Report - 7ktpj.bemobtracks.com/go/31fcdd0e-0392-4c68-ac20-0a9910834f29?ts=08e29a07-b84a-41cf-a9c0-1cb114072fbc&camp=&zone=&landid=64890a66-042e-4456-8633-a8ed9e7937d4&osv=macOS%2010.15.7&isp=Google%20App%20Engine&tid=08e29a07-b84a-41cf-a9c0-1cb114072fbc&key=eyJ0aW1lc3RhbXAiOiIxNjgxODE2MTU5IiwiaGFzaCI6ImM0ZWI5MjMwYTkyYzMyYjlkNmMwMmNlMTNjNDZlM2M1NjU0YzZiYWEifQ==&td=ss.ddirectofrs.click&bemobdata=c=93d7d008-433f-42c2-a4ed-ca34ba509998..l=64890a66-042e-4456-8633-a8ed9e7937d4..a=0..b=2..r=ss.ddirectofrs.click..ts=1681816159566

Report Overview

Submitted URL
7ktpj.bemobtracks.com/go/31fcdd0e-0392-4c68-ac20-0a9910834f29?ts=08e29a07-b84a-41cf-a9c0-1cb114072fbc&camp=&zone=&landid=64890a66-042e-4456-8633-a8ed9e7937d4&osv=macOS%2010.15.7&isp=Google%20App%20Engine&tid=08e29a07-b84a-41cf-a9c0-1cb114072fbc&key=eyJ0aW1lc3RhbXAiOiIxNjgxODE2MTU5IiwiaGFzaCI6ImM0ZWI5MjMwYTkyYzMyYjlkNmMwMmNlMTNjNDZlM2M1NjU0YzZiYWEifQ==&td=ss.ddirectofrs.click&bemobdata=c=93d7d008-433f-42c2-a4ed-ca34ba509998..l=64890a66-042e-4456-8633-a8ed9e7937d4..a=0..b=2..r=ss.ddirectofrs.click..ts=1681816159566
IP
3.70.16.242
ASN
#16509 AMAZON-02
Submitted
2023-04-18 11:09:53
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.pki.goog	175	2018-07-01	2023-04-17	2.3 kB	4.9 kB	142.250.74.131
smartdt-secure.com	unknown	2022-04-04	2023-04-17	1.5 kB	61 kB	45.141.159.22
tsyndicate.com	13042	2017-03-16	2023-04-18	500 B	669 B	168.119.1.208
static.trafficjunky.com	13961	2015-03-25	2023-04-18	814 B	8.0 kB	205.185.208.79
statisticresearch.com	584767	2015-06-02	2023-04-18	414 B	3.8 kB	52.1.184.75
7ktpj.bemobtracks.com	unknown	2020-08-31	2023-04-17	882 B	1.3 kB	3.70.16.242
cdn.smrt-content.com	99856	2019-12-30	2023-04-18	410 B	4.2 kB	23.36.76.147
www.gstatic.com	unknown	2016-07-26	2023-04-17	1.3 kB	30 kB	142.250.74.99
cdn.smrt-assets.com	unknown	2019-12-30	2023-04-18	3.4 kB	32 kB	23.36.76.144
ocsp.r2m01.amazontrust.com	unknown	2022-10-12	2023-04-18	680 B	2.0 kB	143.204.48.16
ajax.googleapis.com	12905	2013-08-16	2023-04-18	427 B	32 kB	142.250.74.106
www.googletagmanager.com	75	2013-05-22	2023-04-17	1.8 kB	207 kB	142.250.74.168
guard.cdtbox.rocks	240008	2020-08-11	2023-04-18	558 B	204 B	34.202.149.17
ipinfo.io	8136	2013-12-16	2023-04-17	454 B	1.2 kB	34.117.59.81

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-04-18 11:11:47	medium	Client IP	34.117.59.81	ET POLICY Possible External IP Lookup Domain Observed in SNI (ipinfo. io)

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-04-18	medium	smartdt-secure.com/service-worker.js

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (26)

	URL	Size	First Seen	Last Seen
	unknown	337 B	2023-03-12	2024-04-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 10:36:14 Last Seen2024-04-21 22:42:49 Times Seen774 Hash 427360d6b3baf34ee24f41ce2b1aa48e 4afbf9439ca48f94083603a93a396be8b8d6d459 fbb9b67ce2bea5ff0185b5b6c611e2c6c60a5a3bfd8fe632a39938acc59a52bc Loading...

	www.googletagmanager.com/gtm.js?id=GTM-5R6C28C	101 kB	2023-04-18	2023-04-18
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-5R6C28C IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-18 13:09:54 Last Seen2023-04-18 13:09:54 Times Seen2 Hash 6e2ca57559f0ae8e765fd4d129014f61 a604a718cdec2060bb4323dd7043050f4a217392 120f24a8cceb46b45b724a8d5aef6e39366fa877d03500849a9ae1081c9d6661 Loading...

	cdn.smrt-assets.com/assets/2217/js/multilang_clean.js	18 kB	2023-04-05	2024-04-21
Pretty URL cdn.smrt-assets.com/assets/2217/js/multilang_clean.js IP 23.36.76.144 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 13:57:59 Last Seen2024-04-21 19:55:23 Times Seen165 Hash cf206991aeda078a335594201eb79854 be40619f33d5f2cfef22f40f83a4d969b94bb017 9841fd1d22400dbb97c6d2e972c0271b86ac7780058ff1109339af26e93da0ee Loading...

	unknown	51 B	2023-03-07	2024-04-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:22 Last Seen2024-04-21 22:42:49 Times Seen775 Hash 7619d426b402631cef50bacfd7ececf9 55afc2b0b31bbde89f60b5e7e4ed62118795a18f d357aefce563a1557da1cdda0ff556bb3189b49b9256d231fbd50a4d4320ec64 Loading...

	unknown	335 B	2023-03-07	2024-04-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:22 Last Seen2024-04-21 22:42:49 Times Seen777 Hash 256cdb11ca1f336f8622fb1a3cf066ff 7ea74f8f152c55c902c906d25e05269afa6182ce 829be72b7bae1d4ee42b2a4fdf96eafb3ea702fd50aa661a6ddac9cb045ff334 Loading...

	static.trafficjunky.com/js/mp.min.js	11 kB	2023-03-07	2023-05-03
Pretty URL static.trafficjunky.com/js/mp.min.js IP 205.185.208.79 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:22 Last Seen2023-05-03 22:48:13 Times Seen370 Hash 3f66e62e547a7c432eb587b81a5864c5 b0da6be4eb15b99f7fdb3a45168de09e0aa2a66c ddddeb6d56c1ab493971fcce9f231318ab1c73a613b5eb53549cfa89dd4b1632 Loading...

	smartdt-secure.com/smartlink/?a=43588&sm=34557&mt=18&s2=H66fingsg4kgLhtjWDZFv1	359 B	2023-03-07	2024-04-21
Pretty URL smartdt-secure.com/smartlink/?a=43588&sm=34557&mt=18&s2=H66fingsg4kgLhtjWDZFv1 IP 45.141.159.22 ASN #206776 Ophidian Network Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:22 Last Seen2024-04-21 22:42:49 Times Seen315 Hash a27922be47c10f7e88bc78b25d444fb3 4fb5516a26f5267486c053fcd45ea0d2d8c31d9d 78fd58dd69b97f29340e98fe5b9300293127d27c5617f3ee519db43a38fbdbda Loading...

	statisticresearch.com/user-segments/?pid=TH	62 B	2023-03-07	2024-04-21
Pretty URL statisticresearch.com/user-segments/?pid=TH IP 52.1.184.75 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:22 Last Seen2024-04-21 22:42:50 Times Seen1275 Hash ac0b622721bcfcdc85cdebb98ad03bf9 f1981b6dff8ad407bbb760ac6cfd57ae7c921fa0 7b2a79e668b985367b96ed97f0b5544d66cfd8fc78dc1d09110aa62dc1586179 Loading...

	ipinfo.io/json?callback=jQuery351015667437774130188_1681816307421&_=1681816307422	674 B	2023-04-18	2023-04-18
Pretty URL ipinfo.io/json?callback=jQuery351015667437774130188_1681816307421&_=1681816307422 IP 34.117.59.81 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-18 13:09:54 Last Seen2023-04-18 13:09:54 Times Seen1 Hash b58eccfbe97708f6c8677b9f96d182bd 8f43df7a3e4448ebb599de9b6d7e639672768510 2451ff81293ff6966aa6a87d0535b7074672153d6d10c90c47b476a62764a714 Loading...

	smartdt-secure.com/smartlink/sandbox%20eval%20code	147 B	2023-04-11	2024-04-26
Pretty URL smartdt-secure.com/smartlink/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-04-26 09:46:35 Times Seen342348 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js	90 kB	2023-03-07	2024-04-26
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js IP 142.250.74.106 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-26 09:09:29 Times Seen139359 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	cdn.smrt-assets.com/assets/1387/js/backoffer.js	660 B	2023-03-07	2024-04-21
Pretty URL cdn.smrt-assets.com/assets/1387/js/backoffer.js IP 23.36.76.144 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:22 Last Seen2024-04-21 22:42:50 Times Seen1445 Hash e7e1dc07852a36f89e4be03aa3787316 0dc3f8e7eb943af093cf8f4600fcf0e421891025 33b8a5c4f883a3a775162d3c5287fe94bc4b22a86fe8b52fcb5aa615d2ffe388 Loading...

	cdn.smrt-assets.com/prod/push-lang-config.js	7.9 kB	2023-03-07	2024-04-21
Pretty URL cdn.smrt-assets.com/prod/push-lang-config.js IP 23.36.76.144 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:22 Last Seen2024-04-21 22:42:50 Times Seen1391 Hash 7152525f63649929a736f6efb78b58a5 5bf8138b39eaeebdf4681ad31fac3a02075e36ad f1f5518e39341d6f4189be101a85c496add2a43b569a809bd3193d52f3e61de1 Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-04-26
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-04-26 09:46:35 Times Seen341849 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-TR8VQRX	126 kB	2023-04-18	2023-04-18
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-TR8VQRX IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-18 13:09:54 Last Seen2023-04-18 13:09:54 Times Seen2 Hash 5231bbff960c3079ce82d6e3426656ee 8a6a8ef1502622f58aa12a7cf5a3653d86070a25 c43fc4b00dcd79a382908c5cdf1455903994cbececb60538c2cecfb74e475609 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-5R6C28C	101 kB	2023-04-18	2023-04-18
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-5R6C28C IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-18 12:15:28 Last Seen2023-04-18 13:09:54 Times Seen3 Hash 9f891b46d8f6706cc339ec4578c323a2 39385b686904f0c64dae22e3eccb02618033d431 91f274a84f4b01f376eda29be931f8048b269c38693982db8d189f4b06700db4 Loading...

	cdn.smrt-assets.com/assets/2196/js/puzzle.js	770 B	2023-03-07	2024-04-21
Pretty URL cdn.smrt-assets.com/assets/2196/js/puzzle.js IP 23.36.76.144 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:59:18 Last Seen2024-04-21 19:55:23 Times Seen341 Hash 729efb6f1b7c806ec8db3ed5009713d3 14c545752b5f534a2e53f06da662c123f2342405 82069203ef1b2ad0b06f19e6a1d369bc201d440295fa829405bffb1eb29d9375 Loading...

	smartdt-secure.com/smartlink/?a=43588&sm=34557&mt=18&s2=H66fingsg4kgLhtjWDZFv1	1.3 kB	2023-03-07	2024-04-21
Pretty URL smartdt-secure.com/smartlink/?a=43588&sm=34557&mt=18&s2=H66fingsg4kgLhtjWDZFv1 IP 45.141.159.22 ASN #206776 Ophidian Network Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:59:18 Last Seen2024-04-21 19:55:23 Times Seen184 Hash 6b6a038753b017fefcd59796394a1487 2e7bd2db093ea2cdd12472790d305358384e7f8f 8df5f0626e81a9a8164f11f228dfb5ff2a030e23f009a1de276c5f93f229709e Loading...

	www.googletagmanager.com/gtag/js?id=G-C3EPRPS8FB&l=dataLayer&cx=c	223 kB	2023-04-18	2023-04-18
Pretty URL www.googletagmanager.com/gtag/js?id=G-C3EPRPS8FB&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-18 13:09:54 Last Seen2023-04-18 13:09:54 Times Seen2 Hash 0b4069ffe451382bd8806f6b0fdfff08 01443ffc253d51966bc8c21110d61b0ddb362602 fc7c1aa425eada61827c60c33594c2d4740f9e2744bb9ef3cdff6faaf57690b0 Loading...

	smartdt-secure.com/smartlink/?a=43588&sm=34557&mt=18&s2=H66fingsg4kgLhtjWDZFv1	558 B	2023-04-18	2023-04-18
Pretty URL smartdt-secure.com/smartlink/?a=43588&sm=34557&mt=18&s2=H66fingsg4kgLhtjWDZFv1 IP 45.141.159.22 ASN #206776 Ophidian Network Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-18 13:09:54 Last Seen2023-04-18 13:09:54 Times Seen1 Hash fff528c62ae001c7cac527ccf51ececc 48dcffe2de69eb5a48f937e09050710b4f443923 6294fdea8a6ed8223c7b0d10a23a7ffb8f010c297e418cfb972372ae620c048b Loading...

	cdn.smrt-assets.com/prod/push-subscriber.js	18 kB	2023-03-07	2024-04-21
Pretty URL cdn.smrt-assets.com/prod/push-subscriber.js IP 23.36.76.144 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:22 Last Seen2024-04-21 22:42:50 Times Seen1423 Hash 6b5bccad39f7057909ad0660f33cc2fa a7995e45d98a311f94c3f6f096a7e414b5a34407 765f676a53b5275cb0bf0835962b72accd340101ac2e32d8a215f8b1047b0941 Loading...

	smartdt-secure.com/smartlink/?a=43588&sm=34557&mt=18&s2=H66fingsg4kgLhtjWDZFv1	573 B	2023-04-18	2023-04-18
Pretty URL smartdt-secure.com/smartlink/?a=43588&sm=34557&mt=18&s2=H66fingsg4kgLhtjWDZFv1 IP 45.141.159.22 ASN #206776 Ophidian Network Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-18 13:09:54 Last Seen2023-04-18 13:09:54 Times Seen1 Hash 195bf1bd90f38f5dd32830b71adbcd2a ecce3f8dd96fc77e8da509718d5bdb23e8d575fa d1a0846f5a6d26fd771a557596f5979b681311caa6d81e331f9f2734040444f4 Loading...

	cdn.smrt-content.com/prod/push-utils.js	8.4 kB	2023-03-07	2023-11-25
Pretty URL cdn.smrt-content.com/prod/push-utils.js IP 23.36.76.147 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:22 Last Seen2023-11-25 08:55:49 Times Seen559 Hash a288177a606a9686132970835b3e572c d2dba49befdc68e678b992f454d6e515e10b0a1c 7d1910801973390bd5cbdbe53ef4f788ab50ca5e7a4025415170494ab76fb960 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-5R6C28C	101 kB	2023-04-18	2023-04-18
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-5R6C28C IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-18 12:15:28 Last Seen2023-04-18 13:09:54 Times Seen4 Hash 00d18a3781d58f086a6a7d536f5a55ab 50e5b8142bc9e49002573c3246366b5639314097 db7eac5c9f85384a91d46665c578b8eab8ab0501df0848e72e545f3d65a5864a Loading...

	www.gstatic.com/firebasejs/5.0.2/firebase-app.js	25 kB	2023-03-07	2024-04-21
Pretty URL www.gstatic.com/firebasejs/5.0.2/firebase-app.js IP 142.250.74.99 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:22 Last Seen2024-04-21 23:30:58 Times Seen10994 Hash 9164d0e8a317eceb870cca88c9683127 4617c910005f7100b4ff26a458a8b4463e33cdc6 15c9bd66992ef54979c981763cae280f28b6845520020ed38b5ab5f3f70f7931 Loading...

	www.gstatic.com/firebasejs/5.0.2/firebase-messaging.js	36 kB	2023-03-07	2024-04-21
Pretty URL www.gstatic.com/firebasejs/5.0.2/firebase-messaging.js IP 142.250.74.99 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:22 Last Seen2024-04-21 23:30:58 Times Seen11070 Hash 0cb7a0eb328ea70ab360f861314c8820 e3e20eb50dae36f4cbcef1890b1cc7878acb537a 4569845f7c550a55311814032e88541bd3b4a055ec3894e9cf58c4fff1be91d9 Loading...

HTTP Transactions (35)

URL IP Response Size

7ktpj.bemobtracks.com/go/31fcdd0e-0392-4c68-ac20-0a9910834f29?ts=08e29a07-b84a-41cf-a9c0-1cb114072fbc&camp=&zone=&landid=64890a66-042e-4456-8633-a8ed9e7937d4&osv=macOS%2010.15.7&isp=Google%20App%20Engine&tid=08e29a07-b84a-41cf-a9c0-1cb114072fbc&key=eyJ0aW1lc3RhbXAiOiIxNjgxODE2MTU5IiwiaGFzaCI6ImM0ZWI5MjMwYTkyYzMyYjlkNmMwMmNlMTNjNDZlM2M1NjU0YzZiYWEifQ==&td=ss.ddirectofrs.click&bemobdata=c=93d7d008-433f-42c2-a4ed-ca34ba509998..l=64890a66-042e-4456-8633-a8ed9e7937d4..a=0..b=2..r=ss.ddirectofrs.click..ts=1681816159566

3.70.16.242

302 Found

240 B

URL User Request GET HTTP/1.1
7ktpj.bemobtracks.com/go/31fcdd0e-0392-4c68-ac20-0a9910834f29?ts=08e29a07-b84a-41cf-a9c0-1cb114072fbc&camp=&zone=&landid=64890a66-042e-4456-8633-a8ed9e7937d4&osv=macOS%2010.15.7&isp=Google%20App%20Engine&tid=08e29a07-b84a-41cf-a9c0-1cb114072fbc&key=eyJ0aW1lc3RhbXAiOiIxNjgxODE2MTU5IiwiaGFzaCI6ImM0ZWI5MjMwYTkyYzMyYjlkNmMwMmNlMTNjNDZlM2M1NjU0YzZiYWEifQ==&td=ss.ddirectofrs.click&bemobdata=c=93d7d008-433f-42c2-a4ed-ca34ba509998..l=64890a66-042e-4456-8633-a8ed9e7937d4..a=0..b=2..r=ss.ddirectofrs.click..ts=1681816159566
IP
3.70.16.242:80
ASN
#16509 AMAZON-02

File type
HTML document, ASCII text, with no line terminators
Size
240 B (240 bytes)
Hash
6a999bee888ac148aeaa6756e281f082
e692a295652d850194d9aa74c3097db3b38d6484
366e5bc441c7854df1710ce10533a5edd1b4bb221fabde84b913ab00f143b7e7

HTTP Headers

GET /go/31fcdd0e-0392-4c68-ac20-0a9910834f29?ts=08e29a07-b84a-41cf-a9c0-1cb114072fbc&camp=&zone=&landid=64890a66-042e-4456-8633-a8ed9e7937d4&osv=macOS%2010.15.7&isp=Google%20App%20Engine&tid=08e29a07-b84a-41cf-a9c0-1cb114072fbc&key=eyJ0aW1lc3RhbXAiOiIxNjgxODE2MTU5IiwiaGFzaCI6ImM0ZWI5MjMwYTkyYzMyYjlkNmMwMmNlMTNjNDZlM2M1NjU0YzZiYWEifQ==&td=ss.ddirectofrs.click&bemobdata=c=93d7d008-433f-42c2-a4ed-ca34ba509998..l=64890a66-042e-4456-8633-a8ed9e7937d4..a=0..b=2..r=ss.ddirectofrs.click..ts=1681816159566 HTTP/1.1
Host: 7ktpj.bemobtracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Server: openresty
Date: Tue, 18 Apr 2023 11:09:38 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 240
Connection: keep-alive
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Full-Version,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
Access-Control-Allow-Origin: *
Location: https://smartdt-secure.com/smartlink/?a=43588&sm=34557&mt=18&s2=H66fingsg4kgLhtjWDZFv1
Set-Cookie: bemob-uniq-visit:31fcdd0e-0392-4c68-ac20-0a9910834f29=1; Domain=7ktpj.bemobtracks.com; Path=/; Expires=Wed, 19 Apr 2023 11:09:38 GMT; HttpOnly
bemob-rotation:31fcdd0e-0392-4c68-ac20-0a9910834f29:random:94aa82a90546d03c5717b52751bdc6b5=0-0-3; Domain=7ktpj.bemobtracks.com; Path=/; Expires=Wed, 19 Apr 2023 11:09:38 GMT; HttpOnly
bemob-click-id=H66fingsg4kgLhtjWDZFv1; Domain=7ktpj.bemobtracks.com; Path=/; Expires=Wed, 19 Apr 2023 11:09:38 GMT; HttpOnly
Vary: Accept
X-Response-Time: 6.082ms
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8cd9aa01db60293b18dcdbae7d3721db
27cc709e8fbceb5eb651ab77c58678094a323b0b
bdb89cf524c1f48708a3b9cba1b202ee009e534603301b01d94fbafe462c28b8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 18 Apr 2023 11:09:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
62cfe57b4773046a41d40cfbc8f044fc
78fcc3231c90a662763e09ff074f01a18e0a4049
84c4c8501ba7c409b0f2f327a55facd956c33066485cf9621b3af195aa6a9344

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 18 Apr 2023 11:09:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js

142.250.74.106

200 OK

31 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://smartdt-secure.com/smartlink/?a=43588&sm=34557&mt=18&s2=H66fingsg4kgLhtjWDZFv1
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint28:74:DC:A1:79:64:AB:97:A4:EA:AB:80:90:A6:E2:B9:D4:16:79:64
ValidityTue, 28 Mar 2023 16:54:33 GMT - Tue, 20 Jun 2023 16:54:32 GMT

File type
ASCII text, with very long lines (65451)
Size
31 kB (31021 bytes)
Hash
903bc7a7e510f87aa5d0201eb59a0832
ac9aa4dd94cde1bcba9037e94087138b127e41fc
41a7ac8150cc9f38421451d5143c1ffec7a1f1fafbf7a7fc0f51b98ad699cf8f

HTTP Headers

GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smartdt-secure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31021
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 16 Apr 2023 23:13:48 GMT
expires: Mon, 15 Apr 2024 23:13:48 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Fri, 08 May 2020 07:05:03 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 129350
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
62cfe57b4773046a41d40cfbc8f044fc
78fcc3231c90a662763e09ff074f01a18e0a4049
84c4c8501ba7c409b0f2f327a55facd956c33066485cf9621b3af195aa6a9344

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 18 Apr 2023 11:09:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gstatic.com/firebasejs/5.0.2/firebase-app.js

142.250.74.99

200 OK

8.6 kB

URL GET HTTP/2
www.gstatic.com/firebasejs/5.0.2/firebase-app.js
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://smartdt-secure.com/smartlink/?a=43588&sm=34557&mt=18&s2=H66fingsg4kgLhtjWDZFv1
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE8:8D:29:52:9C:44:66:28:BB:43:25:CE:11:45:BB:A1:5A:4E:44:11
ValidityTue, 28 Mar 2023 16:54:02 GMT - Tue, 20 Jun 2023 16:54:01 GMT

File type
ASCII text, with very long lines (25088)
Size
8.6 kB (8604 bytes)
Hash
73069e532b7039778d3a7128c997c61a
c523bbf1ac7f4e612c8ade75434c42fbca885adc
b6d7aec09aad2bb78dfbad4c9530fd03c0f33aed8385c3ee57c10b1fe959c4d5

HTTP Headers

GET /firebasejs/5.0.2/firebase-app.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smartdt-secure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 8604
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 16 Apr 2023 18:07:16 GMT
expires: Mon, 15 Apr 2024 18:07:16 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 10 May 2018 20:35:51 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 147743
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

smartdt-secure.com/smartlink/?a=43588&sm=34557&mt=18&s2=H66fingsg4kgLhtjWDZFv1

45.141.159.22

200 OK

14 kB

URL User Request GET HTTP/2
smartdt-secure.com/smartlink/?a=43588&sm=34557&mt=18&s2=H66fingsg4kgLhtjWDZFv1
IP
45.141.159.22:443
ASN
#206776 Ophidian Network Limited

Certificate
IssuerLet's Encrypt
Subjectsmartdt-secure.com
Fingerprint09:B1:7F:8D:15:10:D8:F3:5E:11:2F:1C:AE:D4:FB:31:D1:D2:37:DA
ValidityTue, 28 Feb 2023 01:42:30 GMT - Mon, 29 May 2023 01:42:29 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (35554), with CRLF, LF line terminators
Size
14 kB (13671 bytes)
Hash
dae986d3f714fb2ab108e4fbff2df953
c5361f078805662dc5c72e808c2ec2e529e228ba
b62257267fa8e58d90c9c3f86755aaacfdfaad7ffbf171d35ceb7a2d7ed11bd6

HTTP Headers

GET /smartlink/?a=43588&sm=34557&mt=18&s2=H66fingsg4kgLhtjWDZFv1 HTTP/1.1
Host: smartdt-secure.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 18 Apr 2023 11:09:38 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding, Accept-Encoding
set-cookie: gdm_visit_freq_v2_1_001=cjHKlCQ2XmMTjwTRoYhn8hBzDTKMnVJZar8qgpEEIdKq3nBvFGSnwDgBEIrHaTE2; Domain=.smartdt-secure.com; Expires=Mon, 17-Jul-2023 11:09:38 GMT; Path=/; Secure; SameSite=None
gdm_visit_freq_v1_1_001=cjHKlCQ2XmMTjwTRoYhn8hBzDTKMnVJZar8qgpEEIdKq3nBvFGSnwDgBEIrHaTE2; Domain=.smartdt-secure.com; Expires=Mon, 17-Jul-2023 11:09:38 GMT; Path=/
gdm_uid_v2_1_001=yS5krmWw31IGfa+a8ZYliijub8WBABVS/MRahljTik2QjP8M5ObW+Mfnx6ex08rd; Domain=.smartdt-secure.com; Expires=Mon, 17-Jul-2023 11:09:38 GMT; Path=/; Secure; SameSite=None
v_seg_freq_v2_1_001=tWBdMuRvMGdTwy3DvawSPmBRDVuxg5i5L3XoA4XV44E=; Domain=.smartdt-secure.com; Expires=Mon, 17-Jul-2023 11:09:38 GMT; Path=/; Secure; SameSite=None
gdm_suid_v2_1_001=HPfHs3OFxkaNOwO68jCjbQ==; Domain=.smartdt-secure.com; Expires=Mon, 17-Jul-2023 11:09:38 GMT; Path=/; Secure; SameSite=None
gdm_suid_v1_1_001=HPfHs3OFxkaNOwO68jCjbQ==; Domain=.smartdt-secure.com; Expires=Mon, 17-Jul-2023 11:09:38 GMT; Path=/
v_seg_freq_v1_1_001=tWBdMuRvMGdTwy3DvawSPmBRDVuxg5i5L3XoA4XV44E=; Domain=.smartdt-secure.com; Expires=Mon, 17-Jul-2023 11:09:38 GMT; Path=/
gdm_uid_v1_1_001=yS5krmWw31IGfa+a8ZYliijub8WBABVS/MRahljTik2QjP8M5ObW+Mfnx6ex08rd; Domain=.smartdt-secure.com; Expires=Mon, 17-Jul-2023 11:09:38 GMT; Path=/
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Sat, 1 May 2020 12:00:00 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With,X-Auth,Pasha-Jlob
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.smrt-assets.com/assets/1387/js/backoffer.js

23.36.76.144

200 OK

660 B

URL GET HTTP/1.1
cdn.smrt-assets.com/assets/1387/js/backoffer.js
IP
23.36.76.144:443
ASN
#20940 Akamai International B.V.

Requested by
https://smartdt-secure.com/smartlink/?a=43588&sm=34557&mt=18&s2=H66fingsg4kgLhtjWDZFv1
Certificate
IssuerLet's Encrypt
Subjectcdn.smrt-content.com
Fingerprint3B:AE:92:56:8F:1F:01:81:9B:8E:B4:3C:8B:EA:CA:90:38:83:37:38
ValidityWed, 15 Feb 2023 03:32:05 GMT - Tue, 16 May 2023 03:32:04 GMT

File type
ASCII text, with CRLF line terminators
Size
660 B (660 bytes)
Hash
e7e1dc07852a36f89e4be03aa3787316
0dc3f8e7eb943af093cf8f4600fcf0e421891025
33b8a5c4f883a3a775162d3c5287fe94bc4b22a86fe8b52fcb5aa615d2ffe388

HTTP Headers

GET /assets/1387/js/backoffer.js HTTP/1.1
Host: cdn.smrt-assets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smartdt-secure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 660
Last-Modified: Thu, 06 May 2021 12:38:04 GMT
ETag: "e7e1dc07852a36f89e4be03aa3787316"
Accept-Ranges: bytes
Server: AmazonS3
X-Amz-Cf-Pop: IAD89-P2
X-Amz-Cf-Id: wMlw0DS_2cpDlmt-hXkUlzPF3cZyUBp0ipiQ_g-kkKca6KpQvvKboA==
Date: Tue, 18 Apr 2023 11:09:39 GMT
Connection: keep-alive

cdn.smrt-assets.com/prod/push-lang-config.js

23.36.76.144

200 OK

2.4 kB

URL GET HTTP/1.1
cdn.smrt-assets.com/prod/push-lang-config.js
IP
23.36.76.144:443
ASN
#20940 Akamai International B.V.

Requested by
https://smartdt-secure.com/smartlink/?a=43588&sm=34557&mt=18&s2=H66fingsg4kgLhtjWDZFv1
Certificate
IssuerLet's Encrypt
Subjectcdn.smrt-content.com
Fingerprint3B:AE:92:56:8F:1F:01:81:9B:8E:B4:3C:8B:EA:CA:90:38:83:37:38
ValidityWed, 15 Feb 2023 03:32:05 GMT - Tue, 16 May 2023 03:32:04 GMT

File type
Unicode text, UTF-8 text, with very long lines (7658), with no line terminators
Size
2.4 kB (2366 bytes)
Hash
86caa25373c28e4a962df5e15f4c160f
7a992cdd21a4074c155ccc7016e7cf836a66dd85
fed4670767cf365c92e940800655239d096bd34d8bf6d2bad114b734fa754c11

HTTP Headers

GET /prod/push-lang-config.js HTTP/1.1
Host: cdn.smrt-assets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smartdt-secure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Tue, 15 Feb 2022 10:45:43 GMT
ETag: "7152525f63649929a736f6efb78b58a5"
x-amz-meta-s3cmd-attrs: atime:1644921890/ctime:1644921887/gid:20/gname:staff/md5:7152525f63649929a736f6efb78b58a5/mode:33188/mtime:1644921887/uid:501/uname:nimspy
Accept-Ranges: bytes
Server: AmazonS3
X-Amz-Cf-Pop: EWR53-C1
X-Amz-Cf-Id: PlzHg_kpLQKC63Gp9E61K1OBX5ibTIl975NYZyc2dmovD1t05XIN0Q==
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 18 Apr 2023 11:09:39 GMT
Content-Length: 2366
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8cd9aa01db60293b18dcdbae7d3721db
27cc709e8fbceb5eb651ab77c58678094a323b0b
bdb89cf524c1f48708a3b9cba1b202ee009e534603301b01d94fbafe462c28b8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 18 Apr 2023 11:09:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn.smrt-assets.com/prod/push-subscriber.js

23.36.76.144

200 OK

4.4 kB

URL GET HTTP/1.1
cdn.smrt-assets.com/prod/push-subscriber.js
IP
23.36.76.144:443
ASN
#20940 Akamai International B.V.

Requested by
https://smartdt-secure.com/smartlink/?a=43588&sm=34557&mt=18&s2=H66fingsg4kgLhtjWDZFv1
Certificate
IssuerLet's Encrypt
Subjectcdn.smrt-content.com
Fingerprint3B:AE:92:56:8F:1F:01:81:9B:8E:B4:3C:8B:EA:CA:90:38:83:37:38
ValidityWed, 15 Feb 2023 03:32:05 GMT - Tue, 16 May 2023 03:32:04 GMT

File type
ASCII text
Size
4.4 kB (4395 bytes)
Hash
d87a44d0aa0b54e75b2eb54c76bcf152
f765110fd22c73d181d9a2ea1b20de424b3d9e35
6ec5fc6e201f4cf0ba2754f2510363cad0ea29076f9775cc25a06ff71763c0f7

HTTP Headers

GET /prod/push-subscriber.js HTTP/1.1
Host: cdn.smrt-assets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smartdt-secure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Tue, 29 Mar 2022 15:19:51 GMT
ETag: "6b5bccad39f7057909ad0660f33cc2fa"
Accept-Ranges: bytes
Server: AmazonS3
X-Amz-Cf-Pop: FRA53-C1
X-Amz-Cf-Id: cuaR2AP57Dab-TQvEwQO6Q0_4aKR_XtxUr8w_x7BabhqnYoqrlbiPA==
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 18 Apr 2023 11:09:39 GMT
Content-Length: 4395
Connection: keep-alive

cdn.smrt-assets.com/assets/2196/css/puzzle.css

23.36.76.144

200 OK

573 B

URL GET HTTP/1.1
cdn.smrt-assets.com/assets/2196/css/puzzle.css
IP
23.36.76.144:443
ASN
#20940 Akamai International B.V.

Requested by
https://smartdt-secure.com/smartlink/?a=43588&sm=34557&mt=18&s2=H66fingsg4kgLhtjWDZFv1
Certificate
IssuerLet's Encrypt
Subjectcdn.smrt-content.com
Fingerprint3B:AE:92:56:8F:1F:01:81:9B:8E:B4:3C:8B:EA:CA:90:38:83:37:38
ValidityWed, 15 Feb 2023 03:32:05 GMT - Tue, 16 May 2023 03:32:04 GMT

File type
ASCII text, with CRLF line terminators
Size
573 B (573 bytes)
Hash
48a2c07a884d849e5b9df146c1636b9f
a936ceaa4f4f319c26a0ea3067b7f841f47b7e7d
e48765126d17b3089a124b4abe37327b50497fe035b4457e0506cbc243ce6d3d

HTTP Headers

GET /assets/2196/css/puzzle.css HTTP/1.1
Host: cdn.smrt-assets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smartdt-secure.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Last-Modified: Thu, 10 Feb 2022 10:15:57 GMT
ETag: "7eb5c070109b80f44de667bc1fe1dec8"
Accept-Ranges: bytes
Server: AmazonS3
X-Amz-Cf-Pop: JFK51-C1
X-Amz-Cf-Id: 1opbqFTvCkhnQmOLzAFyjWyIQdtopOULIkyyRmVMe_AYELVR0r2M3A==
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 18 Apr 2023 11:09:39 GMT
Content-Length: 573
Connection: keep-alive

cdn.smrt-assets.com/assets/2196/js/puzzle.js

23.36.76.144

200 OK

770 B

URL GET HTTP/1.1
cdn.smrt-assets.com/assets/2196/js/puzzle.js
IP
23.36.76.144:443
ASN
#20940 Akamai International B.V.

Requested by
https://smartdt-secure.com/smartlink/?a=43588&sm=34557&mt=18&s2=H66fingsg4kgLhtjWDZFv1
Certificate
IssuerLet's Encrypt
Subjectcdn.smrt-content.com
Fingerprint3B:AE:92:56:8F:1F:01:81:9B:8E:B4:3C:8B:EA:CA:90:38:83:37:38
ValidityWed, 15 Feb 2023 03:32:05 GMT - Tue, 16 May 2023 03:32:04 GMT

File type
ASCII text, with CRLF line terminators
Size
770 B (770 bytes)
Hash
729efb6f1b7c806ec8db3ed5009713d3
14c545752b5f534a2e53f06da662c123f2342405
82069203ef1b2ad0b06f19e6a1d369bc201d440295fa829405bffb1eb29d9375

HTTP Headers

GET /assets/2196/js/puzzle.js HTTP/1.1
Host: cdn.smrt-assets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smartdt-secure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 770
Last-Modified: Thu, 10 Feb 2022 09:31:12 GMT
ETag: "729efb6f1b7c806ec8db3ed5009713d3"
Accept-Ranges: bytes
Server: AmazonS3
X-Amz-Cf-Pop: EWR52-C3
X-Amz-Cf-Id: j-icFGQGqPfcBL5ZmJXzulCBQ0RIwwZqBwTHNjFE3QzbBOrB_mMWQg==
Date: Tue, 18 Apr 2023 11:09:39 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
62cfe57b4773046a41d40cfbc8f044fc
78fcc3231c90a662763e09ff074f01a18e0a4049
84c4c8501ba7c409b0f2f327a55facd956c33066485cf9621b3af195aa6a9344

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 18 Apr 2023 11:09:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.r2m01.amazontrust.com/

143.204.48.16

471 B

URL
ocsp.r2m01.amazontrust.com/
IP
143.204.48.16:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
1edab4f7660f6cb25fee364e379eba3b
396d5111771817593947061afa934a6879d548e0
75792fb00b3fe645df18b1925e6ce11ef39a5116ef62fa6f9f0620a2fc779e9d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=149456
Date: Tue, 18 Apr 2023 11:09:39 GMT
Etag: "643e068a-1d7"
Expires: Thu, 20 Apr 2023 04:40:35 GMT
Last-Modified: Tue, 18 Apr 2023 02:55:06 GMT
Server: ECAcc (dcb/732C)
X-Cache: Miss from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 6Cd8VBvTYcYwfD44puzqSsPZqo4oPBFXbHNPQ3iaxT7kpVmyIhE9Zw==
Age: 6329

cdn.smrt-assets.com/assets/2217/js/multilang_clean.js

23.36.76.144

200 OK

8.4 kB

URL GET HTTP/1.1
cdn.smrt-assets.com/assets/2217/js/multilang_clean.js
IP
23.36.76.144:443
ASN
#20940 Akamai International B.V.

Requested by
https://smartdt-secure.com/smartlink/?a=43588&sm=34557&mt=18&s2=H66fingsg4kgLhtjWDZFv1
Certificate
IssuerLet's Encrypt
Subjectcdn.smrt-content.com
Fingerprint3B:AE:92:56:8F:1F:01:81:9B:8E:B4:3C:8B:EA:CA:90:38:83:37:38
ValidityWed, 15 Feb 2023 03:32:05 GMT - Tue, 16 May 2023 03:32:04 GMT

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
8.4 kB (8366 bytes)
Hash
c4123ba4624775b7920a381033272c9f
42c8a7d51891721d7006c1474be2a04c49ffa837
3f7de24346edb88250a8bc2e280a3d1f1bedb49288870f88cb774598765476af

HTTP Headers

GET /assets/2217/js/multilang_clean.js HTTP/1.1
Host: cdn.smrt-assets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smartdt-secure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/javascript
Last-Modified: Mon, 28 Nov 2022 16:27:13 GMT
ETag: "2b7c005b780245b24a87aff54a96eefe"
Accept-Ranges: bytes
Server: AmazonS3
X-Amz-Cf-Pop: JFK50-P7
X-Amz-Cf-Id: dnOLOQaG5eqvAOGFOtbmU_8GRCBz1ER5_VsNJk3GcXIwtraUt_ajpQ==
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 18 Apr 2023 11:09:39 GMT
Content-Length: 8366
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
43db2c964498883fd98799a8b1dc6ea4
4814b7cbb03111d02286329392d2735225df3a5c
44b1d4e6c4b4ba2f50b3344787b34e1c8100454ce01eccd79c4c949fb7491690

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 18 Apr 2023 11:09:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn.smrt-assets.com/assets/2215/images/bg.jpg

23.36.76.144

200 OK

11 kB

URL GET HTTP/1.1
cdn.smrt-assets.com/assets/2215/images/bg.jpg
IP
23.36.76.144:443
ASN
#20940 Akamai International B.V.

Requested by
https://smartdt-secure.com/smartlink/?a=43588&sm=34557&mt=18&s2=H66fingsg4kgLhtjWDZFv1
Certificate
IssuerLet's Encrypt
Subjectcdn.smrt-content.com
Fingerprint3B:AE:92:56:8F:1F:01:81:9B:8E:B4:3C:8B:EA:CA:90:38:83:37:38
ValidityWed, 15 Feb 2023 03:32:05 GMT - Tue, 16 May 2023 03:32:04 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 400x600, components 3\012- data
Size
11 kB (10697 bytes)
Hash
cd2d85846db5110b29e96aa303e69060
3232bcd485081734e1202aa7296e60b8d29a7352
84a37cc5a0386fd31ea7d45bf8de3414e3950062ae325619ce7d9d41109eddd7

HTTP Headers

GET /assets/2215/images/bg.jpg HTTP/1.1
Host: cdn.smrt-assets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smartdt-secure.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 10697
Last-Modified: Thu, 17 Feb 2022 10:46:50 GMT
ETag: "cd2d85846db5110b29e96aa303e69060"
Accept-Ranges: bytes
Server: AmazonS3
X-Amz-Cf-Pop: EWR53-P1
X-Amz-Cf-Id: C9o3l1vK-YLw-nT1NZP6UqhERxl07Hp4TWL8guydG0YdVQmMogRiHQ==
Date: Tue, 18 Apr 2023 11:09:39 GMT
Connection: keep-alive

cdn.smrt-content.com/prod/push-utils.js

23.36.76.147

200 OK

3.6 kB

URL GET HTTP/1.1
cdn.smrt-content.com/prod/push-utils.js
IP
23.36.76.147:443
ASN
#20940 Akamai International B.V.

Requested by
https://smartdt-secure.com/smartlink/?a=43588&sm=34557&mt=18&s2=H66fingsg4kgLhtjWDZFv1
Certificate
IssuerLet's Encrypt
Subjectcdn.smrt-content.com
Fingerprint3B:AE:92:56:8F:1F:01:81:9B:8E:B4:3C:8B:EA:CA:90:38:83:37:38
ValidityWed, 15 Feb 2023 03:32:05 GMT - Tue, 16 May 2023 03:32:04 GMT

File type
C source, ASCII text, with very long lines (1971)
Size
3.6 kB (3647 bytes)
Hash
66b8348a97eaecf14cc35f1326f1cf1a
0c0c17bebbd46240c30a6b1ed85ccfd3b6053bba
7b5ba9e8001cd959f85c8c76eccaf60588909154bac817afb232d7d4a98d2696

HTTP Headers

GET /prod/push-utils.js HTTP/1.1
Host: cdn.smrt-content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smartdt-secure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Tue, 15 Feb 2022 10:45:43 GMT
ETag: "a288177a606a9686132970835b3e572c"
x-amz-meta-s3cmd-attrs: atime:1644921893/ctime:1644921893/gid:20/gname:staff/md5:a288177a606a9686132970835b3e572c/mode:33188/mtime:1644921893/uid:501/uname:nimspy
Accept-Ranges: bytes
Server: AmazonS3
X-Amz-Cf-Pop: EWR53-C1
X-Amz-Cf-Id: TmcfYbpq_e2BMUO-lKBbDZjl7EL4esTxnvZXoiV60ZaJrHN5wRZ8ig==
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 18 Apr 2023 11:09:39 GMT
Content-Length: 3647
Connection: keep-alive

www.googletagmanager.com/gtm.js?id=GTM-TR8VQRX

142.250.74.168

200 OK

48 kB

URL GET HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-TR8VQRX
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://smartdt-secure.com/smartlink/?a=43588&sm=34557&mt=18&s2=H66fingsg4kgLhtjWDZFv1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint0D:E0:7D:60:57:50:BA:EB:CA:6E:2A:3F:20:5B:C7:91:67:89:3F:09
ValidityTue, 28 Mar 2023 16:45:47 GMT - Tue, 20 Jun 2023 16:45:46 GMT

File type
ASCII text, with very long lines (2274)
Size
48 kB (48322 bytes)
Hash
1a59b633619d6070388b16054e1e7fd5
593df7471cd1f4467bfdd1bd9454422a92783eda
070602f7370d5d08a34025ebc970df8ae40e701115f4dd859c406355f6e0833d

HTTP Headers

GET /gtm.js?id=GTM-TR8VQRX HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smartdt-secure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 18 Apr 2023 11:09:39 GMT
expires: Tue, 18 Apr 2023 11:09:39 GMT
cache-control: private, max-age=900
last-modified: Tue, 18 Apr 2023 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 48322
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
43db2c964498883fd98799a8b1dc6ea4
4814b7cbb03111d02286329392d2735225df3a5c
44b1d4e6c4b4ba2f50b3344787b34e1c8100454ce01eccd79c4c949fb7491690

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 18 Apr 2023 11:09:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=G-C3EPRPS8FB&l=dataLayer&cx=c

142.250.74.168

200 OK

78 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-C3EPRPS8FB&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://smartdt-secure.com/smartlink/?a=43588&sm=34557&mt=18&s2=H66fingsg4kgLhtjWDZFv1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint0D:E0:7D:60:57:50:BA:EB:CA:6E:2A:3F:20:5B:C7:91:67:89:3F:09
ValidityTue, 28 Mar 2023 16:45:47 GMT - Tue, 20 Jun 2023 16:45:46 GMT

File type
ASCII text, with very long lines (19390)
Size
78 kB (78359 bytes)
Hash
a7b0b37cb960318a9ef3403077a9ec88
7ea3081c4f5be2f08b432ff1a4fa1513dae4cda2
459a3d84f251aad647a94054e599833acfd8529e188edcdf4994ef111acfe32f

HTTP Headers

GET /gtag/js?id=G-C3EPRPS8FB&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.googletagmanager.com
Connection: keep-alive
Referer: https://smartdt-secure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 18 Apr 2023 11:09:39 GMT
expires: Tue, 18 Apr 2023 11:09:39 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78359
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

smartdt-secure.com/service-worker.js

45.141.159.22

45 kB

URL
smartdt-secure.com/service-worker.js
IP
45.141.159.22:0
ASN
#206776 Ophidian Network Limited

Certificate
IssuerLet's Encrypt
Subjectsmartdt-secure.com
Fingerprint09:B1:7F:8D:15:10:D8:F3:5E:11:2F:1C:AE:D4:FB:31:D1:D2:37:DA
ValidityTue, 28 Feb 2023 01:42:30 GMT - Mon, 29 May 2023 01:42:29 GMT

File type
data
Size
45 kB (44672 bytes)
Hash
7940208eb54f4cc33bcfaa5c5fb94a90
2a606d74722a7e12d1eb863c4f6c8d4d4ca71b78
28b7a8242ee1122f2ddec8055ea2185f98d6af77c73241e72a5ccf67330c80af

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /service-worker.js HTTP/1.1
Host: smartdt-secure.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: gdm_visit_freq_v2_1_001=cjHKlCQ2XmMTjwTRoYhn8hBzDTKMnVJZar8qgpEEIdKq3nBvFGSnwDgBEIrHaTE2; gdm_visit_freq_v1_1_001=cjHKlCQ2XmMTjwTRoYhn8hBzDTKMnVJZar8qgpEEIdKq3nBvFGSnwDgBEIrHaTE2; gdm_uid_v2_1_001=yS5krmWw31IGfa+a8ZYliijub8WBABVS/MRahljTik2QjP8M5ObW+Mfnx6ex08rd; v_seg_freq_v2_1_001=tWBdMuRvMGdTwy3DvawSPmBRDVuxg5i5L3XoA4XV44E=; gdm_suid_v2_1_001=HPfHs3OFxkaNOwO68jCjbQ==; gdm_suid_v1_1_001=HPfHs3OFxkaNOwO68jCjbQ==; v_seg_freq_v1_1_001=tWBdMuRvMGdTwy3DvawSPmBRDVuxg5i5L3XoA4XV44E=; gdm_uid_v1_1_001=yS5krmWw31IGfa+a8ZYliijub8WBABVS/MRahljTik2QjP8M5ObW+Mfnx6ex08rd
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 18 Apr 2023 11:09:39 GMT
content-type: text/javascript;charset=utf-8
vary: Accept-Encoding, Accept-Encoding
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Sat, 1 May 2020 12:00:00 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With,X-Auth,Pasha-Jlob
content-encoding: gzip
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-5R6C28C

142.250.74.168

200 OK

39 kB

URL GET HTTP/3
www.googletagmanager.com/gtm.js?id=GTM-5R6C28C
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://smartdt-secure.com/smartlink/?a=43588&sm=34557&mt=18&s2=H66fingsg4kgLhtjWDZFv1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint0D:E0:7D:60:57:50:BA:EB:CA:6E:2A:3F:20:5B:C7:91:67:89:3F:09
ValidityTue, 28 Mar 2023 16:45:47 GMT - Tue, 20 Jun 2023 16:45:46 GMT

File type
ASCII text, with very long lines (2206)
Size
39 kB (39061 bytes)
Hash
3990b42ac1a4f2b9dd0e178f766cdfd4
e4308de838ea5b54656f19f4f8c3ae5e3a21dd68
09634ced817270d1cdcaa77afc84641b82658b983af3f2b57427416a1a446ab6

HTTP Headers

GET /gtm.js?id=GTM-5R6C28C HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.googletagmanager.com
Connection: keep-alive
Referer: https://smartdt-secure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 18 Apr 2023 11:09:39 GMT
expires: Tue, 18 Apr 2023 11:09:39 GMT
cache-control: private, max-age=900
last-modified: Tue, 18 Apr 2023 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 39061
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.googletagmanager.com/gtm.js?id=GTM-5R6C28C

142.250.74.168

200 OK

39 kB

URL GET HTTP/3
www.googletagmanager.com/gtm.js?id=GTM-5R6C28C
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://smartdt-secure.com/smartlink/?a=43588&sm=34557&mt=18&s2=H66fingsg4kgLhtjWDZFv1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint0D:E0:7D:60:57:50:BA:EB:CA:6E:2A:3F:20:5B:C7:91:67:89:3F:09
ValidityTue, 28 Mar 2023 16:45:47 GMT - Tue, 20 Jun 2023 16:45:46 GMT

File type
ASCII text, with very long lines (2206)
Size
39 kB (39063 bytes)
Hash
a82e7b40417d9925e68c103414396e89
37a1468ad5635f058158950f2bd5979a840923e8
f81dfe7c38fca4d8418187db9c5aa629f485471f457657a3bd8c87cd67a6a38d

HTTP Headers

GET /gtm.js?id=GTM-5R6C28C HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.googletagmanager.com
Connection: keep-alive
Referer: https://smartdt-secure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 18 Apr 2023 11:09:39 GMT
expires: Tue, 18 Apr 2023 11:09:39 GMT
cache-control: private, max-age=900
last-modified: Tue, 18 Apr 2023 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 39063
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

tsyndicate.com/api/v1/retargeting/set/3f949dfe-3372-4caa-baf0-047f88323cfa?pageviewe={pageviewe}&lead={lead}

168.119.1.208

200 OK

35 B

URL GET HTTP/2
tsyndicate.com/api/v1/retargeting/set/3f949dfe-3372-4caa-baf0-047f88323cfa?pageviewe={pageviewe}&lead={lead}
IP
168.119.1.208:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://smartdt-secure.com/smartlink/?a=43588&sm=34557&mt=18&s2=H66fingsg4kgLhtjWDZFv1
Certificate
IssuerLet's Encrypt
Subjecttsyndicate.com
Fingerprint78:C4:DB:8D:7E:12:80:0F:A0:B5:E1:B6:0B:3E:B2:46:7E:69:3D:8E
ValidityWed, 12 Apr 2023 09:07:49 GMT - Tue, 11 Jul 2023 09:07:48 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
35 B (35 bytes)
Hash
c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992

HTTP Headers

GET /api/v1/retargeting/set/3f949dfe-3372-4caa-baf0-047f88323cfa?pageviewe={pageviewe}&lead={lead} HTTP/1.1
Host: tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smartdt-secure.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 18 Apr 2023 11:09:39 GMT
content-type: text/plain; charset=utf-8
content-length: 35
pragma: no-cache
expires: 0
vary: *
x-api-version: 1
x-request-id: 71448cf3dbe5817c
set-cookie: ts_rt_3f949dfe-3372-4caa-baf0-047f88323cfa=ANmUCUOmR4kbQgQSPEjEBJwwZ8rYSVPmThmDCB9GnFixDMOA; expires=Wed, 17 Apr 2024 11:09:39 GMT; path=/; HttpOnly; secure; SameSite=None
cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform
x-robots-tag: none, noindex, nofollow
report-to: { "url": "https://pxl.tsyndicate.com/api/v1/heavy-ad/report", "max_age": 86401 }
X-Firefox-Spdy: h2

ocsp.r2m01.amazontrust.com/

143.204.48.16

471 B

URL
ocsp.r2m01.amazontrust.com/
IP
143.204.48.16:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
0da5d920d0173c090b07f478adec6c47
f7f1c112f613d005c7013d66204a0345044ac646
2569e178ace2b9cf01e14daa1dd12b5650fde92ec6244a39747ddc015aaaa7ad

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 18 Apr 2023 11:09:39 GMT
Etag: "643e472d-1d7"
Last-Modified: Tue, 18 Apr 2023 09:45:52 GMT
Server: ECAcc (dcb/7F7B)
X-Cache: Miss from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: uTN1aHnHn7ZnLE68uBl9O7aj3s_qV8KGeDwMh7_--hdCsvTQ2sQHOA==
Age: 5027

cdn.smrt-assets.com/assets/1373/other/favicon.ico

23.36.76.144

200 OK

1.2 kB

URL GET HTTP/1.1
cdn.smrt-assets.com/assets/1373/other/favicon.ico
IP
23.36.76.144:443
ASN
#20940 Akamai International B.V.

Requested by
https://smartdt-secure.com/smartlink/?a=43588&sm=34557&mt=18&s2=H66fingsg4kgLhtjWDZFv1
Certificate
IssuerLet's Encrypt
Subjectcdn.smrt-content.com
Fingerprint3B:AE:92:56:8F:1F:01:81:9B:8E:B4:3C:8B:EA:CA:90:38:83:37:38
ValidityWed, 15 Feb 2023 03:32:05 GMT - Tue, 16 May 2023 03:32:04 GMT

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
38722a803b73dd1871a3d8a19db44d2f
3379960a2c6611bfefcb39e662198d6df322e12d
314dc8584b1a7c7d66a5882b6d153c53ceae37d7137df7b67ddd9735187f2c97

HTTP Headers

GET /assets/1373/other/favicon.ico HTTP/1.1
Host: cdn.smrt-assets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smartdt-secure.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Wed, 28 Apr 2021 11:28:55 GMT
ETag: "38722a803b73dd1871a3d8a19db44d2f"
Accept-Ranges: bytes
Server: AmazonS3
X-Amz-Cf-Pop: IAD66-C1
X-Amz-Cf-Id: JbGE-qPp-rz1sjNie-YOUT5WYN1nceHRFWqeEDCyU1T8VI4fT_WTxA==
Date: Tue, 18 Apr 2023 11:09:39 GMT
Connection: keep-alive

guard.cdtbox.rocks/color?x=1&forScheme=aHR0cHM6Ly9zbWFydGR0LXNlY3VyZS5jb20vc21hcnRsaW5rLz9hPTQzNTg4JnNtPTM0NTU3Jm10PTE4JnMyPUg2NmZpbmdzZzRrZ0xodGpXRFpGdjE=

34.202.149.17

204 No Content

0 B

URL GET HTTP/2
guard.cdtbox.rocks/color?x=1&forScheme=aHR0cHM6Ly9zbWFydGR0LXNlY3VyZS5jb20vc21hcnRsaW5rLz9hPTQzNTg4JnNtPTM0NTU3Jm10PTE4JnMyPUg2NmZpbmdzZzRrZ0xodGpXRFpGdjE=
IP
34.202.149.17:443
ASN
#14618 AMAZON-AES

Requested by
https://smartdt-secure.com/smartlink/?a=43588&sm=34557&mt=18&s2=H66fingsg4kgLhtjWDZFv1
Certificate
IssuerAmazon
Subjectguard.cdtbox.rocks
Fingerprint70:69:C4:A4:08:9B:B7:01:96:C9:A8:B3:F1:E2:0B:31:8A:E9:A5:BE
ValidityFri, 17 Feb 2023 00:00:00 GMT - Wed, 12 Jul 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /color?x=1&forScheme=aHR0cHM6Ly9zbWFydGR0LXNlY3VyZS5jb20vc21hcnRsaW5rLz9hPTQzNTg4JnNtPTM0NTU3Jm10PTE4JnMyPUg2NmZpbmdzZzRrZ0xodGpXRFpGdjE= HTTP/1.1
Host: guard.cdtbox.rocks
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://smartdt-secure.com
Connection: keep-alive
Referer: https://smartdt-secure.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Tue, 18 Apr 2023 11:09:39 GMT
server: nginx
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: *
X-Firefox-Spdy: h2

static.trafficjunky.com/js/mp.min.js

205.185.208.79

200 OK

3.6 kB

URL GET HTTP/2
static.trafficjunky.com/js/mp.min.js
IP
205.185.208.79:443
ASN
#20446 STACKPATH-CDN

Requested by
https://smartdt-secure.com/smartlink/?a=43588&sm=34557&mt=18&s2=H66fingsg4kgLhtjWDZFv1
Certificate
IssuerDigiCert Inc
Subject*.trafficjunky.com
Fingerprint01:2D:E1:46:F5:CE:F5:7B:73:7F:78:24:95:20:3F:CD:90:75:BF:60
ValidityTue, 20 Sep 2022 00:00:00 GMT - Thu, 19 Oct 2023 23:59:59 GMT

File type
ASCII text, with very long lines (10690), with no line terminators
Size
3.6 kB (3628 bytes)
Hash
044c370813dc1ea880f32a5be81384e7
53b0733cfc26f2bc7e83d1da0c087d5513fcf548
2acb7fa7d04e9c94971b02b9f67140f2bcc9fb51ee361096c735e7f81518c94c

HTTP Headers

GET /js/mp.min.js HTTP/1.1
Host: static.trafficjunky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smartdt-secure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 18 Apr 2023 11:09:40 GMT
etag: "1652721327"
cache-control: max-age=31536000
content-encoding: gzip
content-length: 3628
content-type: application/javascript
last-modified: Mon, 16 May 2022 17:15:27 GMT
accept-ranges: bytes
x-hw: 1681816180.dop225.sk1.t,1681816180.cds261.sk1.hn,1681816180.cds003.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2

statisticresearch.com/user-segments/?pid=TH

52.1.184.75

200 OK

3.7 kB

URL GET HTTP/2
statisticresearch.com/user-segments/?pid=TH
IP
52.1.184.75:443
ASN
#14618 AMAZON-AES

Requested by
https://smartdt-secure.com/smartlink/?a=43588&sm=34557&mt=18&s2=H66fingsg4kgLhtjWDZFv1
Certificate
IssuerAmazon
Subjectstatisticresearch.com
FingerprintFE:D6:14:F1:D7:CD:B0:9D:65:67:60:ED:C2:3D:1E:27:FC:80:4E:0D
ValidityTue, 07 Mar 2023 00:00:00 GMT - Thu, 04 Apr 2024 23:59:59 GMT

File type
data
Size
3.7 kB (3690 bytes)
Hash
02f32489502d156babc1950721072320
e5ff2f4493acf5376df9a2b3fca39a658e20a9d6
a899df1d523dc8a14e105dbeafc7be8300e375a96cb823eaa798fff6367e19f6

HTTP Headers

GET /user-segments/?pid=TH HTTP/1.1
Host: statisticresearch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smartdt-secure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 18 Apr 2023 11:09:39 GMT
server: nginx
X-Firefox-Spdy: h2

static.trafficjunky.com/js/mp.min.js

205.185.208.79

200 OK

3.6 kB

URL GET HTTP/2
static.trafficjunky.com/js/mp.min.js
IP
205.185.208.79:443
ASN
#20446 STACKPATH-CDN

Requested by
https://smartdt-secure.com/smartlink/?a=43588&sm=34557&mt=18&s2=H66fingsg4kgLhtjWDZFv1
Certificate
IssuerDigiCert Inc
Subject*.trafficjunky.com
Fingerprint01:2D:E1:46:F5:CE:F5:7B:73:7F:78:24:95:20:3F:CD:90:75:BF:60
ValidityTue, 20 Sep 2022 00:00:00 GMT - Thu, 19 Oct 2023 23:59:59 GMT

File type
ASCII text, with very long lines (10690), with no line terminators
Size
3.6 kB (3628 bytes)
Hash
044c370813dc1ea880f32a5be81384e7
53b0733cfc26f2bc7e83d1da0c087d5513fcf548
2acb7fa7d04e9c94971b02b9f67140f2bcc9fb51ee361096c735e7f81518c94c

HTTP Headers

GET /js/mp.min.js HTTP/1.1
Host: static.trafficjunky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smartdt-secure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 18 Apr 2023 11:09:40 GMT
etag: "1652721327"
cache-control: max-age=31536000
content-encoding: gzip
content-length: 3628
content-type: application/javascript
last-modified: Mon, 16 May 2022 17:15:27 GMT
accept-ranges: bytes
x-hw: 1681816180.dop225.sk1.t,1681816180.cds261.sk1.hn,1681816180.cds003.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2

www.gstatic.com/firebasejs/5.0.2/firebase-app.js

142.250.74.99

200 OK

8.6 kB

URL GET HTTP/2
www.gstatic.com/firebasejs/5.0.2/firebase-app.js
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://smartdt-secure.com/smartlink/?a=43588&sm=34557&mt=18&s2=H66fingsg4kgLhtjWDZFv1
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE8:8D:29:52:9C:44:66:28:BB:43:25:CE:11:45:BB:A1:5A:4E:44:11
ValidityTue, 28 Mar 2023 16:54:02 GMT - Tue, 20 Jun 2023 16:54:01 GMT

File type
ASCII text, with very long lines (25088)
Size
8.6 kB (8604 bytes)
Hash
73069e532b7039778d3a7128c997c61a
c523bbf1ac7f4e612c8ade75434c42fbca885adc
b6d7aec09aad2bb78dfbad4c9530fd03c0f33aed8385c3ee57c10b1fe959c4d5

HTTP Headers

GET /firebasejs/5.0.2/firebase-app.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.gstatic.com
Connection: keep-alive
Referer: https://smartdt-secure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 8604
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 16 Apr 2023 18:07:16 GMT
expires: Mon, 15 Apr 2024 18:07:16 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 10 May 2018 20:35:51 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 147744
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/firebasejs/5.0.2/firebase-messaging.js

142.250.74.99

200 OK

10 kB

URL GET HTTP/2
www.gstatic.com/firebasejs/5.0.2/firebase-messaging.js
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://smartdt-secure.com/smartlink/?a=43588&sm=34557&mt=18&s2=H66fingsg4kgLhtjWDZFv1
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE8:8D:29:52:9C:44:66:28:BB:43:25:CE:11:45:BB:A1:5A:4E:44:11
ValidityTue, 28 Mar 2023 16:54:02 GMT - Tue, 20 Jun 2023 16:54:01 GMT

File type
ASCII text, with very long lines (35547)
Size
10 kB (10017 bytes)
Hash
fa9987a23f5a9d865766e952511baa30
f2e620b99ee61a01671ba6a9e22ca75d58a1b52d
655daa1e20bf3aff16bc8462339dfea48c7ea5d3dd3505937015af3586d15fb7

HTTP Headers

GET /firebasejs/5.0.2/firebase-messaging.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.gstatic.com
Connection: keep-alive
Referer: https://smartdt-secure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 10017
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 15 Apr 2023 10:06:04 GMT
expires: Sun, 14 Apr 2024 10:06:04 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 10 May 2018 20:35:52 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 263017
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

ipinfo.io/json?callback=jQuery351015667437774130188_1681816307421&_=1681816307422

34.117.59.81

200 OK

674 B

URL GET HTTP/2
ipinfo.io/json?callback=jQuery351015667437774130188_1681816307421&_=1681816307422
IP
34.117.59.81:443
ASN
#15169 GOOGLE

Requested by
https://smartdt-secure.com/smartlink/?a=43588&sm=34557&mt=18&s2=H66fingsg4kgLhtjWDZFv1
Certificate
IssuerLet's Encrypt
Subject*.host.io
FingerprintEB:33:98:3B:B5:43:E8:22:00:EE:17:5A:81:09:9C:7A:A9:1A:4F:3F
ValidityMon, 27 Mar 2023 11:03:46 GMT - Sun, 25 Jun 2023 11:03:45 GMT

File type
ASCII text, with very long lines (765), with no line terminators
Size
674 B (674 bytes)
Hash
172389cdaa45b2c2157a705c492d92a0
24a82fb6c6740a2ac735290ef16f6d8ec7e6833c
3b4223570ff3043f59c7e083db178c854906deff4f17a73abbda284845ed8be3

HTTP Headers

GET /json?callback=jQuery351015667437774130188_1681816307421&_=1681816307422 HTTP/1.1
Host: ipinfo.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smartdt-secure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-type: text/javascript; charset=utf-8
date: Tue, 18 Apr 2023 11:09:39 GMT
x-envoy-upstream-service-time: 2
strict-transport-security: max-age=2592000; includeSubDomains
vary: Accept-Encoding
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (26)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash