Report - track.getupgradedsecurity.com/f80b8dba-9deb-4b89-bb73-bb48a34c8fb3

Report Overview

Submitted URL
track.getupgradedsecurity.com/f80b8dba-9deb-4b89-bb73-bb48a34c8fb3
IP
54.230.111.68
ASN
#16509 AMAZON-02
Submitted
2024-05-10 19:22:33
Access
public
Website Title
Spam Shield 24/7
Final URL
shsf.try-adtranq.com/Atlas250ControlNov24/survey/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
10

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
setupgradedsecurity.com	unknown	unknown	No data	No data	973 B	221 B	23.106.127.218
getprotectionalshield.com	unknown	2024-02-12	2024-02-12	2024-02-28	899 B	2.7 kB	23.106.127.218
cdn.jsdelivr.net	439	2012-05-16	2012-09-30	2024-05-09	451 B	15 kB	151.101.65.229
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-05-10	1.0 kB	48 kB	216.58.207.227
browser.sentry-cdn.com	4393	2018-05-30	2018-07-13	2024-05-09	492 B	41 kB	151.101.130.217
d18b5y9gp0lr93.cloudfront.net	unknown	2008-04-25	2023-07-21	2024-05-05	885 B	122 kB	54.230.241.124
o1063441.ingest.us.sentry.io	unknown	unknown	No data	No data	645 B	558 B	34.120.195.249
shsf.try-adtranq.com	unknown	unknown	No data	No data	15 kB	430 kB	143.204.55.18
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-05-09	883 B	172 kB	142.250.74.168
track.getupgradedsecurity.com	unknown	unknown	No data	No data	3.2 kB	5.6 kB	54.230.111.111
datafullyprotected.com	unknown	unknown	No data	No data	946 B	2.8 kB	23.106.127.218
js.sentry-cdn.com	5259	2018-05-30	2018-07-13	2024-05-09	479 B	3.1 kB	151.101.130.217
5.datafullyprotected.com	unknown	unknown	No data	No data	994 B	1.1 kB	23.106.127.218
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-05-10	477 B	1.6 kB	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-10	medium	getupgradedsecurity.com	Sinkholed
2024-05-10	medium	setupgradedsecurity.com	Sinkholed
2024-05-10	medium	getupgradedsecurity.com	Sinkholed
2024-05-10	medium	getupgradedsecurity.com	Sinkholed
2024-05-10	medium	getupgradedsecurity.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (27)

	URL	Size	First Seen	Last Seen
	shsf.try-adtranq.com/js/index.bfef4903.js	326 kB	2024-05-10	2024-05-12
Pretty URL shsf.try-adtranq.com/js/index.bfef4903.js IP 143.204.55.18 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 05:25:27 Last Seen2024-05-12 00:40:54 Times Seen4 Hash b2e2007eeeef9359a310d315d75ef1d8 cd40b1eb95044651935515f359f8bcd9eb72fafc b467a5f39bc2b62ec8d2bf525d68359472e6454a1e66f979123dc3f62d9100b5 Loading...

	unknown	180 B	2023-05-09	2024-06-03
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 01:00:28 Last Seen2024-06-03 16:35:01 Times Seen62 Hash 69913d8dee508b4f5d00b58872860d0f f0f383c090cec3474c435a09dff59cd16e0e5d5b 92294e4b02633666ab76f3f908694fc7162b64bab74be0c47ac3983d20ef04cf Loading...

	unknown	166 B	2023-05-09	2024-06-03
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 01:00:28 Last Seen2024-06-03 16:35:01 Times Seen63 Hash 6579c4d45f9f4c05069eeaca1ccd1445 d4491a6b31ef7e8fe885873cf27c062d26751bef 5a732de322a13fb1ba8681e396e333c241df5dafd05b13ff0e514b08f169822a Loading...

	shsf.try-adtranq.com/js/Atlas102Survey.6c52f511.js	20 kB	2024-05-10	2024-05-12
Pretty URL shsf.try-adtranq.com/js/Atlas102Survey.6c52f511.js IP 143.204.55.18 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2024-05-10 05:25:27 Last Seen2024-05-12 00:40:54 Times Seen9 Hash 3d170d4ad6cb50afcb0d388f8ac0b70c 2611dba78950de66ed3c20f75d0c94ccd2d43d93 a76ad17d4efee9a29479acc6074efd3b884d276ea485f6c51bda25d7cd54ac8d Loading...

	shsf.try-adtranq.com/js/LogosSafeCheckout.18a706a9.js	540 B	2024-05-10	2024-05-12
Pretty URL shsf.try-adtranq.com/js/LogosSafeCheckout.18a706a9.js IP 143.204.55.18 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2024-05-10 05:25:27 Last Seen2024-05-12 00:40:54 Times Seen9 Hash 1fd508e246b7980682115d5a56062366 9c3ea38da1077e351675e9b915f6ffd86152ed82 fdea838c57ad6f71bbb351c86696c299fdb56a009af2f6911fb4c39bd90f2465 Loading...

	shsf.try-adtranq.com/js/SurveyLayout.550e2f5c.js	2.4 kB	2024-05-10	2024-05-12
Pretty URL shsf.try-adtranq.com/js/SurveyLayout.550e2f5c.js IP 143.204.55.18 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 05:25:27 Last Seen2024-05-12 00:40:54 Times Seen9 Hash b9b1b20d21b1d84e976b855f093abc8c e700d0b5a1d42c34857b96be626d19e1c1d86da4 f728807474d6637f6993f1d9fdd3b4381ab0c72d71a14cc0ab491bf4d3f15879 Loading...

	unknown	149 B	2023-05-09	2024-06-03
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 01:00:28 Last Seen2024-06-03 16:35:02 Times Seen62 Hash ea85066cd771a4d06c82341dc8120132 3301e0c389d206ef0f3bcecf2e83bdcf847800e1 5c82a3a219d7c012ce16d78438777e92a15edaec5030601fd50c02e38eb97101 Loading...

	unknown	159 B	2023-05-09	2024-06-03
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 01:00:28 Last Seen2024-06-03 16:35:01 Times Seen62 Hash e3fa5362c2c422adc15892b915cb70e9 e02aa0be0d33b5375f04b1c856b5ae18ad204e7c 62b7153a68a144f18069854cfa941c3a4a0bb3995b819ecec5da469595d47240 Loading...

	unknown	155 B	2023-05-09	2024-06-03
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 01:00:28 Last Seen2024-06-03 16:35:01 Times Seen62 Hash 78310d81d43ac04b7c14ee7e80af9a99 864b0b44fd7f31bfd58bd14be777eac04d2ec028 8463451d77005c51218896a4a6ed6c746606ad51356e6b598b4f3d67d3e9ae24 Loading...

	unknown	154 B	2023-05-09	2024-06-03
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 01:00:28 Last Seen2024-06-03 16:35:01 Times Seen63 Hash ada3dc18a91891d1d581d4c36ca8703c 11c8c9e113ecdd69e9bc6ff57e4537d37245963c 0a7db755c4c602524218ad8b6ef550c79f6f0b8f05596b642f18618b173dd9d7 Loading...

	unknown	163 B	2023-05-09	2024-06-03
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 01:00:28 Last Seen2024-06-03 16:35:02 Times Seen63 Hash b66395179dd60ce961a045cf5395cacd 3da826c17c90b2d7d21445ed8341c3627a518998 0aa9e6a429b070a52d6b00f6096fc92c11bd67d54a7c57cc2adea04d64da5160 Loading...

	unknown	160 B	2023-05-09	2024-06-03
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 01:00:28 Last Seen2024-06-03 16:35:02 Times Seen63 Hash 8f60fd1bd2a50831e8b97fe416bae7d3 ed701b4568f7c6c1562ba28887b2dd727a9c729b 600abcd397ca229fd018f5b8365b8ca186765752247382ce76882a6de606e48f Loading...

	unknown	160 B	2023-05-09	2024-06-03
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 01:00:28 Last Seen2024-06-03 16:35:01 Times Seen63 Hash e4dc6cd43b659d9c6157d845630e11d1 48385fab6303a9a55103a0b454112a3685714952 d091c1ecb705dbd991d99088774e480c81eb9b5b6c6bc367b5382c3d5ff9c3bf Loading...

	www.googletagmanager.com/gtm.js?id=GTM-5DNQ3QT	223 kB	2024-05-10	2024-05-10
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-5DNQ3QT IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 21:22:41 Last Seen2024-05-10 21:22:41 Times Seen2 Hash 4af8a8ddf90c2f7336708037ae3f1672 e1a163424abda4d49302df7d9cc63bd105c23e8e fce920e27bdaa078fc029dc3332f3327174da2c62569b75ef2d68c43d18b6801 Loading...

	shsf.try-adtranq.com/js/LogoGooglePlay.e0dd3dc1.js	530 B	2024-05-10	2024-05-12
Pretty URL shsf.try-adtranq.com/js/LogoGooglePlay.e0dd3dc1.js IP 143.204.55.18 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2024-05-10 05:25:27 Last Seen2024-05-12 00:40:54 Times Seen9 Hash 07db13a39a343f1e384a9edbab7b65a4 626a16cab86860010dd4b8a4608c60491c92c3af 17d062d006fcc3a6792ef80e75e8ea899f095cbc5e6527f656e8d002aa781ee3 Loading...

	unknown	153 B	2023-05-09	2024-06-03
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 01:00:28 Last Seen2024-06-03 16:35:02 Times Seen62 Hash afd2605f596080485fb5196e5caac342 b71b5ce2f690ee9ef57a6506415caa662d901cbd 884be7dd9833ad7fd258f4acd6ffe96a47fe0e83c2bcc5a924104b2da6971211 Loading...

	unknown	150 B	2023-05-09	2024-06-03
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 01:00:28 Last Seen2024-06-03 16:35:01 Times Seen62 Hash 0353b6da5bbd187a56caa6add976b267 d37f5801d7feac434ecedba16d0c5682274bcf58 c59704111014c0ed2ef366db8fbd20d7eade6e80c0ae1e30269d5b8cb8fc1bcf Loading...

	www.googletagmanager.com/gtag/js?id=G-PXTFLT7QZ3&l=dataLayer&cx=c	268 kB	2024-05-10	2024-05-10
Pretty URL www.googletagmanager.com/gtag/js?id=G-PXTFLT7QZ3&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 21:22:41 Last Seen2024-05-10 21:22:41 Times Seen2 Hash 4f870e6c913d54cac95d41f35f914f7c ffa0db9c888fd6631f138b7f18e9b2401ae66f06 7d9f93b5c0aaa1d1263cdbc2060de777d38ac839c4aa05f96df35b035c0c5d3c Loading...

	unknown	165 B	2023-05-09	2024-06-03
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 01:00:28 Last Seen2024-06-03 16:35:02 Times Seen63 Hash 99c18470ef749f0c9d69550cf53e02b1 64ecafb9ba0713ac47a51f1aa5caaade154f2636 0b1f8116c9f1818133dee4a9fcfe10a819f5eb5a59cd792f90473883605d375e Loading...

	unknown	158 B	2023-05-09	2024-06-03
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 01:00:28 Last Seen2024-06-03 16:35:02 Times Seen63 Hash 5e8259113ec5bff3257abe94cc6da1f2 e0e36f5f639db7043876e582e7f6797d5dc1fb25 815bd8d4a9bcc69284b2bd76394fc155654f0ce301533d47b63746c5e6dece50 Loading...

	unknown	135 B	2023-05-09	2024-06-03
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 01:00:28 Last Seen2024-06-03 16:35:02 Times Seen64 Hash 0cf62df03b5d75364bbbd01ea5405cf3 0f7fab422c064ec981719e8b8fc3fbce389b8899 9f67f5cffd0881724a90b5794b6c283b87f57c289c4b66a3dc766a8f287f5eaa Loading...

	shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba	369 B	2023-05-06	2024-06-03
Pretty URL shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba IP 143.204.55.18 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-06 10:32:05 Last Seen2024-06-03 16:35:02 Times Seen165 Hash 1a1d271c82e7561239daa65cfc9d7938 66536d8068c27b82969a78e774c249b24fb7a736 c652a2568f09815b1b74279181af8aef883a57b4a7aa2d49fa428b5051988045 Loading...

	unknown	141 B	2023-05-09	2024-06-03
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 01:00:28 Last Seen2024-06-03 16:35:01 Times Seen79 Hash 579d3bb6a9e11cb672126d3fc6abf17e 7cd628478c55565912467a8e86a2d48e8c2bedbd 90f48c877e0868c2f684609b4cd77ff5971420d00950d6f995ca946e9d90ccdc Loading...

	unknown	150 B	2023-05-09	2024-06-03
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 01:00:28 Last Seen2024-06-03 16:35:02 Times Seen62 Hash cca637d480647566667b20b1e13c4e5a 0ae61e800e0cd03e967aa97d7410536a204f34cb 44562006c5cd07ee62767428fa44631894b0de930b365b7d2e3a970497d9c1b5 Loading...

	unknown	158 B	2023-05-09	2024-06-03
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 01:00:28 Last Seen2024-06-03 16:35:02 Times Seen62 Hash f802b2d0b1d773d7602ff57fee6b2772 1077622135e1e3ef54e060aac92503346e5480d4 b40e16d6ace4ae5d37c11cab46a9d6047ae48cfea63d316155b8fd75f9cf2cdc Loading...

	unknown	144 B	2023-05-09	2024-06-03
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 01:00:28 Last Seen2024-06-03 16:35:02 Times Seen77 Hash 3a2a819418297e70544c144547eb11ca 57e22e4c625e20008b0e21760455bc04d412533f ce2a77fbbfcc8028e24afb8732722c7b5a2ea5f99034e817ab293813f232fde2 Loading...

	unknown	146 B	2023-05-09	2024-06-03
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 01:00:28 Last Seen2024-06-03 16:35:01 Times Seen63 Hash 8030e805ad04587b44b2d8fdaf96c4cc 62d27a084909cf54a609f5c6e07b50dfc97b794e e0d1761a209009ca9c407d7648de8244ac36d9ea507d5b5ee616901b5d71a0d4 Loading...

HTTP Transactions (39)

URL IP Response Size

track.getupgradedsecurity.com/f80b8dba-9deb-4b89-bb73-bb48a34c8fb3

54.230.111.111

0 B

URL
track.getupgradedsecurity.com/f80b8dba-9deb-4b89-bb73-bb48a34c8fb3
IP
54.230.111.111:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /f80b8dba-9deb-4b89-bb73-bb48a34c8fb3 HTTP/1.1
Host: track.getupgradedsecurity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-length: 0
location: https://setupgradedsecurity.com/inter-pro.php?cep=aFbE4CNuI7fUvft9oM9EmDhyJ_iN_QcoNROY_Y0pkhHmr-PD60H34MBp9HbMMSlo709OH2Csc20gOXCPzaKw3vN141AoEBLYbPa-KLtD-Gv9RyP5qe0mOco1tJxXt-OdYjHQ46RJth-vTEruoL9Dc-Mi1RCn98XjLuJswRnQYiqEMskqVgywqpohTU5wQq_1F44m81VqzKXFz9lrO3Wg36glb2p4qe4d8mRF6rkIhS1RPj60Wv6uD8yipBKDWDMbUYGKtibPe8HqSQXRJ2idmwy3MlMdvfWjV7G5nRdWeuOEXMNvIEWtU6jn6DpyOpMHc4ZMltD0QBkkbG0DNsIZLT7kPpGSPTQL01gSX7vKgUZnhyZeobpbo4Xaa9rw3V7uMzbJrFxBdhZ52oabfA_PUjz017LYyRjcuB7WKxHD3rJzWITKMktK-fJv2hIVcAjx&lptoken=17c015a8370e073628a7
date: Fri, 10 May 2024 19:22:08 GMT
cache-control: no-store, no-cache, pre-check=0, post-check=0
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: f80b8dba-9deb-4b89-bb73-bb48a34c8fb3-v4=buNcfmKUXDwnV1njHyQ7zkv1bgJ7-fddQNJfBxMDloo; Max-Age=86400; Expires=Sat, 11-May-2024 19:22:08 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
cep-v4=FEZtv9iUOZsTARrvyUbGNN9U1kaVgCIVLsqJCm15Or0QR_PKLPhbZ-8FtE_Wed9c7snCx46Ide2MzH0AOZqQ6420rntcvL9tYFoCjqvkRtpajuUgMczte-xt-TwZ80P-Ccsdiwym1IJy6_BgpZd1zLh9LABvoRyP7uW4X2QV3_C3dNfO8s8vLD2mPoOXTI97WEr2Paz5u-ZvLtgTgVBVzarlVeOe5TlqMQ2EnsdvUVQTeox-IV_uYR0aklGUsWs8KBJSsgNSgUzj-jKUqz1lfME9BcLPoXZK6XDkzoAdTWcpJvY_Q0etR_LO25oAxph14ZYMBVpNKxA37yaho5ProQkqM1KPsLOFZRiU76nfnL1msv6UFsLOdy_3_0sMRP5EylA1I3nv54fNkAcB5UlSEq1eG0-gNxOUJ3gKMSt0XOtzPcAN2a3zTbHOp3ZicLDU; Max-Age=86400; Expires=Sat, 11-May-2024 19:22:08 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
server: nginx
x-cache: Miss from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0yZYdw0URm85ZZuDYrD3aimhNEFI5BqQmoMbYm5hVwxKLUNinV4dfg==
X-Firefox-Spdy: h2

setupgradedsecurity.com/inter-pro.php?cep=aFbE4CNuI7fUvft9oM9EmDhyJ_iN_QcoNROY_Y0pkhHmr-PD60H34MBp9HbMMSlo709OH2Csc20gOXCPzaKw3vN141AoEBLYbPa-KLtD-Gv9RyP5qe0mOco1tJxXt-OdYjHQ46RJth-vTEruoL9Dc-Mi1RCn98XjLuJswRnQYiqEMskqVgywqpohTU5wQq_1F44m81VqzKXFz9lrO3Wg36glb2p4qe4d8mRF6rkIhS1RPj60Wv6uD8yipBKDWDMbUYGKtibPe8HqSQXRJ2idmwy3MlMdvfWjV7G5nRdWeuOEXMNvIEWtU6jn6DpyOpMHc4ZMltD0QBkkbG0DNsIZLT7kPpGSPTQL01gSX7vKgUZnhyZeobpbo4Xaa9rw3V7uMzbJrFxBdhZ52oabfA_PUjz017LYyRjcuB7WKxHD3rJzWITKMktK-fJv2hIVcAjx&lptoken=17c015a8370e073628a7

23.106.127.218

0 B

URL
setupgradedsecurity.com/inter-pro.php?cep=aFbE4CNuI7fUvft9oM9EmDhyJ_iN_QcoNROY_Y0pkhHmr-PD60H34MBp9HbMMSlo709OH2Csc20gOXCPzaKw3vN141AoEBLYbPa-KLtD-Gv9RyP5qe0mOco1tJxXt-OdYjHQ46RJth-vTEruoL9Dc-Mi1RCn98XjLuJswRnQYiqEMskqVgywqpohTU5wQq_1F44m81VqzKXFz9lrO3Wg36glb2p4qe4d8mRF6rkIhS1RPj60Wv6uD8yipBKDWDMbUYGKtibPe8HqSQXRJ2idmwy3MlMdvfWjV7G5nRdWeuOEXMNvIEWtU6jn6DpyOpMHc4ZMltD0QBkkbG0DNsIZLT7kPpGSPTQL01gSX7vKgUZnhyZeobpbo4Xaa9rw3V7uMzbJrFxBdhZ52oabfA_PUjz017LYyRjcuB7WKxHD3rJzWITKMktK-fJv2hIVcAjx&lptoken=17c015a8370e073628a7
IP
23.106.127.218:0
ASN
#59253 Leaseweb Asia Pacific pte. ltd.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /inter-pro.php?cep=aFbE4CNuI7fUvft9oM9EmDhyJ_iN_QcoNROY_Y0pkhHmr-PD60H34MBp9HbMMSlo709OH2Csc20gOXCPzaKw3vN141AoEBLYbPa-KLtD-Gv9RyP5qe0mOco1tJxXt-OdYjHQ46RJth-vTEruoL9Dc-Mi1RCn98XjLuJswRnQYiqEMskqVgywqpohTU5wQq_1F44m81VqzKXFz9lrO3Wg36glb2p4qe4d8mRF6rkIhS1RPj60Wv6uD8yipBKDWDMbUYGKtibPe8HqSQXRJ2idmwy3MlMdvfWjV7G5nRdWeuOEXMNvIEWtU6jn6DpyOpMHc4ZMltD0QBkkbG0DNsIZLT7kPpGSPTQL01gSX7vKgUZnhyZeobpbo4Xaa9rw3V7uMzbJrFxBdhZ52oabfA_PUjz017LYyRjcuB7WKxHD3rJzWITKMktK-fJv2hIVcAjx&lptoken=17c015a8370e073628a7 HTTP/1.1
Host: setupgradedsecurity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Server: nginx
Date: Fri, 10 May 2024 19:22:10 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://track.getupgradedsecurity.com/click/1

track.getupgradedsecurity.com/click/1

54.230.111.111

0 B

URL
track.getupgradedsecurity.com/click/1
IP
54.230.111.111:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /click/1 HTTP/1.1
Host: track.getupgradedsecurity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: f80b8dba-9deb-4b89-bb73-bb48a34c8fb3-v4=buNcfmKUXDwnV1njHyQ7zkv1bgJ7-fddQNJfBxMDloo; cep-v4=FEZtv9iUOZsTARrvyUbGNN9U1kaVgCIVLsqJCm15Or0QR_PKLPhbZ-8FtE_Wed9c7snCx46Ide2MzH0AOZqQ6420rntcvL9tYFoCjqvkRtpajuUgMczte-xt-TwZ80P-Ccsdiwym1IJy6_BgpZd1zLh9LABvoRyP7uW4X2QV3_C3dNfO8s8vLD2mPoOXTI97WEr2Paz5u-ZvLtgTgVBVzarlVeOe5TlqMQ2EnsdvUVQTeox-IV_uYR0aklGUsWs8KBJSsgNSgUzj-jKUqz1lfME9BcLPoXZK6XDkzoAdTWcpJvY_Q0etR_LO25oAxph14ZYMBVpNKxA37yaho5ProQkqM1KPsLOFZRiU76nfnL1msv6UFsLOdy_3_0sMRP5EylA1I3nv54fNkAcB5UlSEq1eG0-gNxOUJ3gKMSt0XOtzPcAN2a3zTbHOp3ZicLDU
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
content-length: 0
location: https://getprotectionalshield.com/sep/?to=0203-av-cmpl-wh&campid=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_source=&landerid=96c030a3-3f5b-4f8a-ab14-4cc2b64a3152&bv=Firefox%2096&lander=1305-intermediary-lander%20%5BPRO%5D&pccid=duqof37j50oa6r61j7j737ba&phone_brand=Desktop&model=Desktop&zone_id=&supply_id=&camp_id=&source=&ua=&creative=&pathid=7f50e7e6-84a5-bd97-ff01-9dbdbb4bba64&brand=av&tracking_domain=track.getupgradedsecurity.com&lang=en&geo=uk-pro
date: Fri, 10 May 2024 19:22:10 GMT
cache-control: no-store, no-cache, pre-check=0, post-check=0
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: voluum-cid-v4=%7B%22cid%22%3A%22duqof37j50oa6r61j7j737ba%22%2C%22caid%22%3A%22f80b8dba-9deb-4b89-bb73-bb48a34c8fb3%22%7D; Max-Age=31536000; Expires=Sat, 10-May-2025 19:22:10 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
f80b8dba-9deb-4b89-bb73-bb48a34c8fb3-clk-v4=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3; Max-Age=86400; Expires=Sat, 11-May-2024 19:22:10 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
f80b8dba-9deb-4b89-bb73-bb48a34c8fb3-v4=hrbLt1PYYW6mBGRPU6m4DtdXy1VbmMcLVCSeEssvz0w; Max-Age=86400; Expires=Sat, 11-May-2024 19:22:10 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
server: nginx
x-cache: Miss from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: U50zNrBiA02tjZ_9ESCk5FSNeRi7AqZq18Q_DjWBU4pHZRX784zX_w==
X-Firefox-Spdy: h2

track.getupgradedsecurity.com/

54.230.111.111

227 B

URL
track.getupgradedsecurity.com/
IP
54.230.111.111:0
ASN
#16509 AMAZON-02

File type
HTML document, ASCII text
Size
227 B (227 bytes)
Hash
d7e39a03eb36cd0ca88c7d3833668ee1
3beb5597c07f8aef8d1caace6a23d09a66550c95
0ada30892e47ec0cf6acd9dbf9fd085f8601a18375a5b7388683561f1f6cc626

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: track.getupgradedsecurity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 
Content-Type: text/html
Content-Length: 227
Connection: keep-alive
Date: Fri, 10 May 2024 19:22:10 GMT
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Server: nginx
X-Cache: Error from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: CkrC52uC53Li7VwLO5DPBKDKQG5YUZD4z1e0S5pMMeXLhirj2Op4uA==

getprotectionalshield.com/sep/?to=0203-av-cmpl-wh&campid=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_source=&landerid=96c030a3-3f5b-4f8a-ab14-4cc2b64a3152&bv=Firefox%2096&lander=1305-intermediary-lander%20%5BPRO%5D&pccid=duqof37j50oa6r61j7j737ba&phone_brand=Desktop&model=Desktop&zone_id=&supply_id=&camp_id=&source=&ua=&creative=&pathid=7f50e7e6-84a5-bd97-ff01-9dbdbb4bba64&brand=av&tracking_domain=track.getupgradedsecurity.com&lang=en&geo=uk-pro

23.106.127.218

2.4 kB

URL
getprotectionalshield.com/sep/?to=0203-av-cmpl-wh&campid=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_source=&landerid=96c030a3-3f5b-4f8a-ab14-4cc2b64a3152&bv=Firefox%2096&lander=1305-intermediary-lander%20%5BPRO%5D&pccid=duqof37j50oa6r61j7j737ba&phone_brand=Desktop&model=Desktop&zone_id=&supply_id=&camp_id=&source=&ua=&creative=&pathid=7f50e7e6-84a5-bd97-ff01-9dbdbb4bba64&brand=av&tracking_domain=track.getupgradedsecurity.com&lang=en&geo=uk-pro
IP
23.106.127.218:0
ASN
#59253 Leaseweb Asia Pacific pte. ltd.

File type
HTML document, ASCII text, with very long lines (6915)
Size
2.4 kB (2410 bytes)
Hash
61855e2479f4d662c3040db1778bd8d9
3bc68f76965c1dff4de6606ee3e2cdbedfb4fb70
65eb8587963b43853c12e44036c5811e0e2410dcea4f8f8de7ad4e3efdaf35b1

HTTP Headers

GET /sep/?to=0203-av-cmpl-wh&campid=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_source=&landerid=96c030a3-3f5b-4f8a-ab14-4cc2b64a3152&bv=Firefox%2096&lander=1305-intermediary-lander%20%5BPRO%5D&pccid=duqof37j50oa6r61j7j737ba&phone_brand=Desktop&model=Desktop&zone_id=&supply_id=&camp_id=&source=&ua=&creative=&pathid=7f50e7e6-84a5-bd97-ff01-9dbdbb4bba64&brand=av&tracking_domain=track.getupgradedsecurity.com&lang=en&geo=uk-pro HTTP/1.1
Host: getprotectionalshield.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 19:22:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 10 May 2024 15:27:17 GMT
ETag: W/"663e3cd5-1d0f"
Content-Encoding: gzip

datafullyprotected.com/redirect/?to=0203-av-cmpl-wh&campid=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_source=&landerid=96c030a3-3f5b-4f8a-ab14-4cc2b64a3152&bv=Firefox%2096&lander=1305-intermediary-lander%20%5BPRO%5D&pccid=duqof37j50oa6r61j7j737ba&phone_brand=Desktop&model=Desktop&zone_id=&supply_id=&camp_id=&source=&ua=&creative=&pathid=7f50e7e6-84a5-bd97-ff01-9dbdbb4bba64&brand=av&tracking_domain=track.getupgradedsecurity.com&lang=en&geo=uk-pro

23.106.127.218

2.5 kB

URL
datafullyprotected.com/redirect/?to=0203-av-cmpl-wh&campid=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_source=&landerid=96c030a3-3f5b-4f8a-ab14-4cc2b64a3152&bv=Firefox%2096&lander=1305-intermediary-lander%20%5BPRO%5D&pccid=duqof37j50oa6r61j7j737ba&phone_brand=Desktop&model=Desktop&zone_id=&supply_id=&camp_id=&source=&ua=&creative=&pathid=7f50e7e6-84a5-bd97-ff01-9dbdbb4bba64&brand=av&tracking_domain=track.getupgradedsecurity.com&lang=en&geo=uk-pro
IP
23.106.127.218:0
ASN
#59253 Leaseweb Asia Pacific pte. ltd.

File type
HTML document, ASCII text, with very long lines (6915)
Size
2.5 kB (2532 bytes)
Hash
78344dd9a0de6aff2e3f51c2f50aa995
d8e300370fbaf59a2cab809ad5b87a3b39ab77d0
8e0c2e9423418ed038183cb055f0b64d3dfa3f02672738ee8f06694a6934f648

HTTP Headers

GET /redirect/?to=0203-av-cmpl-wh&campid=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_source=&landerid=96c030a3-3f5b-4f8a-ab14-4cc2b64a3152&bv=Firefox%2096&lander=1305-intermediary-lander%20%5BPRO%5D&pccid=duqof37j50oa6r61j7j737ba&phone_brand=Desktop&model=Desktop&zone_id=&supply_id=&camp_id=&source=&ua=&creative=&pathid=7f50e7e6-84a5-bd97-ff01-9dbdbb4bba64&brand=av&tracking_domain=track.getupgradedsecurity.com&lang=en&geo=uk-pro HTTP/1.1
Host: datafullyprotected.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getprotectionalshield.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 19:22:14 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 10 May 2024 15:24:35 GMT
ETag: W/"663e3c33-1dde"
Content-Encoding: gzip

d18b5y9gp0lr93.cloudfront.net/sqp-functions/functions.min.js

54.230.241.124

15 kB

URL
d18b5y9gp0lr93.cloudfront.net/sqp-functions/functions.min.js
IP
54.230.241.124:0
ASN
#16509 AMAZON-02

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (10905)
Size
15 kB (14764 bytes)
Hash
98d76225d25c7621a2cd73c7ab5de802
e78d493f79bc353d9716651ed644e68fb213489c
213f94138770c32a37da8e6f0397fd0cfaebbbe0dafdbd69403d6bcbd4cb9f3a

HTTP Headers

GET /sqp-functions/functions.min.js HTTP/1.1
Host: d18b5y9gp0lr93.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datafullyprotected.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 13 Dec 2023 09:40:44 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: dRA40FxrztBz3m1bZdOmgk_RvQfg.z05
server: AmazonS3
content-encoding: gzip
date: Thu, 09 May 2024 20:17:32 GMT
etag: W/"de27e5abcf1380fbab0accd9eb0b9630"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: S5NcmqKb8whoMXpqa9Vi06-2dOQsE5wQgFq2gUw701AC1-k1oooU_A==
age: 83083
X-Firefox-Spdy: h2

js.sentry-cdn.com/d31b9988ec25444db0b16116ddc6edee.min.js

151.101.130.217

1.3 kB

URL
js.sentry-cdn.com/d31b9988ec25444db0b16116ddc6edee.min.js
IP
151.101.130.217:0
ASN
#54113 FASTLY

File type
JavaScript source, ASCII text, with very long lines (2639)
Size
1.3 kB (1274 bytes)
Hash
8fe26c7c6e7174995a400015af068dcc
e8ff6be4f4d1253f16d267b2b2eda1f7d86d0e47
b0d3b61f316bf9c017e0c2ff67e63c8a30cf41ab07ce9e20ec463a2546121620

HTTP Headers

GET /d31b9988ec25444db0b16116ddc6edee.min.js HTTP/1.1
Host: js.sentry-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://5.datafullyprotected.com
DNT: 1
Connection: keep-alive
Referer: https://5.datafullyprotected.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
access-control-allow-origin: *
cache-control: public, max-age=3600, s-maxage=60, stale-while-revalidate=315360000, stale-if-error=315360000
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: style-src * 'unsafe-inline'; worker-src blob:; default-src 'none'; font-src * data:; script-src 'self' 'unsafe-inline' 'report-sample' s1.sentry-cdn.com js.sentry-cdn.com browser.sentry-cdn.com statuspage-production.s3.amazonaws.com static.zdassets.com aui-cdn.atlassian.com connect-cdn.atl-paas.net js.stripe.com 'strict-dynamic' cdn.pendo.io data.pendo.io pendo-io-static.storage.googleapis.com pendo-static-5634074999128064.storage.googleapis.com; frame-src app.pendo.io demo.arcade.software js.stripe.com sentry.io; media-src *; img-src * blob: data:; object-src 'none'; base-uri 'none'; frame-ancestors 'self' *.sentry.io; connect-src 'self' *.algolia.net *.algolianet.com *.algolia.io sentry.io *.sentry.io s1.sentry-cdn.com o1.ingest.sentry.io api2.amplitude.com app.pendo.io data.pendo.io reload.getsentry.net t687h3m0nh65.statuspage.io sentry.zendesk.com ekr.zdassets.com maps.googleapis.com; report-uri https://o1.ingest.sentry.io/api/54785/security/?sentry_key=f724a8a027db45f5b21507e7142ff78e&sentry_release=414855d20c1e20f21b23a74e84c64c690c0b0d9f
x-envoy-attempt-count: 1
x-envoy-upstream-service-time: 22
content-encoding: gzip
accept-ranges: bytes
date: Fri, 10 May 2024 19:22:17 GMT
age: 72
x-served-by: getsentry-web-default-common-production-847f79f45-clwcb, cache-chi-kigq8000167-CHI, cache-hel1410027-HEL
vary: Accept-Encoding
timing-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 1274
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/@growthbook/growthbook/dist/bundles/auto.min.js

151.101.65.229

14 kB

URL
cdn.jsdelivr.net/npm/@growthbook/growthbook/dist/bundles/auto.min.js
IP
151.101.65.229:0
ASN
#54113 FASTLY

File type
JavaScript source, ASCII text, with very long lines (42295)
Size
14 kB (14010 bytes)
Hash
bad64dab073ebd7a9c9de44959988e71
6608fbdc47095a12461152390730c7bf709e7a1d
40eda50c2ee14dd3d103a94e77dbf45c2bdfe5a039a3f36c66d0757f2962f610

HTTP Headers

GET /npm/@growthbook/growthbook/dist/bundles/auto.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://5.datafullyprotected.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.0.0
x-jsd-version-type: version
etag: W/"a55d-Zgj73EcJWhJGEVI5BzDHv3Ceeh0"
content-encoding: br
accept-ranges: bytes
date: Fri, 10 May 2024 19:22:17 GMT
age: 42522
x-served-by: cache-fra-etou8220138-FRA, cache-hel1410025-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 14010
X-Firefox-Spdy: h2

5.datafullyprotected.com/0203-av-cmpl-wh/css/style.min.css

23.106.127.218

886 B

URL
5.datafullyprotected.com/0203-av-cmpl-wh/css/style.min.css
IP
23.106.127.218:0
ASN
#59253 Leaseweb Asia Pacific pte. ltd.

File type
ASCII text, with very long lines (2108), with no line terminators
Size
886 B (886 bytes)
Hash
164cf3caad1ad9d992bcaefe89ae62cc
be71b1ca01ad523687e4d29cef812e4298b01e13
0630a50d42f92bb5fc726cdfa92041b28f4997ba7e5d541be6c14cdb165eeebd

HTTP Headers

GET /0203-av-cmpl-wh/css/style.min.css HTTP/1.1
Host: 5.datafullyprotected.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://5.datafullyprotected.com/0203-av-cmpl-wh/?to=0203-av-cmpl-wh&campid=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_source=&landerid=96c030a3-3f5b-4f8a-ab14-4cc2b64a3152&bv=Firefox%2096&lander=1305-intermediary-lander%20%5BPRO%5D&pccid=duqof37j50oa6r61j7j737ba&phone_brand=Desktop&model=Desktop&zone_id=&supply_id=&camp_id=&source=&ua=&creative=&pathid=7f50e7e6-84a5-bd97-ff01-9dbdbb4bba64&brand=av&tracking_domain=track.getupgradedsecurity.com&lang=en&geo=uk-pro
Cookie: pc_domains_record=%5B%7B%22name%22%3A%22datafullyprotected.com%22%2C%22allowed%22%3A%5B1%5D%7D%5D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 19:22:18 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 10 May 2024 15:26:43 GMT
ETag: W/"663e3cb3-83c"
Content-Encoding: gzip

browser.sentry-cdn.com/7.114.0/bundle.tracing.es5.min.js

151.101.130.217

41 kB

URL
browser.sentry-cdn.com/7.114.0/bundle.tracing.es5.min.js
IP
151.101.130.217:0
ASN
#54113 FASTLY

File type
JavaScript source, ASCII text, with very long lines (65428)
Size
41 kB (40699 bytes)
Hash
6bff10b87a45cf4ba44b84ea902595d1
1551bab61fce52e56f0ae5fb418c3c7aa97d6c0e
03cad3900be114a418d9cf6523f82cd835e3993612f482d495f20d5659f1a31b

HTTP Headers

GET /7.114.0/bundle.tracing.es5.min.js HTTP/1.1
Host: browser.sentry-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://5.datafullyprotected.com
DNT: 1
Connection: keep-alive
Referer: https://5.datafullyprotected.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Thu, 08 May 2025 15:08:29 GMT
last-modified: Wed, 08 May 2024 08:13:03 GMT
etag: "94351b24c481cac394b964e0fdef50eb"
content-type: application/javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
date: Fri, 10 May 2024 19:22:18 GMT
age: 188030
vary: Accept-Encoding
access-control-allow-origin: *
server: Fastly
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 40699
X-Firefox-Spdy: h2

track.getupgradedsecurity.com/click/2?utm_term=1052024&utm_medium=duqof37j50oa6r61j7j737ba&initial-cid=duqof37j50oa6r61j7j737ba

54.230.111.111

302 Found

0 B

URL User Request GET HTTP/2
track.getupgradedsecurity.com/click/2?utm_term=1052024&utm_medium=duqof37j50oa6r61j7j737ba&initial-cid=duqof37j50oa6r61j7j737ba
IP
54.230.111.111:443
ASN
#16509 AMAZON-02

Certificate
IssuerAmazon
Subjecttrack.getupgradedsecurity.com
Fingerprint47:47:24:C9:E9:62:08:42:27:7A:2E:A8:6A:3B:F8:DA:33:56:D5:26
ValidityThu, 25 Apr 2024 00:00:00 GMT - Sat, 24 May 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /click/2?utm_term=1052024&utm_medium=duqof37j50oa6r61j7j737ba&initial-cid=duqof37j50oa6r61j7j737ba HTTP/1.1
Host: track.getupgradedsecurity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://5.datafullyprotected.com/
Cookie: f80b8dba-9deb-4b89-bb73-bb48a34c8fb3-v4=hrbLt1PYYW6mBGRPU6m4DtdXy1VbmMcLVCSeEssvz0w; cep-v4=FEZtv9iUOZsTARrvyUbGNN9U1kaVgCIVLsqJCm15Or0QR_PKLPhbZ-8FtE_Wed9c7snCx46Ide2MzH0AOZqQ6420rntcvL9tYFoCjqvkRtpajuUgMczte-xt-TwZ80P-Ccsdiwym1IJy6_BgpZd1zLh9LABvoRyP7uW4X2QV3_C3dNfO8s8vLD2mPoOXTI97WEr2Paz5u-ZvLtgTgVBVzarlVeOe5TlqMQ2EnsdvUVQTeox-IV_uYR0aklGUsWs8KBJSsgNSgUzj-jKUqz1lfME9BcLPoXZK6XDkzoAdTWcpJvY_Q0etR_LO25oAxph14ZYMBVpNKxA37yaho5ProQkqM1KPsLOFZRiU76nfnL1msv6UFsLOdy_3_0sMRP5EylA1I3nv54fNkAcB5UlSEq1eG0-gNxOUJ3gKMSt0XOtzPcAN2a3zTbHOp3ZicLDU; voluum-cid-v4=%7B%22cid%22%3A%22duqof37j50oa6r61j7j737ba%22%2C%22caid%22%3A%22f80b8dba-9deb-4b89-bb73-bb48a34c8fb3%22%7D; f80b8dba-9deb-4b89-bb73-bb48a34c8fb3-clk-v4=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
content-length: 0
location: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
date: Fri, 10 May 2024 19:22:18 GMT
cache-control: no-store, no-cache, pre-check=0, post-check=0
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: voluum-cid-v4=%7B%22cid%22%3A%22d8hqkrjp52k5jr61j3b4ip54%22%2C%22caid%22%3A%22f80b8dba-9deb-4b89-bb73-bb48a34c8fb3%22%7D; Max-Age=31536000; Expires=Sat, 10-May-2025 19:22:18 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
f80b8dba-9deb-4b89-bb73-bb48a34c8fb3-clk-v4=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3; Max-Age=86400; Expires=Sat, 11-May-2024 19:22:18 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
f80b8dba-9deb-4b89-bb73-bb48a34c8fb3-v4=ucFvCvogHA9B6jARDxS3-rl8Vqgj1Gyvl1_u50yeYeA; Max-Age=86400; Expires=Sat, 11-May-2024 19:22:18 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
server: nginx
x-cache: Miss from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kpV-gc5uzWVhcgniU4DEaFeq3mTszMhrbZnWE6whyFZnDGFMw3DR1g==
X-Firefox-Spdy: h2

o1063441.ingest.us.sentry.io/api/6072671/envelope/?sentry_key=d31b9988ec25444db0b16116ddc6edee&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.114.0

34.120.195.249

41 B

URL
o1063441.ingest.us.sentry.io/api/6072671/envelope/?sentry_key=d31b9988ec25444db0b16116ddc6edee&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.114.0
IP
34.120.195.249:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
JSON text data
Size
41 B (41 bytes)
Hash
b83be8e393990d8b14a2f236d28dd251
1891c1e89e8dddfb12ea645111485cf4ff6c12a2
bc48fb7ef1efb4cf05ac7ca824adc39a255c2769911f089e18d7feef26244d37

HTTP Headers

POST /api/6072671/envelope/?sentry_key=d31b9988ec25444db0b16116ddc6edee&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.114.0 HTTP/1.1
Host: o1063441.ingest.us.sentry.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://5.datafullyprotected.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 2217
Origin: https://5.datafullyprotected.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 19:22:18 GMT
content-type: application/json
content-length: 41
access-control-allow-origin: *
vary: origin,access-control-request-method,access-control-request-headers
access-control-expose-headers: x-sentry-error,x-sentry-rate-limits,retry-after
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba

143.204.55.18

200 OK

871 B

URL User Request GET HTTP/2
shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
IP
143.204.55.18:443
ASN
#16509 AMAZON-02

Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
HTML document, ASCII text
Size
871 B (871 bytes)
Hash
c13bc9aeb69749d33e3069a5db0365f5
b0d68f3768df09f864226036cb7b364c5d9841c6
5702183001e89b01f29e1f0d6c9e91bfa641bbb5f681bd78bc72f11e930e46e2

HTTP Headers

GET /Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://5.datafullyprotected.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 871
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 09 May 2024 11:34:55 GMT
accept-ranges: bytes
content-encoding: gzip
date: Fri, 10 May 2024 19:22:19 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Fri, 10 May 2024 20:22:19 GMT
etag: "6b7-61803cedfb5c0-gzip"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9mCAarUxe_tn8_nftU4Ctyj2HolD0cr7B1x9jRJS4OHaa0ZS1ZWFyA==
X-Firefox-Spdy: h2

shsf.try-adtranq.com/css/index.925b2269.css

143.204.55.18

200 OK

5.9 kB

URL GET HTTP/2
shsf.try-adtranq.com/css/index.925b2269.css
IP
143.204.55.18:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
ASCII text, with very long lines (26643)
Size
5.9 kB (5920 bytes)
Hash
5da360cc52f1c60dce2f894d71d16fa2
70b71fe839b8d2889eb4c0d8bfcc6c433e86361b
925b2269cff35373e7d472f86998c8da90e7db28f4f6eb76d5d4a23ae274009c

HTTP Headers

GET /css/index.925b2269.css HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 5920
date: Thu, 09 May 2024 11:35:31 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 09 May 2024 11:34:55 GMT
etag: "6814-61803cedfb5c0-gzip"
accept-ranges: bytes
cache-control: max-age=2678400, public
expires: Thu, 09 May 2024 12:35:31 GMT
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Tprff9ETQw7rJhPzS4a90_Io_rzs3L-3hdBRJIb81ANBXe7BdvwONg==
age: 114408
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-5DNQ3QT

142.250.74.168

200 OK

78 kB

URL GET HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-5DNQ3QT
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (6801)
Size
78 kB (78082 bytes)
Hash
4af8a8ddf90c2f7336708037ae3f1672
e1a163424abda4d49302df7d9cc63bd105c23e8e
fce920e27bdaa078fc029dc3332f3327174da2c62569b75ef2d68c43d18b6801

HTTP Headers

GET /gtm.js?id=GTM-5DNQ3QT HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 10 May 2024 19:22:19 GMT
expires: Fri, 10 May 2024 19:22:19 GMT
cache-control: private, max-age=900
last-modified: Fri, 10 May 2024 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78082
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

d18b5y9gp0lr93.cloudfront.net/sqp-functions/functions.min.js

54.230.241.124

106 kB

URL
d18b5y9gp0lr93.cloudfront.net/sqp-functions/functions.min.js
IP
54.230.241.124:0
ASN
#16509 AMAZON-02

File type
gzip compressed data, from Unix
Size
106 kB (105985 bytes)
Hash
fdd65e988dd1cc81781850a582117fb5
bfb79d6cb5033f120c909e395bcdaf330b37fab5
5b7aa5392f07c251e59738a02be49bc6670ede48d34a5ad80bd543af17679c66

HTTP Headers

GET /sqp-functions/functions.min.js HTTP/1.1
Host: d18b5y9gp0lr93.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getprotectionalshield.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 13 Dec 2023 09:40:44 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: dRA40FxrztBz3m1bZdOmgk_RvQfg.z05
server: AmazonS3
content-encoding: gzip
date: Thu, 09 May 2024 20:17:32 GMT
etag: W/"de27e5abcf1380fbab0accd9eb0b9630"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nKv_KX9_LWR-DQXbHpDDLBdHHnpVbwWWWueBvOydtKh6tpXDvoXX6Q==
age: 83081
X-Firefox-Spdy: h2

shsf.try-adtranq.com/css/Atlas102Survey.cc92fdda.css

143.204.55.18

200 OK

1.1 kB

URL GET HTTP/2
shsf.try-adtranq.com/css/Atlas102Survey.cc92fdda.css
IP
143.204.55.18:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
ASCII text, with very long lines (3494)
Size
1.1 kB (1117 bytes)
Hash
64eb9827b87121d8cb4b2a6e9af0a6ee
d212aa84e1778e95382e3e3d3e276805680c73b9
cc92fdda2102e2f59eda48c70c328d1a6a0a1f084c7a34040fa5249f94da5631

HTTP Headers

GET /css/Atlas102Survey.cc92fdda.css HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 1117
date: Thu, 09 May 2024 11:35:36 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 09 May 2024 11:34:55 GMT
etag: "da7-61803cedfb5c0-gzip"
accept-ranges: bytes
cache-control: max-age=2678400, public
expires: Thu, 09 May 2024 12:35:36 GMT
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: OlY1QbQh_a6ToiChzGkQXq92rQgrvRC_unLhoDg7-qMilByRovZmRw==
age: 114403
X-Firefox-Spdy: h2

shsf.try-adtranq.com/css/SurveyLayout.b0fb08c3.css

143.204.55.18

200 OK

339 B

URL GET HTTP/2
shsf.try-adtranq.com/css/SurveyLayout.b0fb08c3.css
IP
143.204.55.18:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
ASCII text, with very long lines (899)
Size
339 B (339 bytes)
Hash
34ebd98cfeff8702bdd9ba7d222969b5
ce169317941d22c09e62bc9a6aadd885ab1676c9
b0fb08c350d0c90003a3fee98f52c9e72f349ed8041966c24929fbbe39e6702f

HTTP Headers

GET /css/SurveyLayout.b0fb08c3.css HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 339
date: Thu, 09 May 2024 11:35:36 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 09 May 2024 11:34:55 GMT
etag: "384-61803cedfb5c0-gzip"
accept-ranges: bytes
cache-control: max-age=2678400, public
expires: Thu, 09 May 2024 12:35:36 GMT
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: CZWZUHTSJqeyhmbL8OvQojHWikJ0xY4eaVa8zX_2MDvVovWPP1rI2g==
age: 114403
X-Firefox-Spdy: h2

shsf.try-adtranq.com/js/Atlas102Survey.6c52f511.js

143.204.55.18

200 OK

6.1 kB

URL GET HTTP/2
shsf.try-adtranq.com/js/Atlas102Survey.6c52f511.js
IP
143.204.55.18:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
ASCII text, with very long lines (19673)
Size
6.1 kB (6122 bytes)
Hash
3d170d4ad6cb50afcb0d388f8ac0b70c
2611dba78950de66ed3c20f75d0c94ccd2d43d93
a76ad17d4efee9a29479acc6074efd3b884d276ea485f6c51bda25d7cd54ac8d

HTTP Headers

GET /js/Atlas102Survey.6c52f511.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 6122
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 09 May 2024 11:34:55 GMT
accept-ranges: bytes
content-encoding: gzip
date: Fri, 10 May 2024 19:22:19 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Fri, 10 May 2024 20:22:19 GMT
etag: "4cda-61803cedfb5c0-gzip"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: F9T9NlE9OMrvGuFiINOzF8NiNc8t2U7geT0-07X506D8u18-rlgVQw==
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-PXTFLT7QZ3&l=dataLayer&cx=c

142.250.74.168

200 OK

93 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-PXTFLT7QZ3&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (4242)
Size
93 kB (92909 bytes)
Hash
4f870e6c913d54cac95d41f35f914f7c
ffa0db9c888fd6631f138b7f18e9b2401ae66f06
7d9f93b5c0aaa1d1263cdbc2060de777d38ac839c4aa05f96df35b035c0c5d3c

HTTP Headers

GET /gtag/js?id=G-PXTFLT7QZ3&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 10 May 2024 19:22:19 GMT
expires: Fri, 10 May 2024 19:22:19 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 92909
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

shsf.try-adtranq.com/js/LogoGooglePlay.e0dd3dc1.js

143.204.55.18

200 OK

345 B

URL GET HTTP/2
shsf.try-adtranq.com/js/LogoGooglePlay.e0dd3dc1.js
IP
143.204.55.18:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
Java source, ASCII text, with very long lines (529)
Size
345 B (345 bytes)
Hash
07db13a39a343f1e384a9edbab7b65a4
626a16cab86860010dd4b8a4608c60491c92c3af
17d062d006fcc3a6792ef80e75e8ea899f095cbc5e6527f656e8d002aa781ee3

HTTP Headers

GET /js/LogoGooglePlay.e0dd3dc1.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 345
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 09 May 2024 11:34:55 GMT
accept-ranges: bytes
content-encoding: gzip
date: Fri, 10 May 2024 19:22:19 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Fri, 10 May 2024 20:22:19 GMT
etag: "212-61803cedfb5c0-gzip"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: UlYx7Yo_9lFjFWkX78GIPma6kSGfM00xhyO34_KnsPchdBood73NrQ==
X-Firefox-Spdy: h2

shsf.try-adtranq.com/js/LogosSafeCheckout.18a706a9.js

143.204.55.18

200 OK

348 B

URL GET HTTP/2
shsf.try-adtranq.com/js/LogosSafeCheckout.18a706a9.js
IP
143.204.55.18:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
Java source, ASCII text, with very long lines (539)
Size
348 B (348 bytes)
Hash
1fd508e246b7980682115d5a56062366
9c3ea38da1077e351675e9b915f6ffd86152ed82
fdea838c57ad6f71bbb351c86696c299fdb56a009af2f6911fb4c39bd90f2465

HTTP Headers

GET /js/LogosSafeCheckout.18a706a9.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 348
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 09 May 2024 11:34:55 GMT
accept-ranges: bytes
content-encoding: gzip
date: Fri, 10 May 2024 19:22:19 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Fri, 10 May 2024 20:22:19 GMT
etag: "21c-61803cedfb5c0-gzip"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Yc7rC5_iror6nx4STWqFNCj8EKQWNDXYJ4X8tPiKO2XUmdw7m1nn_g==
X-Firefox-Spdy: h2

shsf.try-adtranq.com/js/SurveyLayout.550e2f5c.js

143.204.55.18

200 OK

920 B

URL GET HTTP/2
shsf.try-adtranq.com/js/SurveyLayout.550e2f5c.js
IP
143.204.55.18:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
Java source, ASCII text, with very long lines (2443)
Size
920 B (920 bytes)
Hash
b9b1b20d21b1d84e976b855f093abc8c
e700d0b5a1d42c34857b96be626d19e1c1d86da4
f728807474d6637f6993f1d9fdd3b4381ab0c72d71a14cc0ab491bf4d3f15879

HTTP Headers

GET /js/SurveyLayout.550e2f5c.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 920
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 09 May 2024 11:34:55 GMT
accept-ranges: bytes
content-encoding: gzip
date: Fri, 10 May 2024 19:22:19 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Fri, 10 May 2024 20:22:19 GMT
etag: "98c-61803cedfb5c0-gzip"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: V3Tg7f8HCAYpbs5lX0TWrUFLusAdR6C5sp8x4Jt_BubKJoqrQAdZGA==
X-Firefox-Spdy: h2

shsf.try-adtranq.com/js/SurveyLayout.550e2f5c.js

143.204.55.18

200 OK

920 B

URL GET HTTP/2
shsf.try-adtranq.com/js/SurveyLayout.550e2f5c.js
IP
143.204.55.18:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
Java source, ASCII text, with very long lines (2443)
Size
920 B (920 bytes)
Hash
b9b1b20d21b1d84e976b855f093abc8c
e700d0b5a1d42c34857b96be626d19e1c1d86da4
f728807474d6637f6993f1d9fdd3b4381ab0c72d71a14cc0ab491bf4d3f15879

HTTP Headers

GET /js/SurveyLayout.550e2f5c.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/js/index.bfef4903.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 920
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 09 May 2024 11:34:55 GMT
accept-ranges: bytes
content-encoding: gzip
date: Fri, 10 May 2024 19:22:19 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Fri, 10 May 2024 20:22:19 GMT
etag: "98c-61803cedfb5c0-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qxSLP2tpBPbBbZvIhGyc_sI0S16Lo6jQfJsEdEz-74ZZtLEC4e0SIg==
X-Firefox-Spdy: h2

shsf.try-adtranq.com/assets/icons/apple-touch-icon.png

143.204.55.18

200 OK

18 kB

URL GET HTTP/2
shsf.try-adtranq.com/assets/icons/apple-touch-icon.png
IP
143.204.55.18:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced
Size
18 kB (18451 bytes)
Hash
d5a70c285453de5c525f7fb0a0e5ebad
0ba57dc02d1054c1604ac2fbb021271bd212f487
b951c1ced2f06cf42f652292e3e59016004c620d99bb938f0383955157eae9b7

HTTP Headers

GET /assets/icons/apple-touch-icon.png HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 18451
date: Thu, 09 May 2024 11:35:32 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 09 May 2024 11:34:53 GMT
etag: "4813-61803cec13140"
accept-ranges: bytes
cache-control: max-age=2678400, public
expires: Sat, 08 Jun 2024 11:35:32 GMT
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Jkgg0woTQGcCdZVK0F-mMv5pwbkDe9Yu09ecH7rh8JLfQ6SS8vb2Vw==
age: 114406
X-Firefox-Spdy: h2

shsf.try-adtranq.com/assets/icons/favicon-16x16.png

143.204.55.18

200 OK

767 B

URL GET HTTP/2
shsf.try-adtranq.com/assets/icons/favicon-16x16.png
IP
143.204.55.18:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
767 B (767 bytes)
Hash
055634234affa173e0fa12ecb25a3250
507ca6856b060381fbf0e27ba13a0ddbd3d10981
6e3bea7fe9044506a41748ebb532c7ad208da7720525f2a8d6540951a4208e79

HTTP Headers

GET /assets/icons/favicon-16x16.png HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 767
date: Thu, 09 May 2024 11:59:59 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 09 May 2024 11:34:53 GMT
etag: "2ff-61803cec13140"
accept-ranges: bytes
cache-control: max-age=2678400, public
expires: Sat, 08 Jun 2024 11:59:59 GMT
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 109l20oyInWOGP3uhcAjtk2gqoZKEG5RLedQ9fR65PWdoQusJAZ7mQ==
age: 112940
X-Firefox-Spdy: h2

shsf.try-adtranq.com/js/LogoGooglePlay.e0dd3dc1.js

143.204.55.18

200 OK

345 B

URL GET HTTP/2
shsf.try-adtranq.com/js/LogoGooglePlay.e0dd3dc1.js
IP
143.204.55.18:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
Java source, ASCII text, with very long lines (529)
Size
345 B (345 bytes)
Hash
07db13a39a343f1e384a9edbab7b65a4
626a16cab86860010dd4b8a4608c60491c92c3af
17d062d006fcc3a6792ef80e75e8ea899f095cbc5e6527f656e8d002aa781ee3

HTTP Headers

GET /js/LogoGooglePlay.e0dd3dc1.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/js/SurveyLayout.550e2f5c.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 345
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 09 May 2024 11:34:55 GMT
accept-ranges: bytes
content-encoding: gzip
date: Fri, 10 May 2024 19:22:19 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Fri, 10 May 2024 20:22:19 GMT
etag: "212-61803cedfb5c0-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: pkDWT0IQmttWY2W6ZI5Ox6rMrcQ2utdPB0YXEG8KA3STQ0QoERNwwQ==
age: 0
X-Firefox-Spdy: h2

shsf.try-adtranq.com/js/Atlas102Survey.6c52f511.js

143.204.55.18

200 OK

6.1 kB

URL GET HTTP/2
shsf.try-adtranq.com/js/Atlas102Survey.6c52f511.js
IP
143.204.55.18:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
ASCII text, with very long lines (19673)
Size
6.1 kB (6122 bytes)
Hash
3d170d4ad6cb50afcb0d388f8ac0b70c
2611dba78950de66ed3c20f75d0c94ccd2d43d93
a76ad17d4efee9a29479acc6074efd3b884d276ea485f6c51bda25d7cd54ac8d

HTTP Headers

GET /js/Atlas102Survey.6c52f511.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/js/SurveyLayout.550e2f5c.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 6122
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 09 May 2024 11:34:55 GMT
accept-ranges: bytes
content-encoding: gzip
date: Fri, 10 May 2024 19:22:19 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Fri, 10 May 2024 20:22:19 GMT
etag: "4cda-61803cedfb5c0-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: p-rxi-9xUYhzLo5AilHP2uuDpzYc45cLSGTzYqi9nf-HHTAMG21ndg==
age: 0
X-Firefox-Spdy: h2

shsf.try-adtranq.com/js/LogosSafeCheckout.18a706a9.js

143.204.55.18

200 OK

348 B

URL GET HTTP/2
shsf.try-adtranq.com/js/LogosSafeCheckout.18a706a9.js
IP
143.204.55.18:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
Java source, ASCII text, with very long lines (539)
Size
348 B (348 bytes)
Hash
1fd508e246b7980682115d5a56062366
9c3ea38da1077e351675e9b915f6ffd86152ed82
fdea838c57ad6f71bbb351c86696c299fdb56a009af2f6911fb4c39bd90f2465

HTTP Headers

GET /js/LogosSafeCheckout.18a706a9.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/js/SurveyLayout.550e2f5c.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 348
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 09 May 2024 11:34:55 GMT
accept-ranges: bytes
content-encoding: gzip
date: Fri, 10 May 2024 19:22:19 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Fri, 10 May 2024 20:22:19 GMT
etag: "21c-61803cedfb5c0-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: AR4rRk8HTt9GCsD6SlaFsoilEavtZZJNFA5pQD9trGazBtwf5LfjfA==
age: 0
X-Firefox-Spdy: h2

shsf.try-adtranq.com/img/logo-google-play.png

143.204.55.18

200 OK

4.6 kB

URL GET HTTP/2
shsf.try-adtranq.com/img/logo-google-play.png
IP
143.204.55.18:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
PNG image data, 464 x 109, 8-bit colormap, non-interlaced
Size
4.6 kB (4606 bytes)
Hash
132a1552300a0a8a58aa1cf9c5989094
db51496dcbbc7439159a0de7cd2592737ac49812
b905cb3a69e4b8adc4133ed22945181721cc0f6dc8fa065b395c7238d2b48f9a

HTTP Headers

GET /img/logo-google-play.png HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/survey/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 4606
date: Thu, 09 May 2024 14:01:44 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 09 May 2024 11:34:55 GMT
etag: "11fe-61803cedfb5c0"
accept-ranges: bytes
cache-control: max-age=2678400, public
expires: Sat, 08 Jun 2024 14:01:44 GMT
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: M63m-Her3J5QDu4hHXItw_7rssp_FO01dbpS0WIDGU-aW_UXukUsYQ==
age: 105635
X-Firefox-Spdy: h2

shsf.try-adtranq.com/img/logos-safe-checkout.webp

143.204.55.18

200 OK

18 kB

URL GET HTTP/2
shsf.try-adtranq.com/img/logos-safe-checkout.webp
IP
143.204.55.18:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
18 kB (17860 bytes)
Hash
a1301be1e948f0c62e4bc5b6f986d3e3
cccd9e2faac5e0438302674a3e7972c038cb28bc
cbece4adbd81f7fff8694544397e9d641ddbb497b2cb859eba375f8a622a32ae

HTTP Headers

GET /img/logos-safe-checkout.webp HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/survey/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/webp
content-length: 17860
date: Thu, 09 May 2024 11:35:36 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 09 May 2024 11:34:55 GMT
etag: "45c4-61803cedfb5c0"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sat, 08 Jun 2024 11:35:36 GMT
x-cache: Hit from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5jlIdaeSOjwrLA6cmHe6hzS7qtcFY4iuobIOs9bAjEolkkx3GwITBQ==
age: 114402
X-Firefox-Spdy: h2

shsf.try-adtranq.com/img/logo-google-play.webp

143.204.55.18

200 OK

4.1 kB

URL GET HTTP/2
shsf.try-adtranq.com/img/logo-google-play.webp
IP
143.204.55.18:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
4.1 kB (4050 bytes)
Hash
b380a06902fdf4a0cd1fb2b3fb3bcbd1
e423a0bcbc3da4f7af407625f6972dee8d7bdc79
d1860ddf921271084c11d16a2d8ae6172b68a92db0739dea866cef68229b2901

HTTP Headers

GET /img/logo-google-play.webp HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/survey/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/webp
content-length: 4050
date: Thu, 09 May 2024 11:35:36 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 09 May 2024 11:34:55 GMT
etag: "fd2-61803cedfb5c0"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sat, 08 Jun 2024 11:35:36 GMT
x-cache: Hit from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: v_REVyqGNfx-FjAKxBYsgZTP0ez4DH931VT7parHxKpY307Khxwtyg==
age: 114402
X-Firefox-Spdy: h2

shsf.try-adtranq.com/img/bg-layout-primary.jpg

143.204.55.18

200 OK

23 kB

URL GET HTTP/2
shsf.try-adtranq.com/img/bg-layout-primary.jpg
IP
143.204.55.18:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1024x768, components 3
Size
23 kB (22906 bytes)
Hash
791472b353174105fa771082fcce9a2a
eed0e0b1dd70f7f4854af645a6e09ae3e737ada2
fc9de09ec03e5bf98e3c1648d4f0f6f6d0c09981735049121da059875b7296f2

HTTP Headers

GET /img/bg-layout-primary.jpg HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/css/index.925b2269.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 22906
date: Thu, 09 May 2024 11:35:36 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 09 May 2024 11:34:55 GMT
etag: "597a-61803cedfb5c0"
accept-ranges: bytes
cache-control: max-age=2678400, public
expires: Sat, 08 Jun 2024 11:35:36 GMT
x-cache: Hit from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: IVDyjLLvk7xOvyD4YZ4pLlx8HnHmGtGw7J8ru0DV_ghLxqFO-BpY2g==
age: 114402
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Lato:ital,wght@0,400;0,700;1,400;1,700&display=swap

142.250.74.106

200 OK

934 B

URL GET HTTP/2
fonts.googleapis.com/css2?family=Lato:ital,wght@0,400;0,700;1,400;1,700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
gzip compressed data, max compression
Size
934 B (934 bytes)
Hash
20c61e1ebcda160a14d802c726a9d359
f758a56bfa332311d98d78fb285cd4279e6220ab
8770ba20e5c2d6e065432eb601c13e1b2b771e318675e0afa3295e73de0fec9d

HTTP Headers

GET /css2?family=Lato:ital,wght@0,400;0,700;1,400;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 19:22:19 GMT
date: Fri, 10 May 2024 19:22:19 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2

216.58.207.227

200 OK

23 kB

URL GET HTTP/2
fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23040, version 1.0
Size
23 kB (23040 bytes)
Hash
de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49

HTTP Headers

GET /s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shsf.try-adtranq.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 May 2024 01:55:22 GMT
expires: Sat, 10 May 2025 01:55:22 GMT
cache-control: public, max-age=31536000
age: 62818
last-modified: Tue, 02 May 2023 15:07:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2

216.58.207.227

200 OK

24 kB

URL GET HTTP/2
fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23580, version 1.0
Size
24 kB (23580 bytes)
Hash
e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537

HTTP Headers

GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shsf.try-adtranq.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 13:49:40 GMT
expires: Fri, 09 May 2025 13:49:40 GMT
cache-control: public, max-age=31536000
age: 106360
last-modified: Tue, 02 May 2023 15:17:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

shsf.try-adtranq.com/js/index.bfef4903.js

143.204.55.18

200 OK

326 kB

URL GET HTTP/2
shsf.try-adtranq.com/js/index.bfef4903.js
IP
143.204.55.18:443
ASN
#16509 AMAZON-02

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
326 kB (326198 bytes)
Hash
b2e2007eeeef9359a310d315d75ef1d8
cd40b1eb95044651935515f359f8bcd9eb72fafc
b467a5f39bc2b62ec8d2bf525d68359472e6454a1e66f979123dc3f62d9100b5

HTTP Headers

GET /js/index.bfef4903.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 09 May 2024 11:34:55 GMT
accept-ranges: bytes
content-encoding: gzip
date: Fri, 10 May 2024 19:22:19 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Fri, 10 May 2024 20:22:19 GMT
etag: "4fa36-61803cedfb5c0-gzip"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2dGm-551M0ykw7qSnYTN8bvMPZ4wap0PUPL7picdef3_KXZ6jTLoCg==
X-Firefox-Spdy: h2

shsf.try-adtranq.com/img/logos-safe-checkout.png

0.0.0.0

0 B

URL GET
shsf.try-adtranq.com/img/logos-safe-checkout.png
IP
0.0.0.0:0
ASN
#0

Requested by
https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
Certificate
IssuerAmazon
Subjectgetadtrnq.com
Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C
ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /img/logos-safe-checkout.png HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/survey/?geo=UK&locale=en&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f80b8dba-9deb-4b89-bb73-bb48a34c8fb3&utm_campaign=d8hqkrjp52k5jr61j3b4ip54&utm_medium=NO&ip_address=91.90.42.0&city=Oslo&region=Oslo&country=Norway&clickid=d8hqkrjp52k5jr61j3b4ip54&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=1052024&initial-cid=duqof37j50oa6r61j7j737ba
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (27)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML