Report - track.getupgradedsecurity.com/b4add445-b88d-489c-8526-83dc8080db23

Report Overview

Submitted URL
track.getupgradedsecurity.com/b4add445-b88d-489c-8526-83dc8080db23
IP
54.230.111.116
ASN
#16509 AMAZON-02
Submitted
2024-05-04 14:55:16
Access
public
Website Title
Spam Shield 24/7
Final URL
shsf.try-adtranq.com/Atlas250ControlNov24/survey/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
shsf.try-adtranq.com	unknown	unknown	No data	No data	15 kB	208 kB	143.204.55.90
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-05-04	1.0 kB	48 kB	216.58.207.227
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-05-04	479 B	3.7 kB	142.250.74.106
track.getupgradedsecurity.com	unknown	unknown	No data	No data	3.2 kB	5.6 kB	54.230.111.68
premiummobileprotection.com	unknown	2024-04-08	2024-04-08	2024-04-09	977 B	221 B	23.106.127.218
d18b5y9gp0lr93.cloudfront.net	unknown	2008-04-25	2023-07-21	2024-04-25	880 B	22 kB	54.230.241.225
js.sentry-cdn.com	5259	2018-05-30	2018-07-13	2024-05-03	469 B	3.1 kB	151.101.66.217
browser.sentry-cdn.com	4393	2018-05-30	2018-07-13	2024-05-03	482 B	41 kB	151.101.66.217
getprotectionalshield.com	unknown	2024-02-12	2024-02-12	2024-03-03	917 B	2.7 kB	23.106.127.218
cdn.jsdelivr.net	439	2012-05-16	2012-09-30	2024-05-03	446 B	15 kB	151.101.129.229
o1063441.ingest.us.sentry.io	unknown	unknown	No data	No data	635 B	558 B	34.120.195.249
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-05-03	883 B	172 kB	142.250.74.168

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-04	medium	premiummobileprotection.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (27)

	URL	Size	First Seen	Last Seen
	shsf.try-adtranq.com/js/LogoGooglePlay.38510a7a.js	530 B	2024-05-03	2024-05-08
Pretty URL shsf.try-adtranq.com/js/LogoGooglePlay.38510a7a.js IP 143.204.55.90 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2024-05-03 19:55:20 Last Seen2024-05-08 09:55:57 Times Seen9 Hash f7153797d7f32c6bd53f3ebe82eca35c d58bff20ee75b762af6c1f2686f01d21e8e04cbe 3ce92f8c8efa1c25c576b3ceecf0e708803f3e4ca762b658964c7f5bc0783870 Loading...

	unknown	150 B	2023-05-06	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-06 10:32:05 Last Seen2024-05-04 16:55:22 Times Seen27 Hash 26ce8b4eb1385e63b3126dcd5a02fc1d c7e8662224d3f14371cfe8b3b156433e00038624 a2395721616a025eace42b7b1b0cef685dc87e962e3a35d594d9d24a0a3a282e Loading...

	unknown	138 B	2023-05-06	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-06 10:32:05 Last Seen2024-05-04 16:55:22 Times Seen27 Hash d72785d3904f051f5a86e2ad7879a7a6 58e2db4ccd8277489ea5e3e295b899bc4ac42fe6 95cb02b51d6e6d7daf2fb37e17250a059422985cb3d4b88c77f3676e9fdb234d Loading...

	unknown	150 B	2023-05-06	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-06 10:32:05 Last Seen2024-05-04 16:55:22 Times Seen27 Hash 59dc8b7d6505ef7f969fbd2cdeed74bc a6ef12b9e1bc27059ba84d6283b0f1504b29c9e2 83da59c2517515ec3fc7b7e613439222680cbde1902b5c0d92b7ce01d99ce8af Loading...

	unknown	159 B	2023-05-06	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-06 10:32:05 Last Seen2024-05-04 16:55:22 Times Seen27 Hash e4eff269116c22e98cedaa461ee9366d 9cd2ee05f5a10996fcc835ecb1c09ff6b84d7f5d 3ff7a4b58eee03962fff670103d0a6d241fe663c4fdf62cdaa8bef75532baf87 Loading...

	shsf.try-adtranq.com/js/LogosSafeCheckout.8dcc25a6.js	540 B	2024-05-03	2024-05-08
Pretty URL shsf.try-adtranq.com/js/LogosSafeCheckout.8dcc25a6.js IP 143.204.55.90 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2024-05-03 19:55:20 Last Seen2024-05-08 09:55:57 Times Seen8 Hash 0d4554230a6c5d050b43e04b9277ab04 379c438f335b5e0c3d33753c6b3322f6771abcbd b6e75ef64714b9b31a1d7ecb08effee9b9fc8df73ed8addfa0cb5a68e4e7ef7c Loading...

	unknown	146 B	2023-05-06	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-06 10:32:05 Last Seen2024-05-04 16:55:22 Times Seen27 Hash ad9942e7a29b7c26185bb4a1e4a2f705 6e903e96858b12049632d3ee41057a5c9d1ccf9e 067b94a4329760fbebc8aac32ec864aa1fbab6fb298d7d3b2fced5013b91c233 Loading...

	unknown	159 B	2023-05-06	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-06 10:32:05 Last Seen2024-05-04 16:55:22 Times Seen27 Hash feb8ab5ddb411c57ec36834844ae7fda 7af6c66a8ba1198a621b330a5560377e3b751e45 b07dad7ae04f0c99211e8f12afc433cc7d32d46267249b5115e4e86845e093ec Loading...

	shsf.try-adtranq.com/js/Atlas102Survey.2f335111.js	20 kB	2024-05-03	2024-05-08
Pretty URL shsf.try-adtranq.com/js/Atlas102Survey.2f335111.js IP 143.204.55.90 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2024-05-03 19:55:19 Last Seen2024-05-08 09:55:57 Times Seen9 Hash a4b3875c5222b019e40a49afabd9072c 97ad437cec4c75ebf78d0440bfbbbcbe94ae4d86 918004230422b56d3e83117295d80e78c523e41317eb2adf82ed7113d8032402 Loading...

	unknown	150 B	2023-05-06	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-06 10:32:05 Last Seen2024-05-04 16:55:23 Times Seen27 Hash 7a26ea121491e9599fa052d0e3b288f0 befc85a0c72494a34a77fe2c7bde01cbf1788daf 7001a047c32357dc129da3e5382cb8125b5358a68e71cdec734109e6c21c87b3 Loading...

	shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30	369 B	2023-05-06	2024-05-12
Pretty URL shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30 IP 143.204.55.90 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-06 10:32:05 Last Seen2024-05-12 00:40:54 Times Seen154 Hash 1a1d271c82e7561239daa65cfc9d7938 66536d8068c27b82969a78e774c249b24fb7a736 c652a2568f09815b1b74279181af8aef883a57b4a7aa2d49fa428b5051988045 Loading...

	unknown	160 B	2023-05-06	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-06 10:32:05 Last Seen2024-05-04 16:55:23 Times Seen27 Hash 2d8e1c62c0d57e2f9313f17d5e84e409 ddfc81449fabed24e82c4f9377c259df34bc0be8 e35451a780dd0057528fbd18517879886594770305a87d1ebe864dca629f325a Loading...

	unknown	174 B	2023-05-06	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-06 10:32:05 Last Seen2024-05-04 16:55:23 Times Seen27 Hash 0bd5a13b9cfdd45b9965289ecf0006dd de7fa85b49e71a62558dee823d250e619464c53e 09fd9abfadf26568ae873674ed5e8ffae01a2366d45815fbf4f2dbf13ca6c043 Loading...

	unknown	170 B	2023-05-06	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-06 10:32:05 Last Seen2024-05-04 16:55:23 Times Seen27 Hash b019e4d8d493012e8097c9c0ba2db70c 47622861c9027b170e2288aa15af502cf9972be3 7e17e92782f2123d95f61fa5bd7621eaa2ec7d2012591feabbf16ab386e9755b Loading...

	unknown	135 B	2023-05-06	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-06 10:32:05 Last Seen2024-05-04 16:55:23 Times Seen27 Hash 17119f68feadfd1172000d476cc13c9a 20c2294a53c22fcf1c8350cd44dedc1e9687be69 780802511242a798e4941237ed64f18f5a2e7e177590ae233a5b1e3398c2f85e Loading...

	unknown	172 B	2023-05-06	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-06 10:32:05 Last Seen2024-05-04 16:55:23 Times Seen27 Hash 68e124701e97c9b9939d706bb7fcdb2c 1bd0fbf11f86e99484c5a90ac2a244b62040bb7c 4c875bbaf92f021e34ad5f809142e51bf28cb66a4f796977cac02f7a03ad6805 Loading...

	unknown	156 B	2023-05-06	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-06 10:32:05 Last Seen2024-05-04 16:55:23 Times Seen27 Hash 1d372f10a5a900d1011d9b9ac3662d5c 1c9dde6f599cd5b55c7d047ea4bad5d5783cc034 cda2911f9c5c48c66e888935fbd7ec13e7e63957bb946e30ce2c3207967a3bab Loading...

	unknown	166 B	2023-05-06	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-06 10:32:05 Last Seen2024-05-04 16:55:23 Times Seen27 Hash a8f45a2438eac43f2ee2806621f5c276 c151129ea3228a4f7fb662f0619144fd5c1098f6 6f97e5fa18c9c07e94d1d7d3db206187e406afbfee19d3d211c46be8d345e3c9 Loading...

	www.googletagmanager.com/gtag/js?id=G-PXTFLT7QZ3&l=dataLayer&cx=c	265 kB	2024-05-04	2024-05-04
Pretty URL www.googletagmanager.com/gtag/js?id=G-PXTFLT7QZ3&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 16:55:23 Last Seen2024-05-04 16:55:23 Times Seen2 Hash 02fa2bc65dc8b11f2eae91638c903d91 9cf37336889a89efb921b5f7dc445ff82b7a072c ddfd8e640ac472c62440cc4a47ec43499bd9718ea17a75fafaddec782c915a3d Loading...

	unknown	162 B	2023-05-06	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-06 10:32:05 Last Seen2024-05-04 16:55:23 Times Seen27 Hash 083d2fa66fb29bbbbbc198f783400ec0 d78b34fc59128e0da2b39e7e9fb78c581567724e b7aa6c565250fc69546e240726f0eae38f41f29914c1da59478ba05807ea3214 Loading...

	unknown	172 B	2023-05-06	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-06 10:32:05 Last Seen2024-05-04 16:55:23 Times Seen27 Hash 1d73c39e0ae8132cc14ff13abb4b5702 c226f5f48434067e797ddbf489357a74c915aaf7 00e3420a7543d8627bd316e11544f93f157fbd91fee143558195560188b7987b Loading...

	unknown	159 B	2023-05-06	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-06 10:32:05 Last Seen2024-05-04 16:55:23 Times Seen27 Hash 25c757187411f021c566627d8b47c300 a917a11259d119d468e13d5620d28bca21f7b66e 786d3ba199eb1307b9a99b2d23cd0f4b8b7aa84fe6deb06eb37da3a66df85e45 Loading...

	unknown	173 B	2023-05-06	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-06 10:32:05 Last Seen2024-05-04 16:55:23 Times Seen27 Hash 864f43257b7606376abcfecf52487fc2 3e08400009ae926564cc0e179ad2fd59aec12539 33b4b2b209360eeb9c69a87972b9a6fd623d30eec882a5030dad1fdaaef90215 Loading...

	shsf.try-adtranq.com/js/index.647c137b.js	326 kB	2024-05-03	2024-05-08
Pretty URL shsf.try-adtranq.com/js/index.647c137b.js IP 143.204.55.90 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 19:55:19 Last Seen2024-05-08 09:55:56 Times Seen3 Hash 74ce502b06d76f300ce9eb17c9568920 eb1671cd61bab689574b236fe6c817cee008f0c9 c396af3db87106869f806e9b42ec0d7e030104e3e9dc014866a00fd96a7ba28c Loading...

	www.googletagmanager.com/gtm.js?id=GTM-5DNQ3QT	222 kB	2024-05-04	2024-05-04
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-5DNQ3QT IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 16:55:23 Last Seen2024-05-04 16:55:23 Times Seen2 Hash d581a5688c13554db2b0d52f79665829 33093b64ba679ec1c147e67219a2a4ae0c3aac8f c49709b44d54b20e0eec76569b631c4d89b37eb9342002615167a741927824a7 Loading...

	shsf.try-adtranq.com/js/SurveyLayout.771be6fe.js	2.4 kB	2024-05-04	2024-05-08
Pretty URL shsf.try-adtranq.com/js/SurveyLayout.771be6fe.js IP 143.204.55.90 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 16:55:23 Last Seen2024-05-08 09:55:57 Times Seen6 Hash 3fb22259c11487ade7e1798ae6af4041 55e435bc59c457ef016fd5cad18b2772e24b7667 cdfaad77fbfa191f01f0df4679f5bb8fdb41a35b91bcb06db65d1cde7732c39b Loading...

	unknown	154 B	2023-05-06	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-06 10:32:05 Last Seen2024-05-04 16:55:23 Times Seen27 Hash 5e460c1448b89367b40c79e9df3b12c9 e5b3604d652f812e50a646fce7b6851c1662eaa0 d440000974ae62ec3548892092c36f71e57d84f8259bd09653e5fc7939fa7d32 Loading...

HTTP Transactions (37)

URL IP Response Size

track.getupgradedsecurity.com/b4add445-b88d-489c-8526-83dc8080db23

54.230.111.68

0 B

URL
track.getupgradedsecurity.com/b4add445-b88d-489c-8526-83dc8080db23
IP
54.230.111.68:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /b4add445-b88d-489c-8526-83dc8080db23 HTTP/1.1
Host: track.getupgradedsecurity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-length: 0
location: https://premiummobileprotection.com/inter-pro.php?cep=5P27U_vLl9SHvqCvYu2AgIpSuk6dnlGHyNkQGpZj9OzPkVyDyTENdZDBe0OKtcgnGGt2wlIJsKcGcotCTyt4YeHWB_jmbziOXCg1QslZVr3uJ5s-AwBhBnOmE9xuxmlr93gdYbzCWrZTlaaGjWcgu_4B4WGnObQ8l0BJjkQk_Gq6wwlruOnDqzld1uwvxWYSzPWvn4r87EeOmBW2uuV5krq5n5OVtOp9eni9DtRWihwopT4hiBpko_hKdyqI-Z4NLAzMfrpXcppvqtUWfOzvY3Zc1h_lUg0Us2Pdk7qxMKWU266TFN5GvfwgvbH0nHOU5NBDxZjfTbTH8mRENt94RLAurRjLdyxM9z9xEKVWYYhkQK9QtGVgilCyz3MiEgkHTLZvFxTmBwNLb404Ea2tt1QVOeI8m6CHHcuwIhZKiythaEVgjD5P6zr9CSDDnfSG&lptoken=172614018370627190f8
date: Sat, 04 May 2024 14:54:50 GMT
cache-control: no-store, no-cache, pre-check=0, post-check=0
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: b4add445-b88d-489c-8526-83dc8080db23-v4=OW5VPpQw1XNpzNmlVCPQxC6vcd6SyxN4PoCGmHJ9R68; Max-Age=86400; Expires=Sun, 05-May-2024 14:54:50 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
cep-v4=Szy6c_WqiJTKEIdX724n3a6syjHzLAU-Feav2bMFMnvDgWId4yiZiVaIsG25GgUDCI1ghU0A0_Mdq8QIUWkjP2UOfTjJTxF3s35DIDhEoj-NEhhAJJGdycRsgX-MTLyFx-2RpU7__0osd8RrnHz7qp3_A2hrZW64LBQMTEjOoa-vYZSwWHL-Zw_5hGomtrd7I1Vysad5t4gtcq-KFRQwF9yIG7KkUIwvU4moEfY_lhtsPVCbyk0-hqc8J8wYVZbrE9m8BE2v-Na-jCUFG-yZkeV5o79l-7HeuOzrlTdViVN_DbP0i8NBLww3yH60XGJoj2kGMVdk9O2FI7rUDA3o2Z8ekENhOGBZqWSyIiGqQnbr17KmZjlL0wMJmZOe5P5_ve6706YLSyfWkUQmtNnpTCZk8zpzc8Blr7TdFmk8diweSYrkPb884lRGi07TUijz; Max-Age=86400; Expires=Sun, 05-May-2024 14:54:50 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
server: nginx
x-cache: Miss from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 10Y3pzw_9L9dRdsvLaQbIcT8zShjPtSWdBlc9S9TO90Opdf18W1s0Q==
X-Firefox-Spdy: h2

premiummobileprotection.com/inter-pro.php?cep=5P27U_vLl9SHvqCvYu2AgIpSuk6dnlGHyNkQGpZj9OzPkVyDyTENdZDBe0OKtcgnGGt2wlIJsKcGcotCTyt4YeHWB_jmbziOXCg1QslZVr3uJ5s-AwBhBnOmE9xuxmlr93gdYbzCWrZTlaaGjWcgu_4B4WGnObQ8l0BJjkQk_Gq6wwlruOnDqzld1uwvxWYSzPWvn4r87EeOmBW2uuV5krq5n5OVtOp9eni9DtRWihwopT4hiBpko_hKdyqI-Z4NLAzMfrpXcppvqtUWfOzvY3Zc1h_lUg0Us2Pdk7qxMKWU266TFN5GvfwgvbH0nHOU5NBDxZjfTbTH8mRENt94RLAurRjLdyxM9z9xEKVWYYhkQK9QtGVgilCyz3MiEgkHTLZvFxTmBwNLb404Ea2tt1QVOeI8m6CHHcuwIhZKiythaEVgjD5P6zr9CSDDnfSG&lptoken=172614018370627190f8

23.106.127.218

0 B

URL
premiummobileprotection.com/inter-pro.php?cep=5P27U_vLl9SHvqCvYu2AgIpSuk6dnlGHyNkQGpZj9OzPkVyDyTENdZDBe0OKtcgnGGt2wlIJsKcGcotCTyt4YeHWB_jmbziOXCg1QslZVr3uJ5s-AwBhBnOmE9xuxmlr93gdYbzCWrZTlaaGjWcgu_4B4WGnObQ8l0BJjkQk_Gq6wwlruOnDqzld1uwvxWYSzPWvn4r87EeOmBW2uuV5krq5n5OVtOp9eni9DtRWihwopT4hiBpko_hKdyqI-Z4NLAzMfrpXcppvqtUWfOzvY3Zc1h_lUg0Us2Pdk7qxMKWU266TFN5GvfwgvbH0nHOU5NBDxZjfTbTH8mRENt94RLAurRjLdyxM9z9xEKVWYYhkQK9QtGVgilCyz3MiEgkHTLZvFxTmBwNLb404Ea2tt1QVOeI8m6CHHcuwIhZKiythaEVgjD5P6zr9CSDDnfSG&lptoken=172614018370627190f8
IP
23.106.127.218:0
ASN
#59253 Leaseweb Asia Pacific pte. ltd.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /inter-pro.php?cep=5P27U_vLl9SHvqCvYu2AgIpSuk6dnlGHyNkQGpZj9OzPkVyDyTENdZDBe0OKtcgnGGt2wlIJsKcGcotCTyt4YeHWB_jmbziOXCg1QslZVr3uJ5s-AwBhBnOmE9xuxmlr93gdYbzCWrZTlaaGjWcgu_4B4WGnObQ8l0BJjkQk_Gq6wwlruOnDqzld1uwvxWYSzPWvn4r87EeOmBW2uuV5krq5n5OVtOp9eni9DtRWihwopT4hiBpko_hKdyqI-Z4NLAzMfrpXcppvqtUWfOzvY3Zc1h_lUg0Us2Pdk7qxMKWU266TFN5GvfwgvbH0nHOU5NBDxZjfTbTH8mRENt94RLAurRjLdyxM9z9xEKVWYYhkQK9QtGVgilCyz3MiEgkHTLZvFxTmBwNLb404Ea2tt1QVOeI8m6CHHcuwIhZKiythaEVgjD5P6zr9CSDDnfSG&lptoken=172614018370627190f8 HTTP/1.1
Host: premiummobileprotection.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Server: nginx
Date: Sat, 04 May 2024 14:54:52 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://track.getupgradedsecurity.com/click/1

track.getupgradedsecurity.com/click/1

54.230.111.68

0 B

URL
track.getupgradedsecurity.com/click/1
IP
54.230.111.68:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /click/1 HTTP/1.1
Host: track.getupgradedsecurity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: b4add445-b88d-489c-8526-83dc8080db23-v4=OW5VPpQw1XNpzNmlVCPQxC6vcd6SyxN4PoCGmHJ9R68; cep-v4=Szy6c_WqiJTKEIdX724n3a6syjHzLAU-Feav2bMFMnvDgWId4yiZiVaIsG25GgUDCI1ghU0A0_Mdq8QIUWkjP2UOfTjJTxF3s35DIDhEoj-NEhhAJJGdycRsgX-MTLyFx-2RpU7__0osd8RrnHz7qp3_A2hrZW64LBQMTEjOoa-vYZSwWHL-Zw_5hGomtrd7I1Vysad5t4gtcq-KFRQwF9yIG7KkUIwvU4moEfY_lhtsPVCbyk0-hqc8J8wYVZbrE9m8BE2v-Na-jCUFG-yZkeV5o79l-7HeuOzrlTdViVN_DbP0i8NBLww3yH60XGJoj2kGMVdk9O2FI7rUDA3o2Z8ekENhOGBZqWSyIiGqQnbr17KmZjlL0wMJmZOe5P5_ve6706YLSyfWkUQmtNnpTCZk8zpzc8Blr7TdFmk8diweSYrkPb884lRGi07TUijz
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
content-length: 0
location: https://getprotectionalshield.com/sep/?to=2105-security-pro&campid=b4add445-b88d-489c-8526-83dc8080db23&utm_source=&landerid=96c030a3-3f5b-4f8a-ab14-4cc2b64a3152&bv=Firefox%2096&lander=1305-intermediary-lander%20%5BPRO%5D&pccid=di13a0e0gsmte6213aohci30&phone_brand=Desktop&model=Desktop&browser=Firefox&zone_id=&supply_id=&camp_id=&source=&ua=&creative=&pathid=4ddd94a4-f095-486c-6401-da05113ae2d4&brand=av&tracking_domain=track.getupgradedsecurity.com&lang=se&geo=se-pro
date: Sat, 04 May 2024 14:54:52 GMT
cache-control: no-store, no-cache, pre-check=0, post-check=0
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: voluum-cid-v4=%7B%22cid%22%3A%22di13a0e0gsmte6213aohci30%22%2C%22caid%22%3A%22b4add445-b88d-489c-8526-83dc8080db23%22%7D; Max-Age=31536000; Expires=Sun, 04-May-2025 14:54:52 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
b4add445-b88d-489c-8526-83dc8080db23-clk-v4=b4add445-b88d-489c-8526-83dc8080db23; Max-Age=86400; Expires=Sun, 05-May-2024 14:54:52 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
b4add445-b88d-489c-8526-83dc8080db23-v4=8Al3SkqfXnN_Ekk9HSpfikmjzMnpHGOQo4RT9N-2JPQ; Max-Age=86400; Expires=Sun, 05-May-2024 14:54:52 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
server: nginx
x-cache: Miss from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: o8VQ7xv7ZI76j8KQSXblU-EFpVpxdE5HQ4lAW1HRIRiXR5xhM7nsNA==
X-Firefox-Spdy: h2

track.getupgradedsecurity.com/

54.230.111.116

227 B

URL
track.getupgradedsecurity.com/
IP
54.230.111.116:0
ASN
#16509 AMAZON-02

File type
HTML document, ASCII text
Size
227 B (227 bytes)
Hash
d7e39a03eb36cd0ca88c7d3833668ee1
3beb5597c07f8aef8d1caace6a23d09a66550c95
0ada30892e47ec0cf6acd9dbf9fd085f8601a18375a5b7388683561f1f6cc626

HTTP Headers

GET / HTTP/1.1
Host: track.getupgradedsecurity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 
Content-Type: text/html
Content-Length: 227
Connection: keep-alive
Date: Sat, 04 May 2024 14:54:52 GMT
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Server: nginx
X-Cache: Error from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: -PxK2uOcoyy6DaoMO9ihz5OaNeHaVYjSPcDqD6f_XxEVxQ33xQid1A==

getprotectionalshield.com/sep/?to=2105-security-pro&campid=b4add445-b88d-489c-8526-83dc8080db23&utm_source=&landerid=96c030a3-3f5b-4f8a-ab14-4cc2b64a3152&bv=Firefox%2096&lander=1305-intermediary-lander%20%5BPRO%5D&pccid=di13a0e0gsmte6213aohci30&phone_brand=Desktop&model=Desktop&browser=Firefox&zone_id=&supply_id=&camp_id=&source=&ua=&creative=&pathid=4ddd94a4-f095-486c-6401-da05113ae2d4&brand=av&tracking_domain=track.getupgradedsecurity.com&lang=se&geo=se-pro

23.106.127.218

2.4 kB

URL
getprotectionalshield.com/sep/?to=2105-security-pro&campid=b4add445-b88d-489c-8526-83dc8080db23&utm_source=&landerid=96c030a3-3f5b-4f8a-ab14-4cc2b64a3152&bv=Firefox%2096&lander=1305-intermediary-lander%20%5BPRO%5D&pccid=di13a0e0gsmte6213aohci30&phone_brand=Desktop&model=Desktop&browser=Firefox&zone_id=&supply_id=&camp_id=&source=&ua=&creative=&pathid=4ddd94a4-f095-486c-6401-da05113ae2d4&brand=av&tracking_domain=track.getupgradedsecurity.com&lang=se&geo=se-pro
IP
23.106.127.218:0
ASN
#59253 Leaseweb Asia Pacific pte. ltd.

File type
HTML document, ASCII text, with very long lines (6847)
Size
2.4 kB (2424 bytes)
Hash
67a7ff7f1b880b460daa3f3f09023710
65c33a91537619c35cd7c1a1c19e1360db2f2ebc
410e1cacfa47777e9087049093e2e0b9dd68eec598e152dbe80bfdcb669dc7ce

HTTP Headers

GET /sep/?to=2105-security-pro&campid=b4add445-b88d-489c-8526-83dc8080db23&utm_source=&landerid=96c030a3-3f5b-4f8a-ab14-4cc2b64a3152&bv=Firefox%2096&lander=1305-intermediary-lander%20%5BPRO%5D&pccid=di13a0e0gsmte6213aohci30&phone_brand=Desktop&model=Desktop&browser=Firefox&zone_id=&supply_id=&camp_id=&source=&ua=&creative=&pathid=4ddd94a4-f095-486c-6401-da05113ae2d4&brand=av&tracking_domain=track.getupgradedsecurity.com&lang=se&geo=se-pro HTTP/1.1
Host: getprotectionalshield.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 May 2024 14:54:54 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 03 May 2024 09:44:09 GMT
ETag: W/"6634b1e9-1ccb"
Content-Encoding: gzip

d18b5y9gp0lr93.cloudfront.net/sqp-functions/functions.min.js

54.230.241.225

4.6 kB

URL
d18b5y9gp0lr93.cloudfront.net/sqp-functions/functions.min.js
IP
54.230.241.225:0
ASN
#16509 AMAZON-02

File type
JavaScript source, ASCII text, with very long lines (6847)
Size
4.6 kB (4555 bytes)
Hash
de5392a7ff8b9bc8442a534343864c7d
99263740f6690efedf133459c5b6371f8973e265
ddfd9c44d63167c8a9b09eb058dc1c5cdfb3247333205278c61c0e2b480236a9

HTTP Headers

GET /sqp-functions/functions.min.js HTTP/1.1
Host: d18b5y9gp0lr93.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getprotectionalshield.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 13 Dec 2023 09:40:44 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: dRA40FxrztBz3m1bZdOmgk_RvQfg.z05
server: AmazonS3
content-encoding: gzip
date: Sat, 04 May 2024 02:16:08 GMT
etag: W/"de27e5abcf1380fbab0accd9eb0b9630"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cfoZ97bAh8CGbwXTfAysXIe3hDyVSBMgDBd-Tu9D-i48nP8fZ_xusA==
age: 50125
X-Firefox-Spdy: h2

d18b5y9gp0lr93.cloudfront.net/sqp-functions/functions.min.js

54.230.241.97

17 kB

URL
d18b5y9gp0lr93.cloudfront.net/sqp-functions/functions.min.js
IP
54.230.241.97:0
ASN
#16509 AMAZON-02

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (10618)
Size
17 kB (16862 bytes)
Hash
6c5caaeee75f7ea442712e0bef01253c
c3a474ac0af8a019a82ba9f9e8eb29bc22acff18
edb59cc62b0e6cdc3f2c79b4d3c6c1353836d78b44e832f641111075d1cb91f2

HTTP Headers

GET /sqp-functions/functions.min.js HTTP/1.1
Host: d18b5y9gp0lr93.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skyddaenheter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 13 Dec 2023 09:40:44 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: dRA40FxrztBz3m1bZdOmgk_RvQfg.z05
server: AmazonS3
content-encoding: gzip
date: Sat, 04 May 2024 02:16:08 GMT
etag: W/"de27e5abcf1380fbab0accd9eb0b9630"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Jc0MbwVB_DAaTAZe6v9o7ZjKodSVfjNEirE4gKJoJ_pIOU8tkAaWgA==
age: 50128
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/@growthbook/growthbook/dist/bundles/auto.min.js

151.101.129.229

14 kB

URL
cdn.jsdelivr.net/npm/@growthbook/growthbook/dist/bundles/auto.min.js
IP
151.101.129.229:0
ASN
#54113 FASTLY

File type
JavaScript source, ASCII text, with very long lines (42295)
Size
14 kB (14010 bytes)
Hash
bad64dab073ebd7a9c9de44959988e71
6608fbdc47095a12461152390730c7bf709e7a1d
40eda50c2ee14dd3d103a94e77dbf45c2bdfe5a039a3f36c66d0757f2962f610

HTTP Headers

GET /npm/@growthbook/growthbook/dist/bundles/auto.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3.skyddaenheter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.0.0
x-jsd-version-type: version
etag: W/"a55d-Zgj73EcJWhJGEVI5BzDHv3Ceeh0"
content-encoding: br
accept-ranges: bytes
date: Sat, 04 May 2024 14:55:00 GMT
age: 26489
x-served-by: cache-fra-etou8220138-FRA, cache-hel1410031-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 14010
X-Firefox-Spdy: h2

js.sentry-cdn.com/d31b9988ec25444db0b16116ddc6edee.min.js

151.101.66.217

1.3 kB

URL
js.sentry-cdn.com/d31b9988ec25444db0b16116ddc6edee.min.js
IP
151.101.66.217:0
ASN
#54113 FASTLY

File type
JavaScript source, ASCII text, with very long lines (2639)
Size
1.3 kB (1275 bytes)
Hash
c7b630f61809751706e90498eceb16a4
68566c84242ec52282bdf86068780d2569c119aa
0c3e47d9147a32931b26fb4fe27bd2296b4dcc23263919299fc45320be58cd8b

HTTP Headers

GET /d31b9988ec25444db0b16116ddc6edee.min.js HTTP/1.1
Host: js.sentry-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://3.skyddaenheter.com
DNT: 1
Connection: keep-alive
Referer: https://3.skyddaenheter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
access-control-allow-origin: *
cache-control: public, max-age=3600, s-maxage=60, stale-while-revalidate=315360000, stale-if-error=315360000
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: default-src 'none'; frame-src app.pendo.io demo.arcade.software js.stripe.com sentry.io; font-src * data:; frame-ancestors 'self' *.sentry.io; script-src 'self' 'unsafe-inline' 'report-sample' s1.sentry-cdn.com js.sentry-cdn.com browser.sentry-cdn.com statuspage-production.s3.amazonaws.com static.zdassets.com aui-cdn.atlassian.com connect-cdn.atl-paas.net js.stripe.com 'strict-dynamic' cdn.pendo.io data.pendo.io pendo-io-static.storage.googleapis.com pendo-static-5634074999128064.storage.googleapis.com; worker-src blob:; base-uri 'none'; img-src * blob: data:; connect-src 'self' *.algolia.net *.algolianet.com *.algolia.io sentry.io *.sentry.io s1.sentry-cdn.com o1.ingest.sentry.io api2.amplitude.com app.pendo.io data.pendo.io reload.getsentry.net t687h3m0nh65.statuspage.io sentry.zendesk.com ekr.zdassets.com maps.googleapis.com; style-src * 'unsafe-inline'; object-src 'none'; media-src *; report-uri https://o1.ingest.sentry.io/api/54785/security/?sentry_key=f724a8a027db45f5b21507e7142ff78e&sentry_release=5049e05e87f8b0d4e1aea7eec38f37f5c21b6008
x-envoy-attempt-count: 1
x-envoy-upstream-service-time: 24
content-encoding: gzip
accept-ranges: bytes
date: Sat, 04 May 2024 14:55:00 GMT
age: 60
x-served-by: getsentry-web-default-common-production-58fbb744db-nbvrd, cache-chi-kigq8000167-CHI, cache-hel1410028-HEL
vary: Accept-Encoding
timing-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 1275
X-Firefox-Spdy: h2

track.getupgradedsecurity.com/click/2?utm_term=452024&utm_medium=di13a0e0gsmte6213aohci30&initial-cid=di13a0e0gsmte6213aohci30

54.230.111.68

302 Found

0 B

URL User Request GET HTTP/2
track.getupgradedsecurity.com/click/2?utm_term=452024&utm_medium=di13a0e0gsmte6213aohci30&initial-cid=di13a0e0gsmte6213aohci30
IP
54.230.111.68:443
ASN
#16509 AMAZON-02

Certificate
IssuerAmazon
Subjecttrack.getupgradedsecurity.com
Fingerprint47:47:24:C9:E9:62:08:42:27:7A:2E:A8:6A:3B:F8:DA:33:56:D5:26
ValidityThu, 25 Apr 2024 00:00:00 GMT - Sat, 24 May 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /click/2?utm_term=452024&utm_medium=di13a0e0gsmte6213aohci30&initial-cid=di13a0e0gsmte6213aohci30 HTTP/1.1
Host: track.getupgradedsecurity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3.skyddaenheter.com/
Cookie: b4add445-b88d-489c-8526-83dc8080db23-v4=8Al3SkqfXnN_Ekk9HSpfikmjzMnpHGOQo4RT9N-2JPQ; cep-v4=Szy6c_WqiJTKEIdX724n3a6syjHzLAU-Feav2bMFMnvDgWId4yiZiVaIsG25GgUDCI1ghU0A0_Mdq8QIUWkjP2UOfTjJTxF3s35DIDhEoj-NEhhAJJGdycRsgX-MTLyFx-2RpU7__0osd8RrnHz7qp3_A2hrZW64LBQMTEjOoa-vYZSwWHL-Zw_5hGomtrd7I1Vysad5t4gtcq-KFRQwF9yIG7KkUIwvU4moEfY_lhtsPVCbyk0-hqc8J8wYVZbrE9m8BE2v-Na-jCUFG-yZkeV5o79l-7HeuOzrlTdViVN_DbP0i8NBLww3yH60XGJoj2kGMVdk9O2FI7rUDA3o2Z8ekENhOGBZqWSyIiGqQnbr17KmZjlL0wMJmZOe5P5_ve6706YLSyfWkUQmtNnpTCZk8zpzc8Blr7TdFmk8diweSYrkPb884lRGi07TUijz; voluum-cid-v4=%7B%22cid%22%3A%22di13a0e0gsmte6213aohci30%22%2C%22caid%22%3A%22b4add445-b88d-489c-8526-83dc8080db23%22%7D; b4add445-b88d-489c-8526-83dc8080db23-clk-v4=b4add445-b88d-489c-8526-83dc8080db23
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
content-length: 0
location: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
date: Sat, 04 May 2024 14:55:00 GMT
cache-control: no-store, no-cache, pre-check=0, post-check=0
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: voluum-cid-v4=%7B%22cid%22%3A%22dtnk76lrl90i1621j1cgrbb2%22%2C%22caid%22%3A%22b4add445-b88d-489c-8526-83dc8080db23%22%7D; Max-Age=31536000; Expires=Sun, 04-May-2025 14:55:00 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
b4add445-b88d-489c-8526-83dc8080db23-clk-v4=b4add445-b88d-489c-8526-83dc8080db23; Max-Age=86400; Expires=Sun, 05-May-2024 14:55:00 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
b4add445-b88d-489c-8526-83dc8080db23-v4=agvY6x7wMuWlfGF8kUgMTBuolANcHNdjPSB-8_2pzPM; Max-Age=86400; Expires=Sun, 05-May-2024 14:55:00 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
server: nginx
x-cache: Miss from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GCoKxDpKvpH5jetrZ6r44LkRtZ67d7nYMfgf0wPsRH5DZiF0jGGkKQ==
X-Firefox-Spdy: h2

browser.sentry-cdn.com/7.113.0/bundle.tracing.es5.min.js

151.101.66.217

41 kB

URL
browser.sentry-cdn.com/7.113.0/bundle.tracing.es5.min.js
IP
151.101.66.217:0
ASN
#54113 FASTLY

File type
JavaScript source, ASCII text, with very long lines (65428)
Size
41 kB (40679 bytes)
Hash
9682c9726e992d75d81a817baeeef640
4ce778c8ec23a0a223d4bc9356bf2f8a9a50122f
0226afd4f6591efe308e5bb3330818b348d0dcda041bc5fa51d36751ef96192f

HTTP Headers

GET /7.113.0/bundle.tracing.es5.min.js HTTP/1.1
Host: browser.sentry-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://3.skyddaenheter.com
DNT: 1
Connection: keep-alive
Referer: https://3.skyddaenheter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 May 2025 15:10:48 GMT
last-modified: Thu, 02 May 2024 11:58:27 GMT
etag: "3f4f3f32d69654cba7e6b620f83f0e07"
content-type: application/javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
date: Sat, 04 May 2024 14:55:00 GMT
age: 171852
vary: Accept-Encoding
access-control-allow-origin: *
server: Fastly
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 40679
X-Firefox-Spdy: h2

o1063441.ingest.us.sentry.io/api/6072671/envelope/?sentry_key=d31b9988ec25444db0b16116ddc6edee&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.113.0

34.120.195.249

41 B

URL
o1063441.ingest.us.sentry.io/api/6072671/envelope/?sentry_key=d31b9988ec25444db0b16116ddc6edee&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.113.0
IP
34.120.195.249:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
JSON text data
Size
41 B (41 bytes)
Hash
64fbe3d0d425076497d1663c63619e9f
117982a8d909518aca33c8f4989561a443b57f1f
d155fe5f2fb051d8442364f76efc30e9914446b5f604283fcdcb162dbef891ec

HTTP Headers

POST /api/6072671/envelope/?sentry_key=d31b9988ec25444db0b16116ddc6edee&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.113.0 HTTP/1.1
Host: o1063441.ingest.us.sentry.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://3.skyddaenheter.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 2230
Origin: https://3.skyddaenheter.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 14:55:00 GMT
content-type: application/json
content-length: 41
access-control-allow-origin: *
vary: origin,access-control-request-method,access-control-request-headers
access-control-expose-headers: x-sentry-error,x-sentry-rate-limits,retry-after
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30

143.204.55.90

200 OK

872 B

URL User Request GET HTTP/2
shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
HTML document, ASCII text
Size
872 B (872 bytes)
Hash
6d02246230b876d86f837a6aaaf8ebde
1ee900d3eb65642e7083689b8cf7394414612d64
12d196a35b2d88d470431e74dd7a47c0fcac18c48baac7372bcdf00535929c49

HTTP Headers

GET /Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30 HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://3.skyddaenheter.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 872
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:12 GMT
accept-ranges: bytes
content-encoding: gzip
date: Sat, 04 May 2024 14:55:00 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Sat, 04 May 2024 15:55:00 GMT
etag: "6b7-616fc21a07f00-gzip"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 0OFtwZf0t3ieiUDA7ncd8clt45w-wNvEgxEHk3rnAbqzdWPKljiDxg==
X-Firefox-Spdy: h2

shsf.try-adtranq.com/css/index.925b2269.css

143.204.55.90

200 OK

5.9 kB

URL GET HTTP/2
shsf.try-adtranq.com/css/index.925b2269.css
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
ASCII text, with very long lines (26643)
Size
5.9 kB (5920 bytes)
Hash
5da360cc52f1c60dce2f894d71d16fa2
70b71fe839b8d2889eb4c0d8bfcc6c433e86361b
925b2269cff35373e7d472f86998c8da90e7db28f4f6eb76d5d4a23ae274009c

HTTP Headers

GET /css/index.925b2269.css HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 5920
date: Fri, 26 Apr 2024 09:00:39 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:12 GMT
etag: "6814-616fc21a07f00-gzip"
accept-ranges: bytes
cache-control: max-age=2678400, public
expires: Fri, 26 Apr 2024 10:00:39 GMT
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zzg7toNPaR176pF6f6c_GJereLptoUCiXBtTl6K_atp7s4QEVc1XZg==
age: 712462
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-5DNQ3QT

142.250.74.168

200 OK

78 kB

URL GET HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-5DNQ3QT
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (6801)
Size
78 kB (77922 bytes)
Hash
d581a5688c13554db2b0d52f79665829
33093b64ba679ec1c147e67219a2a4ae0c3aac8f
c49709b44d54b20e0eec76569b631c4d89b37eb9342002615167a741927824a7

HTTP Headers

GET /gtm.js?id=GTM-5DNQ3QT HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 May 2024 14:55:01 GMT
expires: Sat, 04 May 2024 14:55:01 GMT
cache-control: private, max-age=900
last-modified: Sat, 04 May 2024 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77922
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

shsf.try-adtranq.com/css/Atlas102Survey.cc92fdda.css

143.204.55.90

200 OK

1.1 kB

URL GET HTTP/2
shsf.try-adtranq.com/css/Atlas102Survey.cc92fdda.css
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
ASCII text, with very long lines (3494)
Size
1.1 kB (1117 bytes)
Hash
64eb9827b87121d8cb4b2a6e9af0a6ee
d212aa84e1778e95382e3e3d3e276805680c73b9
cc92fdda2102e2f59eda48c70c328d1a6a0a1f084c7a34040fa5249f94da5631

HTTP Headers

GET /css/Atlas102Survey.cc92fdda.css HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 1117
date: Fri, 26 Apr 2024 09:00:40 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:12 GMT
etag: "da7-616fc21a07f00-gzip"
accept-ranges: bytes
cache-control: max-age=2678400, public
expires: Fri, 26 Apr 2024 10:00:40 GMT
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: exLGCF6wImQMc7zny415kpIaFLcKk8Yi149DxauX2CyDpWmMJKk5Hw==
age: 712461
X-Firefox-Spdy: h2

shsf.try-adtranq.com/js/index.647c137b.js

143.204.55.90

200 OK

104 kB

URL GET HTTP/2
shsf.try-adtranq.com/js/index.647c137b.js
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
104 kB (103551 bytes)
Hash
6bcc9b66d4944872fc57586307f2332f
1c7079f402a2c136e0546eeb57f7a0dcb389656f
da3a58a4a4cf003af9b3770528eb18c2d423c6402fa6d2717af08bbe7faa8fa5

HTTP Headers

GET /js/index.647c137b.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:12 GMT
accept-ranges: bytes
content-encoding: gzip
date: Sat, 04 May 2024 14:55:01 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Sat, 04 May 2024 15:55:01 GMT
etag: "4f862-616fc21a07f00-gzip"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: U6oX6wk-w1jEJvISyLVssyhZuoo2_QqMyDw-ekEvGiQb3JV8qarPKg==
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-PXTFLT7QZ3&l=dataLayer&cx=c

142.250.74.168

200 OK

92 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-PXTFLT7QZ3&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (4179)
Size
92 kB (92478 bytes)
Hash
02fa2bc65dc8b11f2eae91638c903d91
9cf37336889a89efb921b5f7dc445ff82b7a072c
ddfd8e640ac472c62440cc4a47ec43499bd9718ea17a75fafaddec782c915a3d

HTTP Headers

GET /gtag/js?id=G-PXTFLT7QZ3&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 May 2024 14:55:01 GMT
expires: Sat, 04 May 2024 14:55:01 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 92478
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

shsf.try-adtranq.com/js/LogoGooglePlay.38510a7a.js

143.204.55.90

200 OK

345 B

URL GET HTTP/2
shsf.try-adtranq.com/js/LogoGooglePlay.38510a7a.js
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
Java source, ASCII text, with very long lines (529)
Size
345 B (345 bytes)
Hash
f7153797d7f32c6bd53f3ebe82eca35c
d58bff20ee75b762af6c1f2686f01d21e8e04cbe
3ce92f8c8efa1c25c576b3ceecf0e708803f3e4ca762b658964c7f5bc0783870

HTTP Headers

GET /js/LogoGooglePlay.38510a7a.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 345
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:12 GMT
accept-ranges: bytes
content-encoding: gzip
date: Sat, 04 May 2024 14:55:01 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Sat, 04 May 2024 15:55:01 GMT
etag: "212-616fc21a07f00-gzip"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: SjLUafiFLnFqlCYaNVpwYxkIc_h59nNaUvOULkNdweoJscDK5SqTrA==
X-Firefox-Spdy: h2

shsf.try-adtranq.com/js/SurveyLayout.771be6fe.js

143.204.55.90

200 OK

921 B

URL GET HTTP/2
shsf.try-adtranq.com/js/SurveyLayout.771be6fe.js
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
Java source, ASCII text, with very long lines (2443)
Size
921 B (921 bytes)
Hash
3fb22259c11487ade7e1798ae6af4041
55e435bc59c457ef016fd5cad18b2772e24b7667
cdfaad77fbfa191f01f0df4679f5bb8fdb41a35b91bcb06db65d1cde7732c39b

HTTP Headers

GET /js/SurveyLayout.771be6fe.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 921
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:12 GMT
accept-ranges: bytes
content-encoding: gzip
date: Sat, 04 May 2024 14:55:01 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Sat, 04 May 2024 15:55:01 GMT
etag: "98c-616fc21a07f00-gzip"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bNE-Zf9Hg-E4olVfZ8473AcCljebfhC4EEIKbwti9AkRTXgt3xsYuw==
X-Firefox-Spdy: h2

shsf.try-adtranq.com/js/SurveyLayout.771be6fe.js

143.204.55.90

200 OK

921 B

URL GET HTTP/2
shsf.try-adtranq.com/js/SurveyLayout.771be6fe.js
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
Java source, ASCII text, with very long lines (2443)
Size
921 B (921 bytes)
Hash
3fb22259c11487ade7e1798ae6af4041
55e435bc59c457ef016fd5cad18b2772e24b7667
cdfaad77fbfa191f01f0df4679f5bb8fdb41a35b91bcb06db65d1cde7732c39b

HTTP Headers

GET /js/SurveyLayout.771be6fe.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/js/index.647c137b.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 921
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:12 GMT
accept-ranges: bytes
content-encoding: gzip
date: Sat, 04 May 2024 14:55:01 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Sat, 04 May 2024 15:55:01 GMT
etag: "98c-616fc21a07f00-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qJtOD-TBjU06sLeSqA0qErSX7tRpnmYrxbbcT8D7Aq0x3MYOmenA4w==
X-Firefox-Spdy: h2

shsf.try-adtranq.com/js/LogosSafeCheckout.8dcc25a6.js

143.204.55.90

200 OK

348 B

URL GET HTTP/2
shsf.try-adtranq.com/js/LogosSafeCheckout.8dcc25a6.js
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
Java source, ASCII text, with very long lines (539)
Size
348 B (348 bytes)
Hash
0d4554230a6c5d050b43e04b9277ab04
379c438f335b5e0c3d33753c6b3322f6771abcbd
b6e75ef64714b9b31a1d7ecb08effee9b9fc8df73ed8addfa0cb5a68e4e7ef7c

HTTP Headers

GET /js/LogosSafeCheckout.8dcc25a6.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 348
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:12 GMT
accept-ranges: bytes
content-encoding: gzip
date: Sat, 04 May 2024 14:55:01 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Sat, 04 May 2024 15:55:01 GMT
etag: "21c-616fc21a07f00-gzip"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 02qPNJzr2mi-6XybFcwun4-kYesumgyZExAQQgaLxJuncgHaQllGXw==
X-Firefox-Spdy: h2

shsf.try-adtranq.com/js/Atlas102Survey.2f335111.js

143.204.55.90

200 OK

6.1 kB

URL GET HTTP/2
shsf.try-adtranq.com/js/Atlas102Survey.2f335111.js
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
ASCII text, with very long lines (19673)
Size
6.1 kB (6123 bytes)
Hash
a4b3875c5222b019e40a49afabd9072c
97ad437cec4c75ebf78d0440bfbbbcbe94ae4d86
918004230422b56d3e83117295d80e78c523e41317eb2adf82ed7113d8032402

HTTP Headers

GET /js/Atlas102Survey.2f335111.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 6123
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:12 GMT
accept-ranges: bytes
content-encoding: gzip
date: Sat, 04 May 2024 14:55:01 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Sat, 04 May 2024 15:55:01 GMT
etag: "4cda-616fc21a07f00-gzip"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Voku5NI5ChLaEyRhAfd79w6b2oD7_nMMbhBtw-1H2M5dfzGe3cdklg==
X-Firefox-Spdy: h2

shsf.try-adtranq.com/js/LogoGooglePlay.38510a7a.js

143.204.55.90

200 OK

345 B

URL GET HTTP/2
shsf.try-adtranq.com/js/LogoGooglePlay.38510a7a.js
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
Java source, ASCII text, with very long lines (529)
Size
345 B (345 bytes)
Hash
f7153797d7f32c6bd53f3ebe82eca35c
d58bff20ee75b762af6c1f2686f01d21e8e04cbe
3ce92f8c8efa1c25c576b3ceecf0e708803f3e4ca762b658964c7f5bc0783870

HTTP Headers

GET /js/LogoGooglePlay.38510a7a.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/js/SurveyLayout.771be6fe.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 345
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:12 GMT
accept-ranges: bytes
content-encoding: gzip
date: Sat, 04 May 2024 14:55:01 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Sat, 04 May 2024 15:55:01 GMT
etag: "212-616fc21a07f00-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -7MCqzaIN0sQQ5vyV5nUNVDtNMFFbfBYw7ikp3uJjDf1t3-JhgTWJg==
age: 0
X-Firefox-Spdy: h2

shsf.try-adtranq.com/js/Atlas102Survey.2f335111.js

143.204.55.90

200 OK

6.1 kB

URL GET HTTP/2
shsf.try-adtranq.com/js/Atlas102Survey.2f335111.js
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
ASCII text, with very long lines (19673)
Size
6.1 kB (6123 bytes)
Hash
a4b3875c5222b019e40a49afabd9072c
97ad437cec4c75ebf78d0440bfbbbcbe94ae4d86
918004230422b56d3e83117295d80e78c523e41317eb2adf82ed7113d8032402

HTTP Headers

GET /js/Atlas102Survey.2f335111.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/js/SurveyLayout.771be6fe.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 6123
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:12 GMT
accept-ranges: bytes
content-encoding: gzip
date: Sat, 04 May 2024 14:55:01 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Sat, 04 May 2024 15:55:01 GMT
etag: "4cda-616fc21a07f00-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Vs9iKsIvJGqOVBOgUzfKf_CW1q8pFR2Ct1YWEERSaWxAW6tehrZg_w==
age: 0
X-Firefox-Spdy: h2

shsf.try-adtranq.com/js/LogosSafeCheckout.8dcc25a6.js

143.204.55.90

200 OK

348 B

URL GET HTTP/2
shsf.try-adtranq.com/js/LogosSafeCheckout.8dcc25a6.js
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
Java source, ASCII text, with very long lines (539)
Size
348 B (348 bytes)
Hash
0d4554230a6c5d050b43e04b9277ab04
379c438f335b5e0c3d33753c6b3322f6771abcbd
b6e75ef64714b9b31a1d7ecb08effee9b9fc8df73ed8addfa0cb5a68e4e7ef7c

HTTP Headers

GET /js/LogosSafeCheckout.8dcc25a6.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/js/SurveyLayout.771be6fe.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 348
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:12 GMT
accept-ranges: bytes
content-encoding: gzip
date: Sat, 04 May 2024 14:55:01 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Sat, 04 May 2024 15:55:01 GMT
etag: "21c-616fc21a07f00-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8Qd6igbapDuVCltGCxiMo3SGXLyGSKQuts_DieqF-PcYVNLROKcaXw==
age: 0
X-Firefox-Spdy: h2

shsf.try-adtranq.com/assets/icons/apple-touch-icon.png

143.204.55.90

200 OK

18 kB

URL GET HTTP/2
shsf.try-adtranq.com/assets/icons/apple-touch-icon.png
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced
Size
18 kB (18451 bytes)
Hash
d5a70c285453de5c525f7fb0a0e5ebad
0ba57dc02d1054c1604ac2fbb021271bd212f487
b951c1ced2f06cf42f652292e3e59016004c620d99bb938f0383955157eae9b7

HTTP Headers

GET /assets/icons/apple-touch-icon.png HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 18451
date: Fri, 26 Apr 2024 09:00:35 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:11 GMT
etag: "4813-616fc21913cc0"
accept-ranges: bytes
cache-control: max-age=2678400, public
expires: Sun, 26 May 2024 09:00:35 GMT
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: R1ymLLIl7gvJAILseZGxZGbvOJfWs-eXexB5T0C5MM_fAzzbEeq4Zg==
age: 712466
X-Firefox-Spdy: h2

shsf.try-adtranq.com/assets/icons/favicon-16x16.png

143.204.55.90

200 OK

767 B

URL GET HTTP/2
shsf.try-adtranq.com/assets/icons/favicon-16x16.png
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
767 B (767 bytes)
Hash
055634234affa173e0fa12ecb25a3250
507ca6856b060381fbf0e27ba13a0ddbd3d10981
6e3bea7fe9044506a41748ebb532c7ad208da7720525f2a8d6540951a4208e79

HTTP Headers

GET /assets/icons/favicon-16x16.png HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 767
date: Fri, 26 Apr 2024 09:04:23 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:11 GMT
etag: "2ff-616fc21913cc0"
accept-ranges: bytes
cache-control: max-age=2678400, public
expires: Sun, 26 May 2024 09:04:23 GMT
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9CZxNntOFNRLVjOluWUNQ3VtNfrP0umdxbLtL-juWPAZ1zm_lqcpOQ==
age: 712238
X-Firefox-Spdy: h2

shsf.try-adtranq.com/img/logo-google-play.png

143.204.55.90

200 OK

4.6 kB

URL GET HTTP/2
shsf.try-adtranq.com/img/logo-google-play.png
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
PNG image data, 464 x 109, 8-bit colormap, non-interlaced
Size
4.6 kB (4606 bytes)
Hash
132a1552300a0a8a58aa1cf9c5989094
db51496dcbbc7439159a0de7cd2592737ac49812
b905cb3a69e4b8adc4133ed22945181721cc0f6dc8fa065b395c7238d2b48f9a

HTTP Headers

GET /img/logo-google-play.png HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/survey/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
Cookie: _ga_PXTFLT7QZ3=GS1.1.1714834501.1.0.1714834501.0.0.0; _ga=GA1.1.1745982173.1714834502
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 4606
date: Fri, 26 Apr 2024 23:02:10 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:12 GMT
etag: "11fe-616fc21a07f00"
accept-ranges: bytes
cache-control: max-age=2678400, public
expires: Sun, 26 May 2024 23:02:10 GMT
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: CHD5tHx12JqV2iIe4nPUV-zPQgLuEcPHVBqagJKCyO9GAj5VKjVbCQ==
age: 661970
X-Firefox-Spdy: h2

shsf.try-adtranq.com/img/logo-google-play.webp

143.204.55.90

200 OK

4.1 kB

URL GET HTTP/2
shsf.try-adtranq.com/img/logo-google-play.webp
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
4.1 kB (4050 bytes)
Hash
b380a06902fdf4a0cd1fb2b3fb3bcbd1
e423a0bcbc3da4f7af407625f6972dee8d7bdc79
d1860ddf921271084c11d16a2d8ae6172b68a92db0739dea866cef68229b2901

HTTP Headers

GET /img/logo-google-play.webp HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/survey/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
Cookie: _ga_PXTFLT7QZ3=GS1.1.1714834501.1.0.1714834501.0.0.0; _ga=GA1.1.1745982173.1714834502
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/webp
content-length: 4050
date: Fri, 26 Apr 2024 09:00:35 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:12 GMT
etag: "fd2-616fc21a07f00"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sun, 26 May 2024 09:00:35 GMT
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RvyR_-eQBkN1I9qOEq2PDrdCGyz0EJjlAwK349xMIGQ9TN3bFymqmQ==
age: 712466
X-Firefox-Spdy: h2

shsf.try-adtranq.com/img/logos-safe-checkout.webp

143.204.55.90

200 OK

18 kB

URL GET HTTP/2
shsf.try-adtranq.com/img/logos-safe-checkout.webp
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
18 kB (17860 bytes)
Hash
a1301be1e948f0c62e4bc5b6f986d3e3
cccd9e2faac5e0438302674a3e7972c038cb28bc
cbece4adbd81f7fff8694544397e9d641ddbb497b2cb859eba375f8a622a32ae

HTTP Headers

GET /img/logos-safe-checkout.webp HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/survey/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
Cookie: _ga_PXTFLT7QZ3=GS1.1.1714834501.1.0.1714834501.0.0.0; _ga=GA1.1.1745982173.1714834502
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/webp
content-length: 17860
date: Fri, 26 Apr 2024 09:00:35 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:12 GMT
etag: "45c4-616fc21a07f00"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sun, 26 May 2024 09:00:35 GMT
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7eV5orrn8MuGLZAMZh3X0bNmHmgw4RI_XHlVZgDWLX5ubP3NjJb_iw==
age: 712465
X-Firefox-Spdy: h2

shsf.try-adtranq.com/img/bg-layout-primary.jpg

143.204.55.90

200 OK

23 kB

URL GET HTTP/2
shsf.try-adtranq.com/img/bg-layout-primary.jpg
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1024x768, components 3
Size
23 kB (22906 bytes)
Hash
791472b353174105fa771082fcce9a2a
eed0e0b1dd70f7f4854af645a6e09ae3e737ada2
fc9de09ec03e5bf98e3c1648d4f0f6f6d0c09981735049121da059875b7296f2

HTTP Headers

GET /img/bg-layout-primary.jpg HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/css/index.925b2269.css
Cookie: _ga_PXTFLT7QZ3=GS1.1.1714834501.1.0.1714834501.0.0.0; _ga=GA1.1.1745982173.1714834502
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 22906
date: Fri, 26 Apr 2024 09:00:35 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:12 GMT
etag: "597a-616fc21a07f00"
accept-ranges: bytes
cache-control: max-age=2678400, public
expires: Sun, 26 May 2024 09:00:35 GMT
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: UQqAuZ6z7aUf2K3i6fLaDhOCInVrATA10wI-Gt1yJrbc_0GRQxIBYQ==
age: 712466
X-Firefox-Spdy: h2

fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2

216.58.207.227

200 OK

24 kB

URL GET HTTP/2
fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23580, version 1.0
Size
24 kB (23580 bytes)
Hash
e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537

HTTP Headers

GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shsf.try-adtranq.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 13:49:40 GMT
expires: Fri, 02 May 2025 13:49:40 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:17:22 GMT
content-type: font/woff2
age: 176721
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2

216.58.207.227

200 OK

23 kB

URL GET HTTP/2
fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23040, version 1.0
Size
23 kB (23040 bytes)
Hash
de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49

HTTP Headers

GET /s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shsf.try-adtranq.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 01:55:21 GMT
expires: Sat, 03 May 2025 01:55:21 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:07:25 GMT
content-type: font/woff2
age: 133180
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Lato:ital,wght@0,400;0,700;1,400;1,700&display=swap

142.250.74.106

200 OK

3.1 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Lato:ital,wght@0,400;0,700;1,400;1,700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text, with very long lines (3142), with no line terminators
Size
3.1 kB (3070 bytes)
Hash
4023f0ddd8dbe996a46c898ded1fd352
fd83c3f2177ce1b0521bcd9365b116b8865870dd
9c90441a4c70bcd1c48e7fd586b995c860373b200de9c03d7c9d810895cc16cd

HTTP Headers

GET /css2?family=Lato:ital,wght@0,400;0,700;1,400;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 May 2024 14:55:01 GMT
date: Sat, 04 May 2024 14:55:01 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

shsf.try-adtranq.com/img/logos-safe-checkout.png

0.0.0.0

0 B

URL GET
shsf.try-adtranq.com/img/logos-safe-checkout.png
IP
0.0.0.0:0
ASN
#0

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /img/logos-safe-checkout.png HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/survey/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
Cookie: _ga_PXTFLT7QZ3=GS1.1.1714834501.1.0.1714834501.0.0.0; _ga=GA1.1.1745982173.1714834502
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

shsf.try-adtranq.com/css/SurveyLayout.b0fb08c3.css

143.204.55.90

200 OK

900 B

URL GET HTTP/2
shsf.try-adtranq.com/css/SurveyLayout.b0fb08c3.css
IP
143.204.55.90:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
ASCII text, with very long lines (901), with no line terminators
Size
900 B (900 bytes)
Hash
592be5f2540ffd994c8ae3f7311118a4
899bd77e4ddbcfb6f3d980663274627d3ad7bc51
5ce5d9b45358ab26f74c99fe2a1be6efd55754938d1ecb19a249feaa97f61185

HTTP Headers

GET /css/SurveyLayout.b0fb08c3.css HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=SE&locale=se&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=b4add445-b88d-489c-8526-83dc8080db23&utm_campaign=dtnk76lrl90i1621j1cgrbb2&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=dtnk76lrl90i1621j1cgrbb2&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=452024&initial-cid=di13a0e0gsmte6213aohci30
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
content-length: 339
date: Fri, 26 Apr 2024 09:00:40 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Fri, 26 Apr 2024 09:00:12 GMT
etag: "384-616fc21a07f00-gzip"
accept-ranges: bytes
cache-control: max-age=2678400, public
expires: Fri, 26 Apr 2024 10:00:40 GMT
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: i7l2H6Ggn_SxQpyeIpm6jXfdzKqUACeZt7NG1tTQtZNBPa7E6F0bKw==
age: 712461
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (27)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML