| track.getupgradedsecurity.com/f6458901-c3f9-4190-9683-b4599a461bf0 | 54.230.111.88 | | 0 B |
URL track.getupgradedsecurity.com/f6458901-c3f9-4190-9683-b4599a461bf0 IP54.230.111.88:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /f6458901-c3f9-4190-9683-b4599a461bf0 HTTP/1.1
Host: track.getupgradedsecurity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-length: 0
location: https://premiummobileprotection.com/inter-pro.php?cep=WDoHWQv1t6ycSCazG-3HlVcVMYZnDfa2i1w9FN1kjRKiaQ11SgAX2vv90tIjwe6bOUJ8GvyAqSeofNbj1Hq8plosfEsbQ6wW089WUBbzO8vqnjmsgKH6mFMQr87x3mjBSdSuPn2CbbypmTkfhPGos4WIZOWF27amRFkdV61X0IP6jSuN-RgkuZkQOObxBxQr7AFdp2Ez052GqPTlYRY83Af-OLjGLWUl-7jZu1aafGrKsSGIbJQFPJb-YSo27y7YRV44TzGOKckOEy-Obi8VU2uG0qq3FX5BN_ClNHufTo0DDBwpEkgDelneIceTG88B03FnTMiJBe7M2s9IF79UtcQ6DjGbD9989wSO2q8ZGckxn33MNHla3Q_dKjVwz7zS65p6xo7oFlkM1BgceHLwALVDn97mAophgojwHgvQTZU&lptoken=1787148a123b348b76f8
date: Fri, 26 Apr 2024 08:54:36 GMT
cache-control: no-store, no-cache, pre-check=0, post-check=0
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: f6458901-c3f9-4190-9683-b4599a461bf0-v4=VUXyHj7cM2xzPWl0GCDcwNY8UCNuWEpcRRo9pVFitQw; Max-Age=86400; Expires=Sat, 27-Apr-2024 08:54:36 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
cep-v4=2r5pwWt7qUmWg6EsVo7YDEkimHlqO-NbW4phcRo-vC4LR-BiruQNUurVu6DwGG1HrCOd6XKSF41jN7iZxBfD7Eteg0Ject7g0hC6-0RkubArjFTigHT5Ptb_scZw-f9K3K2KeKXOPr54aHucXrTN_auxSG3x5RiWmzL_Ws3lGy9swDSAKSwMbLQDIlXdri0znFQHgbrAD23B6iiE9bp21nR02_0MlUcXG-ziDh875rTrcBd9p-AAurv1HHP-YXHDWeo18qk6wzSuVPPKgX_Gp2SXNMdzfUIFUlWzEZZ7f32HOQi_JSrjyluaQOgTR8Z6AHe0gxoioVgUYS8Jyw1FHobe8tjbBX_Lr4-tnTy4meavA6a9quuMPGOkBbuhKMAu2s1diyNTBkoJ0RS8KvGQxqrH3k4w2-cgrg2_6o8r4os; Max-Age=86400; Expires=Sat, 27-Apr-2024 08:54:36 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
server: nginx
x-cache: Miss from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _q7dftFr9SqKuBulty01F6OaR9rMbUkV3aePSlxZvJfF_M6zRNyBeA==
X-Firefox-Spdy: h2
|
|
| premiummobileprotection.com/inter-pro.php?cep=WDoHWQv1t6ycSCazG-3HlVcVMYZnDfa2i1w9FN1kjRKiaQ11SgAX2vv90tIjwe6bOUJ8GvyAqSeofNbj1Hq8plosfEsbQ6wW089WUBbzO8vqnjmsgKH6mFMQr87x3mjBSdSuPn2CbbypmTkfhPGos4WIZOWF27amRFkdV61X0IP6jSuN-RgkuZkQOObxBxQr7AFdp2Ez052GqPTlYRY83Af-OLjGLWUl-7jZu1aafGrKsSGIbJQFPJb-YSo27y7YRV44TzGOKckOEy-Obi8VU2uG0qq3FX5BN_ClNHufTo0DDBwpEkgDelneIceTG88B03FnTMiJBe7M2s9IF79UtcQ6DjGbD9989wSO2q8ZGckxn33MNHla3Q_dKjVwz7zS65p6xo7oFlkM1BgceHLwALVDn97mAophgojwHgvQTZU&lptoken=1787148a123b348b76f8 | 23.106.127.218 | | 0 B |
URL premiummobileprotection.com/inter-pro.php?cep=WDoHWQv1t6ycSCazG-3HlVcVMYZnDfa2i1w9FN1kjRKiaQ11SgAX2vv90tIjwe6bOUJ8GvyAqSeofNbj1Hq8plosfEsbQ6wW089WUBbzO8vqnjmsgKH6mFMQr87x3mjBSdSuPn2CbbypmTkfhPGos4WIZOWF27amRFkdV61X0IP6jSuN-RgkuZkQOObxBxQr7AFdp2Ez052GqPTlYRY83Af-OLjGLWUl-7jZu1aafGrKsSGIbJQFPJb-YSo27y7YRV44TzGOKckOEy-Obi8VU2uG0qq3FX5BN_ClNHufTo0DDBwpEkgDelneIceTG88B03FnTMiJBe7M2s9IF79UtcQ6DjGbD9989wSO2q8ZGckxn33MNHla3Q_dKjVwz7zS65p6xo7oFlkM1BgceHLwALVDn97mAophgojwHgvQTZU&lptoken=1787148a123b348b76f8 IP23.106.127.218:0 ASN#59253 Leaseweb Asia Pacific pte. ltd.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /inter-pro.php?cep=WDoHWQv1t6ycSCazG-3HlVcVMYZnDfa2i1w9FN1kjRKiaQ11SgAX2vv90tIjwe6bOUJ8GvyAqSeofNbj1Hq8plosfEsbQ6wW089WUBbzO8vqnjmsgKH6mFMQr87x3mjBSdSuPn2CbbypmTkfhPGos4WIZOWF27amRFkdV61X0IP6jSuN-RgkuZkQOObxBxQr7AFdp2Ez052GqPTlYRY83Af-OLjGLWUl-7jZu1aafGrKsSGIbJQFPJb-YSo27y7YRV44TzGOKckOEy-Obi8VU2uG0qq3FX5BN_ClNHufTo0DDBwpEkgDelneIceTG88B03FnTMiJBe7M2s9IF79UtcQ6DjGbD9989wSO2q8ZGckxn33MNHla3Q_dKjVwz7zS65p6xo7oFlkM1BgceHLwALVDn97mAophgojwHgvQTZU&lptoken=1787148a123b348b76f8 HTTP/1.1
Host: premiummobileprotection.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 26 Apr 2024 08:54:38 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://track.getupgradedsecurity.com/click/1
|
|
| track.getupgradedsecurity.com/click/1 | 54.230.111.88 | | 0 B |
URL track.getupgradedsecurity.com/click/1 IP54.230.111.88:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /click/1 HTTP/1.1
Host: track.getupgradedsecurity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: f6458901-c3f9-4190-9683-b4599a461bf0-v4=VUXyHj7cM2xzPWl0GCDcwNY8UCNuWEpcRRo9pVFitQw; cep-v4=2r5pwWt7qUmWg6EsVo7YDEkimHlqO-NbW4phcRo-vC4LR-BiruQNUurVu6DwGG1HrCOd6XKSF41jN7iZxBfD7Eteg0Ject7g0hC6-0RkubArjFTigHT5Ptb_scZw-f9K3K2KeKXOPr54aHucXrTN_auxSG3x5RiWmzL_Ws3lGy9swDSAKSwMbLQDIlXdri0znFQHgbrAD23B6iiE9bp21nR02_0MlUcXG-ziDh875rTrcBd9p-AAurv1HHP-YXHDWeo18qk6wzSuVPPKgX_Gp2SXNMdzfUIFUlWzEZZ7f32HOQi_JSrjyluaQOgTR8Z6AHe0gxoioVgUYS8Jyw1FHobe8tjbBX_Lr4-tnTy4meavA6a9quuMPGOkBbuhKMAu2s1diyNTBkoJ0RS8KvGQxqrH3k4w2-cgrg2_6o8r4os
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
content-length: 0
location: https://getprotectionalshield.com/sep/?to=0203-av-cmpl-wh&campid=f6458901-c3f9-4190-9683-b4599a461bf0&utm_source=&landerid=96c030a3-3f5b-4f8a-ab14-4cc2b64a3152&bv=Firefox%2096&lander=1305-intermediary-lander%20%5BPRO%5D&pccid=dhbjnkoigpfoi0s03ldplf3i&phone_brand=Desktop&model=Desktop&zone_id=&supply_id=&camp_id=&source=&ua=&creative=&pathid=0f4302c0-b7f8-69a9-e9bd-0f828225b68a&brand=av&tracking_domain=track.getupgradedsecurity.com&lang=fr&geo=fr-pro
date: Fri, 26 Apr 2024 08:54:38 GMT
cache-control: no-store, no-cache, pre-check=0, post-check=0
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: voluum-cid-v4=%7B%22cid%22%3A%22dhbjnkoigpfoi0s03ldplf3i%22%2C%22caid%22%3A%22f6458901-c3f9-4190-9683-b4599a461bf0%22%7D; Max-Age=31536000; Expires=Sat, 26-Apr-2025 08:54:38 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
f6458901-c3f9-4190-9683-b4599a461bf0-clk-v4=f6458901-c3f9-4190-9683-b4599a461bf0; Max-Age=86400; Expires=Sat, 27-Apr-2024 08:54:38 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
f6458901-c3f9-4190-9683-b4599a461bf0-v4=pv0RQv8KRt7zlp5H2jH7OLHPjnzVYhKqKoGXoQ_HXw0; Max-Age=86400; Expires=Sat, 27-Apr-2024 08:54:38 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
server: nginx
x-cache: Miss from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xBwm4O2zB87mEER7IRxqO4JInI_xS-vNx8QuiaLa58Vwnk2OzM5YDw==
X-Firefox-Spdy: h2
|
|
| track.getupgradedsecurity.com/ | 54.230.111.88 | | 227 B |
URL track.getupgradedsecurity.com/ IP54.230.111.88:0
File typeHTML document, ASCII text Hashd7e39a03eb36cd0ca88c7d3833668ee1 3beb5597c07f8aef8d1caace6a23d09a66550c95 0ada30892e47ec0cf6acd9dbf9fd085f8601a18375a5b7388683561f1f6cc626
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: track.getupgradedsecurity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404
Content-Type: text/html
Content-Length: 227
Connection: keep-alive
Date: Fri, 26 Apr 2024 08:54:39 GMT
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Server: nginx
X-Cache: Error from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: xq4a9Zabmgk5ns0mvNz9qYrnZIX0IQ4eZ6RBfgWzRQ9vHP1AFrm1pg==
|
|
| getprotectionalshield.com/sep/?to=0203-av-cmpl-wh&campid=f6458901-c3f9-4190-9683-b4599a461bf0&utm_source=&landerid=96c030a3-3f5b-4f8a-ab14-4cc2b64a3152&bv=Firefox%2096&lander=1305-intermediary-lander%20%5BPRO%5D&pccid=dhbjnkoigpfoi0s03ldplf3i&phone_brand=Desktop&model=Desktop&zone_id=&supply_id=&camp_id=&source=&ua=&creative=&pathid=0f4302c0-b7f8-69a9-e9bd-0f828225b68a&brand=av&tracking_domain=track.getupgradedsecurity.com&lang=fr&geo=fr-pro | 23.106.127.218 | | 2.4 kB |
URL getprotectionalshield.com/sep/?to=0203-av-cmpl-wh&campid=f6458901-c3f9-4190-9683-b4599a461bf0&utm_source=&landerid=96c030a3-3f5b-4f8a-ab14-4cc2b64a3152&bv=Firefox%2096&lander=1305-intermediary-lander%20%5BPRO%5D&pccid=dhbjnkoigpfoi0s03ldplf3i&phone_brand=Desktop&model=Desktop&zone_id=&supply_id=&camp_id=&source=&ua=&creative=&pathid=0f4302c0-b7f8-69a9-e9bd-0f828225b68a&brand=av&tracking_domain=track.getupgradedsecurity.com&lang=fr&geo=fr-pro IP23.106.127.218:0 ASN#59253 Leaseweb Asia Pacific pte. ltd.
File typeHTML document, ASCII text, with very long lines (6850) Hash0917e0bf7adeb77ed28013b9006216da 7b949a134cb0500c66f274ca92e3411c3ae49986 fb8b6c74ccb06d9148b8d1039eec05a24287c43ccae7bc11f5be50c70a63fa3a
GET /sep/?to=0203-av-cmpl-wh&campid=f6458901-c3f9-4190-9683-b4599a461bf0&utm_source=&landerid=96c030a3-3f5b-4f8a-ab14-4cc2b64a3152&bv=Firefox%2096&lander=1305-intermediary-lander%20%5BPRO%5D&pccid=dhbjnkoigpfoi0s03ldplf3i&phone_brand=Desktop&model=Desktop&zone_id=&supply_id=&camp_id=&source=&ua=&creative=&pathid=0f4302c0-b7f8-69a9-e9bd-0f828225b68a&brand=av&tracking_domain=track.getupgradedsecurity.com&lang=fr&geo=fr-pro HTTP/1.1
Host: getprotectionalshield.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 08:54:40 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 25 Apr 2024 13:37:30 GMT
ETag: W/"662a5c9a-1cce"
Content-Encoding: gzip
|
|
| d18b5y9gp0lr93.cloudfront.net/sqp-functions/functions.min.js | 54.230.241.163 | | 4.5 kB |
URL d18b5y9gp0lr93.cloudfront.net/sqp-functions/functions.min.js IP54.230.241.163:0
File typeJavaScript source, ASCII text, with very long lines (6850) Hashb7c7cd49746bed26ac727ef0804d6203 f25430cafd15a5479c8177087d6b5e73606b6e28 03ae4f494dd669d938c904eea6ba21eeddb0aeb87f41015a7ae55156e48d134a
GET /sqp-functions/functions.min.js HTTP/1.1
Host: d18b5y9gp0lr93.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getprotectionalshield.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 13 Dec 2023 09:40:44 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: dRA40FxrztBz3m1bZdOmgk_RvQfg.z05
server: AmazonS3
content-encoding: gzip
date: Fri, 26 Apr 2024 01:37:12 GMT
etag: W/"de27e5abcf1380fbab0accd9eb0b9630"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Fd-jn-iSN8Or0DBKzLfJuV9Fg1lxwJONJonQLHREHibwGB2A9zXWxA==
age: 29765
X-Firefox-Spdy: h2
|
|
| 45.utiliserunbouclier.com/0203-av-cmpl-wh/?to=0203-av-cmpl-wh&campid=f6458901-c3f9-4190-9683-b4599a461bf0&utm_source=&landerid=96c030a3-3f5b-4f8a-ab14-4cc2b64a3152&bv=Firefox%2096&lander=1305-intermediary-lander%20%5BPRO%5D&pccid=dhbjnkoigpfoi0s03ldplf3i&phone_brand=Desktop&model=Desktop&zone_id=&supply_id=&camp_id=&source=&ua=&creative=&pathid=0f4302c0-b7f8-69a9-e9bd-0f828225b68a&brand=av&tracking_domain=track.getupgradedsecurity.com&lang=fr&geo=fr-pro | 23.106.127.218 | | 13 kB |
URL 45.utiliserunbouclier.com/0203-av-cmpl-wh/?to=0203-av-cmpl-wh&campid=f6458901-c3f9-4190-9683-b4599a461bf0&utm_source=&landerid=96c030a3-3f5b-4f8a-ab14-4cc2b64a3152&bv=Firefox%2096&lander=1305-intermediary-lander%20%5BPRO%5D&pccid=dhbjnkoigpfoi0s03ldplf3i&phone_brand=Desktop&model=Desktop&zone_id=&supply_id=&camp_id=&source=&ua=&creative=&pathid=0f4302c0-b7f8-69a9-e9bd-0f828225b68a&brand=av&tracking_domain=track.getupgradedsecurity.com&lang=fr&geo=fr-pro IP23.106.127.218:0 ASN#59253 Leaseweb Asia Pacific pte. ltd.
File typeHTML document, Unicode text, UTF-8 text, with very long lines (10905) Hasha6915d61dc0d38f7e942e0a2c2552fa1 a094ddc4ec00dd8cd2794706a3849c00a4db4129 c54e1ce0d4f5a55702efb1387ed814c8250607fbf7f9d47eddf288570f3196c1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /0203-av-cmpl-wh/?to=0203-av-cmpl-wh&campid=f6458901-c3f9-4190-9683-b4599a461bf0&utm_source=&landerid=96c030a3-3f5b-4f8a-ab14-4cc2b64a3152&bv=Firefox%2096&lander=1305-intermediary-lander%20%5BPRO%5D&pccid=dhbjnkoigpfoi0s03ldplf3i&phone_brand=Desktop&model=Desktop&zone_id=&supply_id=&camp_id=&source=&ua=&creative=&pathid=0f4302c0-b7f8-69a9-e9bd-0f828225b68a&brand=av&tracking_domain=track.getupgradedsecurity.com&lang=fr&geo=fr-pro HTTP/1.1
Host: 45.utiliserunbouclier.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://utiliserunbouclier.com/
Cookie: pc_domains_record=%5B%7B%22name%22%3A%22utiliserunbouclier.com%22%2C%22allowed%22%3A%5B1%5D%7D%5D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 08:54:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 25 Apr 2024 13:36:54 GMT
ETag: W/"662a5c76-76a3"
Content-Encoding: gzip
|
|
| cdn.jsdelivr.net/npm/@growthbook/growthbook/dist/bundles/auto.min.js | 151.101.193.229 | | 12 kB |
URL cdn.jsdelivr.net/npm/@growthbook/growthbook/dist/bundles/auto.min.js IP151.101.193.229:0
File typeJavaScript source, ASCII text, with very long lines (34803) Hashf0c55bd0fc0de14b604add2c58698f3d 0090704a200e963a53f88d20d0ff6def08d2fe66 be36d3009bb6551e85f209630e8cf0e0f7f7098a5677a3a210923237aa06305e
GET /npm/@growthbook/growthbook/dist/bundles/auto.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://45.utiliserunbouclier.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.36.0
x-jsd-version-type: version
etag: W/"8819-AJBwSiAOljpT+I0g0P9t7wjS/mY"
content-encoding: br
accept-ranges: bytes
date: Fri, 26 Apr 2024 08:54:46 GMT
age: 4887
x-served-by: cache-fra-etou8220138-FRA, cache-hel1410031-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 11945
X-Firefox-Spdy: h2
|
|
| js.sentry-cdn.com/d31b9988ec25444db0b16116ddc6edee.min.js | 151.101.130.217 | | 1.3 kB |
URL js.sentry-cdn.com/d31b9988ec25444db0b16116ddc6edee.min.js IP151.101.130.217:0
File typeJavaScript source, ASCII text, with very long lines (2639) Hash29fbefd7629cac1597290018e7ebaf22 5ff9fc70c82bfed2f0418e73c5f217eab04b73a8 d24e324470829c47de5de45618904d672d0966fad4592f9630f1483e98145ad8
GET /d31b9988ec25444db0b16116ddc6edee.min.js HTTP/1.1
Host: js.sentry-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://45.utiliserunbouclier.com
DNT: 1
Connection: keep-alive
Referer: https://45.utiliserunbouclier.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
access-control-allow-origin: *
cache-control: public, max-age=3600, s-maxage=60, stale-while-revalidate=315360000, stale-if-error=315360000
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: worker-src blob:; style-src * 'unsafe-inline'; font-src * data:; base-uri 'none'; img-src * blob: data:; frame-ancestors 'self' *.sentry.io; default-src 'none'; connect-src 'self' *.algolia.net *.algolianet.com *.algolia.io sentry.io *.sentry.io s1.sentry-cdn.com o1.ingest.sentry.io api2.amplitude.com app.pendo.io data.pendo.io reload.getsentry.net t687h3m0nh65.statuspage.io sentry.zendesk.com ekr.zdassets.com maps.googleapis.com; media-src *; object-src 'none'; script-src 'self' 'unsafe-inline' 'report-sample' s1.sentry-cdn.com js.sentry-cdn.com browser.sentry-cdn.com statuspage-production.s3.amazonaws.com static.zdassets.com aui-cdn.atlassian.com connect-cdn.atl-paas.net js.stripe.com 'strict-dynamic' cdn.pendo.io data.pendo.io pendo-io-static.storage.googleapis.com pendo-static-5634074999128064.storage.googleapis.com; frame-src app.pendo.io demo.arcade.software js.stripe.com sentry.io; report-uri https://o1.ingest.sentry.io/api/54785/security/?sentry_key=f724a8a027db45f5b21507e7142ff78e&sentry_release=f2dba23da74640aefed6c0e33f962983de42c4b6
x-envoy-attempt-count: 1
x-envoy-upstream-service-time: 24
content-encoding: gzip
accept-ranges: bytes
date: Fri, 26 Apr 2024 08:54:46 GMT
age: 56
x-served-by: getsentry-web-default-profiling-production-7786767d9c-v4vpx, cache-chi-kigq8000167-CHI, cache-hel1410030-HEL
vary: Accept-Encoding
timing-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 1275
X-Firefox-Spdy: h2
|
|
| 45.utiliserunbouclier.com/0203-av-cmpl-wh/css/style.min.css | 23.106.127.218 | | 886 B |
URL 45.utiliserunbouclier.com/0203-av-cmpl-wh/css/style.min.css IP23.106.127.218:0 ASN#59253 Leaseweb Asia Pacific pte. ltd.
File typeASCII text, with very long lines (2108), with no line terminators Hash164cf3caad1ad9d992bcaefe89ae62cc be71b1ca01ad523687e4d29cef812e4298b01e13 0630a50d42f92bb5fc726cdfa92041b28f4997ba7e5d541be6c14cdb165eeebd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /0203-av-cmpl-wh/css/style.min.css HTTP/1.1
Host: 45.utiliserunbouclier.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://45.utiliserunbouclier.com/0203-av-cmpl-wh/?to=0203-av-cmpl-wh&campid=f6458901-c3f9-4190-9683-b4599a461bf0&utm_source=&landerid=96c030a3-3f5b-4f8a-ab14-4cc2b64a3152&bv=Firefox%2096&lander=1305-intermediary-lander%20%5BPRO%5D&pccid=dhbjnkoigpfoi0s03ldplf3i&phone_brand=Desktop&model=Desktop&zone_id=&supply_id=&camp_id=&source=&ua=&creative=&pathid=0f4302c0-b7f8-69a9-e9bd-0f828225b68a&brand=av&tracking_domain=track.getupgradedsecurity.com&lang=fr&geo=fr-pro
Cookie: pc_domains_record=%5B%7B%22name%22%3A%22utiliserunbouclier.com%22%2C%22allowed%22%3A%5B1%5D%7D%5D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 08:54:46 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 25 Apr 2024 13:36:54 GMT
ETag: W/"662a5c76-83c"
Content-Encoding: gzip
|
|
| track.getupgradedsecurity.com/click/2?utm_term=2642024&utm_medium=dhbjnkoigpfoi0s03ldplf3i&initial-cid=dhbjnkoigpfoi0s03ldplf3i | 54.230.111.88 | 302 Found | 0 B |
URL User Request GET HTTP/2track.getupgradedsecurity.com/click/2?utm_term=2642024&utm_medium=dhbjnkoigpfoi0s03ldplf3i&initial-cid=dhbjnkoigpfoi0s03ldplf3i IP54.230.111.88:443
CertificateIssuerAmazon Subjecttrack.getupgradedsecurity.com Fingerprint47:47:24:C9:E9:62:08:42:27:7A:2E:A8:6A:3B:F8:DA:33:56:D5:26 ValidityThu, 25 Apr 2024 00:00:00 GMT - Sat, 24 May 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /click/2?utm_term=2642024&utm_medium=dhbjnkoigpfoi0s03ldplf3i&initial-cid=dhbjnkoigpfoi0s03ldplf3i HTTP/1.1
Host: track.getupgradedsecurity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://45.utiliserunbouclier.com/
Cookie: f6458901-c3f9-4190-9683-b4599a461bf0-v4=pv0RQv8KRt7zlp5H2jH7OLHPjnzVYhKqKoGXoQ_HXw0; cep-v4=2r5pwWt7qUmWg6EsVo7YDEkimHlqO-NbW4phcRo-vC4LR-BiruQNUurVu6DwGG1HrCOd6XKSF41jN7iZxBfD7Eteg0Ject7g0hC6-0RkubArjFTigHT5Ptb_scZw-f9K3K2KeKXOPr54aHucXrTN_auxSG3x5RiWmzL_Ws3lGy9swDSAKSwMbLQDIlXdri0znFQHgbrAD23B6iiE9bp21nR02_0MlUcXG-ziDh875rTrcBd9p-AAurv1HHP-YXHDWeo18qk6wzSuVPPKgX_Gp2SXNMdzfUIFUlWzEZZ7f32HOQi_JSrjyluaQOgTR8Z6AHe0gxoioVgUYS8Jyw1FHobe8tjbBX_Lr4-tnTy4meavA6a9quuMPGOkBbuhKMAu2s1diyNTBkoJ0RS8KvGQxqrH3k4w2-cgrg2_6o8r4os; voluum-cid-v4=%7B%22cid%22%3A%22dhbjnkoigpfoi0s03ldplf3i%22%2C%22caid%22%3A%22f6458901-c3f9-4190-9683-b4599a461bf0%22%7D; f6458901-c3f9-4190-9683-b4599a461bf0-clk-v4=f6458901-c3f9-4190-9683-b4599a461bf0
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
content-length: 0
location: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i
date: Fri, 26 Apr 2024 08:54:47 GMT
cache-control: no-store, no-cache, pre-check=0, post-check=0
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: voluum-cid-v4=%7B%22cid%22%3A%22dcnsvjc7ql7l90s0jm1n5qd2%22%2C%22caid%22%3A%22f6458901-c3f9-4190-9683-b4599a461bf0%22%7D; Max-Age=31536000; Expires=Sat, 26-Apr-2025 08:54:47 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
f6458901-c3f9-4190-9683-b4599a461bf0-clk-v4=f6458901-c3f9-4190-9683-b4599a461bf0; Max-Age=86400; Expires=Sat, 27-Apr-2024 08:54:47 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
f6458901-c3f9-4190-9683-b4599a461bf0-v4=JBCiMlJjLQNG46yEm9JU7J29vgtCxTKvNZWwOGs1nJs; Max-Age=86400; Expires=Sat, 27-Apr-2024 08:54:47 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
server: nginx
x-cache: Miss from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: SKC2KNhFLALmA52FfdDckZNIg2fWaLVQh-oBaH5jZ9kCual1-rUhmg==
X-Firefox-Spdy: h2
|
|
| browser.sentry-cdn.com/7.112.2/bundle.tracing.es5.min.js | 151.101.130.217 | | 41 kB |
URL browser.sentry-cdn.com/7.112.2/bundle.tracing.es5.min.js IP151.101.130.217:0
File typeJavaScript source, ASCII text, with very long lines (65428) Hash7c661a141bb745826ef08f12ca9e665a 5469b194f583a347f05617a484de4c7166334def 30026d2717eefac3d865e31e84c9a006d5d50184aef611c61ffad81150bb249f
GET /7.112.2/bundle.tracing.es5.min.js HTTP/1.1
Host: browser.sentry-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://45.utiliserunbouclier.com
DNT: 1
Connection: keep-alive
Referer: https://45.utiliserunbouclier.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Thu, 24 Apr 2025 13:45:12 GMT
last-modified: Wed, 24 Apr 2024 12:03:58 GMT
etag: "10af1dd29c2941b4d4bb7017f36599c1"
content-type: application/javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
date: Fri, 26 Apr 2024 08:54:47 GMT
age: 155375
vary: Accept-Encoding
access-control-allow-origin: *
server: Fastly
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 40679
X-Firefox-Spdy: h2
|
|
| o1063441.ingest.us.sentry.io/api/6072671/envelope/?sentry_key=d31b9988ec25444db0b16116ddc6edee&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.112.2 | 34.120.195.249 | | 41 B |
URL o1063441.ingest.us.sentry.io/api/6072671/envelope/?sentry_key=d31b9988ec25444db0b16116ddc6edee&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.112.2 IP34.120.195.249:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
Hashf98b5efca027db760b664f7d66bd7246 602349d68980195d1f4af669ef0945eef129ec6a 2863e45466ebb3ca5ed4a0d501c603062ed456d9630b3551fc2becb0ecc4119f
POST /api/6072671/envelope/?sentry_key=d31b9988ec25444db0b16116ddc6edee&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.112.2 HTTP/1.1
Host: o1063441.ingest.us.sentry.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://45.utiliserunbouclier.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 2218
Origin: https://45.utiliserunbouclier.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 08:54:47 GMT
content-type: application/json
content-length: 41
access-control-allow-origin: *
vary: origin,access-control-request-method,access-control-request-headers
access-control-expose-headers: x-sentry-error,x-sentry-rate-limits,retry-after
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i | 143.204.55.18 | 200 OK | 871 B |
URL User Request GET HTTP/2shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i IP143.204.55.18:443
CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typeHTML document, ASCII text Hash831357ff58695d44a091202d8ccbf9bd f2ca0d2ad04c1205cafd3234b73f231506d433a2 e7956270b41e0c32a302b7287bef9d28da9cefad472533e0ff0305766570f2d1
GET /Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://45.utiliserunbouclier.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 871
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:43 GMT
accept-ranges: bytes
content-encoding: gzip
date: Fri, 26 Apr 2024 08:54:47 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Fri, 26 Apr 2024 09:54:47 GMT
etag: "6b7-616ec165499c0-gzip"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: N7mmpZJrXEYHFJ7jHWVkBlyNCoRZa0Ooodzx18KexWSfG7ajWmnT9A==
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/css/index.925b2269.css | 143.204.55.18 | 200 OK | 5.9 kB |
URL GET HTTP/2shsf.try-adtranq.com/css/index.925b2269.css IP143.204.55.18:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typeASCII text, with very long lines (26643) Hash5da360cc52f1c60dce2f894d71d16fa2 70b71fe839b8d2889eb4c0d8bfcc6c433e86361b 925b2269cff35373e7d472f86998c8da90e7db28f4f6eb76d5d4a23ae274009c
GET /css/index.925b2269.css HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 5920
date: Thu, 25 Apr 2024 13:52:10 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:43 GMT
etag: "6814-616ec165499c0-gzip"
accept-ranges: bytes
cache-control: max-age=2678400, public
expires: Thu, 25 Apr 2024 14:52:10 GMT
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qkEf2ovUrSpDsxSJ0fWCVX8OLLulbhbapNIbfKqpLG6bJtGfVflShQ==
age: 68557
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-5DNQ3QT | 142.250.74.168 | 200 OK | 76 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-5DNQ3QT IP142.250.74.168:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
File typeJavaScript source, ASCII text, with very long lines (6801) Hash94464320655723f4ae5e7a5f6e4c8959 50139006350c215a72d192c2be8324742f33d4d6 1319eb3f30c83c83406aed779857c5d10afb945b585c62da6df6a69415a938aa
GET /gtm.js?id=GTM-5DNQ3QT HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 08:54:47 GMT
expires: Fri, 26 Apr 2024 08:54:47 GMT
cache-control: private, max-age=900
last-modified: Fri, 26 Apr 2024 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76537
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/css/Atlas102Survey.cc92fdda.css | 143.204.55.18 | 200 OK | 1.1 kB |
URL GET HTTP/2shsf.try-adtranq.com/css/Atlas102Survey.cc92fdda.css IP143.204.55.18:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typeASCII text, with very long lines (3494) Hash64eb9827b87121d8cb4b2a6e9af0a6ee d212aa84e1778e95382e3e3d3e276805680c73b9 cc92fdda2102e2f59eda48c70c328d1a6a0a1f084c7a34040fa5249f94da5631
GET /css/Atlas102Survey.cc92fdda.css HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 1117
date: Thu, 25 Apr 2024 13:52:19 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:43 GMT
etag: "da7-616ec165499c0-gzip"
accept-ranges: bytes
cache-control: max-age=2678400, public
expires: Thu, 25 Apr 2024 14:52:19 GMT
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: D6he-GcxtD1xCe2Pd5hmZjwvknJvcMpiQQ31n3j_De4wFofLsJ1N1g==
age: 68548
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/css/SurveyLayout.b0fb08c3.css | 143.204.55.18 | 200 OK | 339 B |
URL GET HTTP/2shsf.try-adtranq.com/css/SurveyLayout.b0fb08c3.css IP143.204.55.18:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typeASCII text, with very long lines (899) Hash34ebd98cfeff8702bdd9ba7d222969b5 ce169317941d22c09e62bc9a6aadd885ab1676c9 b0fb08c350d0c90003a3fee98f52c9e72f349ed8041966c24929fbbe39e6702f
GET /css/SurveyLayout.b0fb08c3.css HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 339
date: Thu, 25 Apr 2024 13:52:19 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:43 GMT
etag: "384-616ec165499c0-gzip"
accept-ranges: bytes
cache-control: max-age=2678400, public
expires: Thu, 25 Apr 2024 14:52:19 GMT
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: XEOXt73QH8AOiw4zD4xaXbTswv1eJIMZS4pMLa7mpguik05SqoQdTQ==
age: 68548
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-PXTFLT7QZ3&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 91 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-PXTFLT7QZ3&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
File typeJavaScript source, ASCII text, with very long lines (4179) Hash135a039b454a09a89a692025120b2e79 e8cd11c05b27de30177a04c1f4ede444c96b5675 9eb13ce9ec2668529ac5728de55b9b82f6d0392d94f8b41157f2d7115130ea8f
GET /gtag/js?id=G-PXTFLT7QZ3&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 08:54:47 GMT
expires: Fri, 26 Apr 2024 08:54:47 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 91401
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| shsf.try-adtranq.com/js/SurveyLayout.4cae0c47.js | 143.204.55.18 | 200 OK | 920 B |
URL GET HTTP/2shsf.try-adtranq.com/js/SurveyLayout.4cae0c47.js IP143.204.55.18:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typeJava source, ASCII text, with very long lines (2443) Hashcae9f93a2cda2f8acc3d78d109c0731f 3de6b20fc977ba9dce2400981b096343bcf6a668 a39dfd4489ee5e245b27601a8ebce3fbfbd60b1eb44e3bb5a39b5c27d3f9b06c
GET /js/SurveyLayout.4cae0c47.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 920
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:43 GMT
accept-ranges: bytes
content-encoding: gzip
date: Fri, 26 Apr 2024 08:54:47 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Fri, 26 Apr 2024 09:54:47 GMT
etag: "98c-616ec165499c0-gzip"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8YiI6gAz7KMiavJAENr8obDY4wW7Ekyu_FdbDxDtBXExbHq6kyA5YQ==
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/js/LogoGooglePlay.e9645553.js | 143.204.55.18 | 200 OK | 345 B |
URL GET HTTP/2shsf.try-adtranq.com/js/LogoGooglePlay.e9645553.js IP143.204.55.18:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typeJava source, ASCII text, with very long lines (529) Hashd0a534368d8a1cc043a2983825e34d18 7b7f3a8de741a1d66df6331054ffb1c256da084a a351494bc3344c0818e7b5223798f4b66f62650b33b6c35980825a4a45bae559
GET /js/LogoGooglePlay.e9645553.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 345
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:43 GMT
accept-ranges: bytes
content-encoding: gzip
date: Fri, 26 Apr 2024 08:54:47 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Fri, 26 Apr 2024 09:54:47 GMT
etag: "212-616ec165499c0-gzip"
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1lIEDIRv5SNvU5q6EgUMw38fdMTn2wKkGX-rHeZ8fct9gsnUPb-dvQ==
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/js/SurveyLayout.4cae0c47.js | 143.204.55.18 | 200 OK | 920 B |
URL GET HTTP/2shsf.try-adtranq.com/js/SurveyLayout.4cae0c47.js IP143.204.55.18:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typeJava source, ASCII text, with very long lines (2443) Hashcae9f93a2cda2f8acc3d78d109c0731f 3de6b20fc977ba9dce2400981b096343bcf6a668 a39dfd4489ee5e245b27601a8ebce3fbfbd60b1eb44e3bb5a39b5c27d3f9b06c
GET /js/SurveyLayout.4cae0c47.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/js/index.4b3362bc.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 920
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:43 GMT
accept-ranges: bytes
content-encoding: gzip
date: Fri, 26 Apr 2024 08:54:47 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Fri, 26 Apr 2024 09:54:47 GMT
etag: "98c-616ec165499c0-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: YZRDGx2nFrN04SLAaltsLD331EAhsCpEOYD8iCTNNTEq8Kcftq8ASQ==
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/js/Atlas102Survey.88e3e1a4.js | 143.204.55.18 | 200 OK | 6.1 kB |
URL GET HTTP/2shsf.try-adtranq.com/js/Atlas102Survey.88e3e1a4.js IP143.204.55.18:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typeASCII text, with very long lines (19673) Hash9febd9a30546d3c389b6436fcdbbb792 cc466b8365541146c8c85c58e48b0c75dddaf386 a48da8c84591534eb2e80eb7c02df99943adce535ff40b90f116ed4545e18a5a
GET /js/Atlas102Survey.88e3e1a4.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 6122
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:43 GMT
accept-ranges: bytes
content-encoding: gzip
date: Fri, 26 Apr 2024 08:54:47 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Fri, 26 Apr 2024 09:54:47 GMT
etag: "4cda-616ec165499c0-gzip"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: gjeQFCN1ofFw432RcsKOTbF1ElP8bPIo9qpFFY1rkFTJaGvGNszi4Q==
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/js/LogosSafeCheckout.041b0038.js | 143.204.55.18 | 200 OK | 348 B |
URL GET HTTP/2shsf.try-adtranq.com/js/LogosSafeCheckout.041b0038.js IP143.204.55.18:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typeJava source, ASCII text, with very long lines (539) Hash7d8d56d491ccb812ab5dc89b1e1e4913 82c3b6d3f27aa3ed5b8849680b03cfbd8f2cb191 7b5f588c21a5bf41aa82773852b2ad78108a3ead58f3e60e867a83b104c02495
GET /js/LogosSafeCheckout.041b0038.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 348
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:43 GMT
accept-ranges: bytes
content-encoding: gzip
date: Fri, 26 Apr 2024 08:54:47 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Fri, 26 Apr 2024 09:54:47 GMT
etag: "21c-616ec165499c0-gzip"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2HFrfojk9oBaRNkurksQIbu-7fioL5FI5qo0Oph_ljuo6jmeRxUn-Q==
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/js/LogoGooglePlay.e9645553.js | 143.204.55.18 | 200 OK | 345 B |
URL GET HTTP/2shsf.try-adtranq.com/js/LogoGooglePlay.e9645553.js IP143.204.55.18:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typeJava source, ASCII text, with very long lines (529) Hashd0a534368d8a1cc043a2983825e34d18 7b7f3a8de741a1d66df6331054ffb1c256da084a a351494bc3344c0818e7b5223798f4b66f62650b33b6c35980825a4a45bae559
GET /js/LogoGooglePlay.e9645553.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/js/SurveyLayout.4cae0c47.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 345
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:43 GMT
accept-ranges: bytes
content-encoding: gzip
date: Fri, 26 Apr 2024 08:54:47 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Fri, 26 Apr 2024 09:54:47 GMT
etag: "212-616ec165499c0-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dgNzFz0K5GyxkmKc3IwiPE-sL-MxIwFk6umaQBoR1bku1FGIcMe_5w==
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/js/Atlas102Survey.88e3e1a4.js | 143.204.55.18 | 200 OK | 6.1 kB |
URL GET HTTP/2shsf.try-adtranq.com/js/Atlas102Survey.88e3e1a4.js IP143.204.55.18:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typeASCII text, with very long lines (19673) Hash9febd9a30546d3c389b6436fcdbbb792 cc466b8365541146c8c85c58e48b0c75dddaf386 a48da8c84591534eb2e80eb7c02df99943adce535ff40b90f116ed4545e18a5a
GET /js/Atlas102Survey.88e3e1a4.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/js/SurveyLayout.4cae0c47.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 6122
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:43 GMT
accept-ranges: bytes
content-encoding: gzip
date: Fri, 26 Apr 2024 08:54:47 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Fri, 26 Apr 2024 09:54:47 GMT
etag: "4cda-616ec165499c0-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: BQk7WhtMDNKQ1qpEsba_XLhnuAbjhk0xQMHYfrXgSEFF_VKxUmizSQ==
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/js/LogosSafeCheckout.041b0038.js | 143.204.55.18 | 200 OK | 348 B |
URL GET HTTP/2shsf.try-adtranq.com/js/LogosSafeCheckout.041b0038.js IP143.204.55.18:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typeJava source, ASCII text, with very long lines (539) Hash7d8d56d491ccb812ab5dc89b1e1e4913 82c3b6d3f27aa3ed5b8849680b03cfbd8f2cb191 7b5f588c21a5bf41aa82773852b2ad78108a3ead58f3e60e867a83b104c02495
GET /js/LogosSafeCheckout.041b0038.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/js/SurveyLayout.4cae0c47.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 348
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:43 GMT
accept-ranges: bytes
content-encoding: gzip
date: Fri, 26 Apr 2024 08:54:47 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Fri, 26 Apr 2024 09:54:47 GMT
etag: "21c-616ec165499c0-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: kLbHbbFDMh6W3896Ecck8F0ewWcIYezqKFHwrWLz5KIiRhHRgFgw1A==
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/assets/icons/apple-touch-icon.png | 143.204.55.18 | 200 OK | 18 kB |
URL GET HTTP/2shsf.try-adtranq.com/assets/icons/apple-touch-icon.png IP143.204.55.18:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typePNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced Hashd5a70c285453de5c525f7fb0a0e5ebad 0ba57dc02d1054c1604ac2fbb021271bd212f487 b951c1ced2f06cf42f652292e3e59016004c620d99bb938f0383955157eae9b7
GET /assets/icons/apple-touch-icon.png HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 18451
date: Thu, 25 Apr 2024 13:52:12 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:41 GMT
etag: "4813-616ec16361540"
accept-ranges: bytes
cache-control: max-age=2678400, public
expires: Sat, 25 May 2024 13:52:12 GMT
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zff5ulZKvugtETrs3pJNRGItSW7QQWuvfRrH6UyVT7die80Owxho5g==
age: 68555
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/assets/icons/favicon-16x16.png | 143.204.55.18 | 200 OK | 767 B |
URL GET HTTP/2shsf.try-adtranq.com/assets/icons/favicon-16x16.png IP143.204.55.18:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typePNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced Hash055634234affa173e0fa12ecb25a3250 507ca6856b060381fbf0e27ba13a0ddbd3d10981 6e3bea7fe9044506a41748ebb532c7ad208da7720525f2a8d6540951a4208e79
GET /assets/icons/favicon-16x16.png HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 767
date: Thu, 25 Apr 2024 14:38:45 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:41 GMT
etag: "2ff-616ec16361540"
accept-ranges: bytes
cache-control: max-age=2678400, public
expires: Sat, 25 May 2024 14:38:45 GMT
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: AgSSuweExq082Tf1NaWdCuhTBPtQhZ1rRJPyTY0ZvbDN5CUbqOtBag==
age: 65762
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/img/logo-google-play.webp | 143.204.55.18 | 200 OK | 4.1 kB |
URL GET HTTP/2shsf.try-adtranq.com/img/logo-google-play.webp IP143.204.55.18:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Hashb380a06902fdf4a0cd1fb2b3fb3bcbd1 e423a0bcbc3da4f7af407625f6972dee8d7bdc79 d1860ddf921271084c11d16a2d8ae6172b68a92db0739dea866cef68229b2901
GET /img/logo-google-play.webp HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/survey/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i
Cookie: _ga_PXTFLT7QZ3=GS1.1.1714121687.1.0.1714121687.0.0.0; _ga=GA1.1.2864217.1714121688
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 4050
date: Thu, 25 Apr 2024 13:52:19 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:43 GMT
etag: "fd2-616ec165499c0"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sat, 25 May 2024 13:52:19 GMT
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: p5EE7W_xqP9aea50G-kslAZnU0p-5CBYaYcl4V2wGMqv2GogOh5Oxw==
age: 68548
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/img/logos-safe-checkout.webp | 143.204.55.18 | 200 OK | 18 kB |
URL GET HTTP/2shsf.try-adtranq.com/img/logos-safe-checkout.webp IP143.204.55.18:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Hasha1301be1e948f0c62e4bc5b6f986d3e3 cccd9e2faac5e0438302674a3e7972c038cb28bc cbece4adbd81f7fff8694544397e9d641ddbb497b2cb859eba375f8a622a32ae
GET /img/logos-safe-checkout.webp HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/survey/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i
Cookie: _ga_PXTFLT7QZ3=GS1.1.1714121687.1.0.1714121687.0.0.0; _ga=GA1.1.2864217.1714121688
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 17860
date: Thu, 25 Apr 2024 13:52:19 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:43 GMT
etag: "45c4-616ec165499c0"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sat, 25 May 2024 13:52:19 GMT
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: eqcPpBAtD8W93GxMFhWGHuaa2Ah--D2GSk3pwHXyjKwplTUey9pFIA==
age: 68548
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/img/bg-layout-primary.jpg | 143.204.55.18 | 200 OK | 23 kB |
URL GET HTTP/2shsf.try-adtranq.com/img/bg-layout-primary.jpg IP143.204.55.18:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1024x768, components 3 Hash791472b353174105fa771082fcce9a2a eed0e0b1dd70f7f4854af645a6e09ae3e737ada2 fc9de09ec03e5bf98e3c1648d4f0f6f6d0c09981735049121da059875b7296f2
GET /img/bg-layout-primary.jpg HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/css/index.925b2269.css
Cookie: _ga_PXTFLT7QZ3=GS1.1.1714121687.1.0.1714121687.0.0.0; _ga=GA1.1.2864217.1714121688
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 22906
date: Thu, 25 Apr 2024 13:52:19 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:43 GMT
etag: "597a-616ec165499c0"
accept-ranges: bytes
cache-control: max-age=2678400, public
expires: Sat, 25 May 2024 13:52:19 GMT
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jlPX9MTw5Zvm-12rfBNIZJ1Epo1fR3GF37-C3EIdSIxPA2qIzdgdCA==
age: 68548
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 | 216.58.207.227 | 200 OK | 23 kB |
URL GET HTTP/2fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 IP216.58.207.227:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33 ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 23040, version 1.0 Hashde69cf9e514df447d1b0bb16f49d2457 2ac78601179c3a63ba3f3f3081556b12ddcaf655 c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shsf.try-adtranq.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 05:59:27 GMT
expires: Sat, 26 Apr 2025 05:59:27 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:07:25 GMT
content-type: font/woff2
age: 10521
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 | 216.58.207.227 | 200 OK | 24 kB |
URL GET HTTP/2fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 IP216.58.207.227:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33 ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 23580, version 1.0 Hashe1b3b5908c9cf23dfb2b9c52b9a023ab fcd4136085f2a03481d9958cc6793a5ed98e714c 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shsf.try-adtranq.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 15:44:03 GMT
expires: Fri, 25 Apr 2025 15:44:03 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:17:22 GMT
content-type: font/woff2
age: 61845
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/js/index.4b3362bc.js | 143.204.55.18 | 200 OK | 326 kB |
URL GET HTTP/2shsf.try-adtranq.com/js/index.4b3362bc.js IP143.204.55.18:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size326 kB (325732 bytes) Hashc3010c28d74e657805099e0ef73d0f9c f1deb8789bea4af14c5f184a0c91ef9c1aef2097 172a8c56e472c4bccdfcf733e14016cc5da0600f568bc367478e866a02514df1
GET /js/index.4b3362bc.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:43 GMT
accept-ranges: bytes
content-encoding: gzip
date: Fri, 26 Apr 2024 08:54:47 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Fri, 26 Apr 2024 09:54:47 GMT
etag: "4f864-616ec165499c0-gzip"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: kp6yCf33N2Nj9spFyvf_VxDnLFfdXOfeBwK9zLkXbde4KZHiMSCfeg==
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/img/logos-safe-checkout.png | 0.0.0.0 | | 0 B |
URL GET shsf.try-adtranq.com/img/logos-safe-checkout.png IP0.0.0.0:0
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /img/logos-safe-checkout.png HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/survey/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i
Cookie: _ga_PXTFLT7QZ3=GS1.1.1714121687.1.0.1714121687.0.0.0; _ga=GA1.1.2864217.1714121688
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| shsf.try-adtranq.com/img/logo-google-play.png | 0.0.0.0 | | 0 B |
URL GET shsf.try-adtranq.com/img/logo-google-play.png IP0.0.0.0:0
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /img/logo-google-play.png HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/survey/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i
Cookie: _ga_PXTFLT7QZ3=GS1.1.1714121687.1.0.1714121687.0.0.0; _ga=GA1.1.2864217.1714121688
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| fonts.googleapis.com/css2?family=Lato:ital,wght@0,400;0,700;1,400;1,700&display=swap | 142.250.74.106 | 200 OK | 3.1 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Lato:ital,wght@0,400;0,700;1,400;1,700&display=swap IP142.250.74.106:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=dcnsvjc7ql7l90s0jm1n5qd2&utm_medium=NO&ip_address=91.90.42.0&city=Trondheim®ion=Trondelag&country=Norway&clickid=dcnsvjc7ql7l90s0jm1n5qd2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=dhbjnkoigpfoi0s03ldplf3i CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File typeASCII text, with very long lines (3142), with no line terminators Hash4023f0ddd8dbe996a46c898ded1fd352 fd83c3f2177ce1b0521bcd9365b116b8865870dd 9c90441a4c70bcd1c48e7fd586b995c860373b200de9c03d7c9d810895cc16cd
GET /css2?family=Lato:ital,wght@0,400;0,700;1,400;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 Apr 2024 08:54:47 GMT
date: Fri, 26 Apr 2024 08:54:47 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|