code.jquery.com/jquery-3.2.1.slim.min.js
69.16.175.10200 OK 24 kB URL GET HTTP/2 code.jquery.com/jquery-3.2.1.slim.min.js
IP 69.16.175.10:443
Requested by https://freeadvertisingexchange.com/uhu/lufix22/44camelon/
Certificate IssuerSectigo Limited
Subject*.jquery.com
Fingerprint64:50:4C:BB:DF:F3:1D:70:CC:5D:9E:B7:BE:80:91:84:03:C1:D1:83
ValidityWed, 03 Aug 2022 00:00:00 GMT - Fri, 14 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (32012)
Hash 5f48fc77cac90c4778fa24ec9c57f37d
9e89d1515bc4c371b86f4cb1002fd8e377c1829f
9365920887b11b33a3dc4ba28a0f93951f200341263e3b9cefd384798e4be398
GET /jquery-3.2.1.slim.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://freeadvertisingexchange.com
DNT: 1
Connection: keep-alive
Referer: https://freeadvertisingexchange.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 05 Jun 2023 23:08:46 GMT
content-encoding: gzip
content-length: 23856
content-type: application/javascript; charset=utf-8
last-modified: Fri, 12 Aug 2022 13:47:02 GMT
accept-ranges: bytes
server: nginx
etag: W/"62f659d6-10fdd"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1686006526.dop203.sk1.t,1686006526.cds202.sk1.hn,1686006526.cds235.sk1.c
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js
104.17.25.14200 OK 6.2 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js
IP 104.17.25.14:443
Requested by https://freeadvertisingexchange.com/uhu/lufix22/44camelon/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (19015)
Hash 70d3fda195602fe8b75e0097eed74dde
c3b977aa4b8dfb69d651e07015031d385ded964b
a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66
GET /ajax/libs/popper.js/1.12.9/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://freeadvertisingexchange.com
DNT: 1
Connection: keep-alive
Referer: https://freeadvertisingexchange.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 05 Jun 2023 23:08:46 GMT
content-type: application/javascript; charset=utf-8
content-length: 6157
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-4af4"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 3386422
expires: Sat, 25 May 2024 23:08:46 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bcHx%2FP6tJxYjp%2BCr%2FtDhfkXCaG3EVHBJnV7Zb6Ta2tkYZvnUABr8inZmA7qCmF%2Fi5cGP%2FaClNy9SCJywkxEgvhp3ImBw0aaJc9PqNedm4w%2Fo6CmPI4XpzrwazuFD2f9EImZSOBuO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7d2c145789a6b517-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash e658f45faae0edd26f5908c922167f73
33e4e65ccf9cb9b15a7a9f5fd0083f1cebfa7064
5cc8bb25c78320b6cafdc4a6a017081a2c953cb86e1a1dc45c8f8811798adbc5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Jun 2023 23:08:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
freeadvertisingexchange.com/uhu/lufix22/44camelon/images/favicons
172.67.169.26200 OK 492 B URL GET HTTP/3 freeadvertisingexchange.com/uhu/lufix22/44camelon/images/favicons
IP 172.67.169.26:443
Requested by https://freeadvertisingexchange.com/uhu/lufix22/44camelon/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint4C:10:52:47:0B:E3:DC:90:F1:97:75:37:51:77:4C:1F:7B:1A:30:51
ValidityFri, 24 Mar 2023 00:00:00 GMT - Fri, 22 Mar 2024 23:59:59 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 3ca64f83fdcf25135d87e08af65e68c9
b82d0979d555bd137b33c15021129e06cbeea59a
2e30ff33270fd8687b0eb4d12652bfd967f23975f158bf8da93bece2ba4ab947
GET /uhu/lufix22/44camelon/images/favicons HTTP/1.1
Host: freeadvertisingexchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://freeadvertisingexchange.com/uhu/lufix22/44camelon/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 05 Jun 2023 23:08:46 GMT
content-length: 492
last-modified: Fri, 28 Apr 2023 18:03:12 GMT
accept-ranges: bytes
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0JK1y8YZcfaXhr4MP6jPRsxedJjvu8d%2BJBifWmYhPd3KH0FI03vphOwlFlPDqVBue1PeHOhbOvL5G5X4wuOSkGiDmO6mseVU%2BgEMoeKUr4g1TI5nuZrPDVNZ5MJg7sWyIIY%2Fp8TQzjIjji9SBp8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d2c14570f7db4f7-OSL
alt-svc: h3=":443"; ma=86400
ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js
142.250.74.74200 OK 30 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js
IP 142.250.74.74:443
Requested by https://freeadvertisingexchange.com/uhu/lufix22/44camelon/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type ASCII text, with very long lines (32065)
Hash 2f6b11a7e914718e0290410e85366fe9
69bb69e25ca7d5ef0935317584e6153f3fd9a88c
05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e
GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://freeadvertisingexchange.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 May 2023 00:16:38 GMT
expires: Thu, 30 May 2024 00:16:38 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 514328
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
freeadvertisingexchange.com/uhu/lufix22/44camelon/images/26-269507_arbys-logo-transparent-norton-secured-logo-png-png.png
172.67.169.26200 OK 56 kB URL GET HTTP/3 freeadvertisingexchange.com/uhu/lufix22/44camelon/images/26-269507_arbys-logo-transparent-norton-secured-logo-png-png.png
IP 172.67.169.26:443
Requested by https://freeadvertisingexchange.com/uhu/lufix22/44camelon/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint4C:10:52:47:0B:E3:DC:90:F1:97:75:37:51:77:4C:1F:7B:1A:30:51
ValidityFri, 24 Mar 2023 00:00:00 GMT - Fri, 22 Mar 2024 23:59:59 GMT
File type PNG image data, 860 x 460, 8-bit/color RGBA, non-interlaced\012- data
Hash ce793ac1e75b3f60908cc6e3d63379e5
3bf1bad607d899bb91decb1bb0b32a0d82c233a8
42171d76548498998da88f032aba50a028b9481fd7004a9a3b5d3b8d98fe48a2
GET /uhu/lufix22/44camelon/images/26-269507_arbys-logo-transparent-norton-secured-logo-png-png.png HTTP/1.1
Host: freeadvertisingexchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://freeadvertisingexchange.com/uhu/lufix22/44camelon/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 05 Jun 2023 23:08:46 GMT
content-type: image/png
content-length: 56109
last-modified: Fri, 28 Apr 2023 18:03:10 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5TlJa7wn2i9AHt6O5JM5jgvQgqPfHRcQFmzLHIinhntoz38PmHyS%2BuWfhDd5fiI0wPSfSCW5InY8vWAaR23yNl1POEiv1UYhGFqnTi9SWFNJSySuUJmVWiYT4n2UK8E0tBqRsJzcUB567mN57vM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d2c14570f80b4f7-OSL
alt-svc: h3=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash f6e0fad54cb828605d258b3a3fc3494d
1998f119ae42787f25cac22435e05b7d8a7ecbcc
fdde19b20684979988b4db7567fdb883ef8cd0438f4c4ef053bdd058011f1dbc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Jun 2023 23:08:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firebasestorage.googleapis.com/v0/b/chdi98-u54r.appspot.com/o/favicon.png
142.250.74.74403 Forbidden 73 B URL GET HTTP/2 firebasestorage.googleapis.com/v0/b/chdi98-u54r.appspot.com/o/favicon.png
IP 142.250.74.74:443
Requested by https://freeadvertisingexchange.com/uhu/lufix22/44camelon/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type JSON data\012- , ASCII text
Hash 55b2925692bb8c9ca8d36dbb8acfcfe6
601337e7dadf9dc2f33749c0985500bc839245ef
8cb089d6475d64276d4e54aa50c0296082f88546c0ae4b44797bde6ac541a35e
GET /v0/b/chdi98-u54r.appspot.com/o/favicon.png HTTP/1.1
Host: firebasestorage.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://freeadvertisingexchange.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 403 Forbidden
x-guploader-uploadid: ADPycdt7DLO0PgxOVv_31IC8aPBxEsaVQZo38m9Y3SJlDA0YmJKHW_K2UHSg35NQ746XeFiqFxS-zdIjW0ymZG08x_csFZlbPH_p
x-content-type-options: nosniff
content-type: application/json; charset=UTF-8
access-control-expose-headers: Content-Range, X-Firebase-Storage-XSRF
access-control-allow-origin: *
date: Mon, 05 Jun 2023 23:08:47 GMT
expires: Mon, 05 Jun 2023 23:08:47 GMT
cache-control: private, max-age=0
content-length: 73
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
freeadvertisingexchange.com/uhu/lufix22/44camelon
172.67.169.26301 Moved Permanently 14 kB URL User Request GET HTTP/2 freeadvertisingexchange.com/uhu/lufix22/44camelon
IP 172.67.169.26:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint4C:10:52:47:0B:E3:DC:90:F1:97:75:37:51:77:4C:1F:7B:1A:30:51
ValidityFri, 24 Mar 2023 00:00:00 GMT - Fri, 22 Mar 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert openphish Webmail Providers
GET /uhu/lufix22/44camelon HTTP/1.1
Host: freeadvertisingexchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Mon, 05 Jun 2023 23:08:46 GMT
content-type: text/html; charset=iso-8859-1
location: https://freeadvertisingexchange.com/uhu/lufix22/44camelon/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AXuT3VUpch2Pt54Qm9mL7eCKPNTxAYtZXAXhfs5mo3gtt1I4fW4iQ7MIItAbd7ckWam5rGMuthNFz1SBPqMXNQVVJV%2BJEgSre2gBTAE1f9K%2FoSFVWJzKeT1Mw7AX3VYih9npgfH%2BpS%2BL2IlChj4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d2c14531c6ab51b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
freeadvertisingexchange.com/uhu/lufix22/44camelon/
172.67.169.26200 OK 14 kB URL User Request GET HTTP/2 freeadvertisingexchange.com/uhu/lufix22/44camelon/
IP 172.67.169.26:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint4C:10:52:47:0B:E3:DC:90:F1:97:75:37:51:77:4C:1F:7B:1A:30:51
ValidityFri, 24 Mar 2023 00:00:00 GMT - Fri, 22 Mar 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1720), with CRLF, LF line terminators
Hash 6341d8f5153fa00a6cf5a095a491cacf
41b6d1e0e8334b29d27e869b25f425bed0fba97b
a4f4e44e88ae6911bcb373b611d97267e86c134ce579ccccdd3220b447c0e369
Analyzer Verdict Alert urlquery phishing Phishing - Generic phishing
GET /uhu/lufix22/44camelon/ HTTP/1.1
Host: freeadvertisingexchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 05 Jun 2023 23:08:46 GMT
content-type: text/html
last-modified: Fri, 28 Apr 2023 18:04:36 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uYl4640ydl77Zzm1ayRhTXj9idliGwdbnUdbVCPjY9fNXZAf7KS106EZszl7ZuzXjpVBhFeFFvR%2BJ7ko6s69rVP7RyleHkiWejE%2Fdn0vtdVl4e4PS11ByW%2FKx7kminK15pM9FziHqDUWPbCJMto%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d2c14541d74b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
freeadvertisingexchange.com/uhu/lufix22/44camelon/js/jquery-1.11.1.min.js.download
172.67.169.26200 OK 96 kB URL GET HTTP/3 freeadvertisingexchange.com/uhu/lufix22/44camelon/js/jquery-1.11.1.min.js.download
IP 172.67.169.26:443
Requested by https://freeadvertisingexchange.com/uhu/lufix22/44camelon/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint4C:10:52:47:0B:E3:DC:90:F1:97:75:37:51:77:4C:1F:7B:1A:30:51
ValidityFri, 24 Mar 2023 00:00:00 GMT - Fri, 22 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (32086)
Hash 8101d596b2b8fa35fe3a634ea342d7c3
d6c1f41972de07b09bfa63d2e50f9ab41ec372bd
540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441
GET /uhu/lufix22/44camelon/js/jquery-1.11.1.min.js.download HTTP/1.1
Host: freeadvertisingexchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://freeadvertisingexchange.com/uhu/lufix22/44camelon/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 05 Jun 2023 23:08:46 GMT
content-type: application/javascript
last-modified: Fri, 28 Apr 2023 18:03:12 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Py2n2ViCzg%2FYAFYH3ij7paAGArNIr17HiwfmBVwtHRfZjTTH9je6A6S%2Blw%2BQLgm1X5WR81hFohEqod0xHvch7jDBhidw1qaj3OP7zLVNcNIgKVRs1RTt2Yw%2BYZU9A%2BNKq233W9mw1aOjsKpSpyc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d2c14570f79b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js
104.18.10.207200 OK 49 kB URL GET HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js
IP 104.18.10.207:443
Requested by https://freeadvertisingexchange.com/uhu/lufix22/44camelon/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (48664)
Hash 14d449eb8876fa55e1ef3c2cc52b0c17
a9545831803b1359cfeed47e3b4d6bae68e40e99
e7ed36ceee5450b4243bbc35188afabdfb4280c7c57597001de0ed167299b01b
GET /bootstrap/4.0.0/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://freeadvertisingexchange.com
DNT: 1
Connection: keep-alive
Referer: https://freeadvertisingexchange.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 05 Jun 2023 23:08:46 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"14d449eb8876fa55e1ef3c2cc52b0c17"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 11/25/2022 23:23:38
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 865
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 00b6f28fd31b71c0c3f42dc5c95fae2f
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7d2c14579d23b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js
104.18.11.207200 OK 51 kB URL GET HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js
IP 104.18.11.207:443
Requested by https://freeadvertisingexchange.com/uhu/lufix22/44camelon/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (50758)
Hash 67176c242e1bdc20603c878dee836df3
27a71b00383d61ef3c489326b3564d698fc1227c
56c12a125b021d21a69e61d7190cefa168d6c28ce715265cea1b3b0112d169c4
GET /bootstrap/4.1.3/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://freeadvertisingexchange.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 05 Jun 2023 23:08:46 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:06 GMT
cdn-cachedat: 11/15/2021 23:30:00
cdn-proxyver: 1.0
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: a35b0179a28ed953258d0fb41376a09c
cdn-cache: HIT
cf-cache-status: HIT
age: 29050374
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7d2c1457aee8b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2