogle Trust Services Subjectsyndicatedsearch.goog FingerprintE3:AE:D7:AE:AB:35:F7:9A:08:17:FA:68:16:8D:9D:D5:35:B1:DA:32 ValidityWed, 26 Feb 2025 15:36:03 GMT - Wed, 21 May 2025 15:36:02 GMT File type JavaScript source, ASCII text, with very long lines (1831) Size 144 kB (144180 bytes) Hash 0298a5ba4b44eb47609a7f966fbfef31 7134536eea215d7ab2e49ca0109590ce22aa6e4c d0f971cd8eb610adfe20bc932707005ae399a56c58f5469207b5630f6fbb4e4a HTTP Headers `GET /adsense/domains/caf.js HTTP/1.1 Host: syndicatedsearch.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://syndicatedsearch.goog/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK accept-ranges: bytes vary: Accept-Encoding content-type: text/javascript; charset=UTF-8 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="ads-afs-ui" report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]} date: Fri, 14 Mar 2025 17:25:09 GMT expires: Fri, 14 Mar 2025 17:25:09 GMT cache-control: private, max-age=3600 etag: "9925372205345365545" x-content-type-options: nosniff link: <https://syndicatedsearch.goog>; rel="preconnect" content-encoding: gzip server: sffe x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	cruise243479.icu/abp/px.gif?ch=1&abp=1&2va64smr560lx5k=true&rn=9.993612370027732	104.21.32.1	200 OK	43 B
URL GET cruise243479.icu/abp/px.gif?ch=1&abp=1&2va64smr560lx5k=true&rn=9.993612370027732 IP 104.21.32.1:443 ASN #13335 CLOUDFLARENET Requested by https://cruise243479.icu/ Certificate IssuerGoogle Trust Services Subjectcruise243479.icu FingerprintE9:24:5B:CD:89:48:5A:4E:6E:39:A6:2E:53:0F:AC:1D:F8:54:0A:CE ValidityMon, 10 Mar 2025 03:14:03 GMT - Sun, 08 Jun 2025 04:12:18 GMT File type GIF image data, version 89a, 1 x 1 Size 43 B (43 bytes) Hash 221d8352905f2c38b3cb2bd191d630b0 d804b495cb9b84b9007a25b5d85f9ae674004cde 89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7 HTTP Headers GET /abp/px.gif?ch=1&abp=1&2va64smr560lx5k=true&rn=9.993612370027732 HTTP/1.1 Host: cruise243479.icu User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://cruise243479.icu/ Cookie: uuid=88beba86-b4c3-4363-bdac-146004d5cbf6; __gsas=ID=8309fb00bdad0b3b:T=1741973109:RT=1741973109:S=ALNI_MYPW4qBHwY5vkn8l61kj60_gwt1Pw Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Fri, 14 Mar 2025 17:25:09 GMT content-type: image/gif content-length: 43 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=i6Team7RPolvFji5JkSyw2W6NmfiIsb2DfqFKAieEnfJHRYmmEubuXwcQooOQ7i2rBEXLc0bw3JwQtd3NoiIy7INtFQQR1MKILBqgvbvTHZpHYTNac8mb2bQ4ImpE6vkNy3S"}],"group":"cf-nel","max_age":604800} last-modified: Thu, 20 Feb 2025 13:37:15 GMT etag: "2b-62e92f8d3d8c0" cache-control: max-age=14400 cf-cache-status: MISS accept-ranges: bytes cf-ray: 920577ff38e07131-OSL server: cloudflare vary: Accept-Encoding nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} alt-svc: h3=":443"; ma=86400

	afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%23ffffff	142.250.74.33	200 OK	391 B
URL GET afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%23ffffff IP 142.250.74.33:443 ASN #15169 GOOGLE Requested by https://syndicatedsearch.goog/afs/ads?adsafe=medium&psid=6220593272&pcsa=false&channel=seg11&client=dp-domainactive23_3ph_xml&r=m&hl=en&ivt=0&rpbu=https%3A%2F%2Fcruise243479.icu%2F%3Fcaf_results%3D1%26acid%3D0%26asrc%3D%26at2%3D23%26at3%3Dseg11%26atxt%3D%26avid%3D%26ct%3D480%26psqs%3D%26sqs%3DRoyal%2BCaribbean%2BCruise%2BInformation%252CRoyal%2BCaribbean%2BCruises%252C2024%2BRoyal%2BCaribbean%2BCruises%252CCaribbean%2BCruises%252CEuropean%2BCruises%26t1%3D%26t2%3D%26t3%3D%26tpct%3D%26u%3D%26u2%3D%26uuid%3D88beba86-b4c3-4363-bdac-146004d5cbf6%26rfpi%3D%26ec%3D%26at4%3D6220593272%26sescnt%3D1&terms=Royal%20Caribbean%20Cruise%20Information%2CRoyal%20Caribbean%20Cruises%2C2024%20Royal%20Caribbean%20Cruises%2CCaribbean%20Cruises%2CEuropean%20Cruises&kw=Royal%20Caribbean%20Cruise%20Information&type=3&uiopt=false&swp=as-drid-2885672935738955&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002%2C17301437%2C17301439%2C17301442%2C17301548%2C17301266%2C72717108&format=r5&nocache=5081741973108900&num=0&output=afd_ads&domain_name=cruise243479.icu&v=3&bsl=8&pac=2&u_his=2&u_tz=0&dt=1741973108902&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=1024&frm=0&uio=-&cont=kwBlock1&drt=0&jsid=caf&jsv=735462593&rurl=https%3A%2F%2Fcruise243479.icu%2F Certificate IssuerGoogle Trust Services Subject.googleusercontent.com FingerprintF0:E7:0B:8F:93:C0:9E:F3:15:26:E3:94:7C:D8:3F:00:DE:01:8F:46 ValidityWed, 26 Feb 2025 15:33:54 GMT - Wed, 21 May 2025 15:33:53 GMT File type SVG Scalable Vector Graphics image Size 391 B (391 bytes) Hash 249bb4c6a37dfa60d6ecf838cada5020 4e56099d13b015804f79d1182f66982bc6e4662b a2cebc2af2fd29cbee1ed7860ef5b12088b85259918d8bf2f2aaa99b915fa3f4 HTTP Headers `GET /ad_icons/standard/publisher_icon_image/search.svg?c=%23ffffff HTTP/1.1 Host: afs.googleusercontent.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://syndicatedsearch.goog/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers" report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]} content-length: 270 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 14 Mar 2025 08:22:44 GMT expires: Sat, 15 Mar 2025 07:22:44 GMT cache-control: public, max-age=82800 age: 32545 last-modified: Thu, 20 Jul 2023 22:48:00 GMT content-type: image/svg+xml vary: Accept-Encoding alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	cruise243479.icu/abpc.php	104.21.32.1	200 OK	0 B
URL POST cruise243479.icu/abpc.php IP 104.21.32.1:443 ASN #13335 CLOUDFLARENET Requested by https://cruise243479.icu/ Certificate IssuerGoogle Trust Services Subjectcruise243479.icu FingerprintE9:24:5B:CD:89:48:5A:4E:6E:39:A6:2E:53:0F:AC:1D:F8:54:0A:CE ValidityMon, 10 Mar 2025 03:14:03 GMT - Sun, 08 Jun 2025 04:12:18 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /abpc.php HTTP/1.1 Host: cruise243479.icu User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Content-Length: 59 Origin: https://cruise243479.icu DNT: 1 Connection: keep-alive Referer: https://cruise243479.icu/ Cookie: uuid=88beba86-b4c3-4363-bdac-146004d5cbf6; __gsas=ID=8309fb00bdad0b3b:T=1741973109:RT=1741973109:S=ALNI_MYPW4qBHwY5vkn8l61kj60_gwt1Pw Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Fri, 14 Mar 2025 17:25:10 GMT content-type: text/html; charset=UTF-8 nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JrcJWMw9jIyWgkAzXOP5jJ5kzr2eNGwkf6cY2dOGEfMG69iLhtQ%2FmCz7ZqzdyeV%2FYkE%2FQoPOx4TPX%2B9q65YynZjBz6rzS8E90tn0iKjQC3SamLl9JBQors3DecYYzE6%2Bf3Ac"}],"group":"cf-nel","max_age":604800} cf-cache-status: DYNAMIC content-encoding: br cf-ray: 9205780238fb7131-OSL server: cloudflare alt-svc: h3=":443"; ma=86400

	syndicatedsearch.goog/afs/gen_204?client=dp-domainactive23_3ph_xml&output=uds_ads_only&zx=ptk7igl1uhkg&cd_fexp=72717108&aqid=dWbUZ6i8C6uUiM0Pxab3uAw&psid=6220593272&pbt=bs&adbx=380&adby=30&adbh=886&adbw=520&adbah=164%2C164%2C164%2C164%2C164&adbn=master-1&eawp=partner-dp-domainactive23_3ph_xml&errv=735462593&csala=10%7C0%7C506%7C96%7C94&lle=0&ifv=1&hpt=0	216.58.207.238	204 No Content	0 B
URL GET syndicatedsearch.goog/afs/gen_204?client=dp-domainactive23_3ph_xml&output=uds_ads_only&zx=ptk7igl1uhkg&cd_fexp=72717108&aqid=dWbUZ6i8C6uUiM0Pxab3uAw&psid=6220593272&pbt=bs&adbx=380&adby=30&adbh=886&adbw=520&adbah=164%2C164%2C164%2C164%2C164&adbn=master-1&eawp=partner-dp-domainactive23_3ph_xml&errv=735462593&csala=10%7C0%7C506%7C96%7C94&lle=0&ifv=1&hpt=0 IP 216.58.207.238:443 ASN #15169 GOOGLE Requested by https://cruise243479.icu/ Certificate IssuerGoogle Trust Services Subjectsyndicatedsearch.goog FingerprintE3:AE:D7:AE:AB:35:F7:9A:08:17:FA:68:16:8D:9D:D5:35:B1:DA:32 ValidityWed, 26 Feb 2025 15:36:03 GMT - Wed, 21 May 2025 15:36:02 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /afs/gen_204?client=dp-domainactive23_3ph_xml&output=uds_ads_only&zx=ptk7igl1uhkg&cd_fexp=72717108&aqid=dWbUZ6i8C6uUiM0Pxab3uAw&psid=6220593272&pbt=bs&adbx=380&adby=30&adbh=886&adbw=520&adbah=164%2C164%2C164%2C164%2C164&adbn=master-1&eawp=partner-dp-domainactive23_3ph_xml&errv=735462593&csala=10%7C0%7C506%7C96%7C94&lle=0&ifv=1&hpt=0 HTTP/1.1 Host: syndicatedsearch.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://cruise243479.icu/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/3 204 No Content content-type: text/html; charset=UTF-8 content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-8V_3C6-Lhm-fPa8dFKgscA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other cross-origin-opener-policy: same-origin-allow-popups; report-to="gws" report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]} date: Fri, 14 Mar 2025 17:25:11 GMT server: gws content-length: 0 x-xss-protection: 0 x-frame-options: SAMEORIGIN alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	www.relevantlinks.net/img.php/image_id/8424.jpg	172.66.43.65	200 OK	37 kB
URL GET www.relevantlinks.net/img.php/image_id/8424.jpg IP 172.66.43.65:443 ASN #13335 CLOUDFLARENET Requested by https://cruise243479.icu/ Certificate IssuerGoogle Trust Services Subjectrelevantlinks.net Fingerprint73:CB:BD:1F:96:B4:75:91:B5:3A:6C:58:4C:8E:9C:DC:F8:48:2D:71 ValidityMon, 20 Jan 2025 10:18:46 GMT - Sun, 20 Apr 2025 11:17:05 GMT File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85", baseline, precision 8, 1500x658, components 3 Size 37 kB (36645 bytes) Hash 94e7efc6e0884ae27a5336f6403ecdbd 0a0028d187ba83c97762651f73cfef2697da90ea 28349c38fe446eb7d54a2cde34f39e2e71e02df4c11211331ac029da54ba6f41 HTTP Headers `GET /img.php/image_id/8424.jpg HTTP/1.1 Host: www.relevantlinks.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://cruise243479.icu/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 14 Mar 2025 17:25:08 GMT content-type: image/jpeg content-length: 36645 cache-control: public, max-age=604800 last-modified: Thu, 13 Mar 2025 18:27:00 GMT age: 82564 cf-cache-status: HIT report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=x2nzbmRvf6fySYhtnHFWQA%2BfN1arS0cCixAkaqCBfTLY0qUEukZUkR%2FoSl%2BeVCCur%2FYMb37uw7YFHyNpLoS8ZIPbdNel%2BT2hYhm9xnukcTZdTKwWmxnJSyTnHrizARYBWGGLK7hFl%2F8%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 920577f94e6c56b9-OSL alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=495&min_rtt=441&rtt_var=140&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3289&recv_bytes=1232&delivery_rate=7029126&cwnd=251&unsent_bytes=0&cid=767b61a62a8de339&ts=58&x=0" X-Firefox-Spdy: h2

	syndicatedsearch.goog/afs/gen_204?client=dp-domainactive23_3ph_xml&output=uds_ads_only&zx=k6nj4ueifydf&cd_fexp=72717108&aqid=dWbUZ6i8C6uUiM0Pxab3uAw&psid=6220593272&pbt=bv&adbx=380&adby=30&adbh=886&adbw=520&adbah=164%2C164%2C164%2C164%2C164&adbn=master-1&eawp=partner-dp-domainactive23_3ph_xml&errv=735462593&csala=10%7C0%7C506%7C96%7C94&lle=0&ifv=1&hpt=0	216.58.207.238	204 No Content	0 B
URL GET syndicatedsearch.goog/afs/gen_204?client=dp-domainactive23_3ph_xml&output=uds_ads_only&zx=k6nj4ueifydf&cd_fexp=72717108&aqid=dWbUZ6i8C6uUiM0Pxab3uAw&psid=6220593272&pbt=bv&adbx=380&adby=30&adbh=886&adbw=520&adbah=164%2C164%2C164%2C164%2C164&adbn=master-1&eawp=partner-dp-domainactive23_3ph_xml&errv=735462593&csala=10%7C0%7C506%7C96%7C94&lle=0&ifv=1&hpt=0 IP 216.58.207.238:443 ASN #15169 GOOGLE Requested by https://cruise243479.icu/ Certificate IssuerGoogle Trust Services Subjectsyndicatedsearch.goog FingerprintE3:AE:D7:AE:AB:35:F7:9A:08:17:FA:68:16:8D:9D:D5:35:B1:DA:32 ValidityWed, 26 Feb 2025 15:36:03 GMT - Wed, 21 May 2025 15:36:02 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /afs/gen_204?client=dp-domainactive23_3ph_xml&output=uds_ads_only&zx=k6nj4ueifydf&cd_fexp=72717108&aqid=dWbUZ6i8C6uUiM0Pxab3uAw&psid=6220593272&pbt=bv&adbx=380&adby=30&adbh=886&adbw=520&adbah=164%2C164%2C164%2C164%2C164&adbn=master-1&eawp=partner-dp-domainactive23_3ph_xml&errv=735462593&csala=10%7C0%7C506%7C96%7C94&lle=0&ifv=1&hpt=0 HTTP/1.1 Host: syndicatedsearch.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://cruise243479.icu/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/3 204 No Content content-type: text/html; charset=UTF-8 content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-aiUUYMIjSXqVrN_SGVHo4Q' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other cross-origin-opener-policy: same-origin-allow-popups; report-to="gws" report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]} date: Fri, 14 Mar 2025 17:25:11 GMT server: gws content-length: 0 x-xss-protection: 0 x-frame-options: SAMEORIGIN alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	partner.googleadservices.com/gampad/cookie.js?domain=cruise243479.icu&client=partner-dp-domainactive23_3ph_xml&product=SAS&callback=__sasCookie&cookie_types=v1%2Cv2	142.250.74.66	200 OK	386 B
URL GET partner.googleadservices.com/gampad/cookie.js?domain=cruise243479.icu&client=partner-dp-domainactive23_3ph_xml&product=SAS&callback=__sasCookie&cookie_types=v1%2Cv2 IP 142.250.74.66:443 ASN #15169 GOOGLE Requested by https://cruise243479.icu/ Certificate IssuerGoogle Trust Services Subject.googleadservices.com Fingerprint02:56:51:FF:6A:24:80:3F:8D:81:ED:73:A0:6E:BE:01:C0:6C:FB:52 ValidityWed, 26 Feb 2025 15:33:42 GMT - Wed, 21 May 2025 15:33:41 GMT File type ASCII text, with very long lines (420), with no line terminators Size 386 B (386 bytes) Hash de17a2a4966cd4f7287e62e5c3db316e 7e27106d9ac9cb00140e39633e44dbbbdbb2eaa5 0dac139605dce3afdceaf213723e3755a4413c3a35429feed93c7e350fd242a0 HTTP Headers GET /gampad/cookie.js?domain=cruise243479.icu&client=partner-dp-domainactive23_3ph_xml&product=SAS&callback=__sasCookie&cookie_types=v1%2Cv2 HTTP/1.1 Host: partner.googleadservices.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://cruise243479.icu/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin content-type: text/javascript; charset=UTF-8 x-content-type-options: nosniff content-disposition: attachment; filename="f.txt" content-encoding: gzip date: Fri, 14 Mar 2025 17:25:09 GMT server: cafe content-length: 246 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	cruise243479.icu/abp/px.gif?ch=2&abp=2&2va64smr560lx5k=true&rn=9.993612370027732	104.21.32.1	200 OK	43 B
URL GET cruise243479.icu/abp/px.gif?ch=2&abp=2&2va64smr560lx5k=true&rn=9.993612370027732 IP 104.21.32.1:443 ASN #13335 CLOUDFLARENET Requested by https://cruise243479.icu/ Certificate IssuerGoogle Trust Services Subjectcruise243479.icu FingerprintE9:24:5B:CD:89:48:5A:4E:6E:39:A6:2E:53:0F:AC:1D:F8:54:0A:CE ValidityMon, 10 Mar 2025 03:14:03 GMT - Sun, 08 Jun 2025 04:12:18 GMT File type GIF image data, version 89a, 1 x 1 Size 43 B (43 bytes) Hash 221d8352905f2c38b3cb2bd191d630b0 d804b495cb9b84b9007a25b5d85f9ae674004cde 89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7 HTTP Headers GET /abp/px.gif?ch=2&abp=2&2va64smr560lx5k=true&rn=9.993612370027732 HTTP/1.1 Host: cruise243479.icu User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://cruise243479.icu/ Cookie: uuid=88beba86-b4c3-4363-bdac-146004d5cbf6; __gsas=ID=8309fb00bdad0b3b:T=1741973109:RT=1741973109:S=ALNI_MYPW4qBHwY5vkn8l61kj60_gwt1Pw Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Fri, 14 Mar 2025 17:25:09 GMT content-type: image/gif content-length: 43 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=t1kBv%2FW38WjdS3jhMjIXpbWHnFoa%2FhzjcQt%2FgWYi167fKk0GUFRmAlBWn3ETh7uFeJRBRr4HDQ9q1SBWJvUNPOqA4gnTq94flDzwdJk6bcD09XyRLNWgdUnfh7rCXMl77RE2"}],"group":"cf-nel","max_age":604800} last-modified: Thu, 20 Feb 2025 13:37:15 GMT etag: "2b-62e92f8d3d8c0" cache-control: max-age=14400 cf-cache-status: HIT age: 0 accept-ranges: bytes cf-ray: 920577ff38df7131-OSL server: cloudflare vary: Accept-Encoding nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} alt-svc: h3=":443"; ma=86400

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (7)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (16)

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers