Report - adspayment-support.com.tr/Znk1297FUkDuxJYgvmn4hQJCUsjgpOriWw6GGbNStgdmWHNYrlQHksF5NdpWrpSOQ5tdByVU2VaxJ2NaTrangdau.html

Report Overview

Submitted URL
adspayment-support.com.tr/Znk1297FUkDuxJYgvmn4hQJCUsjgpOriWw6GGbNStgdmWHNYrlQHksF5NdpWrpSOQ5tdByVU2VaxJ2NaTrangdau.html
IP
172.67.147.108
ASN
#13335 CLOUDFLARENET
Submitted
2023-12-05 17:24:47
Access
public
Website Title
Account Looked
Final URL
adspayment-support.com.tr/Znk1297FUkDuxJYgvmn4hQJCUsjgpOriWw6GGbNStgdmWHNYrlQHksF5NdpWrpSOQ5tdByVU2VaxJ2NaTrangdau.html
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
8

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
static.xx.fbcdn.net	661	2007-05-03	2012-12-01	2023-12-04	12 kB	890 kB	31.13.72.12
adspayment-support.com.tr	unknown	2023-11-29	2023-11-30	2023-12-04	1.2 kB	94 kB	104.21.11.8

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-12-03	medium	adspayment-support.com.tr/	Facebook, Inc.
2023-12-03	medium	adspayment-support.com.tr/	Facebook, Inc.

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-12-05	medium	adspayment-support.com.tr	Sinkholed
2023-12-05	medium	adspayment-support.com.tr	Sinkholed

ThreatFox

No alerts detected

JavaScript (17)

	URL	Size	First Seen	Last Seen
	static.xx.fbcdn.net/rsrc.php/v3iKgv4/yI/l/makehaste_jhash/Qq2WSraySoabdQH5E5-yTvM1DIlJlfMQ1LOBi82UevlputO3-3p3TD2npPrYWuecZ65PyqgFyQ52rZQllFv7EHElKdzUJQJLLUOGSCBrh_uWvvoxaDkU1M-bhd3puuRsXeEtDXVE0pwKMrNjAwO-6pGOuPs_f362TtZkJglT3JUXGHrmPUgZx9YOelkPVjnHqGgIdWhS6VaQvBoJXR0Mkuu-Kd_9Oo6HNhXPrmFp55HfXW__mMiYtNcrq7rDk.js?_nc_x=EOVlzGhkA-R	1.3 MB	2023-09-13	2024-01-03
Pretty URL static.xx.fbcdn.net/rsrc.php/v3iKgv4/yI/l/makehaste_jhash/Qq2WSraySoabdQH5E5-yTvM1DIlJlfMQ1LOBi82UevlputO3-3p3TD2npPrYWuecZ65PyqgFyQ52rZQllFv7EHElKdzUJQJLLUOGSCBrh_uWvvoxaDkU1M-bhd3puuRsXeEtDXVE0pwKMrNjAwO-6pGOuPs_f362TtZkJglT3JUXGHrmPUgZx9YOelkPVjnHqGgIdWhS6VaQvBoJXR0Mkuu-Kd_9Oo6HNhXPrmFp55HfXW__mMiYtNcrq7rDk.js?_nc_x=EOVlzGhkA-R IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-13 01:21:19 Last Seen2024-01-03 06:21:23 Times Seen4223 Hash 544830049f490e5de2199246ee76fd4a 3541fdb47ce4a5bd4451cb860f35e99e8ed864ae ab4e0ed59d5b2bb89781f1a5a834104e408784650ad94069bd3c9edf48f89bc0 Loading...

	static.xx.fbcdn.net/rsrc.php/v3ibUx4/yN/l/makehaste_jhash/KS8uqGyoqmD.js?_nc_x=EOVlzGhkA-R	401 kB	2023-09-13	2024-01-06
Pretty URL static.xx.fbcdn.net/rsrc.php/v3ibUx4/yN/l/makehaste_jhash/KS8uqGyoqmD.js?_nc_x=EOVlzGhkA-R IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-13 01:21:19 Last Seen2024-01-06 17:40:47 Times Seen4335 Hash acc0360b614fb39f591c69eb46587098 19fc46ad46168f469068fd14946bdc8b3933eb8e d6abeb784416069c7f80610fe8f299b57d84930d9c948631ed0b17f087058eff Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yJ/r/575oEHuOly0.js?_nc_x=EOVlzGhkA-R	305 B	2023-09-13	2024-01-06
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yJ/r/575oEHuOly0.js?_nc_x=EOVlzGhkA-R IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-13 01:21:19 Last Seen2024-01-06 17:40:46 Times Seen2169 Hash 270eff6aebd84da62671f27b602ab436 43379b99edd867e2abe0dd2748a63652b525a65f fe93e2e17c2c231623a3be9dd1c809b4d8be0be26c42bbd56f549677a3304dcc Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yR/r/-pVC0PF44dY.js?_nc_x=EOVlzGhkA-R	330 B	2023-09-13	2024-01-06
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yR/r/-pVC0PF44dY.js?_nc_x=EOVlzGhkA-R IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-13 01:21:19 Last Seen2024-01-06 17:40:46 Times Seen2169 Hash b84d933dc0a88b0c1ceb3fa4824c6705 bc16a684fdb8ab4858d97953597fdf20b7759034 fdf1ef7829590bfe317b6e4af254ee5c3b4f3565f4fa51c4cdf19545b05897f5 Loading...

	static.xx.fbcdn.net/rsrc.php/v3iQbs4/yI/l/makehaste_jhash/bMvvvl5bCTL.js?_nc_x=EOVlzGhkA-R	37 kB	2023-09-13	2024-01-06
Pretty URL static.xx.fbcdn.net/rsrc.php/v3iQbs4/yI/l/makehaste_jhash/bMvvvl5bCTL.js?_nc_x=EOVlzGhkA-R IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-13 01:21:19 Last Seen2024-01-06 17:40:47 Times Seen4322 Hash 35bc316521ad9ac9a9d01edec9eb9f5e 32510bd542dfc20e3a81437fb13caa068728d96c 45f28e02a42d88181b077320d5640aa6ddd1654e18df149870b6be59521964b3 Loading...

	static.xx.fbcdn.net/rsrc.php/v3ip6z4/yT/l/makehaste_jhash/S6uc1d0fA5C3bq-05xdWkZGhtFLLS2gFNIiDNpLJxUgC3i5cmeax6VzXlKjBlZM5HA.js?_nc_x=EOVlzGhkA-R	78 kB	2023-09-13	2024-01-03
Pretty URL static.xx.fbcdn.net/rsrc.php/v3ip6z4/yT/l/makehaste_jhash/S6uc1d0fA5C3bq-05xdWkZGhtFLLS2gFNIiDNpLJxUgC3i5cmeax6VzXlKjBlZM5HA.js?_nc_x=EOVlzGhkA-R IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-13 01:21:19 Last Seen2024-01-03 06:21:23 Times Seen4280 Hash 8092ec3222a47841d0cde39c57d1f0a9 10b80f464d92572311f57d560b7d987205f7e5be a36e5e16fe9bce156d894e3c3b257890d309787ec948cc9f148b719946d35626 Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yL/r/dbgrMsnD18p.js?_nc_x=EOVlzGhkA-R	418 B	2023-09-13	2024-01-06
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yL/r/dbgrMsnD18p.js?_nc_x=EOVlzGhkA-R IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-13 01:21:19 Last Seen2024-01-06 17:40:46 Times Seen2169 Hash 77d9520faf1e0bcce29d87e289327b5f be1483c281ab6dd75517c5fda0c007b2738f8891 31b67c763f0e1ef5fa213be852511a05c7638e2581b14b55104b5de9ac0b4de3 Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yX/r/RBCbzwOClSr.js?_nc_x=EOVlzGhkA-R	273 B	2023-09-13	2024-01-06
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yX/r/RBCbzwOClSr.js?_nc_x=EOVlzGhkA-R IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-13 01:21:19 Last Seen2024-01-06 17:40:46 Times Seen2170 Hash 5a57cca710bc1871114e96dfbdb65161 6d0c2f0d24de85e9709d38b28c314600b8eff4db 7a938d5c32d22d231f5b7dc14a448ef1e79b7da05c7d0feb529bf834bb3d698a Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yo/r/rMjUV3tlg5-.js?_nc_x=EOVlzGhkA-R	957 B	2023-09-13	2024-01-06
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yo/r/rMjUV3tlg5-.js?_nc_x=EOVlzGhkA-R IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-13 01:21:19 Last Seen2024-01-06 17:40:46 Times Seen2170 Hash 6e36e9783842ccede2e8dc7fe41786f9 fe30a3cbad310aba8ac31394391c096bf8547ebd 2e9b856bd641174db68322c6fd6ee44ce96a2b8c2d7160917304916465ce2ab9 Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yu/r/emmFfFsTUtD.js?_nc_x=EOVlzGhkA-R	1.3 kB	2023-09-13	2024-01-06
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yu/r/emmFfFsTUtD.js?_nc_x=EOVlzGhkA-R IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-13 01:21:19 Last Seen2024-01-06 17:40:46 Times Seen2169 Hash 1cc301ad5f59ee58b4db685b1ef913d5 6c89d97b8360861049cdc553d3b59bf35a1a9b09 082120d08dcc7af29b165ae78a12b5e106459d9a3c624120bbd6176f38c3899d Loading...

	static.xx.fbcdn.net/rsrc.php/v3iO-_4/yU/l/makehaste_jhash/N6oDSy4tgbj.js?_nc_x=EOVlzGhkA-R	82 kB	2023-09-13	2024-01-06
Pretty URL static.xx.fbcdn.net/rsrc.php/v3iO-_4/yU/l/makehaste_jhash/N6oDSy4tgbj.js?_nc_x=EOVlzGhkA-R IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-13 01:21:19 Last Seen2024-01-06 17:40:47 Times Seen4337 Hash 27c7ba1cbb3d22a0c118243bf9af1e96 43fb9de10443e38a2e53a420dc993389805754eb 553f2c0a803475e42ba5f33f350b9fed8039572cb62d5a0d5cd4d6f1e0e04546 Loading...

	static.xx.fbcdn.net/rsrc.php/v3idBq4/y4/l/makehaste_jhash/nEDhXvPJL1s.js?_nc_x=EOVlzGhkA-R	32 kB	2023-09-13	2024-01-03
Pretty URL static.xx.fbcdn.net/rsrc.php/v3idBq4/y4/l/makehaste_jhash/nEDhXvPJL1s.js?_nc_x=EOVlzGhkA-R IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-13 01:21:19 Last Seen2024-01-03 06:21:23 Times Seen4282 Hash 3ffcda4ec7ff78566c6c9e6046f98afa c2d4ccd7cbe34c3486c5edf6f9392255cbc4cbe2 2635848f9b9d3a801955df00c383ead7d4d483360d0838a4431230d86cd446ef Loading...

	static.xx.fbcdn.net/rsrc.php/v3/y8/r/bslyuO0dPlj.js?_nc_x=EOVlzGhkA-R	236 kB	2023-09-13	2024-01-06
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/y8/r/bslyuO0dPlj.js?_nc_x=EOVlzGhkA-R IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-13 01:21:19 Last Seen2024-01-06 17:40:47 Times Seen4341 Hash 5c236464a8a6c0763abf0afecc0b87b3 017fd0c68c4e85d3b28eb610f9c63263d60d3df4 acae2586f443d02fb9686cfc123ee478533a4a663310adcddeb7ba01aadbb6cd Loading...

	static.xx.fbcdn.net/rsrc.php/v3/y4/r/MmQo2XTouz7.js?_nc_x=EOVlzGhkA-R	303 B	2023-09-13	2024-01-06
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/y4/r/MmQo2XTouz7.js?_nc_x=EOVlzGhkA-R IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-13 01:21:19 Last Seen2024-01-06 17:40:46 Times Seen2170 Hash c1a04daa45b9b44918b32fa12c479ad7 bc4690aea64a5e3ac4f627d986b62ca4f91a25d8 200e8059d40bbc5a8b3e93674eb2d890d60b1612acc540645f4a7b3e1d498460 Loading...

	static.xx.fbcdn.net/rsrc.php/v3iaAx4/yK/l/makehaste_jhash/PcVycOPudQJ.js?_nc_x=EOVlzGhkA-R	154 kB	2023-09-13	2024-01-06
Pretty URL static.xx.fbcdn.net/rsrc.php/v3iaAx4/yK/l/makehaste_jhash/PcVycOPudQJ.js?_nc_x=EOVlzGhkA-R IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-13 01:21:19 Last Seen2024-01-06 17:40:47 Times Seen4340 Hash de18d8acd069332cd6fe64bb5fa6c193 74b20bfdba222caa5cc9644b362e30e71ab2252b 644b53e69b06b874d49bf4d7dc1bcbbb128e4a923eb7a9b237a7d15fd9291362 Loading...

	adspayment-support.com.tr/Znk1297FUkDuxJYgvmn4hQJCUsjgpOriWw6GGbNStgdmWHNYrlQHksF5NdpWrpSOQ5tdByVU2VaxJ2NaTrangdau.html	578 B	2023-09-13	2024-01-08
Pretty URL adspayment-support.com.tr/Znk1297FUkDuxJYgvmn4hQJCUsjgpOriWw6GGbNStgdmWHNYrlQHksF5NdpWrpSOQ5tdByVU2VaxJ2NaTrangdau.html IP 104.21.11.8 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-13 01:21:19 Last Seen2024-01-08 06:14:22 Times Seen2060 Hash 4ac1745c22ef9274562f056cc88b8ea0 5953b2e4ce04dd9c8f8c30f1b2c60c74f38e6173 521aed0a977971dcdaa21540e3f6c4b234c8be4b475e1efbbc0f72110068315d Loading...

	static.xx.fbcdn.net/rsrc.php/v3ik6d4/yb/l/makehaste_jhash/FZZsv1d4auj.js?_nc_x=EOVlzGhkA-R	730 kB	2023-09-13	2024-01-06
Pretty URL static.xx.fbcdn.net/rsrc.php/v3ik6d4/yb/l/makehaste_jhash/FZZsv1d4auj.js?_nc_x=EOVlzGhkA-R IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-13 01:21:19 Last Seen2024-01-06 17:40:47 Times Seen4335 Hash d7b589f0099bcf8e2e4bbd9ef60ac415 fdccf9bcb69f3bfd4e16281ef9c951d024d00ef1 68f6ed19b918c45483227c69525115b0cf07a76c1365344ed6cd2610ac0d9274 Loading...

HTTP Transactions (23)

URL IP Response Size

static.xx.fbcdn.net/rsrc.php/v3iQbs4/yI/l/makehaste_jhash/bMvvvl5bCTL.js?_nc_x=EOVlzGhkA-R

31.13.72.12

200 OK

8.6 kB

URL GET HTTP/2
static.xx.fbcdn.net/rsrc.php/v3iQbs4/yI/l/makehaste_jhash/bMvvvl5bCTL.js?_nc_x=EOVlzGhkA-R
IP
31.13.72.12:443
ASN
#32934 FACEBOOK

Requested by
https://adspayment-support.com.tr/Znk1297FUkDuxJYgvmn4hQJCUsjgpOriWw6GGbNStgdmWHNYrlQHksF5NdpWrpSOQ5tdByVU2VaxJ2NaTrangdau.html
Certificate
IssuerDigiCert Inc
Subject*.facebook.com
Fingerprint63:65:5D:2D:A2:9C:73:20:A7:45:5F:D4:A7:48:54:25:EA:78:2C:AE
ValidityThu, 14 Sep 2023 00:00:00 GMT - Wed, 13 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (12871)
Size
8.6 kB (8555 bytes)
Hash
35bc316521ad9ac9a9d01edec9eb9f5e
32510bd542dfc20e3a81437fb13caa068728d96c
45f28e02a42d88181b077320d5640aa6ddd1654e18df149870b6be59521964b3

HTTP Headers

GET /rsrc.php/v3iQbs4/yI/l/makehaste_jhash/bMvvvl5bCTL.js?_nc_x=EOVlzGhkA-R HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://adspayment-support.com.tr
DNT: 1
Connection: keep-alive
Referer: https://adspayment-support.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: application/x-javascript; charset=utf-8
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 30 Nov 2024 00:52:22 GMT
cache-control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
permissions-policy-report-only: autoplay=(), clipboard-read=(), clipboard-write=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), gamepad=(), keyboard-map=(), otp-credentials=(), picture-in-picture=(), xr-spatial-tracking=()
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=()
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
reporting-endpoints: 
content-md5: SXXb5KVHAqTMpOMlMled0w==
x-fb-debug: HXdSdb5I5KBgmVudG7+ftq7LR9mMbShLvdMl/X9J7yLB8GQAsxc4+BqaoaIT/w9pgLsWJDViTOK/aOr4cqx68A==
content-length: 8555
date: Tue, 05 Dec 2023 17:24:29 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc-translations.php/v6imzP4/y3/l/vi_VN/KS8uqGyoqmD.js?_nc_x=EOVlzGhkA-R

31.13.72.12

200 OK

1.1 kB

URL GET HTTP/2
static.xx.fbcdn.net/rsrc-translations.php/v6imzP4/y3/l/vi_VN/KS8uqGyoqmD.js?_nc_x=EOVlzGhkA-R
IP
31.13.72.12:443
ASN
#32934 FACEBOOK

Requested by
https://adspayment-support.com.tr/Znk1297FUkDuxJYgvmn4hQJCUsjgpOriWw6GGbNStgdmWHNYrlQHksF5NdpWrpSOQ5tdByVU2VaxJ2NaTrangdau.html
Certificate
IssuerDigiCert Inc
Subject*.facebook.com
Fingerprint63:65:5D:2D:A2:9C:73:20:A7:45:5F:D4:A7:48:54:25:EA:78:2C:AE
ValidityThu, 14 Sep 2023 00:00:00 GMT - Wed, 13 Dec 2023 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (3096), with no line terminators
Size
1.1 kB (1142 bytes)
Hash
497d2179ef3737727b0abac762272661
2c8833f7f67f60652885ead914f59026001c1127
75ae248350b31bded068ee452ca72ab706b1953afe161c283b5ac1013860f16c

HTTP Headers

GET /rsrc-translations.php/v6imzP4/y3/l/vi_VN/KS8uqGyoqmD.js?_nc_x=EOVlzGhkA-R HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://adspayment-support.com.tr
DNT: 1
Connection: keep-alive
Referer: https://adspayment-support.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: application/json
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 25 Nov 2024 00:37:00 GMT
cache-control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=()
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
reporting-endpoints: 
content-md5: AowliVLPi089nFUJgPI3sg==
x-fb-debug: WebCKjiJ+opXESJK6glDoMwrxDoQe8GzRG4ByB9s0dbBtmG+UIOvE4R+Kn2Drh9nDGtzlvbksGQdvm9OnAt0bw==
content-length: 1142
date: Tue, 05 Dec 2023 17:24:29 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc-translations.php/v6iubs4/yF/l/vi_VN/Qq2WSraySoabdQH5E5-yTvM1DIlJlfMQ1LOBi82UevlputO3-3p3TD2npPrYWuecZ65PyqgFyQ52rZQllFv7EHElKdzUJQJLLUOGSCBrh_uWvvoxaDkU1M-bhd3puuRsXeEtDXVE0pwKMrNjAwO-6pGOuPs_f362TtZkJglT3JUXGHrmPUgZx9YOelkPVjnHqGgIdWhS6VaQvBoJXR0Mkuu-Kd_9Oo6HNhXPrmFp55HfXW__mMiYtNcrq7rDk.js?_nc_x=EOVlzGhkA-R

31.13.72.12

200 OK

2.2 kB

URL GET HTTP/2
static.xx.fbcdn.net/rsrc-translations.php/v6iubs4/yF/l/vi_VN/Qq2WSraySoabdQH5E5-yTvM1DIlJlfMQ1LOBi82UevlputO3-3p3TD2npPrYWuecZ65PyqgFyQ52rZQllFv7EHElKdzUJQJLLUOGSCBrh_uWvvoxaDkU1M-bhd3puuRsXeEtDXVE0pwKMrNjAwO-6pGOuPs_f362TtZkJglT3JUXGHrmPUgZx9YOelkPVjnHqGgIdWhS6VaQvBoJXR0Mkuu-Kd_9Oo6HNhXPrmFp55HfXW__mMiYtNcrq7rDk.js?_nc_x=EOVlzGhkA-R
IP
31.13.72.12:443
ASN
#32934 FACEBOOK

Requested by
https://adspayment-support.com.tr/Znk1297FUkDuxJYgvmn4hQJCUsjgpOriWw6GGbNStgdmWHNYrlQHksF5NdpWrpSOQ5tdByVU2VaxJ2NaTrangdau.html
Certificate
IssuerDigiCert Inc
Subject*.facebook.com
Fingerprint63:65:5D:2D:A2:9C:73:20:A7:45:5F:D4:A7:48:54:25:EA:78:2C:AE
ValidityThu, 14 Sep 2023 00:00:00 GMT - Wed, 13 Dec 2023 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (5810), with no line terminators
Size
2.2 kB (2175 bytes)
Hash
b66cc512615b2bd366d6939c5db0907a
f50f2dba2d2e900e42ab7c77a6725d4f35f624da
feab1ef6264ef40f8eb365dc55d9aa2e691ac64b61c274fcc5428c8da3c50349

HTTP Headers

GET /rsrc-translations.php/v6iubs4/yF/l/vi_VN/Qq2WSraySoabdQH5E5-yTvM1DIlJlfMQ1LOBi82UevlputO3-3p3TD2npPrYWuecZ65PyqgFyQ52rZQllFv7EHElKdzUJQJLLUOGSCBrh_uWvvoxaDkU1M-bhd3puuRsXeEtDXVE0pwKMrNjAwO-6pGOuPs_f362TtZkJglT3JUXGHrmPUgZx9YOelkPVjnHqGgIdWhS6VaQvBoJXR0Mkuu-Kd_9Oo6HNhXPrmFp55HfXW__mMiYtNcrq7rDk.js?_nc_x=EOVlzGhkA-R HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://adspayment-support.com.tr
DNT: 1
Connection: keep-alive
Referer: https://adspayment-support.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: application/json
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 22 Nov 2024 08:45:49 GMT
cache-control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=()
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
reporting-endpoints: 
origin-agent-cluster: ?0
content-md5: o+500uxUYhdChwvAYgPBSw==
x-fb-debug: BqGRvzdENBwLRAT3eVxWbz2UdDek1i0E/ldK+V49Cn5xUZeuZaatkL5iz+i+nmQkqr7XQCBqcpIhKhAjy906hg==
content-length: 2175
date: Tue, 05 Dec 2023 17:24:29 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3iaAx4/yK/l/makehaste_jhash/PcVycOPudQJ.js?_nc_x=EOVlzGhkA-R

31.13.72.12

200 OK

25 kB

URL GET HTTP/2
static.xx.fbcdn.net/rsrc.php/v3iaAx4/yK/l/makehaste_jhash/PcVycOPudQJ.js?_nc_x=EOVlzGhkA-R
IP
31.13.72.12:443
ASN
#32934 FACEBOOK

Requested by
https://adspayment-support.com.tr/Znk1297FUkDuxJYgvmn4hQJCUsjgpOriWw6GGbNStgdmWHNYrlQHksF5NdpWrpSOQ5tdByVU2VaxJ2NaTrangdau.html
Certificate
IssuerDigiCert Inc
Subject*.facebook.com
Fingerprint63:65:5D:2D:A2:9C:73:20:A7:45:5F:D4:A7:48:54:25:EA:78:2C:AE
ValidityThu, 14 Sep 2023 00:00:00 GMT - Wed, 13 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (12553)
Size
25 kB (24643 bytes)
Hash
de18d8acd069332cd6fe64bb5fa6c193
74b20bfdba222caa5cc9644b362e30e71ab2252b
644b53e69b06b874d49bf4d7dc1bcbbb128e4a923eb7a9b237a7d15fd9291362

HTTP Headers

GET /rsrc.php/v3iaAx4/yK/l/makehaste_jhash/PcVycOPudQJ.js?_nc_x=EOVlzGhkA-R HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://adspayment-support.com.tr
DNT: 1
Connection: keep-alive
Referer: https://adspayment-support.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: application/x-javascript; charset=utf-8
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 03 Dec 2024 12:49:44 GMT
cache-control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
permissions-policy-report-only: autoplay=(), clipboard-read=(), clipboard-write=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), gamepad=(), keyboard-map=(), otp-credentials=(), picture-in-picture=(), xr-spatial-tracking=()
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=()
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
reporting-endpoints: 
origin-agent-cluster: ?0
content-md5: gcpdTlRsA2OGj+3EFNIsdQ==
x-fb-debug: w0JbaoP/J3pe5kbuz18fGg1MCwPpHr4vodrhwf8w9EpH57E398dGTNs7zMgdHvypG+FZ2RqBiwWXDUB/YXo7hQ==
content-length: 24643
date: Tue, 05 Dec 2023 17:24:29 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc-translations.php/v6iuj24/y7/l/vi_VN/FZZsv1d4auj.js?_nc_x=EOVlzGhkA-R

31.13.72.12

200 OK

16 kB

URL GET HTTP/2
static.xx.fbcdn.net/rsrc-translations.php/v6iuj24/y7/l/vi_VN/FZZsv1d4auj.js?_nc_x=EOVlzGhkA-R
IP
31.13.72.12:443
ASN
#32934 FACEBOOK

Requested by
https://adspayment-support.com.tr/Znk1297FUkDuxJYgvmn4hQJCUsjgpOriWw6GGbNStgdmWHNYrlQHksF5NdpWrpSOQ5tdByVU2VaxJ2NaTrangdau.html
Certificate
IssuerDigiCert Inc
Subject*.facebook.com
Fingerprint63:65:5D:2D:A2:9C:73:20:A7:45:5F:D4:A7:48:54:25:EA:78:2C:AE
ValidityThu, 14 Sep 2023 00:00:00 GMT - Wed, 13 Dec 2023 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Size
16 kB (16366 bytes)
Hash
f6fd68b74d164d25df64ec3129a7d8ef
bb385db55ef2f76a05f7401a26684e2b8a8b67e5
fc9b972c0cee6ef32d5d193a4039369434094d015ef5a18fbbed787a236ecf53

HTTP Headers

GET /rsrc-translations.php/v6iuj24/y7/l/vi_VN/FZZsv1d4auj.js?_nc_x=EOVlzGhkA-R HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://adspayment-support.com.tr
DNT: 1
Connection: keep-alive
Referer: https://adspayment-support.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: application/json
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 30 Nov 2024 00:52:22 GMT
cache-control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
permissions-policy-report-only: autoplay=(), clipboard-read=(), clipboard-write=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), gamepad=(), keyboard-map=(), otp-credentials=(), picture-in-picture=(), xr-spatial-tracking=()
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=()
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
reporting-endpoints: 
content-md5: KKB0KjhX1jzPxRJiqil2YQ==
x-fb-debug: 8Fd3ixYQg9k2wMUS+/paQK9w3UeOkRhzuHatwp8fdDfZff74y9Z3aMkIscea6ljs33Wz1kTHUWEXjHe4gu54kg==
content-length: 16366
date: Tue, 05 Dec 2023 17:24:29 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3iO-_4/yU/l/makehaste_jhash/N6oDSy4tgbj.js?_nc_x=EOVlzGhkA-R

31.13.72.12

200 OK

21 kB

URL GET HTTP/2
static.xx.fbcdn.net/rsrc.php/v3iO-_4/yU/l/makehaste_jhash/N6oDSy4tgbj.js?_nc_x=EOVlzGhkA-R
IP
31.13.72.12:443
ASN
#32934 FACEBOOK

Requested by
https://adspayment-support.com.tr/Znk1297FUkDuxJYgvmn4hQJCUsjgpOriWw6GGbNStgdmWHNYrlQHksF5NdpWrpSOQ5tdByVU2VaxJ2NaTrangdau.html
Certificate
IssuerDigiCert Inc
Subject*.facebook.com
Fingerprint63:65:5D:2D:A2:9C:73:20:A7:45:5F:D4:A7:48:54:25:EA:78:2C:AE
ValidityThu, 14 Sep 2023 00:00:00 GMT - Wed, 13 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (2395)
Size
21 kB (20713 bytes)
Hash
27c7ba1cbb3d22a0c118243bf9af1e96
43fb9de10443e38a2e53a420dc993389805754eb
553f2c0a803475e42ba5f33f350b9fed8039572cb62d5a0d5cd4d6f1e0e04546

HTTP Headers

GET /rsrc.php/v3iO-_4/yU/l/makehaste_jhash/N6oDSy4tgbj.js?_nc_x=EOVlzGhkA-R HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://adspayment-support.com.tr
DNT: 1
Connection: keep-alive
Referer: https://adspayment-support.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: application/x-javascript; charset=utf-8
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 30 Nov 2024 00:52:22 GMT
cache-control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
permissions-policy-report-only: autoplay=(), clipboard-read=(), clipboard-write=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), gamepad=(), keyboard-map=(), otp-credentials=(), picture-in-picture=(), xr-spatial-tracking=()
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=()
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
reporting-endpoints: 
content-md5: uRsk2pEVe9pZvF7SqaA40Q==
x-fb-debug: ytKR4rwKUt/ZiUF/kEl5huX/u8hmsRcC0nPwtjILag4iWAphil7LzWC6B8YDbKDtg9vmKc3P4uR5klS1Kxv9eg==
content-length: 20713
date: Tue, 05 Dec 2023 17:24:29 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc-translations.php/v6iB2T4/yc/l/vi_VN/nEDhXvPJL1s.js?_nc_x=EOVlzGhkA-R

31.13.72.12

200 OK

102 B

URL GET HTTP/2
static.xx.fbcdn.net/rsrc-translations.php/v6iB2T4/yc/l/vi_VN/nEDhXvPJL1s.js?_nc_x=EOVlzGhkA-R
IP
31.13.72.12:443
ASN
#32934 FACEBOOK

Requested by
https://adspayment-support.com.tr/Znk1297FUkDuxJYgvmn4hQJCUsjgpOriWw6GGbNStgdmWHNYrlQHksF5NdpWrpSOQ5tdByVU2VaxJ2NaTrangdau.html
Certificate
IssuerDigiCert Inc
Subject*.facebook.com
Fingerprint63:65:5D:2D:A2:9C:73:20:A7:45:5F:D4:A7:48:54:25:EA:78:2C:AE
ValidityThu, 14 Sep 2023 00:00:00 GMT - Wed, 13 Dec 2023 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
102 B (102 bytes)
Hash
8cad27ae96fb754763981529b5b0dbdb
a0231ec6f5d4b12ad4c08240e8dad07e7b50e09b
1e285829b24b363874d767ad2448a5a108766f3d9311608e341c3f06e918d087

HTTP Headers

GET /rsrc-translations.php/v6iB2T4/yc/l/vi_VN/nEDhXvPJL1s.js?_nc_x=EOVlzGhkA-R HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://adspayment-support.com.tr
DNT: 1
Connection: keep-alive
Referer: https://adspayment-support.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: jK0nrpb7dUdjmBUptbDb2w==
expires: Sat, 23 Nov 2024 09:20:34 GMT
cache-control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=()
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
reporting-endpoints: 
origin-agent-cluster: ?0
x-fb-debug: 7zn8l1aFGkXTjwPfa1xGi3CrMSyJnYGkS7MvC0GOipCMRgCGo1cQf8anqRjz3afq2opMMGtS0uXhcav+GwhPyg==
content-length: 102
date: Tue, 05 Dec 2023 17:24:29 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc-translations.php/v6i6tW4/yK/l/vi_VN/N6oDSy4tgbj.js?_nc_x=EOVlzGhkA-R

31.13.72.12

200 OK

167 B

URL GET HTTP/2
static.xx.fbcdn.net/rsrc-translations.php/v6i6tW4/yK/l/vi_VN/N6oDSy4tgbj.js?_nc_x=EOVlzGhkA-R
IP
31.13.72.12:443
ASN
#32934 FACEBOOK

Requested by
https://adspayment-support.com.tr/Znk1297FUkDuxJYgvmn4hQJCUsjgpOriWw6GGbNStgdmWHNYrlQHksF5NdpWrpSOQ5tdByVU2VaxJ2NaTrangdau.html
Certificate
IssuerDigiCert Inc
Subject*.facebook.com
Fingerprint63:65:5D:2D:A2:9C:73:20:A7:45:5F:D4:A7:48:54:25:EA:78:2C:AE
ValidityThu, 14 Sep 2023 00:00:00 GMT - Wed, 13 Dec 2023 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
167 B (167 bytes)
Hash
22b24d58ab75e3c9bfc53aa99eba875c
36b27c6b51125d3c011c9a55ead0e958d70a9f7f
c673200e64f6c267e7d1c8984fea5ed0186abda8ac3709f0bd51559b5cb531e7

HTTP Headers

GET /rsrc-translations.php/v6i6tW4/yK/l/vi_VN/N6oDSy4tgbj.js?_nc_x=EOVlzGhkA-R HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://adspayment-support.com.tr
DNT: 1
Connection: keep-alive
Referer: https://adspayment-support.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: IrJNWKt148m/xTqpnrqHXA==
expires: Tue, 03 Dec 2024 14:14:40 GMT
cache-control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
permissions-policy-report-only: autoplay=(), clipboard-read=(), clipboard-write=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), gamepad=(), keyboard-map=(), otp-credentials=(), picture-in-picture=(), xr-spatial-tracking=()
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=()
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
reporting-endpoints: 
x-fb-debug: dc4Yte6E9IRWXv0xKl5uqwV9skTjSEMFOel+fgBm/uFdWg7d5OH9LypZtCZiG2kZyGAkaiDWiZjQviRcQH3/3g==
content-length: 167
date: Tue, 05 Dec 2023 17:24:29 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc-translations.php/v6iYuE4/yT/l/vi_VN/bMvvvl5bCTL.js?_nc_x=EOVlzGhkA-R

31.13.72.12

200 OK

151 B

URL GET HTTP/2
static.xx.fbcdn.net/rsrc-translations.php/v6iYuE4/yT/l/vi_VN/bMvvvl5bCTL.js?_nc_x=EOVlzGhkA-R
IP
31.13.72.12:443
ASN
#32934 FACEBOOK

Requested by
https://adspayment-support.com.tr/Znk1297FUkDuxJYgvmn4hQJCUsjgpOriWw6GGbNStgdmWHNYrlQHksF5NdpWrpSOQ5tdByVU2VaxJ2NaTrangdau.html
Certificate
IssuerDigiCert Inc
Subject*.facebook.com
Fingerprint63:65:5D:2D:A2:9C:73:20:A7:45:5F:D4:A7:48:54:25:EA:78:2C:AE
ValidityThu, 14 Sep 2023 00:00:00 GMT - Wed, 13 Dec 2023 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
151 B (151 bytes)
Hash
0a4a27773bcf0916805d7c34d10de2d0
9fdb74225a25673e205dec840bc90a50658fa2a3
e2491595e9f9ff21a44c174f76457cf706c35284a314783c98d3bc4e7f01d731

HTTP Headers

GET /rsrc-translations.php/v6iYuE4/yT/l/vi_VN/bMvvvl5bCTL.js?_nc_x=EOVlzGhkA-R HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://adspayment-support.com.tr
DNT: 1
Connection: keep-alive
Referer: https://adspayment-support.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: CkondzvPCRaAXXw00Q3i0A==
expires: Fri, 22 Nov 2024 08:45:49 GMT
cache-control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=()
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
reporting-endpoints: 
origin-agent-cluster: ?0
x-fb-debug: 6C5pkOKLXh4aT0Aq+joBOxvi+PewAjZOK2YPLkrK2mMEblYccEXUh8w+Sk6Fen/FDLlxvZotqB/98qs4RAuTag==
content-length: 151
date: Tue, 05 Dec 2023 17:24:29 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc-translations.php/v6i6eG4/yZ/l/vi_VN/S6uc1d0fA5C3bq-05xdWkZGhtFLLS2gFNIiDNpLJxUgC3i5cmeax6VzXlKjBlZM5HA.js?_nc_x=EOVlzGhkA-R

31.13.72.12

200 OK

214 B

URL GET HTTP/2
static.xx.fbcdn.net/rsrc-translations.php/v6i6eG4/yZ/l/vi_VN/S6uc1d0fA5C3bq-05xdWkZGhtFLLS2gFNIiDNpLJxUgC3i5cmeax6VzXlKjBlZM5HA.js?_nc_x=EOVlzGhkA-R
IP
31.13.72.12:443
ASN
#32934 FACEBOOK

Requested by
https://adspayment-support.com.tr/Znk1297FUkDuxJYgvmn4hQJCUsjgpOriWw6GGbNStgdmWHNYrlQHksF5NdpWrpSOQ5tdByVU2VaxJ2NaTrangdau.html
Certificate
IssuerDigiCert Inc
Subject*.facebook.com
Fingerprint63:65:5D:2D:A2:9C:73:20:A7:45:5F:D4:A7:48:54:25:EA:78:2C:AE
ValidityThu, 14 Sep 2023 00:00:00 GMT - Wed, 13 Dec 2023 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (309), with no line terminators
Size
214 B (214 bytes)
Hash
950f66735cf3e7bd91f94f56f2d343f5
34a2d56045ba4af51fdb57c88590d3c9d9ba3473
3a5f4a0d2c4e291bb6152567a94e3d1bcc6e378ce477add5863acec7f490ab79

HTTP Headers

GET /rsrc-translations.php/v6i6eG4/yZ/l/vi_VN/S6uc1d0fA5C3bq-05xdWkZGhtFLLS2gFNIiDNpLJxUgC3i5cmeax6VzXlKjBlZM5HA.js?_nc_x=EOVlzGhkA-R HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://adspayment-support.com.tr
DNT: 1
Connection: keep-alive
Referer: https://adspayment-support.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: application/json
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 24 Nov 2024 01:55:20 GMT
cache-control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=()
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
reporting-endpoints: 
content-md5: KIcJQFevt/vK/rMhlmK0cw==
x-fb-debug: nCMhl4c+W+IJYE6COkmZxYMCtETN+X2Bltd1NWyahNnz+OejI0uLrUynM3WoSRIEaaVhY+SsHL2P2/hHVwjdFw==
content-length: 214
date: Tue, 05 Dec 2023 17:24:29 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc-translations.php/v6imKX4/yK/l/vi_VN/PcVycOPudQJ.js?_nc_x=EOVlzGhkA-R

31.13.72.12

200 OK

251 B

URL GET HTTP/2
static.xx.fbcdn.net/rsrc-translations.php/v6imKX4/yK/l/vi_VN/PcVycOPudQJ.js?_nc_x=EOVlzGhkA-R
IP
31.13.72.12:443
ASN
#32934 FACEBOOK

Requested by
https://adspayment-support.com.tr/Znk1297FUkDuxJYgvmn4hQJCUsjgpOriWw6GGbNStgdmWHNYrlQHksF5NdpWrpSOQ5tdByVU2VaxJ2NaTrangdau.html
Certificate
IssuerDigiCert Inc
Subject*.facebook.com
Fingerprint63:65:5D:2D:A2:9C:73:20:A7:45:5F:D4:A7:48:54:25:EA:78:2C:AE
ValidityThu, 14 Sep 2023 00:00:00 GMT - Wed, 13 Dec 2023 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (387), with no line terminators
Size
251 B (251 bytes)
Hash
b7a576f654272093edec864ff2875454
2db93b0e39ffc68b2cb3959d5f97ccf23f1545dc
694b5148132778719d0506ec5d48db4290a62828cbef735cfa579ccf25f79956

HTTP Headers

GET /rsrc-translations.php/v6imKX4/yK/l/vi_VN/PcVycOPudQJ.js?_nc_x=EOVlzGhkA-R HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://adspayment-support.com.tr
DNT: 1
Connection: keep-alive
Referer: https://adspayment-support.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: application/json
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 23 Nov 2024 00:16:52 GMT
cache-control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=()
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
reporting-endpoints: 
x-ua-compatible: IE=edge
content-md5: Sy6HW5W0/ekfyOtLDsrk2g==
x-fb-debug: 4850tQ+YHzQaqLDLqmWeODSXy0YPTSVe8xUwszZ5SqqVRBrXmlWtboBDhvTXx4ewi3yc09iEdBTbvj7RTf0GNg==
content-length: 251
date: Tue, 05 Dec 2023 17:24:29 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3ip6z4/yT/l/makehaste_jhash/S6uc1d0fA5C3bq-05xdWkZGhtFLLS2gFNIiDNpLJxUgC3i5cmeax6VzXlKjBlZM5HA.js?_nc_x=EOVlzGhkA-R

31.13.72.12

200 OK

19 kB

URL GET HTTP/2
static.xx.fbcdn.net/rsrc.php/v3ip6z4/yT/l/makehaste_jhash/S6uc1d0fA5C3bq-05xdWkZGhtFLLS2gFNIiDNpLJxUgC3i5cmeax6VzXlKjBlZM5HA.js?_nc_x=EOVlzGhkA-R
IP
31.13.72.12:443
ASN
#32934 FACEBOOK

Requested by
https://adspayment-support.com.tr/Znk1297FUkDuxJYgvmn4hQJCUsjgpOriWw6GGbNStgdmWHNYrlQHksF5NdpWrpSOQ5tdByVU2VaxJ2NaTrangdau.html
Certificate
IssuerDigiCert Inc
Subject*.facebook.com
Fingerprint63:65:5D:2D:A2:9C:73:20:A7:45:5F:D4:A7:48:54:25:EA:78:2C:AE
ValidityThu, 14 Sep 2023 00:00:00 GMT - Wed, 13 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (9581)
Size
19 kB (18895 bytes)
Hash
8092ec3222a47841d0cde39c57d1f0a9
10b80f464d92572311f57d560b7d987205f7e5be
a36e5e16fe9bce156d894e3c3b257890d309787ec948cc9f148b719946d35626

HTTP Headers

GET /rsrc.php/v3ip6z4/yT/l/makehaste_jhash/S6uc1d0fA5C3bq-05xdWkZGhtFLLS2gFNIiDNpLJxUgC3i5cmeax6VzXlKjBlZM5HA.js?_nc_x=EOVlzGhkA-R HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://adspayment-support.com.tr
DNT: 1
Connection: keep-alive
Referer: https://adspayment-support.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: application/x-javascript; charset=utf-8
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 02 Dec 2024 00:53:03 GMT
cache-control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
permissions-policy-report-only: autoplay=(), clipboard-read=(), clipboard-write=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), gamepad=(), keyboard-map=(), otp-credentials=(), picture-in-picture=(), xr-spatial-tracking=()
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=()
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
reporting-endpoints: 
content-md5: eQdtkryo6k/d9gZa2fbzAQ==
x-fb-debug: J0gCn03oj5420ft7EGoetqDWa0rkaOFXwlBZbVQWJ/ruFCgy44sPL4zSSghOVaKPNBmNmiMuwZQUocPVR217wg==
content-length: 18895
date: Tue, 05 Dec 2023 17:24:29 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/yk/l/0,cross/TSH6BjEm_aVssUWP9gviff3tgVRmH590v.css?_nc_x=EOVlzGhkA-R

31.13.72.12

200 OK

175 kB

URL GET HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/yk/l/0,cross/TSH6BjEm_aVssUWP9gviff3tgVRmH590v.css?_nc_x=EOVlzGhkA-R
IP
31.13.72.12:443
ASN
#32934 FACEBOOK

Requested by
https://adspayment-support.com.tr/Znk1297FUkDuxJYgvmn4hQJCUsjgpOriWw6GGbNStgdmWHNYrlQHksF5NdpWrpSOQ5tdByVU2VaxJ2NaTrangdau.html
Certificate
IssuerDigiCert Inc
Subject*.facebook.com
Fingerprint63:65:5D:2D:A2:9C:73:20:A7:45:5F:D4:A7:48:54:25:EA:78:2C:AE
ValidityThu, 14 Sep 2023 00:00:00 GMT - Wed, 13 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (63629)
Size
175 kB (174648 bytes)
Hash
544ede8be0545bed173ecba4e4537b86
b1357d8939c835525c79615d12fae0dcb36c9c61
695925b5dc66186b09979fcf7a09648ba0443b99dc91582040f485e216900e93

HTTP Headers

GET /rsrc.php/v3/yk/l/0,cross/TSH6BjEm_aVssUWP9gviff3tgVRmH590v.css?_nc_x=EOVlzGhkA-R HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://adspayment-support.com.tr
DNT: 1
Connection: keep-alive
Referer: https://adspayment-support.com.tr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: text/css; charset=utf-8
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 22 Nov 2024 19:17:55 GMT
cache-control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=()
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
reporting-endpoints: 
content-md5: sA3yCvT8fw0kO2oPjJJJVA==
x-fb-debug: U33oMk5EcwuwtgQL6KSdriC3cuceW7YgeB226lSYqMLC5TVnZVJ0Htro7UDGWwq5xAWScwSWuQqc3bFlleg52w==
content-length: 174648
date: Tue, 05 Dec 2023 17:24:29 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3iKgv4/yI/l/makehaste_jhash/Qq2WSraySoabdQH5E5-yTvM1DIlJlfMQ1LOBi82UevlputO3-3p3TD2npPrYWuecZ65PyqgFyQ52rZQllFv7EHElKdzUJQJLLUOGSCBrh_uWvvoxaDkU1M-bhd3puuRsXeEtDXVE0pwKMrNjAwO-6pGOuPs_f362TtZkJglT3JUXGHrmPUgZx9YOelkPVjnHqGgIdWhS6VaQvBoJXR0Mkuu-Kd_9Oo6HNhXPrmFp55HfXW__mMiYtNcrq7rDk.js?_nc_x=EOVlzGhkA-R

31.13.72.12

200 OK

300 kB

URL GET HTTP/2
static.xx.fbcdn.net/rsrc.php/v3iKgv4/yI/l/makehaste_jhash/Qq2WSraySoabdQH5E5-yTvM1DIlJlfMQ1LOBi82UevlputO3-3p3TD2npPrYWuecZ65PyqgFyQ52rZQllFv7EHElKdzUJQJLLUOGSCBrh_uWvvoxaDkU1M-bhd3puuRsXeEtDXVE0pwKMrNjAwO-6pGOuPs_f362TtZkJglT3JUXGHrmPUgZx9YOelkPVjnHqGgIdWhS6VaQvBoJXR0Mkuu-Kd_9Oo6HNhXPrmFp55HfXW__mMiYtNcrq7rDk.js?_nc_x=EOVlzGhkA-R
IP
31.13.72.12:443
ASN
#32934 FACEBOOK

Requested by
https://adspayment-support.com.tr/Znk1297FUkDuxJYgvmn4hQJCUsjgpOriWw6GGbNStgdmWHNYrlQHksF5NdpWrpSOQ5tdByVU2VaxJ2NaTrangdau.html
Certificate
IssuerDigiCert Inc
Subject*.facebook.com
Fingerprint63:65:5D:2D:A2:9C:73:20:A7:45:5F:D4:A7:48:54:25:EA:78:2C:AE
ValidityThu, 14 Sep 2023 00:00:00 GMT - Wed, 13 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (7790)
Size
300 kB (299624 bytes)
Hash
544830049f490e5de2199246ee76fd4a
3541fdb47ce4a5bd4451cb860f35e99e8ed864ae
ab4e0ed59d5b2bb89781f1a5a834104e408784650ad94069bd3c9edf48f89bc0

HTTP Headers

GET /rsrc.php/v3iKgv4/yI/l/makehaste_jhash/Qq2WSraySoabdQH5E5-yTvM1DIlJlfMQ1LOBi82UevlputO3-3p3TD2npPrYWuecZ65PyqgFyQ52rZQllFv7EHElKdzUJQJLLUOGSCBrh_uWvvoxaDkU1M-bhd3puuRsXeEtDXVE0pwKMrNjAwO-6pGOuPs_f362TtZkJglT3JUXGHrmPUgZx9YOelkPVjnHqGgIdWhS6VaQvBoJXR0Mkuu-Kd_9Oo6HNhXPrmFp55HfXW__mMiYtNcrq7rDk.js?_nc_x=EOVlzGhkA-R HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://adspayment-support.com.tr
DNT: 1
Connection: keep-alive
Referer: https://adspayment-support.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: application/x-javascript; charset=utf-8
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 30 Nov 2024 00:52:22 GMT
cache-control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
permissions-policy-report-only: autoplay=(), clipboard-read=(), clipboard-write=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), gamepad=(), keyboard-map=(), otp-credentials=(), picture-in-picture=(), xr-spatial-tracking=()
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=()
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
reporting-endpoints: 
content-md5: vY6k4EQ3G2ztjPGC4RpD7A==
x-fb-debug: 1eSgzP6DNh+tuY35SrfvxIHgyuhtTTrt3skJV2kDcDAYjPuEyZKApLvMylI0lYukq3eGucQb3orALTIx1ooZKA==
content-length: 299624
date: Tue, 05 Dec 2023 17:24:29 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3idBq4/y4/l/makehaste_jhash/nEDhXvPJL1s.js?_nc_x=EOVlzGhkA-R

31.13.72.12

200 OK

8.2 kB

URL GET HTTP/2
static.xx.fbcdn.net/rsrc.php/v3idBq4/y4/l/makehaste_jhash/nEDhXvPJL1s.js?_nc_x=EOVlzGhkA-R
IP
31.13.72.12:443
ASN
#32934 FACEBOOK

Requested by
https://adspayment-support.com.tr/Znk1297FUkDuxJYgvmn4hQJCUsjgpOriWw6GGbNStgdmWHNYrlQHksF5NdpWrpSOQ5tdByVU2VaxJ2NaTrangdau.html
Certificate
IssuerDigiCert Inc
Subject*.facebook.com
Fingerprint63:65:5D:2D:A2:9C:73:20:A7:45:5F:D4:A7:48:54:25:EA:78:2C:AE
ValidityThu, 14 Sep 2023 00:00:00 GMT - Wed, 13 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (6126)
Size
8.2 kB (8199 bytes)
Hash
3ffcda4ec7ff78566c6c9e6046f98afa
c2d4ccd7cbe34c3486c5edf6f9392255cbc4cbe2
2635848f9b9d3a801955df00c383ead7d4d483360d0838a4431230d86cd446ef

HTTP Headers

GET /rsrc.php/v3idBq4/y4/l/makehaste_jhash/nEDhXvPJL1s.js?_nc_x=EOVlzGhkA-R HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://adspayment-support.com.tr
DNT: 1
Connection: keep-alive
Referer: https://adspayment-support.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: application/x-javascript; charset=utf-8
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 24 Nov 2024 01:55:20 GMT
cache-control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=()
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
reporting-endpoints: 
content-md5: UDlnLCywVlSLbY8RiOqfAg==
x-fb-debug: /qhs8w/XUQp3nkuG8SweQ6cCFmUgDwNklBt3rj3q4WOAmGeIp0t2WcxdoLS01GjVzzwiuchVpSUqaplEX03qXQ==
content-length: 8199
date: Tue, 05 Dec 2023 17:24:29 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3ik6d4/yb/l/makehaste_jhash/FZZsv1d4auj.js?_nc_x=EOVlzGhkA-R

31.13.72.12

200 OK

125 kB

URL GET HTTP/2
static.xx.fbcdn.net/rsrc.php/v3ik6d4/yb/l/makehaste_jhash/FZZsv1d4auj.js?_nc_x=EOVlzGhkA-R
IP
31.13.72.12:443
ASN
#32934 FACEBOOK

Requested by
https://adspayment-support.com.tr/Znk1297FUkDuxJYgvmn4hQJCUsjgpOriWw6GGbNStgdmWHNYrlQHksF5NdpWrpSOQ5tdByVU2VaxJ2NaTrangdau.html
Certificate
IssuerDigiCert Inc
Subject*.facebook.com
Fingerprint63:65:5D:2D:A2:9C:73:20:A7:45:5F:D4:A7:48:54:25:EA:78:2C:AE
ValidityThu, 14 Sep 2023 00:00:00 GMT - Wed, 13 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (65517)
Size
125 kB (125422 bytes)
Hash
d7b589f0099bcf8e2e4bbd9ef60ac415
fdccf9bcb69f3bfd4e16281ef9c951d024d00ef1
68f6ed19b918c45483227c69525115b0cf07a76c1365344ed6cd2610ac0d9274

HTTP Headers

GET /rsrc.php/v3ik6d4/yb/l/makehaste_jhash/FZZsv1d4auj.js?_nc_x=EOVlzGhkA-R HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://adspayment-support.com.tr
DNT: 1
Connection: keep-alive
Referer: https://adspayment-support.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: application/x-javascript; charset=utf-8
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 22 Nov 2024 08:45:49 GMT
cache-control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=()
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
reporting-endpoints: 
origin-agent-cluster: ?0
content-md5: Dx2daRuyv4W8aMHHIvfu4Q==
x-fb-debug: AvC+cyzQmTXBzgymRMVIy74GK4i7/URxONtBkqjmoonVtvyCT8A+3RF73uuTcWd/aqZeLnM1cgnjFFPykMH+Lw==
content-length: 125422
date: Tue, 05 Dec 2023 17:24:29 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3ibUx4/yN/l/makehaste_jhash/KS8uqGyoqmD.js?_nc_x=EOVlzGhkA-R

31.13.72.12

200 OK

93 kB

URL GET HTTP/2
static.xx.fbcdn.net/rsrc.php/v3ibUx4/yN/l/makehaste_jhash/KS8uqGyoqmD.js?_nc_x=EOVlzGhkA-R
IP
31.13.72.12:443
ASN
#32934 FACEBOOK

Requested by
https://adspayment-support.com.tr/Znk1297FUkDuxJYgvmn4hQJCUsjgpOriWw6GGbNStgdmWHNYrlQHksF5NdpWrpSOQ5tdByVU2VaxJ2NaTrangdau.html
Certificate
IssuerDigiCert Inc
Subject*.facebook.com
Fingerprint63:65:5D:2D:A2:9C:73:20:A7:45:5F:D4:A7:48:54:25:EA:78:2C:AE
ValidityThu, 14 Sep 2023 00:00:00 GMT - Wed, 13 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (8287)
Size
93 kB (93136 bytes)
Hash
acc0360b614fb39f591c69eb46587098
19fc46ad46168f469068fd14946bdc8b3933eb8e
d6abeb784416069c7f80610fe8f299b57d84930d9c948631ed0b17f087058eff

HTTP Headers

GET /rsrc.php/v3ibUx4/yN/l/makehaste_jhash/KS8uqGyoqmD.js?_nc_x=EOVlzGhkA-R HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://adspayment-support.com.tr
DNT: 1
Connection: keep-alive
Referer: https://adspayment-support.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: application/x-javascript; charset=utf-8
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 30 Nov 2024 00:52:22 GMT
cache-control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
permissions-policy-report-only: autoplay=(), clipboard-read=(), clipboard-write=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), gamepad=(), keyboard-map=(), otp-credentials=(), picture-in-picture=(), xr-spatial-tracking=()
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=()
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
reporting-endpoints: 
content-md5: qWkelqUvslAcaWa6g2vfbA==
x-fb-debug: TYEZ5L0J1egf7n4LEpuGTgqtrEFEJRKsK3+YJR5oPplfklxpsCQGkRRe5Dq5W9nUo5I4jFo2BHWWFOtgaMH2ZA==
content-length: 93136
date: Tue, 05 Dec 2023 17:24:29 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/y8/r/bslyuO0dPlj.js?_nc_x=EOVlzGhkA-R

31.13.72.12

200 OK

62 kB

URL GET HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/y8/r/bslyuO0dPlj.js?_nc_x=EOVlzGhkA-R
IP
31.13.72.12:443
ASN
#32934 FACEBOOK

Requested by
https://adspayment-support.com.tr/Znk1297FUkDuxJYgvmn4hQJCUsjgpOriWw6GGbNStgdmWHNYrlQHksF5NdpWrpSOQ5tdByVU2VaxJ2NaTrangdau.html
Certificate
IssuerDigiCert Inc
Subject*.facebook.com
Fingerprint63:65:5D:2D:A2:9C:73:20:A7:45:5F:D4:A7:48:54:25:EA:78:2C:AE
ValidityThu, 14 Sep 2023 00:00:00 GMT - Wed, 13 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (19142)
Size
62 kB (61697 bytes)
Hash
5c236464a8a6c0763abf0afecc0b87b3
017fd0c68c4e85d3b28eb610f9c63263d60d3df4
acae2586f443d02fb9686cfc123ee478533a4a663310adcddeb7ba01aadbb6cd

HTTP Headers

GET /rsrc.php/v3/y8/r/bslyuO0dPlj.js?_nc_x=EOVlzGhkA-R HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://adspayment-support.com.tr
DNT: 1
Connection: keep-alive
Referer: https://adspayment-support.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: application/x-javascript; charset=utf-8
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 22 Nov 2024 08:45:49 GMT
cache-control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=()
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
reporting-endpoints: 
origin-agent-cluster: ?0
content-md5: Omv57IksMz/DBP8sta7JBw==
x-fb-debug: 2SiOs8maB8arHUjSIvd96jIXofZWAqiWiSW4wuHfaLbm01SpBunQkNeGKqIU2FcALGIO1Cj8UaUMiYOtHEoR2g==
content-length: 61697
date: Tue, 05 Dec 2023 17:24:29 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/yY/r/wC36_X1yIkG.png

31.13.72.12

200 OK

4.3 kB

URL GET HTTP/3
static.xx.fbcdn.net/rsrc.php/v3/yY/r/wC36_X1yIkG.png
IP
31.13.72.12:443
ASN
#32934 FACEBOOK

Requested by
https://adspayment-support.com.tr/Znk1297FUkDuxJYgvmn4hQJCUsjgpOriWw6GGbNStgdmWHNYrlQHksF5NdpWrpSOQ5tdByVU2VaxJ2NaTrangdau.html
Certificate
IssuerDigiCert Inc
Subject*.facebook.com
Fingerprint63:65:5D:2D:A2:9C:73:20:A7:45:5F:D4:A7:48:54:25:EA:78:2C:AE
ValidityThu, 14 Sep 2023 00:00:00 GMT - Wed, 13 Dec 2023 23:59:59 GMT

File type
PNG image data, 33 x 620, 8-bit colormap, non-interlaced\012- data
Size
4.3 kB (4279 bytes)
Hash
0f9c1699227baeb356f8e3c25d6a86c1
a5326f20a05511a01f2e6c213e1720d712b3ddcf
0c19efccd14ebc608c3ab2fb788227eb1f112879103d04526589a2316f6a745b

HTTP Headers

GET /rsrc.php/v3/yY/r/wC36_X1yIkG.png HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://adspayment-support.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/png
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: D5wWmSJ7rrNW+OPCXWqGwQ==
expires: Sat, 30 Nov 2024 14:19:07 GMT
cache-control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
permissions-policy-report-only: autoplay=(), clipboard-read=(), clipboard-write=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), gamepad=(), keyboard-map=(), otp-credentials=(), picture-in-picture=(), xr-spatial-tracking=()
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=()
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
reporting-endpoints: 
x-fb-debug: 2HFqkneQrfmzfR6yXjKTyi5SG5yuX33ZXoO1WR4CSWHKUBJ1cEOrgokrK5Nbb0EFVpbATEJxkSzUTFVHPbravw==
content-length: 4279
date: Tue, 05 Dec 2023 17:24:30 GMT
alt-svc: h3=":443"; ma=86400
priority: u=6

static.xx.fbcdn.net/rsrc.php/v3/y9/r/iTF7Y5g6583.png

31.13.72.12

200 OK

1.5 kB

URL GET HTTP/3
static.xx.fbcdn.net/rsrc.php/v3/y9/r/iTF7Y5g6583.png
IP
31.13.72.12:443
ASN
#32934 FACEBOOK

Requested by
https://adspayment-support.com.tr/Znk1297FUkDuxJYgvmn4hQJCUsjgpOriWw6GGbNStgdmWHNYrlQHksF5NdpWrpSOQ5tdByVU2VaxJ2NaTrangdau.html
Certificate
IssuerDigiCert Inc
Subject*.facebook.com
Fingerprint63:65:5D:2D:A2:9C:73:20:A7:45:5F:D4:A7:48:54:25:EA:78:2C:AE
ValidityThu, 14 Sep 2023 00:00:00 GMT - Wed, 13 Dec 2023 23:59:59 GMT

File type
PNG image data, 121 x 25, 8-bit/color RGBA, non-interlaced\012- data
Size
1.5 kB (1493 bytes)
Hash
87bec792822d12eadcc1c625605468d5
7cde7b810d56dc35b3b39be828cd88df9eba918d
122975b9c6efa272ec034575eb82f477dbca7aa8fe28d8f74ba4f8e87ff008ca

HTTP Headers

GET /rsrc.php/v3/y9/r/iTF7Y5g6583.png HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://adspayment-support.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/png
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: h77HkoItEurcwcYlYFRo1Q==
expires: Fri, 29 Nov 2024 10:44:26 GMT
cache-control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
permissions-policy-report-only: autoplay=(), clipboard-read=(), clipboard-write=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), gamepad=(), keyboard-map=(), otp-credentials=(), picture-in-picture=(), xr-spatial-tracking=()
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=()
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
reporting-endpoints: 
x-fb-debug: RGcdMW4nRfv+Atyx1DZ1DqydmOKMO6DLqcHw7d67Kr0ysYpgK3Xu2WmGN+Ss9Q3Qo/TZ5E6JmgaGL/tJOPCD8g==
content-length: 1493
date: Tue, 05 Dec 2023 17:24:30 GMT
alt-svc: h3=":443"; ma=86400
priority: u=6

static.xx.fbcdn.net/rsrc.php/yD/r/d4ZIVX-5C-b.ico

31.13.72.12

200 OK

5.4 kB

URL GET HTTP/3
static.xx.fbcdn.net/rsrc.php/yD/r/d4ZIVX-5C-b.ico
IP
31.13.72.12:443
ASN
#32934 FACEBOOK

Requested by
https://adspayment-support.com.tr/Znk1297FUkDuxJYgvmn4hQJCUsjgpOriWw6GGbNStgdmWHNYrlQHksF5NdpWrpSOQ5tdByVU2VaxJ2NaTrangdau.html
Certificate
IssuerDigiCert Inc
Subject*.facebook.com
Fingerprint63:65:5D:2D:A2:9C:73:20:A7:45:5F:D4:A7:48:54:25:EA:78:2C:AE
ValidityThu, 14 Sep 2023 00:00:00 GMT - Wed, 13 Dec 2023 23:59:59 GMT

File type
MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size
5.4 kB (5430 bytes)
Hash
de76b0c210c815ef282d5b59de8a0567
023038e2dfd649047be4fbba79c78dd80bc4cd90
c636a92a12eb33629e6dcadc67e49651ac54e8f3b18a03c805668505f05c885a

HTTP Headers

GET /rsrc.php/yD/r/d4ZIVX-5C-b.ico HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://adspayment-support.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/x-icon
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: 3nawwhDIFe8oLVtZ3ooFZw==
expires: Fri, 29 Nov 2024 02:58:19 GMT
cache-control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=()
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
reporting-endpoints: 
x-fb-debug: hG3bzlIi+tlBb9gUXseJ96LQTcpptsVkqjJnB/Rmd1qt4HPr+YB0aV7k1O5gUWb0UUzY3ql763ICmr08GXcZQA==
content-length: 5430
date: Tue, 05 Dec 2023 17:24:30 GMT
alt-svc: h3=":443"; ma=86400
priority: u=6

adspayment-support.com.tr/ajax/qm/?__a=1&__user=100086314042087&__comet_req=15&jazoest=25456

104.21.11.8

404 Not Found

1.2 kB

URL POST HTTP/3
adspayment-support.com.tr/ajax/qm/?__a=1&__user=100086314042087&__comet_req=15&jazoest=25456
IP
104.21.11.8:443
ASN
#13335 CLOUDFLARENET

Requested by
https://adspayment-support.com.tr/Znk1297FUkDuxJYgvmn4hQJCUsjgpOriWw6GGbNStgdmWHNYrlQHksF5NdpWrpSOQ5tdByVU2VaxJ2NaTrangdau.html
Certificate
IssuerGoogle Trust Services LLC
Subjectadspayment-support.com.tr
FingerprintEB:86:65:33:92:03:D5:69:66:51:27:D4:D3:9A:57:99:12:48:94:C3
ValidityThu, 30 Nov 2023 05:52:55 GMT - Wed, 28 Feb 2024 05:52:54 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1276), with no line terminators
Size
1.2 kB (1238 bytes)
Hash
24b426fea67958554911ff4c943fdfe4
b92889146d4c1bbddccabe58ca15c814ea066f72
335fd88e127ff1b19e6c5af3c801186182f064e4c6747b9a76a0b3988553716c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Facebook, Inc.
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /ajax/qm/?__a=1&__user=100086314042087&__comet_req=15&jazoest=25456 HTTP/1.1
Host: adspayment-support.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 196
Origin: https://adspayment-support.com.tr
DNT: 1
Connection: keep-alive
Referer: https://adspayment-support.com.tr/Znk1297FUkDuxJYgvmn4hQJCUsjgpOriWw6GGbNStgdmWHNYrlQHksF5NdpWrpSOQ5tdByVU2VaxJ2NaTrangdau.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/3 404 Not Found
date: Tue, 05 Dec 2023 17:24:29 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PRr6p5nayJb3VXfnNxe9bDl2uPq9UtBR18ZW0zUz2jHmX8IQwJ6YH30Mnk00k%2F1b0MEG%2B%2BHiSaNBPDM2OPz9oK%2FmLDb5SWyhALAh%2FHj04nnRzoadhMgyYoGRPioRB2Gz4%2F6gurVj9WnZlwx6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830dfba5af98b51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

adspayment-support.com.tr/Znk1297FUkDuxJYgvmn4hQJCUsjgpOriWw6GGbNStgdmWHNYrlQHksF5NdpWrpSOQ5tdByVU2VaxJ2NaTrangdau.html

104.21.11.8

200 OK

91 kB

URL User Request GET HTTP/2
adspayment-support.com.tr/Znk1297FUkDuxJYgvmn4hQJCUsjgpOriWw6GGbNStgdmWHNYrlQHksF5NdpWrpSOQ5tdByVU2VaxJ2NaTrangdau.html
IP
104.21.11.8:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectadspayment-support.com.tr
FingerprintEB:86:65:33:92:03:D5:69:66:51:27:D4:D3:9A:57:99:12:48:94:C3
ValidityThu, 30 Nov 2023 05:52:55 GMT - Wed, 28 Feb 2024 05:52:54 GMT

File type

Size
91 kB (91336 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Facebook, Inc.
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /Znk1297FUkDuxJYgvmn4hQJCUsjgpOriWw6GGbNStgdmWHNYrlQHksF5NdpWrpSOQ5tdByVU2VaxJ2NaTrangdau.html HTTP/1.1
Host: adspayment-support.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 17:24:29 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y13LK9oArl%2F3foIEYG3dOAnKug2foSSof0Pzk13T1yaVxUfxJHqRLRcJ3q2Q6co2DREKdHw4M5H5UJ4BOaWuYoxTtxM%2Fk6HO71tvXfveGFy3xd4Y4YLSMCJvHNKJb8k8fQ%2FNPFCNrCuaLBlY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830dfb9fae725696-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (17)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by