Report - dangky4gvina.com/

Report Overview

Submitted URL
dangky4gvina.com/
IP
162.255.119.145
ASN
#22612 NAMECHEAP-NET
Submitted
2023-05-22 05:37:23
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
2
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ocsp.pki.goog	175	2016-06-13	2018-07-01	2023-05-22	2.0 kB	4.2 kB	142.250.74.131
www.dangky4gvina.com	unknown	2022-11-21	2023-01-29	2023-01-29	1.0 kB	4.5 kB	198.54.117.216
js.parkingcrew.net	94546	2011-01-24	2017-01-29	2023-05-22	1.9 kB	4.9 kB	185.53.178.30
parkingcrew.net	54699	2011-01-24	2013-04-19	2019-03-28	387 B	3.9 kB	185.53.179.29
d38psrni17bvxu.cloudfront.net	unknown	2008-04-25	2022-09-22	2023-05-22	349 B	6.1 kB	54.230.245.130
www.google.com	7	1997-09-15	2015-05-10	2023-05-21	5.3 kB	120 kB	216.58.207.228
afs.googleusercontent.com	12123	2008-11-17	2013-05-06	2023-05-22	967 B	2.1 kB	142.250.74.97
dangky4gvina.com	unknown	unknown	2019-06-11	2023-04-17	658 B	586 B	162.255.119.145
i.cdnpark.com	93792	2011-11-09	2014-04-23	2019-03-24	1.1 kB	8.4 kB	143.204.55.116

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-05-22 05:37:18	low	162.255.119.145	Client IP	ET INFO Namecheap URL Forward
2023-05-22 05:37:19	low	162.255.119.145	Client IP	ET INFO Namecheap URL Forward

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (14)

	URL	Size	First Seen	Last Seen
	www.google.com/afs/ads/i/iframe.html	1.3 kB	2023-04-05	2024-04-25
Pretty URL www.google.com/afs/ads/i/iframe.html IP 216.58.207.228 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-05 04:36:39 Last Seen2024-04-25 10:28:09 Times Seen21887 Hash 33839cb72649c81ab58b763c95b4a163 0c9b62881e660fded013cee58439ae287690065a cdded269406c9b2b49a3066d12e75913abf338cdd7fa00e31fff299efef1cb76 Loading...

	www.google.com/adsense/domains/caf.js?abp=1	148 kB	2023-05-17	2023-05-25
Pretty URL www.google.com/adsense/domains/caf.js?abp=1 IP 216.58.207.228 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-17 21:09:15 Last Seen2023-05-25 21:48:07 Times Seen204 Hash 489307b0ca0250be57c3e7f9179b2a97 94d23f0892466141a0274678878443a9d6dd9060 4c52f86fa67d47ac48dcf49356b3bc236b41b0105e911f2decebb72d49ee74f3 Loading...

	js.parkingcrew.net/assets/scripts/registrar-caf/243142.js	3.0 kB	2023-03-07	2023-09-26
Pretty URL js.parkingcrew.net/assets/scripts/registrar-caf/243142.js IP 185.53.178.30 ASN #19905 NEUSTAR-AS6 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:07 Last Seen2023-09-26 11:43:53 Times Seen8981 Hash 23316d6bbbe4b9d7c85945ce4c9428e5 f7c03d2a03416a697d658cf799620684f958664b 119710c0d9e01024bc9d65493a77b661196c02706ce008f5152f78b3c224a981 Loading...

	www.dangky4gvina.com/	0 B	2023-03-07	2024-04-25
Pretty URL www.dangky4gvina.com/ IP 198.54.117.216 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 11:01:58 Times Seen37061732 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.google.com/afs/ads?pcsa=false&channel=000001&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.dangky4gvina.com%2F%3Fcaf&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2744431292869648&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301140%2C17301141%2C17301143&format=r10%7Cs&nocache=3701684733832173&num=0&output=afd_ads&domain_name=www.dangky4gvina.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1684733832178&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=329&frm=0&cl=532122288&uio=--&cont=tc_holder1&jsid=caf&jsv=532122288&rurl=http%3A%2F%2Fwww.dangky4gvina.com%2F&adbw=slave-1-1%3A720%2Cmaster-1%3A720	8.5 kB	2023-05-22	2023-05-22
Pretty URL www.google.com/afs/ads?pcsa=false&channel=000001&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.dangky4gvina.com%2F%3Fcaf&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2744431292869648&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301140%2C17301141%2C17301143&format=r10%7Cs&nocache=3701684733832173&num=0&output=afd_ads&domain_name=www.dangky4gvina.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1684733832178&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=329&frm=0&cl=532122288&uio=--&cont=tc_holder1&jsid=caf&jsv=532122288&rurl=http%3A%2F%2Fwww.dangky4gvina.com%2F&adbw=slave-1-1%3A720%2Cmaster-1%3A720 IP 216.58.207.228 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-22 07:37:26 Last Seen2023-05-22 07:37:26 Times Seen1 Hash dc23351670436848784b5304a2d02198 2d118b559230f4737721efab6b6c37ec37750ec5 df473fe6779b9386da893e5686b5101dec5fd778e1bf72405e616ec066f81a2b Loading...

	www.google.com/adsense/domains/caf.js	148 kB	2023-05-16	2023-05-23
Pretty URL www.google.com/adsense/domains/caf.js IP 216.58.207.228 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-16 18:32:43 Last Seen2023-05-23 21:50:17 Times Seen864 Hash 8b130162e94f990b134e4f1c0da26ad1 1e398d514c96676115d7d822290ec169fc0ae85d e509587553ad47d5ec705b96857ff4237036c885ca7febb0a2c2b00c8aec6a29 Loading...

	www.dangky4gvina.com/	0 B	2023-03-07	2024-04-25
Pretty URL www.dangky4gvina.com/ IP 198.54.117.216 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 11:01:58 Times Seen37061732 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	parkingcrew.net/jsparkcaf.php?regcn=243142&_v=2&_h=www.dangky4gvina.com&_t=1684733831117	3.6 kB	2023-05-22	2023-05-22
Pretty URL parkingcrew.net/jsparkcaf.php?regcn=243142&_v=2&_h=www.dangky4gvina.com&_t=1684733831117 IP 185.53.179.29 ASN #61969 Team Internet AG Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-22 07:37:26 Last Seen2023-05-22 07:37:26 Times Seen2 Hash cc1c9559b1e7ef9e95c33648ecf28c4b 635d16ecc08f72b8f61b605e6b61893112da382b 5eabb464e2d9e6abc83c269b7e3bca6523e281d06cea5768f2ed088016213a8f Loading...

	d38psrni17bvxu.cloudfront.net/scripts/jsparkcaf.js	5.6 kB	2023-03-07	2023-09-26
Pretty URL d38psrni17bvxu.cloudfront.net/scripts/jsparkcaf.js IP 54.230.245.130 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:07 Last Seen2023-09-26 11:43:53 Times Seen10069 Hash 6f95d346f97b06c2d81a5cb147d35de0 c591eaa19ed0d227b4555f5e699b668b05aa40b0 35ca990c39f9194a5a17ff664a0fdcc7dfb6cb433ea6844e2960d9744bd9b9b6 Loading...

	www.dangky4gvina.com/	0 B	2023-03-07	2024-04-25
Pretty URL www.dangky4gvina.com/ IP 198.54.117.216 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 11:01:58 Times Seen37061732 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

		Size	First Seen	Last Seen
	#1 Write - 14d9518efa80dfb4bb80246ef7e341cc	142 B	2023-05-22	2023-05-22
Pretty Observations First Seen2023-05-22 07:37:26 Last Seen2023-05-22 07:37:26 Times Seen1 Hash 14d9518efa80dfb4bb80246ef7e341cc ff95d1dafcd2326657024706754b93c3556231ad 3b9a331e5b87e8bdae99502da0d02df2364365e626a7b014195b0a0eb4dcc841 Loading...

	#2 Write - 58909f7a8f9d6f81fd53aabc82acd4f9	69 B	2023-03-13	2023-09-26
Pretty Observations First Seen2023-03-13 14:03:50 Last Seen2023-09-26 11:43:53 Times Seen5434 Hash 58909f7a8f9d6f81fd53aabc82acd4f9 5b0209eb64794c055142858fed1207d5398cb837 c321c2a6c6bf4db2cc23a72b8df7734b0da497fae55543b1606d1fdffbc70a68 Loading...

	#3 Write - 38cd9463cfd81c97218fd596f4a5ede1	76 B	2023-03-07	2023-09-26
Pretty Observations First Seen2023-03-07 18:52:18 Last Seen2023-09-26 11:43:53 Times Seen5434 Hash 38cd9463cfd81c97218fd596f4a5ede1 7e4a49ebcc195fc07468badbee81aea7d4c14c8f 6f9c01bfa9404b8a13f98b0befe67694ae9e479f6b1066c1779d1c737af78231 Loading...

	#4 Write - e81c63f6590e78d2bffd5648f34a89b4	88 B	2023-03-07	2023-09-26
Pretty Observations First Seen2023-03-07 01:07:07 Last Seen2023-09-26 11:43:53 Times Seen4817 Hash e81c63f6590e78d2bffd5648f34a89b4 06040b1ff40d4857c5f7ebced925af93e8074d13 9b3e5b0d0240e600f7ddf3c50decf1920acc8aa95234773b18a9dc0b9d4d9e22 Loading...

HTTP Transactions (30)

URL IP Response Size

dangky4gvina.com/

162.255.119.145

51 B

URL User Request GET
dangky4gvina.com/
IP
162.255.119.145:0
ASN
#22612 NAMECHEAP-NET

File type
HTML document, ASCII text
Size
51 B (51 bytes)
Hash
d207a5d92719476eeaaedf9086eb8168
8a9b0c0d1828cc821d387fbf5f3416ad82fed52f
108b3b52cc4962ff990f6544fedd5a42dfd8f66ab8855d1b5c7acf7704b4e72e

Detections

NIDS	Severity	Alert
suricata	low	ET INFO Namecheap URL Forward
suricata	low	ET INFO Namecheap URL Forward

HTTP Headers

GET / HTTP/1.1
Host: dangky4gvina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Date: Mon, 22 May 2023 05:37:08 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 51
Connection: keep-alive
Location: http://www.dangky4gvina.com/
X-Served-By: Namecheap URL Forward
Server: namecheap-nginx

www.dangky4gvina.com/

198.54.117.216

200 OK

1.9 kB

URL User Request GET HTTP/1.1
www.dangky4gvina.com/
IP
198.54.117.216:80
ASN
#22612 NAMECHEAP-NET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (319), with CRLF line terminators
Size
1.9 kB (1933 bytes)
Hash
8f755b6dd646d71cdeada398a206e757
228c0f131a5fe6e0b95fb17f0a283e64cecd0dbd
f11fa0ca27323facaa85666a325e101ce24899ed7b606f445322f53f6d41947d

HTTP Headers

GET / HTTP/1.1
Host: www.dangky4gvina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 22 May 2023 05:37:08 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Server: namecheap-nginx
X-CST: HIT, HIT
Allow: GET, HEAD
Content-Encoding: gzip

dangky4gvina.com/

162.255.119.145

51 B

URL User Request GET
dangky4gvina.com/
IP
162.255.119.145:0
ASN
#22612 NAMECHEAP-NET

File type
HTML document, ASCII text
Size
51 B (51 bytes)
Hash
d207a5d92719476eeaaedf9086eb8168
8a9b0c0d1828cc821d387fbf5f3416ad82fed52f
108b3b52cc4962ff990f6544fedd5a42dfd8f66ab8855d1b5c7acf7704b4e72e

Detections

NIDS	Severity	Alert
suricata	low	ET INFO Namecheap URL Forward
suricata	low	ET INFO Namecheap URL Forward

HTTP Headers

GET / HTTP/1.1
Host: dangky4gvina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Date: Mon, 22 May 2023 05:37:09 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 51
Connection: keep-alive
Location: http://www.dangky4gvina.com/
X-Served-By: Namecheap URL Forward
Server: namecheap-nginx

www.dangky4gvina.com/

198.54.117.212

200 OK

1.9 kB

URL User Request GET HTTP/1.1
www.dangky4gvina.com/
IP
198.54.117.212:80
ASN
#22612 NAMECHEAP-NET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (319), with CRLF line terminators
Size
1.9 kB (1933 bytes)
Hash
8f755b6dd646d71cdeada398a206e757
228c0f131a5fe6e0b95fb17f0a283e64cecd0dbd
f11fa0ca27323facaa85666a325e101ce24899ed7b606f445322f53f6d41947d

HTTP Headers

GET / HTTP/1.1
Host: www.dangky4gvina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 22 May 2023 05:37:10 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Server: namecheap-nginx
X-CST: MISS, HIT
Allow: GET, HEAD
Content-Encoding: gzip

i.cdnpark.com/themes/assets/style.css

143.204.55.116

200 OK

359 B

URL GET HTTP/1.1
i.cdnpark.com/themes/assets/style.css
IP
143.204.55.116:80
ASN
#16509 AMAZON-02

Requested by
http://www.dangky4gvina.com/

File type
ASCII text
Size
359 B (359 bytes)
Hash
e42aacc9e34f351a935e6e83f2cb4a05
539587b5cb2e9383fbf115c0f7f99406079341f9
9cb157f272caecfbd484a0e3b6a8e2f7821e78c6422653ef83530ed9f73b607b

HTTP Headers

GET /themes/assets/style.css HTTP/1.1
Host: i.cdnpark.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dangky4gvina.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Last-Modified: Mon, 28 Nov 2022 10:41:35 GMT
Content-Encoding: gzip
Date: Sun, 21 May 2023 23:04:59 GMT
ETag: W/"6384905f-37c"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: czgxEW2tGGZYuzimEeit_trtHbwZJ1NtxPaEl840I5Vyygr_m6EJTQ==
Age: 23532

i.cdnpark.com/themes/registrar/style_namecheap.css

143.204.55.116

200 OK

1.8 kB

URL GET HTTP/1.1
i.cdnpark.com/themes/registrar/style_namecheap.css
IP
143.204.55.116:80
ASN
#16509 AMAZON-02

Requested by
http://www.dangky4gvina.com/

File type
ASCII text, with very long lines (1313)
Size
1.8 kB (1769 bytes)
Hash
fcfbf44db7a3eca961510e9df77868bf
c378750ca8a6119c78bffa548104947a42edb2df
8cf5887217a8a780e49a5c6ce3773c70e79b33429212ef3325d8f6e0094a0899

HTTP Headers

GET /themes/registrar/style_namecheap.css HTTP/1.1
Host: i.cdnpark.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dangky4gvina.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
Content-Encoding: gzip
Date: Mon, 22 May 2023 01:03:46 GMT
ETag: W/"5ebab1f0-fa0"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: foRERB78Pb5NwpZ8POAMm70jYud6IhM2Z-ML7-jGWu11zf2zhl9_uw==
Age: 16518

i.cdnpark.com/themes/registrar/images/logo_namecheap.png

143.204.55.116

200 OK

4.9 kB

URL GET HTTP/1.1
i.cdnpark.com/themes/registrar/images/logo_namecheap.png
IP
143.204.55.116:80
ASN
#16509 AMAZON-02

Requested by
http://www.dangky4gvina.com/

File type
PNG image data, 260 x 60, 8-bit colormap, non-interlaced\012- data
Size
4.9 kB (4917 bytes)
Hash
24cfc82dfacb3ecc2e1ba6600391576d
49eaca85596996a749c9d7407189fdb86845667e
903046ac1355826e49c089ca2dd88c720bff908adb1760ee6e1884755b6041f1

HTTP Headers

GET /themes/registrar/images/logo_namecheap.png HTTP/1.1
Host: i.cdnpark.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dangky4gvina.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 4917
Connection: keep-alive
Server: nginx
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
Accept-Ranges: bytes
Date: Mon, 22 May 2023 02:09:47 GMT
ETag: "5ebab1f0-1335"
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: BWS0wueKf9Zeq9Zy52luEZoJdxb9vEUO5xAvr27io-R39dEy3CRbMw==
Age: 12597

parkingcrew.net/jsparkcaf.php?regcn=243142&_v=2&_h=www.dangky4gvina.com&_t=1684733831117

185.53.179.29

200 OK

3.6 kB

URL GET HTTP/1.1
parkingcrew.net/jsparkcaf.php?regcn=243142&_v=2&_h=www.dangky4gvina.com&_t=1684733831117
IP
185.53.179.29:80
ASN
#61969 Team Internet AG

Requested by
http://www.dangky4gvina.com/

File type
HTML document, ASCII text, with very long lines (2983)
Size
3.6 kB (3615 bytes)
Hash
cc1c9559b1e7ef9e95c33648ecf28c4b
635d16ecc08f72b8f61b605e6b61893112da382b
5eabb464e2d9e6abc83c269b7e3bca6523e281d06cea5768f2ed088016213a8f

HTTP Headers

GET /jsparkcaf.php?regcn=243142&_v=2&_h=www.dangky4gvina.com&_t=1684733831117 HTTP/1.1
Host: parkingcrew.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dangky4gvina.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 05:37:11 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Language: norwegian
X-Domain: dangky4gvina.com
X-Subdomain: www
X-Template: tpl_CleanPeppermintBlack_twoclick

d38psrni17bvxu.cloudfront.net/scripts/jsparkcaf.js

54.230.245.130

200 OK

5.6 kB

URL GET HTTP/1.1
d38psrni17bvxu.cloudfront.net/scripts/jsparkcaf.js
IP
54.230.245.130:80
ASN
#16509 AMAZON-02

Requested by
http://www.dangky4gvina.com/

File type
ASCII text
Size
5.6 kB (5638 bytes)
Hash
6f95d346f97b06c2d81a5cb147d35de0
c591eaa19ed0d227b4555f5e699b668b05aa40b0
35ca990c39f9194a5a17ff664a0fdcc7dfb6cb433ea6844e2960d9744bd9b9b6

HTTP Headers

GET /scripts/jsparkcaf.js HTTP/1.1
Host: d38psrni17bvxu.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dangky4gvina.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 5638
Connection: keep-alive
Server: nginx
Date: Mon, 22 May 2023 00:53:27 GMT
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
Accept-Ranges: bytes
ETag: "5ebab1f0-1606"
X-Cache: Hit from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: mLgKvlWrfNj8Aob6mhdSJFgKB2SokaK2n0bqyv6RmHJnYees6_Dn-g==
Age: 17024

www.google.com/adsense/domains/caf.js?abp=1

216.58.207.228

200 OK

54 kB

URL GET HTTP/1.1
www.google.com/adsense/domains/caf.js?abp=1
IP
216.58.207.228:80
ASN
#15169 GOOGLE

Requested by
http://www.dangky4gvina.com/

File type
ASCII text, with very long lines (2125)
Size
54 kB (53779 bytes)
Hash
489307b0ca0250be57c3e7f9179b2a97
94d23f0892466141a0274678878443a9d6dd9060
4c52f86fa67d47ac48dcf49356b3bc236b41b0105e911f2decebb72d49ee74f3

HTTP Headers

GET /adsense/domains/caf.js?abp=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dangky4gvina.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Type: text/javascript; charset=UTF-8
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="ads-afs-ui"
Report-To: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
Date: Mon, 22 May 2023 05:37:11 GMT
Expires: Mon, 22 May 2023 05:37:11 GMT
Cache-Control: private, max-age=3600
ETag: "11249614876508566951"
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: sffe
X-XSS-Protection: 0

js.parkingcrew.net/ls.php?t=646aff87&token=b2925f5852d6fae3c0df6b8344673c80a3b2279f

185.53.178.30

201 Created

16 B

URL GET HTTP/1.1
js.parkingcrew.net/ls.php?t=646aff87&token=b2925f5852d6fae3c0df6b8344673c80a3b2279f
IP
185.53.178.30:80
ASN
#19905 NEUSTAR-AS6

Requested by
http://www.dangky4gvina.com/

File type
JSON data\012- , ASCII text, with no line terminators
Size
16 B (16 bytes)
Hash
7363e85fe9edee6f053a4b319588c086
a15e2127145548437173fc17f3e980e3f3dee2d0
c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97

HTTP Headers

GET /ls.php?t=646aff87&token=b2925f5852d6fae3c0df6b8344673c80a3b2279f HTTP/1.1
Host: js.parkingcrew.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.dangky4gvina.com
DNT: 1
Connection: keep-alive
Referer: http://www.dangky4gvina.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 201 Created
Server: nginx
Date: Mon, 22 May 2023 05:37:11 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
X-Log-Success: 646aff8726e7126d162d66df
Charset: utf-8
Access-Control-Allow-Origin: http://www.dangky4gvina.com
Access-Control-Allow-Methods: POST, OPTIONS
Access-Control-Max-Age: 86400
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_o5XuUAIy1ggtWkLmVN6FE0P1sGqbxYvjm94DwLkjCYLEj6xYD5pVtKteaH5WGUgm89zmURG1uuQQE798zeuSVA==

js.parkingcrew.net/track.php?domain=dangky4gvina.com&toggle=browserjs&uid=MTY4NDczMzgzMS4yMzQ1OmFhMzg5OWMyMzQ3YmVjN2ZiMTQ1YjM1Mzk5NWNkYjMwNjM4NWE1MGQxYzI0MDk4MzY3N2I2ODQ4ZmExNzJlZDc6NjQ2YWZmODczOTQxZA%3D%3D

185.53.178.30

200 OK

20 B

URL GET HTTP/1.1
js.parkingcrew.net/track.php?domain=dangky4gvina.com&toggle=browserjs&uid=MTY4NDczMzgzMS4yMzQ1OmFhMzg5OWMyMzQ3YmVjN2ZiMTQ1YjM1Mzk5NWNkYjMwNjM4NWE1MGQxYzI0MDk4MzY3N2I2ODQ4ZmExNzJlZDc6NjQ2YWZmODczOTQxZA%3D%3D
IP
185.53.178.30:80
ASN
#19905 NEUSTAR-AS6

Requested by
http://www.dangky4gvina.com/

File type
gzip compressed data, max speed, from Unix\012- data
Size
20 B (20 bytes)
Hash
a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf

HTTP Headers

GET /track.php?domain=dangky4gvina.com&toggle=browserjs&uid=MTY4NDczMzgzMS4yMzQ1OmFhMzg5OWMyMzQ3YmVjN2ZiMTQ1YjM1Mzk5NWNkYjMwNjM4NWE1MGQxYzI0MDk4MzY3N2I2ODQ4ZmExNzJlZDc6NjQ2YWZmODczOTQxZA%3D%3D HTTP/1.1
Host: js.parkingcrew.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.dangky4gvina.com
DNT: 1
Connection: keep-alive
Referer: http://www.dangky4gvina.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 05:37:12 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Custom-Track: browserjs
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Access-Control-Allow-Origin: *
Content-Encoding: gzip

js.parkingcrew.net/assets/scripts/registrar-caf/243142.js

185.53.178.30

200 OK

3.0 kB

URL GET HTTP/1.1
js.parkingcrew.net/assets/scripts/registrar-caf/243142.js
IP
185.53.178.30:80
ASN
#19905 NEUSTAR-AS6

Requested by
http://www.dangky4gvina.com/

File type
ASCII text
Size
3.0 kB (2994 bytes)
Hash
23316d6bbbe4b9d7c85945ce4c9428e5
f7c03d2a03416a697d658cf799620684f958664b
119710c0d9e01024bc9d65493a77b661196c02706ce008f5152f78b3c224a981

HTTP Headers

GET /assets/scripts/registrar-caf/243142.js HTTP/1.1
Host: js.parkingcrew.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dangky4gvina.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 05:37:12 GMT
Content-Type: application/javascript
Content-Length: 2994
Connection: keep-alive
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
ETag: "5ebab1f0-bb2"
Accept-Ranges: bytes

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
049a58b7447df3b04516d97d3423d2a1
36d219434e8f0ea98ea47f636746e435abc7deb7
062834716fcc1f06a51ceda92b702060a86700f3a567606154991fd2b7d66220

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 22 May 2023 05:37:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
049a58b7447df3b04516d97d3423d2a1
36d219434e8f0ea98ea47f636746e435abc7deb7
062834716fcc1f06a51ceda92b702060a86700f3a567606154991fd2b7d66220

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 22 May 2023 05:37:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/afs/ads/i/iframe.html

216.58.207.228

200 OK

725 B

URL GET HTTP/2
www.google.com/afs/ads/i/iframe.html
IP
216.58.207.228:443
ASN
#15169 GOOGLE

Requested by
http://www.dangky4gvina.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint85:AD:43:66:C0:73:07:1B:B5:5D:4A:83:4B:76:3F:DA:4B:2B:E1:F8
ValidityMon, 24 Apr 2023 12:01:16 GMT - Mon, 17 Jul 2023 12:01:15 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1559)
Size
725 B (725 bytes)
Hash
62375cd2191592d553a6a856441a5726
844c745dcc45e2e54fd8179b1cf387c203658c91
6a185735cfa6ad9ae4000e20edef25119661e0ddf2cabebb1a8fd9e6c7111bc9

HTTP Headers

GET /afs/ads/i/iframe.html HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.dangky4gvina.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/html
content-security-policy: script-src 'nonce-EevOG_tx2n9exmY-MlTvmQ' 'report-sample' 'strict-dynamic' 'unsafe-eval' 'unsafe-inline' http: https:; object-src 'none'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui; base-uri 'none'
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
content-length: 725
date: Mon, 22 May 2023 05:37:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
last-modified: Mon, 18 Oct 2021 14:30:00 GMT
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.com/afs/ads?pcsa=false&channel=000001&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.dangky4gvina.com%2F%3Fcaf&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2744431292869648&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301140%2C17301141%2C17301143&format=r10%7Cs&nocache=3701684733832173&num=0&output=afd_ads&domain_name=www.dangky4gvina.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1684733832178&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=329&frm=0&cl=532122288&uio=--&cont=tc_holder1&jsid=caf&jsv=532122288&rurl=http%3A%2F%2Fwww.dangky4gvina.com%2F&adbw=slave-1-1%3A720%2Cmaster-1%3A720

216.58.207.228

200 OK

3.1 kB

URL GET HTTP/2
www.google.com/afs/ads?pcsa=false&channel=000001&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.dangky4gvina.com%2F%3Fcaf&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2744431292869648&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301140%2C17301141%2C17301143&format=r10%7Cs&nocache=3701684733832173&num=0&output=afd_ads&domain_name=www.dangky4gvina.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1684733832178&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=329&frm=0&cl=532122288&uio=--&cont=tc_holder1&jsid=caf&jsv=532122288&rurl=http%3A%2F%2Fwww.dangky4gvina.com%2F&adbw=slave-1-1%3A720%2Cmaster-1%3A720
IP
216.58.207.228:443
ASN
#15169 GOOGLE

Requested by
http://www.dangky4gvina.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint85:AD:43:66:C0:73:07:1B:B5:5D:4A:83:4B:76:3F:DA:4B:2B:E1:F8
ValidityMon, 24 Apr 2023 12:01:16 GMT - Mon, 17 Jul 2023 12:01:15 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (7516)
Size
3.1 kB (3106 bytes)
Hash
081c5ec02f0f24ecf96d297fa2769f05
7690edd1b71699ac573f3f0acc724ae9189e3165
93154c95145bb56f2a97af5a7e2bc90c8457253ee56425fc176442ee4eca19b0

HTTP Headers

GET /afs/ads?pcsa=false&channel=000001&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.dangky4gvina.com%2F%3Fcaf&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2744431292869648&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301140%2C17301141%2C17301143&format=r10%7Cs&nocache=3701684733832173&num=0&output=afd_ads&domain_name=www.dangky4gvina.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1684733832178&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=329&frm=0&cl=532122288&uio=--&cont=tc_holder1&jsid=caf&jsv=532122288&rurl=http%3A%2F%2Fwww.dangky4gvina.com%2F&adbw=slave-1-1%3A720%2Cmaster-1%3A720 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.dangky4gvina.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-disposition: inline
date: Mon, 22 May 2023 05:37:12 GMT
expires: Mon, 22 May 2023 05:37:12 GMT
cache-control: private, max-age=3600
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-h6E2boXT9OGM8QyFfld1zg' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-encoding: br
server: gws
content-length: 3106
x-xss-protection: 0
set-cookie: NID=511=VULvRrYmMa-iDwyO0bJreRaF8gqNjAg1C-I-4H3_4Mpx340ebPPSz3KHOQ7RFbyXzaz3Or7dcYQ5ZgDeJeGlzMOdeMpvftwCS01J97WNkeFwVLxvLi67evDE4huOd6l2opNN2glmZsyOiyPMHVbBfeglm2lE5ANiKD_GsPTsku4; expires=Tue, 21-Nov-2023 05:37:12 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+331; expires=Wed, 21-May-2025 05:37:12 GMT; path=/; domain=.google.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
68e98363f930b3ef10efe3f848d4b441
de398874bc8e97a4f3da7023ca4c32c91b4dd847
442199edd1d2acf6f9dcc726a70c7fdd168eb1444f2fbb999408a6cb32b59028

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 22 May 2023 05:37:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/adsense/domains/caf.js

216.58.207.228

200 OK

54 kB

URL GET HTTP/3
www.google.com/adsense/domains/caf.js
IP
216.58.207.228:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/afs/ads?pcsa=false&channel=000001&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.dangky4gvina.com%2F%3Fcaf&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2744431292869648&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301140%2C17301141%2C17301143&format=r10%7Cs&nocache=3701684733832173&num=0&output=afd_ads&domain_name=www.dangky4gvina.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1684733832178&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=329&frm=0&cl=532122288&uio=--&cont=tc_holder1&jsid=caf&jsv=532122288&rurl=http%3A%2F%2Fwww.dangky4gvina.com%2F&adbw=slave-1-1%3A720%2Cmaster-1%3A720
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT

File type
ASCII text, with very long lines (2125)
Size
54 kB (53781 bytes)
Hash
8b130162e94f990b134e4f1c0da26ad1
1e398d514c96676115d7d822290ec169fc0ae85d
e509587553ad47d5ec705b96857ff4237036c885ca7febb0a2c2b00c8aec6a29

HTTP Headers

GET /adsense/domains/caf.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Mon, 22 May 2023 05:37:12 GMT
expires: Mon, 22 May 2023 05:37:12 GMT
cache-control: private, max-age=3600
etag: "12376845946183887947"
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
cdf31842a0b595736c600a091a26a82a
bf5c34f23e569a4c213003b734d80e00537d01ad
d7fdfa230e54561c1c0cabb77cf35b354383f0cf4d46225214d94dfb61354ea3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 22 May 2023 05:37:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
834d30ac255a2bf6e40206abe1df62f6
79794a460ef16547837ca7a0e2f2cd2f4c239536
5784b258eb8aed35876e541eb1cca1ea5a38b6f4dd9255182ded4a6f35d74436

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 22 May 2023 05:37:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%231967D2

142.250.74.97

200 OK

174 B

URL GET HTTP/2
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%231967D2
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/afs/ads?pcsa=false&channel=000001&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.dangky4gvina.com%2F%3Fcaf&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2744431292869648&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301140%2C17301141%2C17301143&format=r10%7Cs&nocache=3701684733832173&num=0&output=afd_ads&domain_name=www.dangky4gvina.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1684733832178&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=329&frm=0&cl=532122288&uio=--&cont=tc_holder1&jsid=caf&jsv=532122288&rurl=http%3A%2F%2Fwww.dangky4gvina.com%2F&adbw=slave-1-1%3A720%2Cmaster-1%3A720
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint49:A1:78:AA:CC:58:2A:18:8D:75:CC:D3:F4:F7:DD:A5:5D:58:B0:B1
ValidityMon, 24 Apr 2023 12:00:35 GMT - Mon, 17 Jul 2023 12:00:34 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Size
174 B (174 bytes)
Hash
fc4487156e15233887a05c4c4e2744c9
2ad35bbfb0d2bb500a4f1fcd678477d7b01ce6a2
93fad9e8b746119c723b0f0f470ac4eeb2f336bad98295bec7fd28d185a10ddb

HTTP Headers

GET /ad_icons/standard/publisher_icon_image/chevron.svg?c=%231967D2 HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 174
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 04:59:59 GMT
expires: Tue, 23 May 2023 03:59:59 GMT
cache-control: public, max-age=82800
age: 2233
last-modified: Thu, 22 Oct 2020 21:45:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%231967D2

142.250.74.97

200 OK

273 B

URL GET HTTP/2
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%231967D2
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/afs/ads?pcsa=false&channel=000001&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.dangky4gvina.com%2F%3Fcaf&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2744431292869648&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301140%2C17301141%2C17301143&format=r10%7Cs&nocache=3701684733832173&num=0&output=afd_ads&domain_name=www.dangky4gvina.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1684733832178&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=329&frm=0&cl=532122288&uio=--&cont=tc_holder1&jsid=caf&jsv=532122288&rurl=http%3A%2F%2Fwww.dangky4gvina.com%2F&adbw=slave-1-1%3A720%2Cmaster-1%3A720
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint49:A1:78:AA:CC:58:2A:18:8D:75:CC:D3:F4:F7:DD:A5:5D:58:B0:B1
ValidityMon, 24 Apr 2023 12:00:35 GMT - Mon, 17 Jul 2023 12:00:34 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (390)
Size
273 B (273 bytes)
Hash
6751e07e0f93bd43ab90822f4b2eb62a
d1d0c6f0b4697b0a4e61ffbf171e8c60eac7c832
ff563f41765da081fe9fd40e8bb33a623df033b10050a8ae8c1b46e15107d8f1

HTTP Headers

GET /ad_icons/standard/publisher_icon_image/search.svg?c=%231967D2 HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 273
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
date: Sun, 21 May 2023 18:04:01 GMT
expires: Mon, 22 May 2023 17:04:01 GMT
cache-control: public, max-age=82800
age: 41591
last-modified: Thu, 19 Dec 2019 14:15:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
834d30ac255a2bf6e40206abe1df62f6
79794a460ef16547837ca7a0e2f2cd2f4c239536
5784b258eb8aed35876e541eb1cca1ea5a38b6f4dd9255182ded4a6f35d74436

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 22 May 2023 05:37:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=wpfrpzb10znu&aqid=iP9qZOikE66KiM0PweeDyAw&pbt=bs&adbx=280&adby=169&adbh=594&adbw=720&adbah=56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=532122288&csala=15%7C0%7C340%7C133%7C298&lle=0&ifv=1&usr=1

216.58.207.228

204 No Content

0 B

URL GET HTTP/3
www.google.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=wpfrpzb10znu&aqid=iP9qZOikE66KiM0PweeDyAw&pbt=bs&adbx=280&adby=169&adbh=594&adbw=720&adbah=56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=532122288&csala=15%7C0%7C340%7C133%7C298&lle=0&ifv=1&usr=1
IP
216.58.207.228:443
ASN
#15169 GOOGLE

Requested by
http://www.dangky4gvina.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=wpfrpzb10znu&aqid=iP9qZOikE66KiM0PweeDyAw&pbt=bs&adbx=280&adby=169&adbh=594&adbw=720&adbah=56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=532122288&csala=15%7C0%7C340%7C133%7C298&lle=0&ifv=1&usr=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.dangky4gvina.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-hGSXFQF3poNOsMQ16sx0gg' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
date: Mon, 22 May 2023 05:37:14 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: NID=511=e1WNXUzGZpq6Q29CxCFOsLAsXs7_MK_45zkWz-OaOSR6iH1wC2wJYkRgWsE-vvQaVxWhb2OamH2LJIrWPgR7US-t3fhSDIqwH14RCA2m-jsPHyIIxEss6b-Z38Ap9IYuWSwsArLsNCFNYct_9yt45BHlJ_dxodXgfXVpF3A2224; expires=Tue, 21-Nov-2023 05:37:14 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+985; expires=Wed, 21-May-2025 05:37:14 GMT; path=/; domain=.google.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=110gdjeucnvk&aqid=iP9qZOikE66KiM0PweeDyAw&pbt=bs&adbx=280&adby=807&adbh=36&adbw=720&adbn=slave-1-1&eawp=partner-dp-teaminternet09_3ph&errv=532122288&csala=4%7C0%7C351%7C133%7C299&lle=0&ifv=1&usr=1

216.58.207.228

204 No Content

0 B

URL GET HTTP/3
www.google.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=110gdjeucnvk&aqid=iP9qZOikE66KiM0PweeDyAw&pbt=bs&adbx=280&adby=807&adbh=36&adbw=720&adbn=slave-1-1&eawp=partner-dp-teaminternet09_3ph&errv=532122288&csala=4%7C0%7C351%7C133%7C299&lle=0&ifv=1&usr=1
IP
216.58.207.228:443
ASN
#15169 GOOGLE

Requested by
http://www.dangky4gvina.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=110gdjeucnvk&aqid=iP9qZOikE66KiM0PweeDyAw&pbt=bs&adbx=280&adby=807&adbh=36&adbw=720&adbn=slave-1-1&eawp=partner-dp-teaminternet09_3ph&errv=532122288&csala=4%7C0%7C351%7C133%7C299&lle=0&ifv=1&usr=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.dangky4gvina.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-wKTVU0zfsL5wk34qQqLUWA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
date: Mon, 22 May 2023 05:37:14 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: NID=511=QRTkVs0IutXuuyKTOtvmXd9z0O4m7sm5ZAjSnevzmaFIXwscjPsIVBJ3swMyMEBVXr6dOAZKK41rUV92VIHBFknBDMFba29z5TojchHhCFAlT1nwKJD4qqQPD2KJ0Ld7BjnUsAn38TXqyorEDmDS2cHIPjXJ390lw-f4qUYO7F4; expires=Tue, 21-Nov-2023 05:37:14 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+952; expires=Wed, 21-May-2025 05:37:14 GMT; path=/; domain=.google.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=kghexdwuwtuq&aqid=iP9qZOikE66KiM0PweeDyAw&pbt=bv&adbx=280&adby=807&adbh=36&adbw=720&adbn=slave-1-1&eawp=partner-dp-teaminternet09_3ph&errv=532122288&csala=4%7C0%7C351%7C133%7C299&lle=0&ifv=1&usr=1

216.58.207.228

204 No Content

0 B

URL GET HTTP/3
www.google.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=kghexdwuwtuq&aqid=iP9qZOikE66KiM0PweeDyAw&pbt=bv&adbx=280&adby=807&adbh=36&adbw=720&adbn=slave-1-1&eawp=partner-dp-teaminternet09_3ph&errv=532122288&csala=4%7C0%7C351%7C133%7C299&lle=0&ifv=1&usr=1
IP
216.58.207.228:443
ASN
#15169 GOOGLE

Requested by
http://www.dangky4gvina.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=kghexdwuwtuq&aqid=iP9qZOikE66KiM0PweeDyAw&pbt=bv&adbx=280&adby=807&adbh=36&adbw=720&adbn=slave-1-1&eawp=partner-dp-teaminternet09_3ph&errv=532122288&csala=4%7C0%7C351%7C133%7C299&lle=0&ifv=1&usr=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.dangky4gvina.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-1KWGFRVPQ2EM2UUTRFbpiw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
date: Mon, 22 May 2023 05:37:15 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: NID=511=G30A4MqAXm6YCzIrpb45PO2RS3fYNHUI7lS_ZWbOyPdaT8hktZkwF0KhjKv7eL7vrsTmC2uAmPvr67SRnI0nsKU4N90hbtDVl_KtLCauiR2yIgbb100XCCtO3RiZNCt97l-nK-awD9-91_lEcKBgTRe7BeTur_aGcd0lkx_0_h8; expires=Tue, 21-Nov-2023 05:37:14 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+483; expires=Wed, 21-May-2025 05:37:14 GMT; path=/; domain=.google.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=s6qzogq9wc07&aqid=iP9qZOikE66KiM0PweeDyAw&pbt=bv&adbx=280&adby=169&adbh=594&adbw=720&adbah=56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=532122288&csala=15%7C0%7C340%7C133%7C298&lle=0&ifv=1&usr=1

216.58.207.228

204 No Content

0 B

URL GET HTTP/3
www.google.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=s6qzogq9wc07&aqid=iP9qZOikE66KiM0PweeDyAw&pbt=bv&adbx=280&adby=169&adbh=594&adbw=720&adbah=56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=532122288&csala=15%7C0%7C340%7C133%7C298&lle=0&ifv=1&usr=1
IP
216.58.207.228:443
ASN
#15169 GOOGLE

Requested by
http://www.dangky4gvina.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=s6qzogq9wc07&aqid=iP9qZOikE66KiM0PweeDyAw&pbt=bv&adbx=280&adby=169&adbh=594&adbw=720&adbah=56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=532122288&csala=15%7C0%7C340%7C133%7C298&lle=0&ifv=1&usr=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.dangky4gvina.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-dGO2VeRyUjoJjla3rJsNBQ' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
date: Mon, 22 May 2023 05:37:15 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: NID=511=bL8KyWsQbvYa7QugNiYgNYCHLaTA6FonJblcDRbMBzfCGiX3mJCD9GuiB9v9vL3ZWipCnvIN_O2U9lCf_GWGCRUI00riD1mxu-eGp7gHvA3vOPti9yxhJVSsN6_yFAs850i-po9t1VzQgRi8gWj4263UHCJVuYSY5i6pUAS_K4U; expires=Tue, 21-Nov-2023 05:37:14 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+764; expires=Wed, 21-May-2025 05:37:14 GMT; path=/; domain=.google.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.dangky4gvina.com/favicon.ico

0.0.0.0

0 B

URL GET
www.dangky4gvina.com/favicon.ico
IP
0.0.0.0:0
ASN
#0

Requested by
http://www.dangky4gvina.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.dangky4gvina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dangky4gvina.com/
Pragma: no-cache
Cache-Control: no-cache

js.parkingcrew.net/track.php?domain=dangky4gvina.com&caf=1&toggle=answercheck&answer=yes&uid=MTY4NDczMzgzMS4yMzQ1OmFhMzg5OWMyMzQ3YmVjN2ZiMTQ1YjM1Mzk5NWNkYjMwNjM4NWE1MGQxYzI0MDk4MzY3N2I2ODQ4ZmExNzJlZDc6NjQ2YWZmODczOTQxZA%3D%3D

185.53.178.30

200 OK

0 B

URL GET HTTP/1.1
js.parkingcrew.net/track.php?domain=dangky4gvina.com&caf=1&toggle=answercheck&answer=yes&uid=MTY4NDczMzgzMS4yMzQ1OmFhMzg5OWMyMzQ3YmVjN2ZiMTQ1YjM1Mzk5NWNkYjMwNjM4NWE1MGQxYzI0MDk4MzY3N2I2ODQ4ZmExNzJlZDc6NjQ2YWZmODczOTQxZA%3D%3D
IP
185.53.178.30:80
ASN
#19905 NEUSTAR-AS6

Requested by
http://www.dangky4gvina.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /track.php?domain=dangky4gvina.com&caf=1&toggle=answercheck&answer=yes&uid=MTY4NDczMzgzMS4yMzQ1OmFhMzg5OWMyMzQ3YmVjN2ZiMTQ1YjM1Mzk5NWNkYjMwNjM4NWE1MGQxYzI0MDk4MzY3N2I2ODQ4ZmExNzJlZDc6NjQ2YWZmODczOTQxZA%3D%3D HTTP/1.1
Host: js.parkingcrew.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.dangky4gvina.com
DNT: 1
Connection: keep-alive
Referer: http://www.dangky4gvina.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 05:37:12 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Custom-Track: answercheck
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Access-Control-Allow-Origin: *
Content-Encoding: gzip

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (14)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML