Report - iytimg.com

Report Overview

Submitted URL
iytimg.com
IP
185.53.178.50
ASN
#19905 NEUSTAR-AS6
Submitted
2023-05-26 15:37:43
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
iytimg.com	unknown	2018-07-23	2015-09-23	2023-04-27	2.5 kB	8.1 kB	185.53.178.50
ocsp.pki.goog	175	2016-06-13	2018-07-01	2023-05-26	1.3 kB	2.8 kB	142.250.74.3
www.google.com	7	1997-09-15	2015-05-10	2023-05-26	3.8 kB	209 kB	142.250.74.132
d38psrni17bvxu.cloudfront.net	unknown	2008-04-25	2022-09-22	2023-05-26	473 B	12 kB	54.230.245.138
afs.googleusercontent.com	12123	2008-11-17	2013-05-06	2023-05-26	967 B	2.1 kB	142.250.74.97

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (14)

	URL	Size	First Seen	Last Seen
	iytimg.com/	968 B	2023-03-08	2024-04-19
Pretty URL iytimg.com/ IP 185.53.178.50 ASN #19905 NEUSTAR-AS6 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 02:24:08 Last Seen2024-04-19 15:56:40 Times Seen27678 Hash c77554570ae0fa8e4fb31747dc213058 e989fbde07e6a68975c7a31e1d4df76afd90b96f c3f831fe1717c6d76a8950ac5e7dc88ceee7440d079b11584be5c6c5b3269e77 Loading...

	iytimg.com/	750 B	2023-05-26	2023-05-26
Pretty URL iytimg.com/ IP 185.53.178.50 ASN #19905 NEUSTAR-AS6 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-26 17:37:45 Last Seen2023-05-26 17:37:45 Times Seen1 Hash c6a9d270badc1aa8ae5ae9dd2063f573 2c694dfc8c7d8c957a4cc329682b6db0cd22e7f8 1aa3522d522e5baa4cf560142e6d88a2a22a5be8f9f0d0a499aaed8f04bf0363 Loading...

	iytimg.com/	246 B	2023-05-26	2023-05-26
Pretty URL iytimg.com/ IP 185.53.178.50 ASN #19905 NEUSTAR-AS6 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-26 17:37:45 Last Seen2023-05-26 17:37:45 Times Seen1 Hash e71fb3f73715e128dc2a33fff26bf370 fc7b2c3e63b2543142a0200d9bef51c57cb555d0 88462b05c8198cff45b7c9ad2d3c36285705991ede9430e74f3aa8d129a08dec Loading...

	iytimg.com/	7.0 kB	2023-03-13	2024-01-03
Pretty URL iytimg.com/ IP 185.53.178.50 ASN #19905 NEUSTAR-AS6 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 06:10:31 Last Seen2024-01-03 14:22:39 Times Seen25920 Hash 04b2b624f94797c26d17a57f399d9356 3143986e839c47a5c1eff03bd9df63ecc54dca9c 233b1cbfb295a0629bcf68a2a4198a62132f02ee1f061ada2ce7143bd5d2dabb Loading...

	iytimg.com/	1.3 kB	2023-05-26	2023-05-26
Pretty URL iytimg.com/ IP 185.53.178.50 ASN #19905 NEUSTAR-AS6 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-26 17:37:45 Last Seen2023-05-26 17:37:45 Times Seen1 Hash 3abc2de7b4aa6533997496e26f32942c bfc3bd54e9d5b2a7324b5ae6fe1f82ff4f12fd4b eada8342bb57cf1db0be5b917c1cf40aa5e19ab99ca90ab151b4c29bacf8aa8f Loading...

	iytimg.com/	20 B	2023-03-12	2024-01-03
Pretty URL iytimg.com/ IP 185.53.178.50 ASN #19905 NEUSTAR-AS6 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 13:00:05 Last Seen2024-01-03 14:22:39 Times Seen13851 Hash bb9472ed191ad69435d630c50e139a17 4efa10c70dbfe37ec4c8bb5a04b907c549de7e3d eec645c8d410f4d6accc5c4c3326bbff80fdd9d105e423ad50c5c87b22845492 Loading...

	iytimg.com/	65 B	2023-03-12	2023-12-01
Pretty URL iytimg.com/ IP 185.53.178.50 ASN #19905 NEUSTAR-AS6 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 13:42:47 Last Seen2023-12-01 03:08:56 Times Seen107 Hash 1cc1a154cdabcdf3e5ebe927f0f07db5 ca5bef7fb4f6b483e9d0cb62d044e5cfd7b0566f ea8485593de31696b91f83285265c89f8b24d1d7f7edcc9ad4b5c212811d0138 Loading...

	www.google.com/adsense/domains/caf.js?abp=1	148 kB	2023-05-25	2023-05-30
Pretty URL www.google.com/adsense/domains/caf.js?abp=1 IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-25 23:08:15 Last Seen2023-05-30 16:29:05 Times Seen2524 Hash 8d684f66adf17aa00306695249b7be57 e7741f02232c5862c6ed469116adc3c235b81e95 cdbd80fb34dd7609fce16a6b9398be8c1926687eab7aa32e07953e83f12ae276 Loading...

	www.google.com/adsense/domains/caf.js	148 kB	2023-05-25	2023-05-30
Pretty URL www.google.com/adsense/domains/caf.js IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-25 23:54:25 Last Seen2023-05-30 16:37:39 Times Seen699 Hash c6e17017fa9e499fd41345c8f24f0625 8e0c7704d24426e5f058d14336961665b6d7789a 96e9c283ce074cd307113de7ce9d7cf59dc8f509878bded8dd9e7c2ff13fb7e8 Loading...

	iytimg.com/	472 B	2023-03-13	2024-01-03
Pretty URL iytimg.com/ IP 185.53.178.50 ASN #19905 NEUSTAR-AS6 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 06:13:46 Last Seen2024-01-03 14:22:39 Times Seen25251 Hash d31eefc1e54bdae9204297e4ae5b9cce fc49bf319586a623670a81c01d43bbd93b477fbb 2683a6247a15433dd269eaefbc7131b1326c7bc0146361913ea10ad8fa23bb14 Loading...

	iytimg.com/	669 B	2023-05-26	2023-05-26
Pretty URL iytimg.com/ IP 185.53.178.50 ASN #19905 NEUSTAR-AS6 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-26 17:37:45 Last Seen2023-05-26 17:37:45 Times Seen1 Hash 3adc76c0ecda63eeab00f8284cf2f502 75dcae424b63cf175374415cb7769fddec875cbf dc0c5b52ebd485e808d2dac8f6be5b04564bfb23e8895237e71769382f6d4f96 Loading...

	www.google.com/afs/ads?adtest=off&psid=8676772880&pcsa=false&channel=000001%2Cbucket003%2Cbucket077&client=dp-teaminternet04_3ph&r=m&hl=no&rpbu=https%3A%2F%2Fiytimg.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMDMsYnVja2V0MDc3fHx8fHx8NjQ3MGQyMzY1ZWE2OXx8fDE2ODUxMTU0NDYuMzk0MnxhMjk1NTE1NGU2ZmVmYmQ4YzE3ZDY4ZWNhYjU0M2Y0MmNjZTA4MmMzfHx8fHwxfHwwfDB8fHx8MXx8fHx8MHwwfHx8fHx8fHxaSEF0ZEdWaGJXbHVkR1Z5Ym1WME1EUmZNM0JvfGQ4MmYzNjFmYmYxYTJjZGI5NWNmNzZkYzY3MzEwM2Q2M2VlZTU3YmR8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXxhZjg4ODI1MWFmMGU1MzU0ZmFkZmI2ZTA2YjA2ODUxMjNiYTkzYjhkfDB8ZHAtdGVhbWludGVybmV0MDRfM3BofDB8MA%253D%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2551495523503148&oe=UTF-8&ie=UTF-8&fexp=21404&format=r3%7Cs&nocache=1011685115446631&num=0&output=afd_ads&domain_name=iytimg.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1685115446633&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=760&frm=0&cl=534159633&uio=--&cont=tc&jsid=caf&jsv=534159633&rurl=https%3A%2F%2Fiytimg.com%2F&adbw=master-1%3A530	5.9 kB	2023-05-26	2023-05-26
Pretty URL www.google.com/afs/ads?adtest=off&psid=8676772880&pcsa=false&channel=000001%2Cbucket003%2Cbucket077&client=dp-teaminternet04_3ph&r=m&hl=no&rpbu=https%3A%2F%2Fiytimg.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMDMsYnVja2V0MDc3fHx8fHx8NjQ3MGQyMzY1ZWE2OXx8fDE2ODUxMTU0NDYuMzk0MnxhMjk1NTE1NGU2ZmVmYmQ4YzE3ZDY4ZWNhYjU0M2Y0MmNjZTA4MmMzfHx8fHwxfHwwfDB8fHx8MXx8fHx8MHwwfHx8fHx8fHxaSEF0ZEdWaGJXbHVkR1Z5Ym1WME1EUmZNM0JvfGQ4MmYzNjFmYmYxYTJjZGI5NWNmNzZkYzY3MzEwM2Q2M2VlZTU3YmR8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXxhZjg4ODI1MWFmMGU1MzU0ZmFkZmI2ZTA2YjA2ODUxMjNiYTkzYjhkfDB8ZHAtdGVhbWludGVybmV0MDRfM3BofDB8MA%253D%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2551495523503148&oe=UTF-8&ie=UTF-8&fexp=21404&format=r3%7Cs&nocache=1011685115446631&num=0&output=afd_ads&domain_name=iytimg.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1685115446633&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=760&frm=0&cl=534159633&uio=--&cont=tc&jsid=caf&jsv=534159633&rurl=https%3A%2F%2Fiytimg.com%2F&adbw=master-1%3A530 IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-26 17:37:45 Last Seen2023-05-26 17:37:45 Times Seen1 Hash 0c54372d8a0bac29bb4d214dac5c9493 804ad40abdc0b2b327e23ba85106217b3a829889 0a4b66ece55b7f24ee2c34c410a7b81facf564753123da549368d8505d720deb Loading...

	iytimg.com/	40 B	2023-04-18	2023-06-27
Pretty URL iytimg.com/ IP 185.53.178.50 ASN #19905 NEUSTAR-AS6 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-18 09:10:37 Last Seen2023-06-27 14:44:07 Times Seen10821 Hash bcdb5f35f5da29644017c63a72a72921 5bd1c81154b546c01c88b02fdb29b687f0c9cef3 a71d2bc0274b66fc2cb2c8daf1bf8b8a6a4cbfd5bd1e30574e9abb61aa9c3983 Loading...

	iytimg.com/	71 B	2023-03-08	2024-01-04
Pretty URL iytimg.com/ IP 185.53.178.50 ASN #19905 NEUSTAR-AS6 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 02:23:53 Last Seen2024-01-04 08:38:22 Times Seen25410 Hash 1a5a5e1b6a26f57b95e3dd42f60612f4 b62a27e55a59b49084e682bd3c1588f6a40881ab 4066da16910907c7962da8e7011bf0cd62b6f2dcddb1911e3ea2de03ce3e1dc7 Loading...

HTTP Transactions (17)

	URL	IP	Response	Size
	iytimg.com/	185.53.178.50	200 OK	5.6 kB
URL User Request GET HTTP/1.1 iytimg.com/ IP 185.53.178.50:443 ASN #19905 NEUSTAR-AS6 Certificate IssuerLet's Encrypt Subjectiytimg.com Fingerprint45:A5:EF:80:42:C6:AB:0F:BB:23:E4:C7:46:B9:AB:25:80:4C:EF:5C ValidityThu, 27 Apr 2023 09:25:42 GMT - Wed, 26 Jul 2023 09:25:41 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1367) Size 5.6 kB (5616 bytes) Hash b0ec75a20ffdf4d7f4116ef73286bceb f7b7052930f551528a2fa7ab9b3d7af5ec0f21ff 83997f5edb976ea974a1143f5aef38c6d021c27e56902e0c90ac98ce672e6954 HTTP Headers `GET / HTTP/1.1 Host: iytimg.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Accept-Ch: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile Accept-Ch-Lifetime: 30 Content-Encoding: gzip Content-Type: text/html; charset=UTF-8 Date: Fri, 26 May 2023 15:37:26 GMT Server: nginx Vary: Accept-Encoding X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_ND+iqtXJhrS5OC2Hnc4x1FaOkyrM5MZ2Hafj6MLsnLebaRx/VBo9+vlg/0yHRu28XNFq8pI+TEfruBSWfn8HVw== X-Buckets: bucket003,bucket077 X-Domain: iytimg.com X-Language: norwegian X-Subdomain: X-Template: tpl_CleanPeppermintBlack_twoclick Transfer-Encoding: chunked

	ocsp.pki.goog/gts1c3	142.250.74.3		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 6b72408b6aa025b7292dfa9884621463 e3cc9bd0efe2a7ff90b23e74cff27b8f9a21933a 21aaf9003012d1c5b12cc116b740cd9f650340c1c738c4398bf9dea97d467f88 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 26 May 2023 15:37:26 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.google.com/adsense/domains/caf.js?abp=1	142.250.74.132	200 OK	54 kB
URL GET HTTP/2 www.google.com/adsense/domains/caf.js?abp=1 IP 142.250.74.132:443 ASN #15169 GOOGLE Requested by https://iytimg.com/ Certificate IssuerGoogle Trust Services LLC Subjectwww.google.com Fingerprint85:AD:43:66:C0:73:07:1B:B5:5D:4A:83:4B:76:3F:DA:4B:2B:E1:F8 ValidityMon, 24 Apr 2023 12:01:16 GMT - Mon, 17 Jul 2023 12:01:15 GMT File type gzip compressed data, max compression\012- data Size 54 kB (54240 bytes) Hash 51f0178e5a4d2aba7596ad3409333239 34003865262b856699324cf4131841f6a711d607 afb3be40d23e15e5d7ef77444afcb2a0f4dd2a866c3ed96e0212d586953cac43 HTTP Headers `GET /adsense/domains/caf.js?abp=1 HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://iytimg.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes vary: Accept-Encoding content-type: text/javascript; charset=UTF-8 content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="ads-afs-ui" report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]} date: Fri, 26 May 2023 15:37:26 GMT expires: Fri, 26 May 2023 15:37:26 GMT cache-control: private, max-age=3600 etag: "1191932228224773569" x-content-type-options: nosniff content-encoding: gzip server: sffe x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	iytimg.com/track.php?domain=iytimg.com&toggle=browserjs&uid=MTY4NTExNTQ0Ni4zODc3OmUyNjBiYjU1NzFiZWU1ZWY3ZmU4OTY5ZjZhY2U2MGQwMjc4M2ZhNDQwNjY2NDJkYTNkOTAzMGZkMzU1ZjY2OWQ6NjQ3MGQyMzY1ZWFhMQ%3D%3D	185.53.178.50	200 OK	20 B
URL GET HTTP/1.1 iytimg.com/track.php?domain=iytimg.com&toggle=browserjs&uid=MTY4NTExNTQ0Ni4zODc3OmUyNjBiYjU1NzFiZWU1ZWY3ZmU4OTY5ZjZhY2U2MGQwMjc4M2ZhNDQwNjY2NDJkYTNkOTAzMGZkMzU1ZjY2OWQ6NjQ3MGQyMzY1ZWFhMQ%3D%3D IP 185.53.178.50:443 ASN #19905 NEUSTAR-AS6 Requested by https://iytimg.com/ Certificate IssuerLet's Encrypt Subjectiytimg.com Fingerprint45:A5:EF:80:42:C6:AB:0F:BB:23:E4:C7:46:B9:AB:25:80:4C:EF:5C ValidityThu, 27 Apr 2023 09:25:42 GMT - Wed, 26 Jul 2023 09:25:41 GMT File type gzip compressed data, max speed, from Unix\012- data Size 20 B (20 bytes) Hash a4745abc5e7fdb89cc6df3069f3c6e69 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf HTTP Headers GET /track.php?domain=iytimg.com&toggle=browserjs&uid=MTY4NTExNTQ0Ni4zODc3OmUyNjBiYjU1NzFiZWU1ZWY3ZmU4OTY5ZjZhY2U2MGQwMjc4M2ZhNDQwNjY2NDJkYTNkOTAzMGZkMzU1ZjY2OWQ6NjQ3MGQyMzY1ZWFhMQ%3D%3D HTTP/1.1 Host: iytimg.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://iytimg.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Accept-Ch: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile Accept-Ch-Lifetime: 30 Access-Control-Allow-Origin: * Content-Encoding: gzip Content-Type: text/html; charset=UTF-8 Date: Fri, 26 May 2023 15:37:26 GMT Server: nginx Vary: Accept-Encoding X-Custom-Track: browserjs Content-Length: 20`

	iytimg.com/ls.php?t=6470d236&token=af888251af0e5354fadfb6e06b0685123ba93b8d	185.53.178.50	201 Created	16 B
URL GET HTTP/1.1 iytimg.com/ls.php?t=6470d236&token=af888251af0e5354fadfb6e06b0685123ba93b8d IP 185.53.178.50:443 ASN #19905 NEUSTAR-AS6 Requested by https://iytimg.com/ Certificate IssuerLet's Encrypt Subjectiytimg.com Fingerprint45:A5:EF:80:42:C6:AB:0F:BB:23:E4:C7:46:B9:AB:25:80:4C:EF:5C ValidityThu, 27 Apr 2023 09:25:42 GMT - Wed, 26 Jul 2023 09:25:41 GMT File type JSON data\012- , ASCII text, with no line terminators Size 16 B (16 bytes) Hash 7363e85fe9edee6f053a4b319588c086 a15e2127145548437173fc17f3e980e3f3dee2d0 c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97 HTTP Headers `GET /ls.php?t=6470d236&token=af888251af0e5354fadfb6e06b0685123ba93b8d HTTP/1.1 Host: iytimg.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://iytimg.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 201 Created Accept-Ch: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile Accept-Ch-Lifetime: 30 Access-Control-Allow-Methods: POST, OPTIONS Access-Control-Allow-Origin: Access-Control-Max-Age: 86400 Charset: utf-8 Content-Type: text/javascript;charset=UTF-8 Date: Fri, 26 May 2023 15:37:26 GMT Server: nginx X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_Pvcd3qlgV4tcNTzPNYsPqyB19zagkdvov2PtnMxKONjBJQzWH8W7MMogk9nlt3gmsLAbKN93oVazrguwRF2Sug== X-Log-Success: 6470d236995e2731fd267142 Content-Length: 16

	d38psrni17bvxu.cloudfront.net/themes/cleanPeppermintBlack_657d9013/img/arrows.png	54.230.245.138	200 OK	11 kB
URL GET HTTP/2 d38psrni17bvxu.cloudfront.net/themes/cleanPeppermintBlack_657d9013/img/arrows.png IP 54.230.245.138:443 ASN #16509 AMAZON-02 Requested by https://iytimg.com/ Certificate IssuerAmazon Subject.cloudfront.net FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT File type PNG image data, 1500 x 600, 8-bit colormap, non-interlaced\012- data Size 11 kB (11375 bytes) Hash 0cb2e5165dc9324eb462199f04e1ffa9 9e0f89847ec8a98d98a6020bc5c4ed32b7a48bf8 67dff0aad873050f12609885f2264417ccdd0d438311000a704c89f0865f7865 HTTP Headers `GET /themes/cleanPeppermintBlack_657d9013/img/arrows.png HTTP/1.1 Host: d38psrni17bvxu.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://iytimg.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK content-type: image/png content-length: 11375 server: nginx date: Fri, 26 May 2023 01:24:57 GMT last-modified: Thu, 23 Jun 2022 10:44:43 GMT accept-ranges: bytes etag: "62b4441b-2c6f" x-cache: Hit from cloudfront via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: 5k6HIsVKfLM7Q9clowyOBE5zOCJLLJl9BIJvTl_pWO0JdokteQL88Q== age: 51149 X-Firefox-Spdy: h2`

	iytimg.com/favicon.ico	185.53.178.50	200 OK	0 B
URL GET HTTP/1.1 iytimg.com/favicon.ico IP 185.53.178.50:443 ASN #19905 NEUSTAR-AS6 Requested by https://iytimg.com/ Certificate IssuerLet's Encrypt Subjectiytimg.com Fingerprint45:A5:EF:80:42:C6:AB:0F:BB:23:E4:C7:46:B9:AB:25:80:4C:EF:5C ValidityThu, 27 Apr 2023 09:25:42 GMT - Wed, 26 Jul 2023 09:25:41 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: iytimg.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://iytimg.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Content-Length: 0 Content-Type: image/x-icon Date: Fri, 26 May 2023 15:37:26 GMT Etag: "5ebab1f0-0" Last-Modified: Tue, 12 May 2020 14:25:52 GMT Server: nginx`

	www.google.com/afs/ads?adtest=off&psid=8676772880&pcsa=false&channel=000001%2Cbucket003%2Cbucket077&client=dp-teaminternet04_3ph&r=m&hl=no&rpbu=https%3A%2F%2Fiytimg.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMDMsYnVja2V0MDc3fHx8fHx8NjQ3MGQyMzY1ZWE2OXx8fDE2ODUxMTU0NDYuMzk0MnxhMjk1NTE1NGU2ZmVmYmQ4YzE3ZDY4ZWNhYjU0M2Y0MmNjZTA4MmMzfHx8fHwxfHwwfDB8fHx8MXx8fHx8MHwwfHx8fHx8fHxaSEF0ZEdWaGJXbHVkR1Z5Ym1WME1EUmZNM0JvfGQ4MmYzNjFmYmYxYTJjZGI5NWNmNzZkYzY3MzEwM2Q2M2VlZTU3YmR8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXxhZjg4ODI1MWFmMGU1MzU0ZmFkZmI2ZTA2YjA2ODUxMjNiYTkzYjhkfDB8ZHAtdGVhbWludGVybmV0MDRfM3BofDB8MA%253D%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2551495523503148&oe=UTF-8&ie=UTF-8&fexp=21404&format=r3%7Cs&nocache=1011685115446631&num=0&output=afd_ads&domain_name=iytimg.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1685115446633&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=760&frm=0&cl=534159633&uio=--&cont=tc&jsid=caf&jsv=534159633&rurl=https%3A%2F%2Fiytimg.com%2F&adbw=master-1%3A530	142.250.74.132	200 OK	2.5 kB
URL GET HTTP/3 www.google.com/afs/ads?adtest=off&psid=8676772880&pcsa=false&channel=000001%2Cbucket003%2Cbucket077&client=dp-teaminternet04_3ph&r=m&hl=no&rpbu=https%3A%2F%2Fiytimg.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMDMsYnVja2V0MDc3fHx8fHx8NjQ3MGQyMzY1ZWE2OXx8fDE2ODUxMTU0NDYuMzk0MnxhMjk1NTE1NGU2ZmVmYmQ4YzE3ZDY4ZWNhYjU0M2Y0MmNjZTA4MmMzfHx8fHwxfHwwfDB8fHx8MXx8fHx8MHwwfHx8fHx8fHxaSEF0ZEdWaGJXbHVkR1Z5Ym1WME1EUmZNM0JvfGQ4MmYzNjFmYmYxYTJjZGI5NWNmNzZkYzY3MzEwM2Q2M2VlZTU3YmR8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXxhZjg4ODI1MWFmMGU1MzU0ZmFkZmI2ZTA2YjA2ODUxMjNiYTkzYjhkfDB8ZHAtdGVhbWludGVybmV0MDRfM3BofDB8MA%253D%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2551495523503148&oe=UTF-8&ie=UTF-8&fexp=21404&format=r3%7Cs&nocache=1011685115446631&num=0&output=afd_ads&domain_name=iytimg.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1685115446633&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=760&frm=0&cl=534159633&uio=--&cont=tc&jsid=caf&jsv=534159633&rurl=https%3A%2F%2Fiytimg.com%2F&adbw=master-1%3A530 IP 142.250.74.132:443 ASN #15169 GOOGLE Requested by https://iytimg.com/ Certificate IssuerGoogle Trust Services LLC Subject.google.com Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33 ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5039) Size 2.5 kB (2515 bytes) Hash 6e980b44b3ebba06bd43c4ed777b7ef8 0345d6fa30f9fcc2746040ee0a4c227e89f1b849 5f15a6e1838bbddfb98b7126134eb02d28d2006cde487087f527c01c7e277fee HTTP Headers GET /afs/ads?adtest=off&psid=8676772880&pcsa=false&channel=000001%2Cbucket003%2Cbucket077&client=dp-teaminternet04_3ph&r=m&hl=no&rpbu=https%3A%2F%2Fiytimg.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMDMsYnVja2V0MDc3fHx8fHx8NjQ3MGQyMzY1ZWE2OXx8fDE2ODUxMTU0NDYuMzk0MnxhMjk1NTE1NGU2ZmVmYmQ4YzE3ZDY4ZWNhYjU0M2Y0MmNjZTA4MmMzfHx8fHwxfHwwfDB8fHx8MXx8fHx8MHwwfHx8fHx8fHxaSEF0ZEdWaGJXbHVkR1Z5Ym1WME1EUmZNM0JvfGQ4MmYzNjFmYmYxYTJjZGI5NWNmNzZkYzY3MzEwM2Q2M2VlZTU3YmR8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXxhZjg4ODI1MWFmMGU1MzU0ZmFkZmI2ZTA2YjA2ODUxMjNiYTkzYjhkfDB8ZHAtdGVhbWludGVybmV0MDRfM3BofDB8MA%253D%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2551495523503148&oe=UTF-8&ie=UTF-8&fexp=21404&format=r3%7Cs&nocache=1011685115446631&num=0&output=afd_ads&domain_name=iytimg.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1685115446633&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=760&frm=0&cl=534159633&uio=--&cont=tc&jsid=caf&jsv=534159633&rurl=https%3A%2F%2Fiytimg.com%2F&adbw=master-1%3A530 HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://iytimg.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK content-type: text/html; charset=UTF-8 content-disposition: inline date: Fri, 26 May 2023 15:37:26 GMT expires: Fri, 26 May 2023 15:37:26 GMT cache-control: private, max-age=3600 content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-eWyrBZFCFqdSK6vEII-G7g' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other cross-origin-opener-policy: same-origin-allow-popups; report-to="gws" report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]} content-encoding: br server: gws content-length: 2515 x-xss-protection: 0 set-cookie: CONSENT=PENDING+877; expires=Sun, 25-May-2025 15:37:26 GMT; path=/; domain=.google.com; Secure p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info." alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	ocsp.pki.goog/gts1c3	142.250.74.3		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 19b7a15b2dddca8577e8c8461efe4963 896c9964912c550900be6b48014bd13d863a3dc8 1e909e1a80fc8b86fe62dcfa90473b04dc7bef34c439b526ad3bbb00259925a5 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 26 May 2023 15:37:27 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%23ffffff	142.250.74.97	200 OK	270 B
URL GET HTTP/2 afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%23ffffff IP 142.250.74.97:443 ASN #15169 GOOGLE Requested by https://www.google.com/afs/ads?adtest=off&psid=8676772880&pcsa=false&channel=000001%2Cbucket003%2Cbucket077&client=dp-teaminternet04_3ph&r=m&hl=no&rpbu=https%3A%2F%2Fiytimg.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMDMsYnVja2V0MDc3fHx8fHx8NjQ3MGQyMzY1ZWE2OXx8fDE2ODUxMTU0NDYuMzk0MnxhMjk1NTE1NGU2ZmVmYmQ4YzE3ZDY4ZWNhYjU0M2Y0MmNjZTA4MmMzfHx8fHwxfHwwfDB8fHx8MXx8fHx8MHwwfHx8fHx8fHxaSEF0ZEdWaGJXbHVkR1Z5Ym1WME1EUmZNM0JvfGQ4MmYzNjFmYmYxYTJjZGI5NWNmNzZkYzY3MzEwM2Q2M2VlZTU3YmR8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXxhZjg4ODI1MWFmMGU1MzU0ZmFkZmI2ZTA2YjA2ODUxMjNiYTkzYjhkfDB8ZHAtdGVhbWludGVybmV0MDRfM3BofDB8MA%253D%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2551495523503148&oe=UTF-8&ie=UTF-8&fexp=21404&format=r3%7Cs&nocache=1011685115446631&num=0&output=afd_ads&domain_name=iytimg.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1685115446633&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=760&frm=0&cl=534159633&uio=--&cont=tc&jsid=caf&jsv=534159633&rurl=https%3A%2F%2Fiytimg.com%2F&adbw=master-1%3A530 Certificate IssuerGoogle Trust Services LLC Subject.googleusercontent.com FingerprintE9:43:A2:2D:EB:A2:E1:09:B0:36:19:CF:E3:9C:F0:37:52:4F:DB:7A ValidityMon, 08 May 2023 08:24:36 GMT - Mon, 31 Jul 2023 08:24:35 GMT File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (390) Size 270 B (270 bytes) Hash 8959ddcd9712196961d93f58064ed655 62ab1e38e7e9fbf58a04381b76c2d96a9c829f24 17c7a89bf169c2ee400e31b042cea68513f06b9cd7d1e8990dbec800f0d771c7 HTTP Headers `GET /ad_icons/standard/publisher_icon_image/search.svg?c=%23ffffff HTTP/1.1 Host: afs.googleusercontent.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.google.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers" report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]} content-length: 270 x-content-type-options: nosniff content-encoding: gzip server: sffe x-xss-protection: 0 date: Fri, 26 May 2023 09:03:34 GMT expires: Sat, 27 May 2023 08:03:34 GMT cache-control: public, max-age=82800 age: 23633 last-modified: Thu, 19 Dec 2019 14:15:00 GMT content-type: image/svg+xml vary: Accept-Encoding alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.3		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash fea660e858f55d0c3d2fc67a23872241 2e50687c550d211eb078abea7c30d0038cad9c1b 223f9fd3055bec687ea4832a3051e69a11db483a2ee2d5ef700a4f898cb4ccab HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 26 May 2023 15:37:27 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	iytimg.com/track.php?domain=iytimg.com&caf=1&toggle=answercheck&answer=yes&uid=MTY4NTExNTQ0Ni4zODc3OmUyNjBiYjU1NzFiZWU1ZWY3ZmU4OTY5ZjZhY2U2MGQwMjc4M2ZhNDQwNjY2NDJkYTNkOTAzMGZkMzU1ZjY2OWQ6NjQ3MGQyMzY1ZWFhMQ%3D%3D	185.53.178.50	200 OK	20 B
URL GET HTTP/1.1 iytimg.com/track.php?domain=iytimg.com&caf=1&toggle=answercheck&answer=yes&uid=MTY4NTExNTQ0Ni4zODc3OmUyNjBiYjU1NzFiZWU1ZWY3ZmU4OTY5ZjZhY2U2MGQwMjc4M2ZhNDQwNjY2NDJkYTNkOTAzMGZkMzU1ZjY2OWQ6NjQ3MGQyMzY1ZWFhMQ%3D%3D IP 185.53.178.50:443 ASN #19905 NEUSTAR-AS6 Requested by https://iytimg.com/ Certificate IssuerLet's Encrypt Subjectiytimg.com Fingerprint45:A5:EF:80:42:C6:AB:0F:BB:23:E4:C7:46:B9:AB:25:80:4C:EF:5C ValidityThu, 27 Apr 2023 09:25:42 GMT - Wed, 26 Jul 2023 09:25:41 GMT File type gzip compressed data, max speed, from Unix\012- data Size 20 B (20 bytes) Hash a4745abc5e7fdb89cc6df3069f3c6e69 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf HTTP Headers GET /track.php?domain=iytimg.com&caf=1&toggle=answercheck&answer=yes&uid=MTY4NTExNTQ0Ni4zODc3OmUyNjBiYjU1NzFiZWU1ZWY3ZmU4OTY5ZjZhY2U2MGQwMjc4M2ZhNDQwNjY2NDJkYTNkOTAzMGZkMzU1ZjY2OWQ6NjQ3MGQyMzY1ZWFhMQ%3D%3D HTTP/1.1 Host: iytimg.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://iytimg.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Accept-Ch: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile Accept-Ch-Lifetime: 30 Access-Control-Allow-Origin: * Content-Encoding: gzip Content-Type: text/html; charset=UTF-8 Date: Fri, 26 May 2023 15:37:27 GMT Server: nginx Vary: Accept-Encoding X-Custom-Track: answercheck Content-Length: 20`

	afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff	142.250.74.97	200 OK	174 B
URL GET HTTP/2 afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff IP 142.250.74.97:443 ASN #15169 GOOGLE Requested by https://www.google.com/afs/ads?adtest=off&psid=8676772880&pcsa=false&channel=000001%2Cbucket003%2Cbucket077&client=dp-teaminternet04_3ph&r=m&hl=no&rpbu=https%3A%2F%2Fiytimg.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMDMsYnVja2V0MDc3fHx8fHx8NjQ3MGQyMzY1ZWE2OXx8fDE2ODUxMTU0NDYuMzk0MnxhMjk1NTE1NGU2ZmVmYmQ4YzE3ZDY4ZWNhYjU0M2Y0MmNjZTA4MmMzfHx8fHwxfHwwfDB8fHx8MXx8fHx8MHwwfHx8fHx8fHxaSEF0ZEdWaGJXbHVkR1Z5Ym1WME1EUmZNM0JvfGQ4MmYzNjFmYmYxYTJjZGI5NWNmNzZkYzY3MzEwM2Q2M2VlZTU3YmR8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXxhZjg4ODI1MWFmMGU1MzU0ZmFkZmI2ZTA2YjA2ODUxMjNiYTkzYjhkfDB8ZHAtdGVhbWludGVybmV0MDRfM3BofDB8MA%253D%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2551495523503148&oe=UTF-8&ie=UTF-8&fexp=21404&format=r3%7Cs&nocache=1011685115446631&num=0&output=afd_ads&domain_name=iytimg.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1685115446633&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=760&frm=0&cl=534159633&uio=--&cont=tc&jsid=caf&jsv=534159633&rurl=https%3A%2F%2Fiytimg.com%2F&adbw=master-1%3A530 Certificate IssuerGoogle Trust Services LLC Subject.googleusercontent.com FingerprintE9:43:A2:2D:EB:A2:E1:09:B0:36:19:CF:E3:9C:F0:37:52:4F:DB:7A ValidityMon, 08 May 2023 08:24:36 GMT - Mon, 31 Jul 2023 08:24:35 GMT File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators Size 174 B (174 bytes) Hash 11b3089d616633ca6b73b57aa877eeb4 07632f63e06b30d9b63c97177d3a8122629bda9b 809fb4619d2a2f1a85dbda8cc69a7f1659215212d708a098d62150eee57070c1 HTTP Headers `GET /ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff HTTP/1.1 Host: afs.googleusercontent.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.google.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers" report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]} content-length: 174 x-content-type-options: nosniff content-encoding: gzip server: sffe x-xss-protection: 0 date: Fri, 26 May 2023 15:03:23 GMT expires: Sat, 27 May 2023 14:03:23 GMT cache-control: public, max-age=82800 last-modified: Thu, 22 Oct 2020 21:45:00 GMT content-type: image/svg+xml vary: Accept-Encoding age: 2044 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.3		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash fea660e858f55d0c3d2fc67a23872241 2e50687c550d211eb078abea7c30d0038cad9c1b 223f9fd3055bec687ea4832a3051e69a11db483a2ee2d5ef700a4f898cb4ccab HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 26 May 2023 15:37:27 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.google.com/afs/gen_204?client=dp-teaminternet04_3ph&output=uds_ads_only&zx=ckgzl2uqlyfp&aqid=NtJwZKKjO47EYdG1t-gH&psid=8676772880&pbt=bs&adbx=375&adby=94&adbh=500&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet04_3ph&errv=534159633&csala=21%7C0%7C253%7C36%7C220&lle=0&ifv=1&usr=1	142.250.74.132	204 No Content	0 B
URL GET HTTP/3 www.google.com/afs/gen_204?client=dp-teaminternet04_3ph&output=uds_ads_only&zx=ckgzl2uqlyfp&aqid=NtJwZKKjO47EYdG1t-gH&psid=8676772880&pbt=bs&adbx=375&adby=94&adbh=500&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet04_3ph&errv=534159633&csala=21%7C0%7C253%7C36%7C220&lle=0&ifv=1&usr=1 IP 142.250.74.132:443 ASN #15169 GOOGLE Requested by https://iytimg.com/ Certificate IssuerGoogle Trust Services LLC Subject.google.com Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33 ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /afs/gen_204?client=dp-teaminternet04_3ph&output=uds_ads_only&zx=ckgzl2uqlyfp&aqid=NtJwZKKjO47EYdG1t-gH&psid=8676772880&pbt=bs&adbx=375&adby=94&adbh=500&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet04_3ph&errv=534159633&csala=21%7C0%7C253%7C36%7C220&lle=0&ifv=1&usr=1 HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://iytimg.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 204 No Content content-type: text/html; charset=UTF-8 content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-Z8rSMZOeOd2qranoAUNdIg' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other cross-origin-opener-policy: same-origin-allow-popups; report-to="gws" report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]} p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info." date: Fri, 26 May 2023 15:37:28 GMT server: gws content-length: 0 x-xss-protection: 0 x-frame-options: SAMEORIGIN set-cookie: NID=511=VUkftUXm-4s4CVUWuFEfmT9WPb0nlWyB9yeZpwGo9xveJ3p5Zr-qsh3KoYJUDRVj-CP72b1-V9MYklctL_gS2WbtFqi9h1jTvhcpwLrzYZFNkJjg6_SRvpvBFc9u0IfVkLMNdEPyxqGNp8uoTemqQKB5GXMW7x7zyMvWM5YDEek; expires=Sat, 25-Nov-2023 15:37:28 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none CONSENT=PENDING+162; expires=Sun, 25-May-2025 15:37:28 GMT; path=/; domain=.google.com; Secure alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	www.google.com/afs/gen_204?client=dp-teaminternet04_3ph&output=uds_ads_only&zx=8jeihy5ve3zi&aqid=NtJwZKKjO47EYdG1t-gH&psid=8676772880&pbt=bv&adbx=375&adby=94&adbh=500&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet04_3ph&errv=534159633&csala=21%7C0%7C253%7C36%7C220&lle=0&ifv=1&usr=1	142.250.74.132	204 No Content	0 B
URL GET HTTP/3 www.google.com/afs/gen_204?client=dp-teaminternet04_3ph&output=uds_ads_only&zx=8jeihy5ve3zi&aqid=NtJwZKKjO47EYdG1t-gH&psid=8676772880&pbt=bv&adbx=375&adby=94&adbh=500&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet04_3ph&errv=534159633&csala=21%7C0%7C253%7C36%7C220&lle=0&ifv=1&usr=1 IP 142.250.74.132:443 ASN #15169 GOOGLE Requested by https://iytimg.com/ Certificate IssuerGoogle Trust Services LLC Subject.google.com Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33 ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /afs/gen_204?client=dp-teaminternet04_3ph&output=uds_ads_only&zx=8jeihy5ve3zi&aqid=NtJwZKKjO47EYdG1t-gH&psid=8676772880&pbt=bv&adbx=375&adby=94&adbh=500&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet04_3ph&errv=534159633&csala=21%7C0%7C253%7C36%7C220&lle=0&ifv=1&usr=1 HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://iytimg.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 204 No Content content-type: text/html; charset=UTF-8 content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-_q6Dijw5-fVWs8oF83hpZg' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other cross-origin-opener-policy: same-origin-allow-popups; report-to="gws" report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]} p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info." date: Fri, 26 May 2023 15:37:29 GMT server: gws content-length: 0 x-xss-protection: 0 x-frame-options: SAMEORIGIN set-cookie: NID=511=QEdcZm3032lxcCoQGsYKxl0IBDa1gT9f935D4eli3o8_jHE0J18wpVi8kAwPTtS2o1vDSz-T2zChXGGBw5MWMZMdGgbrNtI0g6MikS8eE2kw2qYmCeAXm2QxC2QfCmzotdVv8n4twNHJCfGKcvf9Jgj44ZzuWq41MF74dJpcW3w; expires=Sat, 25-Nov-2023 15:37:29 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none CONSENT=PENDING+308; expires=Sun, 25-May-2025 15:37:29 GMT; path=/; domain=.google.com; Secure alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	www.google.com/adsense/domains/caf.js	142.250.74.132	200 OK	148 kB
URL GET HTTP/3 www.google.com/adsense/domains/caf.js IP 142.250.74.132:443 ASN #15169 GOOGLE Requested by https://www.google.com/afs/ads?adtest=off&psid=8676772880&pcsa=false&channel=000001%2Cbucket003%2Cbucket077&client=dp-teaminternet04_3ph&r=m&hl=no&rpbu=https%3A%2F%2Fiytimg.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMDMsYnVja2V0MDc3fHx8fHx8NjQ3MGQyMzY1ZWE2OXx8fDE2ODUxMTU0NDYuMzk0MnxhMjk1NTE1NGU2ZmVmYmQ4YzE3ZDY4ZWNhYjU0M2Y0MmNjZTA4MmMzfHx8fHwxfHwwfDB8fHx8MXx8fHx8MHwwfHx8fHx8fHxaSEF0ZEdWaGJXbHVkR1Z5Ym1WME1EUmZNM0JvfGQ4MmYzNjFmYmYxYTJjZGI5NWNmNzZkYzY3MzEwM2Q2M2VlZTU3YmR8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXxhZjg4ODI1MWFmMGU1MzU0ZmFkZmI2ZTA2YjA2ODUxMjNiYTkzYjhkfDB8ZHAtdGVhbWludGVybmV0MDRfM3BofDB8MA%253D%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2551495523503148&oe=UTF-8&ie=UTF-8&fexp=21404&format=r3%7Cs&nocache=1011685115446631&num=0&output=afd_ads&domain_name=iytimg.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1685115446633&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=760&frm=0&cl=534159633&uio=--&cont=tc&jsid=caf&jsv=534159633&rurl=https%3A%2F%2Fiytimg.com%2F&adbw=master-1%3A530 Certificate IssuerGoogle Trust Services LLC Subject.google.com Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33 ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT File type ASCII text, with very long lines (2125) Size 148 kB (147861 bytes) Hash c6e17017fa9e499fd41345c8f24f0625 8e0c7704d24426e5f058d14336961665b6d7789a 96e9c283ce074cd307113de7ce9d7cf59dc8f509878bded8dd9e7c2ff13fb7e8 HTTP Headers `GET /adsense/domains/caf.js HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.google.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK accept-ranges: bytes vary: Accept-Encoding content-type: text/javascript; charset=UTF-8 content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="ads-afs-ui" report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]} date: Fri, 26 May 2023 15:37:27 GMT expires: Fri, 26 May 2023 15:37:27 GMT cache-control: private, max-age=3600 etag: "6531127710068983609" x-content-type-options: nosniff content-encoding: gzip server: sffe x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (14)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML