Report - track.getupgradedsecurity.com/fb1697b5-20dd-42fa-9b57-dee1497f2055

Report Overview

Submitted URL
track.getupgradedsecurity.com/fb1697b5-20dd-42fa-9b57-dee1497f2055
IP
54.230.111.88
ASN
#16509 AMAZON-02
Submitted
2024-05-08 07:55:49
Access
public
Website Title
Spam Shield 24/7
Final URL
shsf.try-adtranq.com/Atlas250ControlNov24/survey/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
track.getupgradedsecurity.com	unknown	unknown	No data	No data	3.2 kB	5.6 kB	54.230.111.116
setupgradedsecurity.com	unknown	unknown	No data	No data	973 B	221 B	23.106.127.218
kaytasuojia.com	unknown	unknown	No data	No data	957 B	2.8 kB	23.106.127.218
d18b5y9gp0lr93.cloudfront.net	unknown	2008-04-25	2023-07-21	2024-05-05	884 B	20 kB	54.230.241.97
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-05-07	477 B	1.6 kB	142.250.74.106
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-05-08	883 B	172 kB	142.250.74.168
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-05-08	1.0 kB	48 kB	216.58.207.227
getprotectionalshield.com	unknown	2024-02-12	2024-02-12	2024-02-28	917 B	2.6 kB	23.106.127.218
js.sentry-cdn.com	5259	2018-05-30	2018-07-13	2024-05-07	465 B	3.1 kB	151.101.130.217
browser.sentry-cdn.com	4393	2018-05-30	2018-07-13	2024-05-07	478 B	41 kB	151.101.130.217
o1063441.ingest.us.sentry.io	unknown	unknown	No data	No data	1.3 kB	1.1 kB	34.120.195.249
shsf.try-adtranq.com	unknown	unknown	No data	No data	15 kB	206 kB	143.204.55.90

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-08	medium	setupgradedsecurity.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (27)

	URL	Size	First Seen	Last Seen
	unknown	142 B	2023-05-09	2024-05-08
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 12:41:37 Last Seen2024-05-08 09:55:56 Times Seen18 Hash 619cf6a5898c635ca451029acb4f97ad 4c22827da7a87001a380010910cc14bf81403e6d bfd3101c83dae8511d2c2dc777b1c801efc4d0e9dbfd870dbcd7cf68225b28ad Loading...

	unknown	146 B	2023-05-09	2024-05-08
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 12:41:37 Last Seen2024-05-08 09:55:56 Times Seen18 Hash afa8451afb4f8d8de8b6a9f8bb18b02b 2c7f97f5e6f50177890cd618b2ffc25c2e743db1 ffe264d28285c19b3819e3247906fb4a59a3fc6a626d88b904a5322b0e46ac28 Loading...

	unknown	160 B	2023-05-09	2024-05-08
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 12:41:37 Last Seen2024-05-08 09:55:56 Times Seen18 Hash 6995748c07e1deb9b519a5766cc0eb06 3bc0b74a82dd41099e866cc090bd37647a979d2f 1a8b7b7249afb6a1327ab5de53a47d47b2f0e481efa7e94997991e654a0deda5 Loading...

	unknown	144 B	2023-05-09	2024-05-08
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 12:41:37 Last Seen2024-05-08 09:55:56 Times Seen18 Hash 7669c94346e5ab3c36f13474be24a2e8 96ed96a0f5f94ca52386c73712a6768f4bd4d5e3 1eefc0f8babda2f6d20d992fe7d7bd1d10b10d478a597a584969c6e7b985b38d Loading...

	unknown	180 B	2023-05-09	2024-05-08
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 12:41:37 Last Seen2024-05-08 09:55:56 Times Seen18 Hash 357c1b16089f05e9953651e34fa07664 e73771afe235e7a80b56df240e52954067110b38 61340c7b727acc1097ba0f9edc1167e5c0bc82d51ba4893c29b36a06dedc7d57 Loading...

	unknown	186 B	2023-05-09	2024-05-08
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 12:41:37 Last Seen2024-05-08 09:55:56 Times Seen18 Hash df09a29de7538ade28975849141e6bae 78262b7b0794e96e06e37a75eb4317a06ca235c7 1d2217e3d0dd85ac718b2082dd591069b2f9bab5273d95b175e32bd72deb40e1 Loading...

	unknown	150 B	2023-05-09	2024-05-08
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 12:41:37 Last Seen2024-05-08 09:55:56 Times Seen18 Hash 7fdb48b16dee955a21c69df93f511e42 661fe1f1a0c8117d717ebdd87db8d5f7568d4ca6 c6e6a0017cdd216fae77bd4fe674c618d054a4c5e1bc33ad6fb91cdd7aadbbeb Loading...

	unknown	164 B	2023-05-09	2024-05-08
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 12:41:37 Last Seen2024-05-08 09:55:56 Times Seen18 Hash 3298256aa0214a4115760d296bb140f2 d11dcd8135388eb1bc41e5b5f873fccb8e45683b e19e64e528c07bd32505a8e49c591fa7ae3e2c69ac130c3d939f1315c97e6d96 Loading...

	unknown	161 B	2023-05-09	2024-05-08
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 12:41:37 Last Seen2024-05-08 09:55:56 Times Seen18 Hash 80cf1a05ec8943a7fa19a499374e220c 8d00ab17aeceea95b4a6403f2934d7723202f8e2 7bf4203e65aa2c4f61aed192308eaf58b32e01f6d58cb45b9b264e21c3952192 Loading...

	unknown	167 B	2023-05-09	2024-05-08
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 12:41:37 Last Seen2024-05-08 09:55:56 Times Seen18 Hash 0136de570ccd319d17e6b7729fc0fc89 8a7b4c66b441ef1cc51fa4b7c46edee96674c77d 90718a5848cc20ccc7cb5f93142914888347ec554f92424a98f24d5f50e287a0 Loading...

	unknown	134 B	2023-05-09	2024-05-08
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 12:41:37 Last Seen2024-05-08 09:55:56 Times Seen18 Hash 8db3b7a4e3ffa40e4d08a6db2f6423b8 118d4c13377ea42c090d077c23c66b68faff8ff8 158e12b29407f147fcaae6f4d070b54077a1141b9ef335faac5809fda993c6b7 Loading...

	shsf.try-adtranq.com/js/index.647c137b.js	326 kB	2024-05-03	2024-05-08
Pretty URL shsf.try-adtranq.com/js/index.647c137b.js IP 143.204.55.90 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 19:55:19 Last Seen2024-05-08 09:55:56 Times Seen3 Hash 74ce502b06d76f300ce9eb17c9568920 eb1671cd61bab689574b236fe6c817cee008f0c9 c396af3db87106869f806e9b42ec0d7e030104e3e9dc014866a00fd96a7ba28c Loading...

	www.googletagmanager.com/gtm.js?id=GTM-5DNQ3QT	222 kB	2024-05-08	2024-05-08
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-5DNQ3QT IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-08 09:55:56 Last Seen2024-05-08 09:55:57 Times Seen2 Hash e098960697909edc410c034bf42fe641 a6b9507b649db6edff142af5a39338608c036d76 e2183e65f166bdc2f45b6899805c819f13ce84a3e7c44a6e839a1ac9f399991a Loading...

	unknown	153 B	2023-05-09	2024-05-08
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 12:41:37 Last Seen2024-05-08 09:55:56 Times Seen18 Hash 10c3a9efb794c8993cbfaac7d5b16ae7 6861eddf2a17229bb1d6e9b12b0d4b2f1a996496 7237da4431447e9b86c22aa33aed0299808ee25a9ba5a7a0b01b627af419165b Loading...

	shsf.try-adtranq.com/js/SurveyLayout.771be6fe.js	2.4 kB	2024-05-04	2024-05-08
Pretty URL shsf.try-adtranq.com/js/SurveyLayout.771be6fe.js IP 143.204.55.90 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 16:55:23 Last Seen2024-05-08 09:55:57 Times Seen6 Hash 3fb22259c11487ade7e1798ae6af4041 55e435bc59c457ef016fd5cad18b2772e24b7667 cdfaad77fbfa191f01f0df4679f5bb8fdb41a35b91bcb06db65d1cde7732c39b Loading...

	unknown	157 B	2023-05-09	2024-05-08
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 12:41:37 Last Seen2024-05-08 09:55:56 Times Seen18 Hash 9ec0d53b51967164e537bca203df638c 418e858c160741d74e2ec37a43964530dd2ea6a6 7aa5393840675d3532946e32c4fb68c8ae606cfe5a5d2da19fad17d25bb08dcf Loading...

	shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu	369 B	2023-05-06	2024-05-19
Pretty URL shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu IP 143.204.55.90 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-06 10:32:05 Last Seen2024-05-19 17:08:49 Times Seen155 Hash 1a1d271c82e7561239daa65cfc9d7938 66536d8068c27b82969a78e774c249b24fb7a736 c652a2568f09815b1b74279181af8aef883a57b4a7aa2d49fa428b5051988045 Loading...

	shsf.try-adtranq.com/js/LogosSafeCheckout.8dcc25a6.js	540 B	2024-05-03	2024-05-08
Pretty URL shsf.try-adtranq.com/js/LogosSafeCheckout.8dcc25a6.js IP 143.204.55.90 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2024-05-03 19:55:20 Last Seen2024-05-08 09:55:57 Times Seen8 Hash 0d4554230a6c5d050b43e04b9277ab04 379c438f335b5e0c3d33753c6b3322f6771abcbd b6e75ef64714b9b31a1d7ecb08effee9b9fc8df73ed8addfa0cb5a68e4e7ef7c Loading...

	unknown	154 B	2023-05-09	2024-05-08
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 12:41:37 Last Seen2024-05-08 09:55:56 Times Seen18 Hash b8f0d7458b21fbe68db17ce18241131d 1d9116fa1e7f1de97775809287b7938036bee5a2 804135849622c3337e90c1a630b276e3b5e5bcd4b6b4af4cec44e357f292221a Loading...

	shsf.try-adtranq.com/js/LogoGooglePlay.38510a7a.js	530 B	2024-05-03	2024-05-08
Pretty URL shsf.try-adtranq.com/js/LogoGooglePlay.38510a7a.js IP 143.204.55.90 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2024-05-03 19:55:20 Last Seen2024-05-08 09:55:57 Times Seen9 Hash f7153797d7f32c6bd53f3ebe82eca35c d58bff20ee75b762af6c1f2686f01d21e8e04cbe 3ce92f8c8efa1c25c576b3ceecf0e708803f3e4ca762b658964c7f5bc0783870 Loading...

	unknown	155 B	2023-05-09	2024-05-08
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 12:41:37 Last Seen2024-05-08 09:55:56 Times Seen18 Hash a75fbd853210edb0259ce53932700b1e 778874ddee76548bc9d21b14719257a8060e6055 53130c8fe3301c9f2a2c247ebc5b7893a8fff5da17949ca1940e77c5158d56dc Loading...

	unknown	156 B	2023-05-09	2024-05-08
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 12:41:37 Last Seen2024-05-08 09:55:56 Times Seen18 Hash 6d24a973b7338f555ae50de93e60d81b 2a5d433ae14b1f40bdc2e39d9b442cced06321a9 549802d00bd5d9715525fb71cc3ada8e5a0ea8df35749a383a816b92fab6d05f Loading...

	unknown	163 B	2023-05-09	2024-05-08
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 12:41:37 Last Seen2024-05-08 09:55:56 Times Seen18 Hash 0075dcf7568f10a423bf08265f87b8d1 9be369b5886a474fe52d6e386caffe0b9623b993 c680f0d29c9d9649f5be5387d69e099442717474a465a4730f932f68f21f55be Loading...

	unknown	159 B	2023-05-09	2024-05-08
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 12:41:37 Last Seen2024-05-08 09:55:56 Times Seen18 Hash 4196290b485fe2630e4db0fab1d11a7b 940b9aed463eff8eb00dbea7ef717ad0341888d3 875920c4c6097637e8489a663d0f180477eb6d965899db35e5cd3ee09e4d32eb Loading...

	www.googletagmanager.com/gtag/js?id=G-PXTFLT7QZ3&l=dataLayer&cx=c	265 kB	2024-05-08	2024-05-08
Pretty URL www.googletagmanager.com/gtag/js?id=G-PXTFLT7QZ3&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-08 09:55:56 Last Seen2024-05-08 09:55:57 Times Seen2 Hash e8fc6e10918bc61e1ab1830ce6a1a6bc b791304bf187a7ff661a1f96cf62a987b7a43ada dc7e295b721faef44279e22d2421d67f411af179066bbbbe9053c385c70c7719 Loading...

	shsf.try-adtranq.com/js/Atlas102Survey.2f335111.js	20 kB	2024-05-03	2024-05-08
Pretty URL shsf.try-adtranq.com/js/Atlas102Survey.2f335111.js IP 143.204.55.90 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2024-05-03 19:55:19 Last Seen2024-05-08 09:55:57 Times Seen9 Hash a4b3875c5222b019e40a49afabd9072c 97ad437cec4c75ebf78d0440bfbbbcbe94ae4d86 918004230422b56d3e83117295d80e78c523e41317eb2adf82ed7113d8032402 Loading...

	unknown	162 B	2023-05-09	2024-05-08
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 12:41:37 Last Seen2024-05-08 09:55:56 Times Seen18 Hash e077516184a62572cf65378a44cd5f69 d1a5eb8755508d822633d89b4e84ceadd8c08fe5 b9662db501061c81f5d93e8ed1a085854811ebfb047f244d097e341ece8b98f1 Loading...

HTTP Transactions (37)

URL IP Response Size

track.getupgradedsecurity.com/fb1697b5-20dd-42fa-9b57-dee1497f2055

54.230.111.116

0 B

URL
track.getupgradedsecurity.com/fb1697b5-20dd-42fa-9b57-dee1497f2055
IP
54.230.111.116:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /fb1697b5-20dd-42fa-9b57-dee1497f2055 HTTP/1.1
Host: track.getupgradedsecurity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-length: 0
location: https://setupgradedsecurity.com/inter-pro.php?cep=KGfM0AKG6sMg1jeGrVPUpiF4EeCEQ4yc1xvGJ1jPypxJZTbVzKkc0JdXboHJmzgQUg9KhfQsn0yWJDaJ892AlrOsiZdmrfUjWt0oRLLjwDNGxYMrDfCeCzA3_2lZVKU32lOD8fCIbJpvDTWNno70CC5-tzwRthr5DozUr9ujyDa5PBvxvwzcCjVPVIDo7MX9GqPGPO59PfnRNT8LFGaswGOHWn4HH1P5q2gjyEvf7pux9YSpR4HGCDZGkYzTArZfypU8OoK4XO1lMOyxte-f7nk5vK88mr0ecz5QdKvgkM78-OrNqJXfAiv3yEN-kRqfgMctiX6CvTPsWeQ-MRb3dXk-w7rYL9MgCFdyH39qzQmkPuMehtCrdOBvtv1q_amq9brzG2siY1Yj6aB7krhfqcFp274i9t3Nf6_YISLPj6L6_KgXVmgJDUp2uvsj5VAS&lptoken=175915e915266703214b
date: Wed, 08 May 2024 07:55:21 GMT
cache-control: no-store, no-cache, pre-check=0, post-check=0
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: fb1697b5-20dd-42fa-9b57-dee1497f2055-v4=yttZCXsSUfFZyCfHU9nX6kaTqSF1-GL_p21TlAQTTPY; Max-Age=86400; Expires=Thu, 09-May-2024 07:55:21 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
cep-v4=IxouWuSBgPQCTu0WZv18Y-CoY4KIrzLaQO7aihp89K0FisXtCYBqsPaFAXI34SV5XbCMi8inMJ8cMKnDQtCdtgr16-5VfpbZvroqEmN1aCX90HqUjIRs4jIf0QVLc3meLHjNXSLu_x-dWAdSIy0WqAmYYCrD5fCaJ8gEnTtYwkGu2t9-N58-Q63xMgzgcQr47EdRVHr_8cTaFg0Pr0UxcxnIcJ8FX2ezJLYaM-aH61QOp6It7XOQ9lGgGT0DT43qDGZvZo7vlvzSD23_nYOqJkgAKLlhfZlqS9To627tZzZtyfJ5uwB1T2YQnNdoU-xMLBW2UHv7pATbhIaZtsRKSCAqQGpGSDiJTLjXBLEX_xpqZER61gWXFMJc9JTuXHMiU7poV6wZYnIbeX6P4Kriw0BI-SPq2Vq1G1lOdMtquwIaKwcyPNwgvAzYKq9Qb2Z-; Max-Age=86400; Expires=Thu, 09-May-2024 07:55:21 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
server: nginx
x-cache: Miss from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cq7Oo5gFaRgoR7iJsUyKQPLg226Qi7gz9qJ2E6oAlFL0Cplv5-Mxog==
X-Firefox-Spdy: h2

setupgradedsecurity.com/inter-pro.php?cep=KGfM0AKG6sMg1jeGrVPUpiF4EeCEQ4yc1xvGJ1jPypxJZTbVzKkc0JdXboHJmzgQUg9KhfQsn0yWJDaJ892AlrOsiZdmrfUjWt0oRLLjwDNGxYMrDfCeCzA3_2lZVKU32lOD8fCIbJpvDTWNno70CC5-tzwRthr5DozUr9ujyDa5PBvxvwzcCjVPVIDo7MX9GqPGPO59PfnRNT8LFGaswGOHWn4HH1P5q2gjyEvf7pux9YSpR4HGCDZGkYzTArZfypU8OoK4XO1lMOyxte-f7nk5vK88mr0ecz5QdKvgkM78-OrNqJXfAiv3yEN-kRqfgMctiX6CvTPsWeQ-MRb3dXk-w7rYL9MgCFdyH39qzQmkPuMehtCrdOBvtv1q_amq9brzG2siY1Yj6aB7krhfqcFp274i9t3Nf6_YISLPj6L6_KgXVmgJDUp2uvsj5VAS&lptoken=175915e915266703214b

23.106.127.218

0 B

URL
setupgradedsecurity.com/inter-pro.php?cep=KGfM0AKG6sMg1jeGrVPUpiF4EeCEQ4yc1xvGJ1jPypxJZTbVzKkc0JdXboHJmzgQUg9KhfQsn0yWJDaJ892AlrOsiZdmrfUjWt0oRLLjwDNGxYMrDfCeCzA3_2lZVKU32lOD8fCIbJpvDTWNno70CC5-tzwRthr5DozUr9ujyDa5PBvxvwzcCjVPVIDo7MX9GqPGPO59PfnRNT8LFGaswGOHWn4HH1P5q2gjyEvf7pux9YSpR4HGCDZGkYzTArZfypU8OoK4XO1lMOyxte-f7nk5vK88mr0ecz5QdKvgkM78-OrNqJXfAiv3yEN-kRqfgMctiX6CvTPsWeQ-MRb3dXk-w7rYL9MgCFdyH39qzQmkPuMehtCrdOBvtv1q_amq9brzG2siY1Yj6aB7krhfqcFp274i9t3Nf6_YISLPj6L6_KgXVmgJDUp2uvsj5VAS&lptoken=175915e915266703214b
IP
23.106.127.218:0
ASN
#59253 Leaseweb Asia Pacific pte. ltd.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /inter-pro.php?cep=KGfM0AKG6sMg1jeGrVPUpiF4EeCEQ4yc1xvGJ1jPypxJZTbVzKkc0JdXboHJmzgQUg9KhfQsn0yWJDaJ892AlrOsiZdmrfUjWt0oRLLjwDNGxYMrDfCeCzA3_2lZVKU32lOD8fCIbJpvDTWNno70CC5-tzwRthr5DozUr9ujyDa5PBvxvwzcCjVPVIDo7MX9GqPGPO59PfnRNT8LFGaswGOHWn4HH1P5q2gjyEvf7pux9YSpR4HGCDZGkYzTArZfypU8OoK4XO1lMOyxte-f7nk5vK88mr0ecz5QdKvgkM78-OrNqJXfAiv3yEN-kRqfgMctiX6CvTPsWeQ-MRb3dXk-w7rYL9MgCFdyH39qzQmkPuMehtCrdOBvtv1q_amq9brzG2siY1Yj6aB7krhfqcFp274i9t3Nf6_YISLPj6L6_KgXVmgJDUp2uvsj5VAS&lptoken=175915e915266703214b HTTP/1.1
Host: setupgradedsecurity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Server: nginx
Date: Wed, 08 May 2024 07:55:23 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://track.getupgradedsecurity.com/click/1

track.getupgradedsecurity.com/click/1

54.230.111.116

0 B

URL
track.getupgradedsecurity.com/click/1
IP
54.230.111.116:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /click/1 HTTP/1.1
Host: track.getupgradedsecurity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: fb1697b5-20dd-42fa-9b57-dee1497f2055-v4=yttZCXsSUfFZyCfHU9nX6kaTqSF1-GL_p21TlAQTTPY; cep-v4=IxouWuSBgPQCTu0WZv18Y-CoY4KIrzLaQO7aihp89K0FisXtCYBqsPaFAXI34SV5XbCMi8inMJ8cMKnDQtCdtgr16-5VfpbZvroqEmN1aCX90HqUjIRs4jIf0QVLc3meLHjNXSLu_x-dWAdSIy0WqAmYYCrD5fCaJ8gEnTtYwkGu2t9-N58-Q63xMgzgcQr47EdRVHr_8cTaFg0Pr0UxcxnIcJ8FX2ezJLYaM-aH61QOp6It7XOQ9lGgGT0DT43qDGZvZo7vlvzSD23_nYOqJkgAKLlhfZlqS9To627tZzZtyfJ5uwB1T2YQnNdoU-xMLBW2UHv7pATbhIaZtsRKSCAqQGpGSDiJTLjXBLEX_xpqZER61gWXFMJc9JTuXHMiU7poV6wZYnIbeX6P4Kriw0BI-SPq2Vq1G1lOdMtquwIaKwcyPNwgvAzYKq9Qb2Z-
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
content-length: 0
location: https://getprotectionalshield.com/sep/?to=2105-security-pro&campid=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_source=&landerid=96c030a3-3f5b-4f8a-ab14-4cc2b64a3152&bv=Firefox%2096&lander=1305-intermediary-lander%20%5BPRO%5D&pccid=d9mego7e363l9v41jnue6idu&phone_brand=Desktop&model=Desktop&browser=Firefox&zone_id=&supply_id=&camp_id=&source=&ua=&creative=&pathid=288b3290-b66e-94da-5410-160822c13c51&brand=av&tracking_domain=track.getupgradedsecurity.com&lang=fi&geo=fi-pro
date: Wed, 08 May 2024 07:55:23 GMT
cache-control: no-store, no-cache, pre-check=0, post-check=0
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: voluum-cid-v4=%7B%22cid%22%3A%22d9mego7e363l9v41jnue6idu%22%2C%22caid%22%3A%22fb1697b5-20dd-42fa-9b57-dee1497f2055%22%7D; Max-Age=31536000; Expires=Thu, 08-May-2025 07:55:23 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
fb1697b5-20dd-42fa-9b57-dee1497f2055-clk-v4=fb1697b5-20dd-42fa-9b57-dee1497f2055; Max-Age=86400; Expires=Thu, 09-May-2024 07:55:23 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
fb1697b5-20dd-42fa-9b57-dee1497f2055-v4=j63ZCa7mhRyAOHA5WNxouuD4_K9Ob39Gt2pkBH0KWAE; Max-Age=86400; Expires=Thu, 09-May-2024 07:55:23 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
server: nginx
x-cache: Miss from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: npBJMAh_dreT5wt6d0ePtDMPgT6l-5fD-7Lj5-WlZLeh4KRWyjOewQ==
X-Firefox-Spdy: h2

track.getupgradedsecurity.com/

54.230.111.116

227 B

URL
track.getupgradedsecurity.com/
IP
54.230.111.116:0
ASN
#16509 AMAZON-02

File type
HTML document, ASCII text
Size
227 B (227 bytes)
Hash
d7e39a03eb36cd0ca88c7d3833668ee1
3beb5597c07f8aef8d1caace6a23d09a66550c95
0ada30892e47ec0cf6acd9dbf9fd085f8601a18375a5b7388683561f1f6cc626

HTTP Headers

GET / HTTP/1.1
Host: track.getupgradedsecurity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 
Content-Type: text/html
Content-Length: 227
Connection: keep-alive
Date: Wed, 08 May 2024 07:55:24 GMT
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Server: nginx
X-Cache: Error from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: MokOD8lQHBSJckuSFOf0LJ7LuIAh_mG5ouA9dySdSJhtuXBOhklhQw==

getprotectionalshield.com/sep/?to=2105-security-pro&campid=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_source=&landerid=96c030a3-3f5b-4f8a-ab14-4cc2b64a3152&bv=Firefox%2096&lander=1305-intermediary-lander%20%5BPRO%5D&pccid=d9mego7e363l9v41jnue6idu&phone_brand=Desktop&model=Desktop&browser=Firefox&zone_id=&supply_id=&camp_id=&source=&ua=&creative=&pathid=288b3290-b66e-94da-5410-160822c13c51&brand=av&tracking_domain=track.getupgradedsecurity.com&lang=fi&geo=fi-pro

23.106.127.218

2.4 kB

URL
getprotectionalshield.com/sep/?to=2105-security-pro&campid=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_source=&landerid=96c030a3-3f5b-4f8a-ab14-4cc2b64a3152&bv=Firefox%2096&lander=1305-intermediary-lander%20%5BPRO%5D&pccid=d9mego7e363l9v41jnue6idu&phone_brand=Desktop&model=Desktop&browser=Firefox&zone_id=&supply_id=&camp_id=&source=&ua=&creative=&pathid=288b3290-b66e-94da-5410-160822c13c51&brand=av&tracking_domain=track.getupgradedsecurity.com&lang=fi&geo=fi-pro
IP
23.106.127.218:0
ASN
#59253 Leaseweb Asia Pacific pte. ltd.

File type
HTML document, ASCII text, with very long lines (6849)
Size
2.4 kB (2373 bytes)
Hash
17384c7d739dda6711e503c5cb9540ac
c58ca00b9e36ccf26a0a384539fe54741b579c44
13070034451749d421c6b2f85c78938fd79620bfbd85199ee51b5f295bb64f0f

HTTP Headers

GET /sep/?to=2105-security-pro&campid=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_source=&landerid=96c030a3-3f5b-4f8a-ab14-4cc2b64a3152&bv=Firefox%2096&lander=1305-intermediary-lander%20%5BPRO%5D&pccid=d9mego7e363l9v41jnue6idu&phone_brand=Desktop&model=Desktop&browser=Firefox&zone_id=&supply_id=&camp_id=&source=&ua=&creative=&pathid=288b3290-b66e-94da-5410-160822c13c51&brand=av&tracking_domain=track.getupgradedsecurity.com&lang=fi&geo=fi-pro HTTP/1.1
Host: getprotectionalshield.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 May 2024 07:55:25 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 07 May 2024 12:16:32 GMT
ETag: W/"663a1ba0-1ccd"
Content-Encoding: gzip

kaytasuojia.com/redirect/?to=2105-security-pro&campid=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_source=&landerid=96c030a3-3f5b-4f8a-ab14-4cc2b64a3152&bv=Firefox%2096&lander=1305-intermediary-lander%20%5BPRO%5D&pccid=d9mego7e363l9v41jnue6idu&phone_brand=Desktop&model=Desktop&browser=Firefox&zone_id=&supply_id=&camp_id=&source=&ua=&creative=&pathid=288b3290-b66e-94da-5410-160822c13c51&brand=av&tracking_domain=track.getupgradedsecurity.com&lang=fi&geo=fi-pro

23.106.127.218

2.5 kB

URL
kaytasuojia.com/redirect/?to=2105-security-pro&campid=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_source=&landerid=96c030a3-3f5b-4f8a-ab14-4cc2b64a3152&bv=Firefox%2096&lander=1305-intermediary-lander%20%5BPRO%5D&pccid=d9mego7e363l9v41jnue6idu&phone_brand=Desktop&model=Desktop&browser=Firefox&zone_id=&supply_id=&camp_id=&source=&ua=&creative=&pathid=288b3290-b66e-94da-5410-160822c13c51&brand=av&tracking_domain=track.getupgradedsecurity.com&lang=fi&geo=fi-pro
IP
23.106.127.218:0
ASN
#59253 Leaseweb Asia Pacific pte. ltd.

File type
HTML document, ASCII text, with very long lines (6849)
Size
2.5 kB (2494 bytes)
Hash
ed271f0596720603bc2c56cb116a7e55
f2229bc5eb90871e3e91522d6585530930c96c8c
7f4958f8b134662f46919cc9b57b4613c3fd1f4a44d90424ab19f0584bc1e756

HTTP Headers

GET /redirect/?to=2105-security-pro&campid=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_source=&landerid=96c030a3-3f5b-4f8a-ab14-4cc2b64a3152&bv=Firefox%2096&lander=1305-intermediary-lander%20%5BPRO%5D&pccid=d9mego7e363l9v41jnue6idu&phone_brand=Desktop&model=Desktop&browser=Firefox&zone_id=&supply_id=&camp_id=&source=&ua=&creative=&pathid=288b3290-b66e-94da-5410-160822c13c51&brand=av&tracking_domain=track.getupgradedsecurity.com&lang=fi&geo=fi-pro HTTP/1.1
Host: kaytasuojia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getprotectionalshield.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 May 2024 07:55:27 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 07 May 2024 12:13:48 GMT
ETag: W/"663a1afc-1d9c"
Content-Encoding: gzip

d18b5y9gp0lr93.cloudfront.net/sqp-functions/functions.min.js

54.230.241.97

17 kB

URL
d18b5y9gp0lr93.cloudfront.net/sqp-functions/functions.min.js
IP
54.230.241.97:0
ASN
#16509 AMAZON-02

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (10618)
Size
17 kB (16786 bytes)
Hash
edaf80cdd2f3edc151e4eaa28b11dec2
bfa4f011f0efc85f66c3b7f7f039c8389f800cca
53c11e9f8dd1d882da90771853b173df4b3f75e5eaa2e9c79cbb99adcb888682

HTTP Headers

GET /sqp-functions/functions.min.js HTTP/1.1
Host: d18b5y9gp0lr93.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kaytasuojia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 13 Dec 2023 09:40:44 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: dRA40FxrztBz3m1bZdOmgk_RvQfg.z05
server: AmazonS3
content-encoding: gzip
date: Tue, 07 May 2024 20:23:29 GMT
etag: W/"de27e5abcf1380fbab0accd9eb0b9630"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wczFU3sh5iYpDtBQ_5SaZlgZ2-NweheT-sV2qM3AOM1i1ITsZJwspg==
age: 41883
X-Firefox-Spdy: h2

js.sentry-cdn.com/d31b9988ec25444db0b16116ddc6edee.min.js

151.101.130.217

1.3 kB

URL
js.sentry-cdn.com/d31b9988ec25444db0b16116ddc6edee.min.js
IP
151.101.130.217:0
ASN
#54113 FASTLY

File type
JavaScript source, ASCII text, with very long lines (2639)
Size
1.3 kB (1275 bytes)
Hash
c7b630f61809751706e90498eceb16a4
68566c84242ec52282bdf86068780d2569c119aa
0c3e47d9147a32931b26fb4fe27bd2296b4dcc23263919299fc45320be58cd8b

HTTP Headers

GET /d31b9988ec25444db0b16116ddc6edee.min.js HTTP/1.1
Host: js.sentry-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://6.kaytasuojia.com
DNT: 1
Connection: keep-alive
Referer: https://6.kaytasuojia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
access-control-allow-origin: *
cache-control: public, max-age=3600, s-maxage=60, stale-while-revalidate=315360000, stale-if-error=315360000
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: style-src * 'unsafe-inline'; object-src 'none'; base-uri 'none'; img-src * blob: data:; default-src 'none'; frame-ancestors 'self' *.sentry.io; media-src *; script-src 'self' 'unsafe-inline' 'report-sample' s1.sentry-cdn.com js.sentry-cdn.com browser.sentry-cdn.com statuspage-production.s3.amazonaws.com static.zdassets.com aui-cdn.atlassian.com connect-cdn.atl-paas.net js.stripe.com 'strict-dynamic' cdn.pendo.io data.pendo.io pendo-io-static.storage.googleapis.com pendo-static-5634074999128064.storage.googleapis.com; worker-src blob:; frame-src app.pendo.io demo.arcade.software js.stripe.com sentry.io; connect-src 'self' *.algolia.net *.algolianet.com *.algolia.io sentry.io *.sentry.io s1.sentry-cdn.com o1.ingest.sentry.io api2.amplitude.com app.pendo.io data.pendo.io reload.getsentry.net t687h3m0nh65.statuspage.io sentry.zendesk.com ekr.zdassets.com maps.googleapis.com; font-src * data:; report-uri https://o1.ingest.sentry.io/api/54785/security/?sentry_key=f724a8a027db45f5b21507e7142ff78e&sentry_release=1a96a060f3567f99fed1f2fb8299f86a1bc7057f
x-envoy-attempt-count: 1
x-envoy-upstream-service-time: 28
content-encoding: gzip
accept-ranges: bytes
date: Wed, 08 May 2024 07:55:31 GMT
age: 153
x-served-by: getsentry-web-default-common-production-7657c7646b-99s65, cache-chi-kigq8000167-CHI, cache-hel1410022-HEL
vary: Accept-Encoding
timing-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 1275
X-Firefox-Spdy: h2

browser.sentry-cdn.com/7.113.0/bundle.tracing.es5.min.js

151.101.130.217

41 kB

URL
browser.sentry-cdn.com/7.113.0/bundle.tracing.es5.min.js
IP
151.101.130.217:0
ASN
#54113 FASTLY

File type
JavaScript source, ASCII text, with very long lines (65428)
Size
41 kB (40679 bytes)
Hash
9682c9726e992d75d81a817baeeef640
4ce778c8ec23a0a223d4bc9356bf2f8a9a50122f
0226afd4f6591efe308e5bb3330818b348d0dcda041bc5fa51d36751ef96192f

HTTP Headers

GET /7.113.0/bundle.tracing.es5.min.js HTTP/1.1
Host: browser.sentry-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://6.kaytasuojia.com
DNT: 1
Connection: keep-alive
Referer: https://6.kaytasuojia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 May 2025 15:10:48 GMT
last-modified: Thu, 02 May 2024 11:58:27 GMT
etag: "3f4f3f32d69654cba7e6b620f83f0e07"
content-type: application/javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
date: Wed, 08 May 2024 07:55:31 GMT
age: 492283
vary: Accept-Encoding
access-control-allow-origin: *
server: Fastly
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 40679
X-Firefox-Spdy: h2

track.getupgradedsecurity.com/click/2?utm_term=852024&utm_medium=d9mego7e363l9v41jnue6idu&initial-cid=d9mego7e363l9v41jnue6idu

54.230.111.116

302 Found

0 B

URL User Request GET HTTP/2
track.getupgradedsecurity.com/click/2?utm_term=852024&utm_medium=d9mego7e363l9v41jnue6idu&initial-cid=d9mego7e363l9v41jnue6idu
IP
54.230.111.116:443
ASN
#16509 AMAZON-02

Certificate
IssuerAmazon
Subjecttrack.getupgradedsecurity.com
Fingerprint47:47:24:C9:E9:62:08:42:27:7A:2E:A8:6A:3B:F8:DA:33:56:D5:26
ValidityThu, 25 Apr 2024 00:00:00 GMT - Sat, 24 May 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /click/2?utm_term=852024&utm_medium=d9mego7e363l9v41jnue6idu&initial-cid=d9mego7e363l9v41jnue6idu HTTP/1.1
Host: track.getupgradedsecurity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://6.kaytasuojia.com/
Cookie: fb1697b5-20dd-42fa-9b57-dee1497f2055-v4=j63ZCa7mhRyAOHA5WNxouuD4_K9Ob39Gt2pkBH0KWAE; cep-v4=IxouWuSBgPQCTu0WZv18Y-CoY4KIrzLaQO7aihp89K0FisXtCYBqsPaFAXI34SV5XbCMi8inMJ8cMKnDQtCdtgr16-5VfpbZvroqEmN1aCX90HqUjIRs4jIf0QVLc3meLHjNXSLu_x-dWAdSIy0WqAmYYCrD5fCaJ8gEnTtYwkGu2t9-N58-Q63xMgzgcQr47EdRVHr_8cTaFg0Pr0UxcxnIcJ8FX2ezJLYaM-aH61QOp6It7XOQ9lGgGT0DT43qDGZvZo7vlvzSD23_nYOqJkgAKLlhfZlqS9To627tZzZtyfJ5uwB1T2YQnNdoU-xMLBW2UHv7pATbhIaZtsRKSCAqQGpGSDiJTLjXBLEX_xpqZER61gWXFMJc9JTuXHMiU7poV6wZYnIbeX6P4Kriw0BI-SPq2Vq1G1lOdMtquwIaKwcyPNwgvAzYKq9Qb2Z-; voluum-cid-v4=%7B%22cid%22%3A%22d9mego7e363l9v41jnue6idu%22%2C%22caid%22%3A%22fb1697b5-20dd-42fa-9b57-dee1497f2055%22%7D; fb1697b5-20dd-42fa-9b57-dee1497f2055-clk-v4=fb1697b5-20dd-42fa-9b57-dee1497f2055
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
content-length: 0
location: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
date: Wed, 08 May 2024 07:55:31 GMT
cache-control: no-store, no-cache, pre-check=0, post-check=0
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: voluum-cid-v4=%7B%22cid%22%3A%22d0o64grbseklqv413aqc1gc6%22%2C%22caid%22%3A%22fb1697b5-20dd-42fa-9b57-dee1497f2055%22%7D; Max-Age=31536000; Expires=Thu, 08-May-2025 07:55:31 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
fb1697b5-20dd-42fa-9b57-dee1497f2055-clk-v4=fb1697b5-20dd-42fa-9b57-dee1497f2055; Max-Age=86400; Expires=Thu, 09-May-2024 07:55:31 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
fb1697b5-20dd-42fa-9b57-dee1497f2055-v4=43M6rXnhQb70s_SWLedVhfebC8SNG-vIH_dnm1X2tGY; Max-Age=86400; Expires=Thu, 09-May-2024 07:55:31 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
server: nginx
x-cache: Miss from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HUAU9cyOV-sLwyval584djnlZASjR-1Qvdmz3E1i9QKt1knTzz4VTA==
X-Firefox-Spdy: h2

o1063441.ingest.us.sentry.io/api/6072671/envelope/?sentry_key=d31b9988ec25444db0b16116ddc6edee&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.113.0

34.120.195.249

41 B

URL
o1063441.ingest.us.sentry.io/api/6072671/envelope/?sentry_key=d31b9988ec25444db0b16116ddc6edee&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.113.0
IP
34.120.195.249:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
JSON text data
Size
41 B (41 bytes)
Hash
03a922fa72ca8a92a88e81817e5d6c4a
24173e9dd612baaa2267448e3617142f3e285fdb
393d298f6b6b078952df2704ee5638e2a67652fabd85a7466d87bad9f2c573bb

HTTP Headers

POST /api/6072671/envelope/?sentry_key=d31b9988ec25444db0b16116ddc6edee&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.113.0 HTTP/1.1
Host: o1063441.ingest.us.sentry.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6.kaytasuojia.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 2466
Origin: https://6.kaytasuojia.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 07:55:31 GMT
content-type: application/json
content-length: 41
access-control-allow-origin: *
vary: origin,access-control-request-method,access-control-request-headers
access-control-expose-headers: x-sentry-error,x-sentry-rate-limits,retry-after
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

o1063441.ingest.us.sentry.io/api/6072671/envelope/?sentry_key=d31b9988ec25444db0b16116ddc6edee&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.113.0

34.120.195.249

41 B

URL
o1063441.ingest.us.sentry.io/api/6072671/envelope/?sentry_key=d31b9988ec25444db0b16116ddc6edee&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.113.0
IP
34.120.195.249:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
JSON text data
Size
41 B (41 bytes)
Hash
4c01db80d83a07e5d848a4929da3ac54
737c3e1905e4fe79806dc8dc7182eea6ea49bdac
7de717bba7fee400d38d8197b9e85185c37a5e4632adae3d64da6bf785d95961

HTTP Headers

POST /api/6072671/envelope/?sentry_key=d31b9988ec25444db0b16116ddc6edee&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.113.0 HTTP/1.1
Host: o1063441.ingest.us.sentry.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6.kaytasuojia.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 2234
Origin: https://6.kaytasuojia.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 07:55:31 GMT
content-type: application/json
content-length: 41
access-control-allow-origin: *
vary: origin,access-control-request-method,access-control-request-headers
access-control-expose-headers: x-sentry-error,x-sentry-rate-limits,retry-after
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu

143.204.55.90

200 OK

872 B

URL User Request GET HTTP/2
shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
HTML document, ASCII text
Size
872 B (872 bytes)
Hash
6d02246230b876d86f837a6aaaf8ebde
1ee900d3eb65642e7083689b8cf7394414612d64
12d196a35b2d88d470431e74dd7a47c0fcac18c48baac7372bcdf00535929c49

HTTP Headers

GET /Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6.kaytasuojia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 872
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:12 GMT
accept-ranges: bytes
content-encoding: gzip
date: Wed, 08 May 2024 07:55:31 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Wed, 08 May 2024 08:55:31 GMT
etag: "6b7-616fc21a07f00-gzip"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: mf52_HWfGwzMmJnkpxT1pZPwMljnbHaT7F1nJsDWoXvYR2SEBSr-2g==
X-Firefox-Spdy: h2

shsf.try-adtranq.com/css/index.925b2269.css

143.204.55.90

200 OK

5.9 kB

URL GET HTTP/2
shsf.try-adtranq.com/css/index.925b2269.css
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
ASCII text, with very long lines (26643)
Size
5.9 kB (5920 bytes)
Hash
5da360cc52f1c60dce2f894d71d16fa2
70b71fe839b8d2889eb4c0d8bfcc6c433e86361b
925b2269cff35373e7d472f86998c8da90e7db28f4f6eb76d5d4a23ae274009c

HTTP Headers

GET /css/index.925b2269.css HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 5920
date: Fri, 26 Apr 2024 09:00:39 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:12 GMT
etag: "6814-616fc21a07f00-gzip"
accept-ranges: bytes
cache-control: max-age=2678400, public
expires: Fri, 26 Apr 2024 10:00:39 GMT
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: H2GprkOjdAsoybVIzErIrorqNL8wg1yExUgmhsgcREvFTAP-i2QfPg==
age: 1032892
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-5DNQ3QT

142.250.74.168

200 OK

78 kB

URL GET HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-5DNQ3QT
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (6801)
Size
78 kB (77924 bytes)
Hash
e098960697909edc410c034bf42fe641
a6b9507b649db6edff142af5a39338608c036d76
e2183e65f166bdc2f45b6899805c819f13ce84a3e7c44a6e839a1ac9f399991a

HTTP Headers

GET /gtm.js?id=GTM-5DNQ3QT HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 08 May 2024 07:55:32 GMT
expires: Wed, 08 May 2024 07:55:32 GMT
cache-control: private, max-age=900
last-modified: Wed, 08 May 2024 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77924
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

d18b5y9gp0lr93.cloudfront.net/sqp-functions/functions.min.js

54.230.241.97

2.5 kB

URL
d18b5y9gp0lr93.cloudfront.net/sqp-functions/functions.min.js
IP
54.230.241.97:0
ASN
#16509 AMAZON-02

File type
gzip compressed data, from Unix
Size
2.5 kB (2476 bytes)
Hash
4552e44b13af8f05c1963eed122d3389
d8333595ae06d7f688d4abb1a4682a97fba16fee
25d092b4e945284bffda92f22df42463e9b4774c5a0915276690c150b0a9d83c

HTTP Headers

GET /sqp-functions/functions.min.js HTTP/1.1
Host: d18b5y9gp0lr93.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://6.kaytasuojia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 13 Dec 2023 09:40:44 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: dRA40FxrztBz3m1bZdOmgk_RvQfg.z05
server: AmazonS3
content-encoding: gzip
date: Tue, 07 May 2024 20:23:29 GMT
etag: W/"de27e5abcf1380fbab0accd9eb0b9630"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BaYbiuAC4c_8ipcNUPcLmzqOctIM1mvcDGewRdTDAoeJLMdrZG8tQg==
age: 41886
X-Firefox-Spdy: h2

shsf.try-adtranq.com/css/Atlas102Survey.cc92fdda.css

143.204.55.90

200 OK

1.1 kB

URL GET HTTP/2
shsf.try-adtranq.com/css/Atlas102Survey.cc92fdda.css
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
ASCII text, with very long lines (3494)
Size
1.1 kB (1117 bytes)
Hash
64eb9827b87121d8cb4b2a6e9af0a6ee
d212aa84e1778e95382e3e3d3e276805680c73b9
cc92fdda2102e2f59eda48c70c328d1a6a0a1f084c7a34040fa5249f94da5631

HTTP Headers

GET /css/Atlas102Survey.cc92fdda.css HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 1117
date: Fri, 26 Apr 2024 09:00:40 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:12 GMT
etag: "da7-616fc21a07f00-gzip"
accept-ranges: bytes
cache-control: max-age=2678400, public
expires: Fri, 26 Apr 2024 10:00:40 GMT
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7XHbnMwrfr99xAXqlXli7TimBZEg_cp29Rix2lpRSDvzrPktdqNJ0w==
age: 1032892
X-Firefox-Spdy: h2

shsf.try-adtranq.com/css/SurveyLayout.b0fb08c3.css

143.204.55.90

200 OK

339 B

URL GET HTTP/2
shsf.try-adtranq.com/css/SurveyLayout.b0fb08c3.css
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
ASCII text, with very long lines (899)
Size
339 B (339 bytes)
Hash
34ebd98cfeff8702bdd9ba7d222969b5
ce169317941d22c09e62bc9a6aadd885ab1676c9
b0fb08c350d0c90003a3fee98f52c9e72f349ed8041966c24929fbbe39e6702f

HTTP Headers

GET /css/SurveyLayout.b0fb08c3.css HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 339
date: Fri, 26 Apr 2024 09:00:40 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:12 GMT
etag: "384-616fc21a07f00-gzip"
accept-ranges: bytes
cache-control: max-age=2678400, public
expires: Fri, 26 Apr 2024 10:00:40 GMT
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bG21NyP6XkyQhjrxgawBCUpGWFiAdgHEd8Mgnl4BfvC5O3ao9iCIGg==
age: 1032892
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-PXTFLT7QZ3&l=dataLayer&cx=c

142.250.74.168

200 OK

92 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-PXTFLT7QZ3&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (4179)
Size
92 kB (92351 bytes)
Hash
e8fc6e10918bc61e1ab1830ce6a1a6bc
b791304bf187a7ff661a1f96cf62a987b7a43ada
dc7e295b721faef44279e22d2421d67f411af179066bbbbe9053c385c70c7719

HTTP Headers

GET /gtag/js?id=G-PXTFLT7QZ3&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 08 May 2024 07:55:32 GMT
expires: Wed, 08 May 2024 07:55:32 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 92351
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

shsf.try-adtranq.com/js/Atlas102Survey.2f335111.js

143.204.55.90

200 OK

6.1 kB

URL GET HTTP/2
shsf.try-adtranq.com/js/Atlas102Survey.2f335111.js
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
ASCII text, with very long lines (19673)
Size
6.1 kB (6123 bytes)
Hash
a4b3875c5222b019e40a49afabd9072c
97ad437cec4c75ebf78d0440bfbbbcbe94ae4d86
918004230422b56d3e83117295d80e78c523e41317eb2adf82ed7113d8032402

HTTP Headers

GET /js/Atlas102Survey.2f335111.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 6123
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:12 GMT
accept-ranges: bytes
content-encoding: gzip
date: Wed, 08 May 2024 07:55:32 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Wed, 08 May 2024 08:55:32 GMT
etag: "4cda-616fc21a07f00-gzip"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RtSZ75gYOD_BxLoo-_VpPn1Q9S4HFtzPzPJiI441icWSGXcfK0rT3w==
X-Firefox-Spdy: h2

shsf.try-adtranq.com/js/index.647c137b.js

143.204.55.90

200 OK

104 kB

URL GET HTTP/2
shsf.try-adtranq.com/js/index.647c137b.js
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
104 kB (103560 bytes)
Hash
92a61eaafb3fc2b354df195e38f02c2f
3ac2368925738265c63a3cd90c6ce418939a53c9
dfc0238af721bef09de89c1b642e540282898133d427aba93aabe393b55d880b

HTTP Headers

GET /js/index.647c137b.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:12 GMT
accept-ranges: bytes
content-encoding: gzip
date: Wed, 08 May 2024 07:55:32 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Wed, 08 May 2024 08:55:32 GMT
etag: "4f862-616fc21a07f00-gzip"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: YfFVEF0Q0NrbyG4MQFgHM-6QQwH67BQL7pov0yD6juZe2Ux5MF6IjQ==
X-Firefox-Spdy: h2

shsf.try-adtranq.com/js/LogoGooglePlay.38510a7a.js

143.204.55.90

200 OK

345 B

URL GET HTTP/2
shsf.try-adtranq.com/js/LogoGooglePlay.38510a7a.js
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
Java source, ASCII text, with very long lines (529)
Size
345 B (345 bytes)
Hash
f7153797d7f32c6bd53f3ebe82eca35c
d58bff20ee75b762af6c1f2686f01d21e8e04cbe
3ce92f8c8efa1c25c576b3ceecf0e708803f3e4ca762b658964c7f5bc0783870

HTTP Headers

GET /js/LogoGooglePlay.38510a7a.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 345
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:12 GMT
accept-ranges: bytes
content-encoding: gzip
date: Wed, 08 May 2024 07:55:32 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Wed, 08 May 2024 08:55:32 GMT
etag: "212-616fc21a07f00-gzip"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cLokrF0UO6GZsa3T_03B8fjdaTDeqpYGknV4q5OTVfmlgI4zhME8PQ==
X-Firefox-Spdy: h2

shsf.try-adtranq.com/js/SurveyLayout.771be6fe.js

143.204.55.90

200 OK

921 B

URL GET HTTP/2
shsf.try-adtranq.com/js/SurveyLayout.771be6fe.js
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
Java source, ASCII text, with very long lines (2443)
Size
921 B (921 bytes)
Hash
3fb22259c11487ade7e1798ae6af4041
55e435bc59c457ef016fd5cad18b2772e24b7667
cdfaad77fbfa191f01f0df4679f5bb8fdb41a35b91bcb06db65d1cde7732c39b

HTTP Headers

GET /js/SurveyLayout.771be6fe.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 921
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:12 GMT
accept-ranges: bytes
content-encoding: gzip
date: Wed, 08 May 2024 07:55:32 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Wed, 08 May 2024 08:55:32 GMT
etag: "98c-616fc21a07f00-gzip"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3x8O4SoVkaA6XbtFJCTaDnitTDbNAQ7b-bhtY_jnfpcZg3CS0hlc9g==
X-Firefox-Spdy: h2

shsf.try-adtranq.com/js/SurveyLayout.771be6fe.js

143.204.55.90

200 OK

921 B

URL GET HTTP/2
shsf.try-adtranq.com/js/SurveyLayout.771be6fe.js
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
Java source, ASCII text, with very long lines (2443)
Size
921 B (921 bytes)
Hash
3fb22259c11487ade7e1798ae6af4041
55e435bc59c457ef016fd5cad18b2772e24b7667
cdfaad77fbfa191f01f0df4679f5bb8fdb41a35b91bcb06db65d1cde7732c39b

HTTP Headers

GET /js/SurveyLayout.771be6fe.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/js/index.647c137b.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 921
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:12 GMT
accept-ranges: bytes
content-encoding: gzip
date: Wed, 08 May 2024 07:55:32 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Wed, 08 May 2024 08:55:32 GMT
etag: "98c-616fc21a07f00-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hrYlKp3cjQQOq9hdIPYpvPv3MA-syO_sz_FQGJcY9G7Zh9SbZwjulw==
X-Firefox-Spdy: h2

shsf.try-adtranq.com/assets/icons/apple-touch-icon.png

143.204.55.90

200 OK

18 kB

URL GET HTTP/2
shsf.try-adtranq.com/assets/icons/apple-touch-icon.png
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced
Size
18 kB (18451 bytes)
Hash
d5a70c285453de5c525f7fb0a0e5ebad
0ba57dc02d1054c1604ac2fbb021271bd212f487
b951c1ced2f06cf42f652292e3e59016004c620d99bb938f0383955157eae9b7

HTTP Headers

GET /assets/icons/apple-touch-icon.png HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 18451
date: Fri, 26 Apr 2024 09:00:35 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:11 GMT
etag: "4813-616fc21913cc0"
accept-ranges: bytes
cache-control: max-age=2678400, public
expires: Sun, 26 May 2024 09:00:35 GMT
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: HEybQZGhP_rMacnb9mZPmuXpFzGO6anjm4XYOXDUAMbE5QKt2fw0ag==
age: 1032897
X-Firefox-Spdy: h2

shsf.try-adtranq.com/assets/icons/favicon-16x16.png

143.204.55.90

200 OK

767 B

URL GET HTTP/2
shsf.try-adtranq.com/assets/icons/favicon-16x16.png
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
767 B (767 bytes)
Hash
055634234affa173e0fa12ecb25a3250
507ca6856b060381fbf0e27ba13a0ddbd3d10981
6e3bea7fe9044506a41748ebb532c7ad208da7720525f2a8d6540951a4208e79

HTTP Headers

GET /assets/icons/favicon-16x16.png HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 767
date: Fri, 26 Apr 2024 09:04:23 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:11 GMT
etag: "2ff-616fc21913cc0"
accept-ranges: bytes
cache-control: max-age=2678400, public
expires: Sun, 26 May 2024 09:04:23 GMT
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cX4u-7GAfcFZ1Yi12B_P98mBwnNXXKPtoENj8m0J7iS6DfC-MAsa_A==
age: 1032669
X-Firefox-Spdy: h2

shsf.try-adtranq.com/js/LogoGooglePlay.38510a7a.js

143.204.55.90

200 OK

345 B

URL GET HTTP/2
shsf.try-adtranq.com/js/LogoGooglePlay.38510a7a.js
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
Java source, ASCII text, with very long lines (529)
Size
345 B (345 bytes)
Hash
f7153797d7f32c6bd53f3ebe82eca35c
d58bff20ee75b762af6c1f2686f01d21e8e04cbe
3ce92f8c8efa1c25c576b3ceecf0e708803f3e4ca762b658964c7f5bc0783870

HTTP Headers

GET /js/LogoGooglePlay.38510a7a.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/js/SurveyLayout.771be6fe.js
Cookie: _ga_PXTFLT7QZ3=GS1.1.1715154932.1.0.1715154932.0.0.0; _ga=GA1.1.358499563.1715154932
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 345
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:12 GMT
accept-ranges: bytes
content-encoding: gzip
date: Wed, 08 May 2024 07:55:32 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Wed, 08 May 2024 08:55:32 GMT
etag: "212-616fc21a07f00-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: AHGWxN24xb3M8Al6xWJo72CXZ7ckFwHwMJSpgr8j68APeXmSfXDV1A==
X-Firefox-Spdy: h2

shsf.try-adtranq.com/js/Atlas102Survey.2f335111.js

143.204.55.90

200 OK

6.1 kB

URL GET HTTP/2
shsf.try-adtranq.com/js/Atlas102Survey.2f335111.js
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
ASCII text, with very long lines (19673)
Size
6.1 kB (6123 bytes)
Hash
a4b3875c5222b019e40a49afabd9072c
97ad437cec4c75ebf78d0440bfbbbcbe94ae4d86
918004230422b56d3e83117295d80e78c523e41317eb2adf82ed7113d8032402

HTTP Headers

GET /js/Atlas102Survey.2f335111.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/js/SurveyLayout.771be6fe.js
Cookie: _ga_PXTFLT7QZ3=GS1.1.1715154932.1.0.1715154932.0.0.0; _ga=GA1.1.358499563.1715154932
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 6123
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:12 GMT
accept-ranges: bytes
content-encoding: gzip
date: Wed, 08 May 2024 07:55:32 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Wed, 08 May 2024 08:55:32 GMT
etag: "4cda-616fc21a07f00-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bNcbElxfh5OQaneAifYzmqI6HG03MJypTtM76WS2jn9Q-eqkmn5ZLQ==
X-Firefox-Spdy: h2

shsf.try-adtranq.com/js/LogosSafeCheckout.8dcc25a6.js

143.204.55.90

200 OK

348 B

URL GET HTTP/2
shsf.try-adtranq.com/js/LogosSafeCheckout.8dcc25a6.js
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
Java source, ASCII text, with very long lines (539)
Size
348 B (348 bytes)
Hash
0d4554230a6c5d050b43e04b9277ab04
379c438f335b5e0c3d33753c6b3322f6771abcbd
b6e75ef64714b9b31a1d7ecb08effee9b9fc8df73ed8addfa0cb5a68e4e7ef7c

HTTP Headers

GET /js/LogosSafeCheckout.8dcc25a6.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/js/SurveyLayout.771be6fe.js
Cookie: _ga_PXTFLT7QZ3=GS1.1.1715154932.1.0.1715154932.0.0.0; _ga=GA1.1.358499563.1715154932
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 348
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:12 GMT
accept-ranges: bytes
content-encoding: gzip
date: Wed, 08 May 2024 07:55:32 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Wed, 08 May 2024 08:55:32 GMT
etag: "21c-616fc21a07f00-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3LivJRD96Scr67UdxSv9ZD_4s8N7_Dl5uLqS1hyDD5R_eQyLe5manA==
X-Firefox-Spdy: h2

shsf.try-adtranq.com/img/logo-google-play.png

143.204.55.90

200 OK

4.6 kB

URL GET HTTP/2
shsf.try-adtranq.com/img/logo-google-play.png
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
PNG image data, 464 x 109, 8-bit colormap, non-interlaced
Size
4.6 kB (4606 bytes)
Hash
132a1552300a0a8a58aa1cf9c5989094
db51496dcbbc7439159a0de7cd2592737ac49812
b905cb3a69e4b8adc4133ed22945181721cc0f6dc8fa065b395c7238d2b48f9a

HTTP Headers

GET /img/logo-google-play.png HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/survey/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
Cookie: _ga_PXTFLT7QZ3=GS1.1.1715154932.1.0.1715154932.0.0.0; _ga=GA1.1.358499563.1715154932
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 4606
date: Sun, 05 May 2024 13:21:33 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:12 GMT
etag: "11fe-616fc21a07f00"
accept-ranges: bytes
cache-control: max-age=2678400, public
expires: Tue, 04 Jun 2024 13:21:33 GMT
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: VO7q_SOgX-NIdusm09zMnQePs1XxQuSiwBzTJ535mh61R6ddHoQsWQ==
age: 239639
X-Firefox-Spdy: h2

shsf.try-adtranq.com/img/logo-google-play.webp

143.204.55.90

200 OK

4.1 kB

URL GET HTTP/2
shsf.try-adtranq.com/img/logo-google-play.webp
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
4.1 kB (4050 bytes)
Hash
b380a06902fdf4a0cd1fb2b3fb3bcbd1
e423a0bcbc3da4f7af407625f6972dee8d7bdc79
d1860ddf921271084c11d16a2d8ae6172b68a92db0739dea866cef68229b2901

HTTP Headers

GET /img/logo-google-play.webp HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/survey/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
Cookie: _ga_PXTFLT7QZ3=GS1.1.1715154932.1.0.1715154932.0.0.0; _ga=GA1.1.358499563.1715154932
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/webp
content-length: 4050
date: Fri, 26 Apr 2024 09:00:35 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:12 GMT
etag: "fd2-616fc21a07f00"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sun, 26 May 2024 09:00:35 GMT
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6Gxllgz84w90EH3q7gbGdAGLe0jyzQCEiOMTISR35QaJURx2LaBarQ==
age: 1032897
X-Firefox-Spdy: h2

shsf.try-adtranq.com/img/logos-safe-checkout.webp

143.204.55.90

200 OK

18 kB

URL GET HTTP/2
shsf.try-adtranq.com/img/logos-safe-checkout.webp
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
18 kB (17860 bytes)
Hash
a1301be1e948f0c62e4bc5b6f986d3e3
cccd9e2faac5e0438302674a3e7972c038cb28bc
cbece4adbd81f7fff8694544397e9d641ddbb497b2cb859eba375f8a622a32ae

HTTP Headers

GET /img/logos-safe-checkout.webp HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/survey/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
Cookie: _ga_PXTFLT7QZ3=GS1.1.1715154932.1.0.1715154932.0.0.0; _ga=GA1.1.358499563.1715154932
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/webp
content-length: 17860
date: Fri, 26 Apr 2024 09:00:35 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:12 GMT
etag: "45c4-616fc21a07f00"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sun, 26 May 2024 09:00:35 GMT
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: UmBEFWHoriUiayX9oQXaOa_NFfh_JThkMVXRJPvRlQ2fTmoaLL2dtA==
age: 1032896
X-Firefox-Spdy: h2

shsf.try-adtranq.com/img/bg-layout-primary.jpg

143.204.55.90

200 OK

23 kB

URL GET HTTP/2
shsf.try-adtranq.com/img/bg-layout-primary.jpg
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1024x768, components 3
Size
23 kB (22906 bytes)
Hash
791472b353174105fa771082fcce9a2a
eed0e0b1dd70f7f4854af645a6e09ae3e737ada2
fc9de09ec03e5bf98e3c1648d4f0f6f6d0c09981735049121da059875b7296f2

HTTP Headers

GET /img/bg-layout-primary.jpg HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/css/index.925b2269.css
Cookie: _ga_PXTFLT7QZ3=GS1.1.1715154932.1.0.1715154932.0.0.0; _ga=GA1.1.358499563.1715154932
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 22906
date: Fri, 26 Apr 2024 09:00:35 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:12 GMT
etag: "597a-616fc21a07f00"
accept-ranges: bytes
cache-control: max-age=2678400, public
expires: Sun, 26 May 2024 09:00:35 GMT
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: YpJC719sqUp5aDWuQiaxXKILmy2xGR85WdBLP7eO6s_t63fI7Y-S7w==
age: 1032897
X-Firefox-Spdy: h2

fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2

216.58.207.227

200 OK

23 kB

URL GET HTTP/2
fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23040, version 1.0
Size
23 kB (23040 bytes)
Hash
de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49

HTTP Headers

GET /s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shsf.try-adtranq.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 01:55:21 GMT
expires: Sat, 03 May 2025 01:55:21 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:07:25 GMT
content-type: font/woff2
age: 453611
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2

216.58.207.227

200 OK

24 kB

URL GET HTTP/2
fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23580, version 1.0
Size
24 kB (23580 bytes)
Hash
e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537

HTTP Headers

GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shsf.try-adtranq.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 13:49:40 GMT
expires: Fri, 02 May 2025 13:49:40 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:17:22 GMT
content-type: font/woff2
age: 497152
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Lato:ital,wght@0,400;0,700;1,400;1,700&display=swap

142.250.74.106

200 OK

935 B

URL GET HTTP/2
fonts.googleapis.com/css2?family=Lato:ital,wght@0,400;0,700;1,400;1,700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
gzip compressed data, max compression
Size
935 B (935 bytes)
Hash
9dda5bf32d3ff94ae379dabad82a3128
b7b0d66c89ddeae899283310cdc83083ab59036d
115529dce76d6d2e2efae3deaee5d232bb394a0a9738b0b467602cf68a780ac6

HTTP Headers

GET /css2?family=Lato:ital,wght@0,400;0,700;1,400;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 08 May 2024 07:55:32 GMT
date: Wed, 08 May 2024 07:55:32 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

shsf.try-adtranq.com/img/logos-safe-checkout.png

0.0.0.0

0 B

URL GET
shsf.try-adtranq.com/img/logos-safe-checkout.png
IP
0.0.0.0:0
ASN
#0

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /img/logos-safe-checkout.png HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/survey/?geo=FI&locale=fi&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=fb1697b5-20dd-42fa-9b57-dee1497f2055&utm_campaign=d0o64grbseklqv413aqc1gc6&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d0o64grbseklqv413aqc1gc6&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=852024&initial-cid=d9mego7e363l9v41jnue6idu
Cookie: _ga_PXTFLT7QZ3=GS1.1.1715154932.1.0.1715154932.0.0.0; _ga=GA1.1.358499563.1715154932
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (27)

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN