Report - crackzsoft.me/news

Report Overview

Visited public
2025-02-26 15:07:11
Tags
Submit Tags
URL
crackzsoft.me/news
Finishing URL
ww1.crackzsoft.me/
IP / ASN
185.107.56.53
#43350 NForce Entertainment B.V.
Title
crackzsoft.me

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
syndicatedsearch.goog	unknown	2023-04-14	2023-09-25	2025-02-26	3.2 kB	151 kB	216.58.207.238
afs.googleusercontent.com	12123	2008-11-17	2013-05-06	2025-02-26	1.0 kB	2.0 kB	142.250.74.33
www.google.com	7	1997-09-15	2015-05-10	2025-02-26	443 B	146 kB	142.250.74.68
crackzsoft.me	499484	2020-04-12	2020-04-19	2024-10-20	1.9 kB	1.5 kB	185.107.56.193
ww1.crackzsoft.me	unknown	2020-04-12	2024-12-19	2024-12-19	1.8 kB	44 kB	199.59.243.228

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-02-26	medium	crackzsoft.me	Sinkholed
2025-02-26	medium	crackzsoft.me	Sinkholed
2025-02-26	medium	crackzsoft.me	Sinkholed
2025-02-26	medium	crackzsoft.me	Sinkholed
2025-02-26	medium	crackzsoft.me	Sinkholed
2025-02-26	medium	crackzsoft.me	Sinkholed
2025-02-26	medium	crackzsoft.me	Sinkholed

ThreatFox

No alerts detected

JavaScript (5)

	URL	From	Size	First Seen	Last Seen
	ww1.crackzsoft.me/	ScriptElement	303 B	2025-02-26	2025-02-26
Pretty URL ww1.crackzsoft.me/ IP 199.59.243.228 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2025-02-26 15:07 Last Seen2025-02-26 15:07 Times Seen1 Hash 2c4797d5c96f55426aa8d45cb866b22c a706c0a32e9974753b118105d2f1ad86fa928b1b 500ff6a41a9323bdf6bb904148b032d229e33d60e9d5c53a71d40925c47dbe57 Loading...

	ww1.crackzsoft.me/bTZYaPvjG.js	ScriptElement	36 kB	2025-02-25	2025-03-06
Pretty URL ww1.crackzsoft.me/bTZYaPvjG.js IP 199.59.243.228 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-25 01:05 Last Seen2025-03-06 15:33 Times Seen471 Hash 974302ef046c1b9aa743f5d138a67e59 f382c6885c257a709df77d11d6f3c0583933a05a f6811a5e10b089fd071d2c6b53d57c4a86baa4eeb50c124dd68fcf360948a8ba Loading...

	www.google.com/adsense/domains/caf.js?abp=1&bodis=true	ScriptElement	145 kB	2025-02-25	2025-02-26
Pretty URL www.google.com/adsense/domains/caf.js?abp=1&bodis=true IP 142.250.74.68 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-25 21:17 Last Seen2025-02-26 20:08 Times Seen104 Hash 2eccd3e677d8efa487ffb83d31970c3c 610c9db5acbe65d19024de2f3ec07c1f5f07748a 85d7c6705cc5575b73fb0eb19d1861d803a8a8a799acfcb70aa37f24f09bb3b2 Loading...

	syndicatedsearch.goog/afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol97%2Cpid-bodis-gcontrol115%2Cpid-bodis-gcontrol460%2Cpid-bodis-gcontrol151%2Cpid-bodis-gcontrol162&client=dp-bodis30_3ph&r=m&hl=en&ivt=0&rpbu=http%3A%2F%2Fww1.crackzsoft.me%2F%3Fcaf%3D1%26bpt%3D345&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2898040491288658&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002%2C17301437%2C17301439%2C17301442%2C17301548%2C17301266%2C72717108&format=r3&nocache=9581740582403615&num=0&output=afd_ads&domain_name=ww1.crackzsoft.me&v=3&bsl=8&pac=2&u_his=3&u_tz=0&dt=1740582403617&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=922&frm=0&uio=-&cont=rs&drt=0&jsid=caf&jsv=728270085&rurl=http%3A%2F%2Fww1.crackzsoft.me%2F	ScriptElement	584 B	2025-02-26	2025-02-26
Pretty URL syndicatedsearch.goog/afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol97%2Cpid-bodis-gcontrol115%2Cpid-bodis-gcontrol460%2Cpid-bodis-gcontrol151%2Cpid-bodis-gcontrol162&client=dp-bodis30_3ph&r=m&hl=en&ivt=0&rpbu=http%3A%2F%2Fww1.crackzsoft.me%2F%3Fcaf%3D1%26bpt%3D345&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2898040491288658&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002%2C17301437%2C17301439%2C17301442%2C17301548%2C17301266%2C72717108&format=r3&nocache=9581740582403615&num=0&output=afd_ads&domain_name=ww1.crackzsoft.me&v=3&bsl=8&pac=2&u_his=3&u_tz=0&dt=1740582403617&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=922&frm=0&uio=-&cont=rs&drt=0&jsid=caf&jsv=728270085&rurl=http%3A%2F%2Fww1.crackzsoft.me%2F IP 216.58.207.238 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2025-02-26 15:07 Last Seen2025-02-26 15:07 Times Seen1 Hash 30fb1c08780dec508e0f0455584f2f12 7580148773e0ed71234eb8ce8dc9dbc3854cd9f1 db735f9ef03a7021815e87994559949555407fbfa5e3ab193b554f25109d9db7 Loading...

	syndicatedsearch.goog/adsense/domains/caf.js	ScriptElement	145 kB	2025-02-25	2025-02-27
Pretty URL syndicatedsearch.goog/adsense/domains/caf.js IP 216.58.207.238 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-25 21:16 Last Seen2025-02-27 16:16 Times Seen339 Hash 045bd8c7ec3222716f401475796a5120 2338644065eca58da7ee2599d07ed18a086f504f ab8c14c7b95bde91bf133851c3df772f25482017fa72f74cee2f33d4f139f19e Loading...

HTTP Transactions (14)

URL IP Response Size

crackzsoft.me/news

185.107.56.193

200 OK

479 B

URL
crackzsoft.me/news
IP
185.107.56.193:0
ASN
#43350 NForce Entertainment B.V.

File type
HTML document, ASCII text, with very long lines (479), with no line terminators
Size
479 B (479 bytes)
Hash
debff38f820271e744958bc378c51593
00db586fcc0a7e9af962c4c8a2dbf4d34b3f1655
d418f7c6c2f5df5ca10547c675f687a53ad40d8d26d6bcfae5080e41c96dbb92

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /news HTTP/1.1
Host: crackzsoft.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile
cache-control: max-age=0, private, must-revalidate
content-length: 479
content-type: text/html; charset=utf-8
date: Wed, 26 Feb 2025 15:06:41 GMT
server: Cowboy
set-cookie: sid=4928a842-f453-11ef-88da-538041cba08f; path=/; domain=.crackzsoft.me; expires=Mon, 16 Mar 2093 18:20:48 GMT; max-age=2147483647; secure; HttpOnly
X-Firefox-Spdy: h2

crackzsoft.me/favicon.ico

185.107.56.193

404 Not Found

9 B

URL
crackzsoft.me/favicon.ico
IP
185.107.56.193:0
ASN
#43350 NForce Entertainment B.V.

File type
ASCII text, with no line terminators
Size
9 B (9 bytes)
Hash
d8f4a1993546cc4b850cde3599e27aec
094b763b4cfcc0b05e5d040581cd513c3ca08067
907ba78b4545338d3539683e63ecb51cf51c10adc9dabd86e92bd52339f298b9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: crackzsoft.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://crackzsoft.me/news
Cookie: sid=4928a842-f453-11ef-88da-538041cba08f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
cache-control: max-age=0, private, must-revalidate
content-length: 9
date: Wed, 26 Feb 2025 15:06:41 GMT
server: Cowboy
X-Firefox-Spdy: h2

GET crackzsoft.me/news?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTc0MDU4OTYwMSwiaWF0IjoxNzQwNTgyNDAxLCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIzMGpza3U3bGdpNzczNnNiNGswNW41dDAiLCJuYmYiOjE3NDA1ODI0MDEsInRzIjoxNzQwNTgyNDAxODY1ODk4fQ.mZTKpmKI0YAQdU654dBZBgqujSoEiz0GL9gVf6X7pdk&sid=4928a842-f453-11ef-88da-538041cba08f

185.107.56.193

302 Found

11 B

URL User Request GET HTTP/2
crackzsoft.me/news?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTc0MDU4OTYwMSwiaWF0IjoxNzQwNTgyNDAxLCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIzMGpza3U3bGdpNzczNnNiNGswNW41dDAiLCJuYmYiOjE3NDA1ODI0MDEsInRzIjoxNzQwNTgyNDAxODY1ODk4fQ.mZTKpmKI0YAQdU654dBZBgqujSoEiz0GL9gVf6X7pdk&sid=4928a842-f453-11ef-88da-538041cba08f
IP
185.107.56.193:443
ASN
#43350 NForce Entertainment B.V.

Certificate
IssuerLet's Encrypt
Subjectcrackzsoft.me
Fingerprint11:C4:5B:58:DB:6B:9C:01:72:95:F1:C3:9D:52:27:ED:56:5D:D1:A7
ValidityMon, 24 Feb 2025 01:25:58 GMT - Sun, 25 May 2025 01:25:57 GMT

File type
ASCII text, with no line terminators
Size
11 B (11 bytes)
Hash
32682312d17c7cbf18e73594f5570319
60e22121bdd0bc71cdb2bae2a3aa577006b2eae9
e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /news?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTc0MDU4OTYwMSwiaWF0IjoxNzQwNTgyNDAxLCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIzMGpza3U3bGdpNzczNnNiNGswNW41dDAiLCJuYmYiOjE3NDA1ODI0MDEsInRzIjoxNzQwNTgyNDAxODY1ODk4fQ.mZTKpmKI0YAQdU654dBZBgqujSoEiz0GL9gVf6X7pdk&sid=4928a842-f453-11ef-88da-538041cba08f HTTP/1.1
Host: crackzsoft.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://crackzsoft.me/news
Cookie: sid=4928a842-f453-11ef-88da-538041cba08f
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
cache-control: max-age=0, private, must-revalidate
content-length: 11
date: Wed, 26 Feb 2025 15:06:42 GMT
location: http://ww1.crackzsoft.me
server: Cowboy
set-cookie: sid=4928a842-f453-11ef-88da-538041cba08f; path=/; domain=.crackzsoft.me; expires=Mon, 16 Mar 2093 18:20:49 GMT; max-age=2147483647; secure; HttpOnly
X-Firefox-Spdy: h2

GET ww1.crackzsoft.me/

199.59.243.228

200 OK

1.1 kB

URL User Request GET HTTP/1.1
ww1.crackzsoft.me/
IP
199.59.243.228:80
ASN
#16509 AMAZON-02

File type
HTML document, ASCII text, with very long lines (318)
Size
1.1 kB (1050 bytes)
Hash
4ea75f9ec86b991cb347da0d816ad229
8cb834894a29a3e0a9c810c87b6c5fc7e8db0aff
2dfcaadafb5236440b3b8bddf4ca8aab33ce52e81bc42aaf5c9fca5c7d14d7e7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: ww1.crackzsoft.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Wed, 26 Feb 2025 15:06:42 GMT
content-type: text/html; charset=utf-8
content-length: 1050
x-request-id: 8198e959-18eb-495d-a77d-704ddfd6ab43
cache-control: no-store, max-age=0
accept-ch: sec-ch-prefers-color-scheme
critical-ch: sec-ch-prefers-color-scheme
vary: sec-ch-prefers-color-scheme
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_GUxnR9IsAlc5+0B+JMLO0LkzPcRj49EtCZdSM3yWchhbL+ESFDFH3noDP5lYG7HhnYxrBEZ6tZJxDYopg8UheA==
set-cookie: parking_session=8198e959-18eb-495d-a77d-704ddfd6ab43; expires=Wed, 26 Feb 2025 15:21:43 GMT; path=/

GET ww1.crackzsoft.me/bTZYaPvjG.js

199.59.243.228

200 OK

36 kB

URL GET HTTP/1.1
ww1.crackzsoft.me/bTZYaPvjG.js
IP
199.59.243.228:80
ASN
#16509 AMAZON-02

Requested by
http://ww1.crackzsoft.me/

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (35678)
Size
36 kB (35681 bytes)
Hash
974302ef046c1b9aa743f5d138a67e59
f382c6885c257a709df77d11d6f3c0583933a05a
f6811a5e10b089fd071d2c6b53d57c4a86baa4eeb50c124dd68fcf360948a8ba

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /bTZYaPvjG.js HTTP/1.1
Host: ww1.crackzsoft.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ww1.crackzsoft.me/
Cookie: parking_session=8198e959-18eb-495d-a77d-704ddfd6ab43
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Wed, 26 Feb 2025 15:06:42 GMT
content-type: application/javascript; charset=utf-8
content-length: 35681
x-request-id: 3a28ecfc-0ee5-4a7a-bb49-7b33bafe28d0
set-cookie: parking_session=8198e959-18eb-495d-a77d-704ddfd6ab43; expires=Wed, 26 Feb 2025 15:21:43 GMT

POST ww1.crackzsoft.me/_fd

199.59.243.228

200 OK

5.3 kB

URL POST HTTP/1.1
ww1.crackzsoft.me/_fd
IP
199.59.243.228:80
ASN
#16509 AMAZON-02

Requested by
http://ww1.crackzsoft.me/

File type
ASCII text, with very long lines (5329), with no line terminators
Size
5.3 kB (5329 bytes)
Hash
1f4c86abfffe1ce01f20b5ced2e1b31e
e84bbe5bc21657ba2e0661e30f1901817e8a6df9
dd552a11ed8f266808b2f8b4f8b7aa922b5496671d5274e1a02bc3488d4a94cb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /_fd HTTP/1.1
Host: ww1.crackzsoft.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ww1.crackzsoft.me/
Content-Type: application/json
Origin: http://ww1.crackzsoft.me
DNT: 1
Connection: keep-alive
Cookie: parking_session=8198e959-18eb-495d-a77d-704ddfd6ab43
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/1.1 200 OK
date: Wed, 26 Feb 2025 15:06:43 GMT
content-type: application/json; charset=utf-8
content-length: 5329
x-request-id: 786d51e0-6938-47aa-93d2-d0ee3829335d
set-cookie: parking_session=8198e959-18eb-495d-a77d-704ddfd6ab43; expires=Wed, 26 Feb 2025 15:21:43 GMT

GET syndicatedsearch.goog/afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol97%2Cpid-bodis-gcontrol115%2Cpid-bodis-gcontrol460%2Cpid-bodis-gcontrol151%2Cpid-bodis-gcontrol162&client=dp-bodis30_3ph&r=m&hl=en&ivt=0&rpbu=http%3A%2F%2Fww1.crackzsoft.me%2F%3Fcaf%3D1%26bpt%3D345&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2898040491288658&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002%2C17301437%2C17301439%2C17301442%2C17301548%2C17301266%2C72717108&format=r3&nocache=9581740582403615&num=0&output=afd_ads&domain_name=ww1.crackzsoft.me&v=3&bsl=8&pac=2&u_his=3&u_tz=0&dt=1740582403617&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=922&frm=0&uio=-&cont=rs&drt=0&jsid=caf&jsv=728270085&rurl=http%3A%2F%2Fww1.crackzsoft.me%2F

216.58.207.238

200 OK

2.7 kB

URL GET HTTP/2
syndicatedsearch.goog/afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol97%2Cpid-bodis-gcontrol115%2Cpid-bodis-gcontrol460%2Cpid-bodis-gcontrol151%2Cpid-bodis-gcontrol162&client=dp-bodis30_3ph&r=m&hl=en&ivt=0&rpbu=http%3A%2F%2Fww1.crackzsoft.me%2F%3Fcaf%3D1%26bpt%3D345&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2898040491288658&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002%2C17301437%2C17301439%2C17301442%2C17301548%2C17301266%2C72717108&format=r3&nocache=9581740582403615&num=0&output=afd_ads&domain_name=ww1.crackzsoft.me&v=3&bsl=8&pac=2&u_his=3&u_tz=0&dt=1740582403617&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=922&frm=0&uio=-&cont=rs&drt=0&jsid=caf&jsv=728270085&rurl=http%3A%2F%2Fww1.crackzsoft.me%2F
IP
216.58.207.238:443
ASN
#15169 GOOGLE

Requested by
http://ww1.crackzsoft.me/
Certificate
IssuerGoogle Trust Services
Subjectsyndicatedsearch.goog
Fingerprint70:BD:9B:A4:9D:E9:2D:8A:00:44:9F:7C:B4:0C:8F:14:1B:8D:15:AC
ValidityMon, 03 Feb 2025 08:39:13 GMT - Mon, 28 Apr 2025 08:39:12 GMT

File type
HTML document, ASCII text, with very long lines (13057)
Size
2.7 kB (2675 bytes)
Hash
85422c78f8fb00d631c17e31ccc4c63b
bc08fb7057a303338b5e838ee078bd7bbbbcf0a8
bbbd98ca07d4c41700de49d18ced2c17bb86434d326f7fd26e63b23d874d6c4b

HTTP Headers

GET /afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol97%2Cpid-bodis-gcontrol115%2Cpid-bodis-gcontrol460%2Cpid-bodis-gcontrol151%2Cpid-bodis-gcontrol162&client=dp-bodis30_3ph&r=m&hl=en&ivt=0&rpbu=http%3A%2F%2Fww1.crackzsoft.me%2F%3Fcaf%3D1%26bpt%3D345&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2898040491288658&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002%2C17301437%2C17301439%2C17301442%2C17301548%2C17301266%2C72717108&format=r3&nocache=9581740582403615&num=0&output=afd_ads&domain_name=ww1.crackzsoft.me&v=3&bsl=8&pac=2&u_his=3&u_tz=0&dt=1740582403617&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=922&frm=0&uio=-&cont=rs&drt=0&jsid=caf&jsv=728270085&rurl=http%3A%2F%2Fww1.crackzsoft.me%2F HTTP/1.1
Host: syndicatedsearch.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://ww1.crackzsoft.me/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-disposition: inline
date: Wed, 26 Feb 2025 15:06:43 GMT
expires: Wed, 26 Feb 2025 15:06:43 GMT
cache-control: private, max-age=3600
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-W5l37w038LWSIKGvmbOK8g' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
content-encoding: br
server: gws
content-length: 2675
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

POST ww1.crackzsoft.me/_tr

199.59.243.228

200 OK

2 B

URL POST HTTP/1.1
ww1.crackzsoft.me/_tr
IP
199.59.243.228:80
ASN
#16509 AMAZON-02

Requested by
http://ww1.crackzsoft.me/

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /_tr HTTP/1.1
Host: ww1.crackzsoft.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ww1.crackzsoft.me/
Content-Type: application/json
Content-Length: 1893
Origin: http://ww1.crackzsoft.me
DNT: 1
Connection: keep-alive
Cookie: parking_session=8198e959-18eb-495d-a77d-704ddfd6ab43
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Wed, 26 Feb 2025 15:06:44 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-request-id: af709ab3-0852-4b03-8329-92041fb8a3d7
set-cookie: parking_session=8198e959-18eb-495d-a77d-704ddfd6ab43; expires=Wed, 26 Feb 2025 15:21:44 GMT

GET afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff

142.250.74.33

200 OK

174 B

URL GET HTTP/2
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff
IP
142.250.74.33:443
ASN
#15169 GOOGLE

Requested by
https://syndicatedsearch.goog/afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol97%2Cpid-bodis-gcontrol115%2Cpid-bodis-gcontrol460%2Cpid-bodis-gcontrol151%2Cpid-bodis-gcontrol162&client=dp-bodis30_3ph&r=m&hl=en&ivt=0&rpbu=http%3A%2F%2Fww1.crackzsoft.me%2F%3Fcaf%3D1%26bpt%3D345&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2898040491288658&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002%2C17301437%2C17301439%2C17301442%2C17301548%2C17301266%2C72717108&format=r3&nocache=9581740582403615&num=0&output=afd_ads&domain_name=ww1.crackzsoft.me&v=3&bsl=8&pac=2&u_his=3&u_tz=0&dt=1740582403617&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=922&frm=0&uio=-&cont=rs&drt=0&jsid=caf&jsv=728270085&rurl=http%3A%2F%2Fww1.crackzsoft.me%2F
Certificate
IssuerGoogle Trust Services
Subject*.googleusercontent.com
Fingerprint75:21:96:EA:E4:33:05:3C:86:DB:DF:32:B1:00:7C:0A:FD:95:0D:56
ValidityMon, 03 Feb 2025 08:37:04 GMT - Mon, 28 Apr 2025 08:37:03 GMT

File type
SVG Scalable Vector Graphics image
Size
174 B (174 bytes)
Hash
11b3089d616633ca6b73b57aa877eeb4
07632f63e06b30d9b63c97177d3a8122629bda9b
809fb4619d2a2f1a85dbda8cc69a7f1659215212d708a098d62150eee57070c1

HTTP Headers

GET /ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://syndicatedsearch.goog/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 174
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 25 Feb 2025 20:07:22 GMT
expires: Wed, 26 Feb 2025 19:07:22 GMT
cache-control: public, max-age=82800
age: 68362
last-modified: Thu, 02 Nov 2023 22:48:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%2302198b

142.250.74.33

200 OK

174 B

URL GET HTTP/2
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%2302198b
IP
142.250.74.33:443
ASN
#15169 GOOGLE

Requested by
https://syndicatedsearch.goog/afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol97%2Cpid-bodis-gcontrol115%2Cpid-bodis-gcontrol460%2Cpid-bodis-gcontrol151%2Cpid-bodis-gcontrol162&client=dp-bodis30_3ph&r=m&hl=en&ivt=0&rpbu=http%3A%2F%2Fww1.crackzsoft.me%2F%3Fcaf%3D1%26bpt%3D345&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2898040491288658&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002%2C17301437%2C17301439%2C17301442%2C17301548%2C17301266%2C72717108&format=r3&nocache=9581740582403615&num=0&output=afd_ads&domain_name=ww1.crackzsoft.me&v=3&bsl=8&pac=2&u_his=3&u_tz=0&dt=1740582403617&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=922&frm=0&uio=-&cont=rs&drt=0&jsid=caf&jsv=728270085&rurl=http%3A%2F%2Fww1.crackzsoft.me%2F
Certificate
IssuerGoogle Trust Services
Subject*.googleusercontent.com
Fingerprint75:21:96:EA:E4:33:05:3C:86:DB:DF:32:B1:00:7C:0A:FD:95:0D:56
ValidityMon, 03 Feb 2025 08:37:04 GMT - Mon, 28 Apr 2025 08:37:03 GMT

File type
SVG Scalable Vector Graphics image
Size
174 B (174 bytes)
Hash
d47125b2ba92be53dcff07ba322ce1de
e4a70c8a133bacf1699fdfa4c10e24ed5b3e0c28
5a0687ea8c9aa404a7724490f046e30023ec6b5aa81d01ae4f225889a64174f6

HTTP Headers

GET /ad_icons/standard/publisher_icon_image/chevron.svg?c=%2302198b HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://syndicatedsearch.goog/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 174
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 25 Feb 2025 20:21:53 GMT
expires: Wed, 26 Feb 2025 19:21:53 GMT
cache-control: public, max-age=82800
age: 67491
last-modified: Thu, 02 Nov 2023 22:48:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET syndicatedsearch.goog/afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=eoyogbfglss7&cd_fexp=72717108&aqid=Ay6_Z_HxMdXDxdwPrdbe8Q0&psid=3113057640&pbt=bs&adbx=290&adby=145&adbh=364&adbw=700&adbah=114%2C114%2C114&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=728270085&csala=5%7C0%7C366%7C80%7C14&lle=0&ifv=1&hpt=0

216.58.207.238

204 No Content

0 B

URL GET HTTP/3
syndicatedsearch.goog/afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=eoyogbfglss7&cd_fexp=72717108&aqid=Ay6_Z_HxMdXDxdwPrdbe8Q0&psid=3113057640&pbt=bs&adbx=290&adby=145&adbh=364&adbw=700&adbah=114%2C114%2C114&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=728270085&csala=5%7C0%7C366%7C80%7C14&lle=0&ifv=1&hpt=0
IP
216.58.207.238:443
ASN
#15169 GOOGLE

Requested by
http://ww1.crackzsoft.me/
Certificate
IssuerGoogle Trust Services
Subjectsyndicatedsearch.goog
Fingerprint70:BD:9B:A4:9D:E9:2D:8A:00:44:9F:7C:B4:0C:8F:14:1B:8D:15:AC
ValidityMon, 03 Feb 2025 08:39:13 GMT - Mon, 28 Apr 2025 08:39:12 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=eoyogbfglss7&cd_fexp=72717108&aqid=Ay6_Z_HxMdXDxdwPrdbe8Q0&psid=3113057640&pbt=bs&adbx=290&adby=145&adbh=364&adbw=700&adbah=114%2C114%2C114&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=728270085&csala=5%7C0%7C366%7C80%7C14&lle=0&ifv=1&hpt=0 HTTP/1.1
Host: syndicatedsearch.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://ww1.crackzsoft.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-YiTql4SrdMHc4ND_ZgPgYQ' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Wed, 26 Feb 2025 15:06:45 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET syndicatedsearch.goog/afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=1nhm3nd6b4bc&cd_fexp=72717108&aqid=Ay6_Z_HxMdXDxdwPrdbe8Q0&psid=3113057640&pbt=bv&adbx=290&adby=145&adbh=364&adbw=700&adbah=114%2C114%2C114&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=728270085&csala=5%7C0%7C366%7C80%7C14&lle=0&ifv=1&hpt=0

216.58.207.238

204 No Content

0 B

URL GET HTTP/3
syndicatedsearch.goog/afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=1nhm3nd6b4bc&cd_fexp=72717108&aqid=Ay6_Z_HxMdXDxdwPrdbe8Q0&psid=3113057640&pbt=bv&adbx=290&adby=145&adbh=364&adbw=700&adbah=114%2C114%2C114&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=728270085&csala=5%7C0%7C366%7C80%7C14&lle=0&ifv=1&hpt=0
IP
216.58.207.238:443
ASN
#15169 GOOGLE

Requested by
http://ww1.crackzsoft.me/
Certificate
IssuerGoogle Trust Services
Subjectsyndicatedsearch.goog
Fingerprint70:BD:9B:A4:9D:E9:2D:8A:00:44:9F:7C:B4:0C:8F:14:1B:8D:15:AC
ValidityMon, 03 Feb 2025 08:39:13 GMT - Mon, 28 Apr 2025 08:39:12 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=1nhm3nd6b4bc&cd_fexp=72717108&aqid=Ay6_Z_HxMdXDxdwPrdbe8Q0&psid=3113057640&pbt=bv&adbx=290&adby=145&adbh=364&adbw=700&adbah=114%2C114%2C114&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=728270085&csala=5%7C0%7C366%7C80%7C14&lle=0&ifv=1&hpt=0 HTTP/1.1
Host: syndicatedsearch.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://ww1.crackzsoft.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-80rqfNqg8DeDlZCDainKWQ' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Wed, 26 Feb 2025 15:06:45 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET syndicatedsearch.goog/adsense/domains/caf.js

216.58.207.238

200 OK

145 kB

URL GET HTTP/3
syndicatedsearch.goog/adsense/domains/caf.js
IP
216.58.207.238:443
ASN
#15169 GOOGLE

Requested by
https://syndicatedsearch.goog/afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol97%2Cpid-bodis-gcontrol115%2Cpid-bodis-gcontrol460%2Cpid-bodis-gcontrol151%2Cpid-bodis-gcontrol162&client=dp-bodis30_3ph&r=m&hl=en&ivt=0&rpbu=http%3A%2F%2Fww1.crackzsoft.me%2F%3Fcaf%3D1%26bpt%3D345&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2898040491288658&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002%2C17301437%2C17301439%2C17301442%2C17301548%2C17301266%2C72717108&format=r3&nocache=9581740582403615&num=0&output=afd_ads&domain_name=ww1.crackzsoft.me&v=3&bsl=8&pac=2&u_his=3&u_tz=0&dt=1740582403617&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=922&frm=0&uio=-&cont=rs&drt=0&jsid=caf&jsv=728270085&rurl=http%3A%2F%2Fww1.crackzsoft.me%2F
Certificate
IssuerGoogle Trust Services
Subjectsyndicatedsearch.goog
Fingerprint70:BD:9B:A4:9D:E9:2D:8A:00:44:9F:7C:B4:0C:8F:14:1B:8D:15:AC
ValidityMon, 03 Feb 2025 08:39:13 GMT - Mon, 28 Apr 2025 08:39:12 GMT

File type
JavaScript source, ASCII text, with very long lines (1967)
Size
145 kB (145086 bytes)
Hash
045bd8c7ec3222716f401475796a5120
2338644065eca58da7ee2599d07ed18a086f504f
ab8c14c7b95bde91bf133851c3df772f25482017fa72f74cee2f33d4f139f19e

HTTP Headers

GET /adsense/domains/caf.js HTTP/1.1
Host: syndicatedsearch.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://syndicatedsearch.goog/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Wed, 26 Feb 2025 15:06:43 GMT
expires: Wed, 26 Feb 2025 15:06:43 GMT
cache-control: private, max-age=3600
etag: "12635046392701404832"
x-content-type-options: nosniff
link: <https://syndicatedsearch.goog>; rel="preconnect"
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET www.google.com/adsense/domains/caf.js?abp=1&bodis=true

142.250.74.68

200 OK

145 kB

URL GET HTTP/2
www.google.com/adsense/domains/caf.js?abp=1&bodis=true
IP
142.250.74.68:443
ASN
#15169 GOOGLE

Requested by
http://ww1.crackzsoft.me/
Certificate
IssuerGoogle Trust Services
Subjectwww.google.com
FingerprintEA:B0:88:AA:E3:A4:F9:3D:84:A8:34:62:F5:25:9D:DF:76:A1:D8:50
ValidityMon, 03 Feb 2025 08:37:55 GMT - Mon, 28 Apr 2025 08:37:54 GMT

File type
JavaScript source, ASCII text, with very long lines (1967)
Size
145 kB (145088 bytes)
Hash
2eccd3e677d8efa487ffb83d31970c3c
610c9db5acbe65d19024de2f3ec07c1f5f07748a
85d7c6705cc5575b73fb0eb19d1861d803a8a8a799acfcb70aa37f24f09bb3b2

HTTP Headers

GET /adsense/domains/caf.js?abp=1&bodis=true HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://ww1.crackzsoft.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Wed, 26 Feb 2025 15:06:43 GMT
expires: Wed, 26 Feb 2025 15:06:43 GMT
cache-control: private, max-age=3600
etag: "2359142450582280107"
x-content-type-options: nosniff
link: <https://syndicatedsearch.goog>; rel="preconnect"
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (5)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (14)

URL

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL User Request GET HTTP/1.1

IP

ASN

File type

Size

Hash

Detections