| track.getupgradedsecurity.com/f6458901-c3f9-4190-9683-b4599a461bf0/2 | 54.230.111.111 | | 0 B |
URL track.getupgradedsecurity.com/f6458901-c3f9-4190-9683-b4599a461bf0/2 IP54.230.111.111:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /f6458901-c3f9-4190-9683-b4599a461bf0/2 HTTP/1.1
Host: track.getupgradedsecurity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-length: 0
location: https://premiummobileprotection.com/inter-pro.php?cep=JnsWi0pO6YqI0QF28Jc9A39FZybjBTu4mYHeeLYZel9XyuRwq043Qmjjyjwn4AuQCKlL8s-MFFcOZsHtiv3KcWl4-mL4WIthhZAMMLWYOgthbcVNXw0k_X3vx7rX-hSEkNxXJjlBii_-yD1UACIauDvsbONUHNg_L59TCIkmZEcJR9conW_Kk74mw8YKKTadhunJxY1zA6mwasxBt-rHdbp82585qWe7E7hcsZI_bagD2LT1mn3ulNmnMlEe1EtJlTh29m5tOqcwt2esxQL_U6-pTgms0Cu6J4J084WgfqLdkP2HnYkrq2Ine3lgY4uwOxo30ZEUhuVtAzqWPZ-2KCg_L0mN_9-QGD9jihlC6pPLKBJ8c5WXrbFY9yXXxK7fHPs0o2omawHIjxpbRRNPpGSJ5hL6WqlfwWiNi0sxa60&lptoken=17d4145f126b34a07793
date: Fri, 26 Apr 2024 08:54:37 GMT
cache-control: no-store, no-cache, pre-check=0, post-check=0
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: f6458901-c3f9-4190-9683-b4599a461bf0-v4=n0q4nUFD1gAURj9HVJ2WMYlQJeabL38UhkpwkJybDQ8; Max-Age=86400; Expires=Sat, 27-Apr-2024 08:54:37 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
cep-v4=OI4sf5lisXf1_S8k7x0B82aQzA7uBIGYV_RM9EA6ccjpdNbad8EqHpEiOK25QPOpSvGCbNvoILNc8VhwDGv2jpBYfAJrc0UeaWZ1XXGYKHjrlUzuPtskD6CV8i0dQwxgHttRQUmRKLVyaE3hutV4iStmuQ1_ert2MVeORRWtvkwLCVRCJAjKM5uz95_N9e3Rv8rSzTe19Et5Eprx3sxzzfP-l7-7cJriCiRrwFacvykurIB7DNbqbLWn9He_oXfzhjgUMEuCTZ6fhfUTDK3QhTqV7gcXNNR7kiSCVP1kw9kUdwqklIlFeELb3pSuVFti9GeyXN_cgnsC7U9ONtgXgjOgR5h7BhwA4QtxqDfHowYcil00o97nzqNwfmdZlaLdNu65Y07-eIdZP44gkhlSeNhtg4bIOxmAKs2KqrUrqoI; Max-Age=86400; Expires=Sat, 27-Apr-2024 08:54:37 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
server: nginx
x-cache: Miss from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: r3RtIPGocdxdL1k7aKpct7bY37K5aiOChlkBn-UIb1J3a9jCzMnltQ==
X-Firefox-Spdy: h2
|
|
| premiummobileprotection.com/inter-pro.php?cep=JnsWi0pO6YqI0QF28Jc9A39FZybjBTu4mYHeeLYZel9XyuRwq043Qmjjyjwn4AuQCKlL8s-MFFcOZsHtiv3KcWl4-mL4WIthhZAMMLWYOgthbcVNXw0k_X3vx7rX-hSEkNxXJjlBii_-yD1UACIauDvsbONUHNg_L59TCIkmZEcJR9conW_Kk74mw8YKKTadhunJxY1zA6mwasxBt-rHdbp82585qWe7E7hcsZI_bagD2LT1mn3ulNmnMlEe1EtJlTh29m5tOqcwt2esxQL_U6-pTgms0Cu6J4J084WgfqLdkP2HnYkrq2Ine3lgY4uwOxo30ZEUhuVtAzqWPZ-2KCg_L0mN_9-QGD9jihlC6pPLKBJ8c5WXrbFY9yXXxK7fHPs0o2omawHIjxpbRRNPpGSJ5hL6WqlfwWiNi0sxa60&lptoken=17d4145f126b34a07793 | 23.106.127.218 | | 0 B |
URL premiummobileprotection.com/inter-pro.php?cep=JnsWi0pO6YqI0QF28Jc9A39FZybjBTu4mYHeeLYZel9XyuRwq043Qmjjyjwn4AuQCKlL8s-MFFcOZsHtiv3KcWl4-mL4WIthhZAMMLWYOgthbcVNXw0k_X3vx7rX-hSEkNxXJjlBii_-yD1UACIauDvsbONUHNg_L59TCIkmZEcJR9conW_Kk74mw8YKKTadhunJxY1zA6mwasxBt-rHdbp82585qWe7E7hcsZI_bagD2LT1mn3ulNmnMlEe1EtJlTh29m5tOqcwt2esxQL_U6-pTgms0Cu6J4J084WgfqLdkP2HnYkrq2Ine3lgY4uwOxo30ZEUhuVtAzqWPZ-2KCg_L0mN_9-QGD9jihlC6pPLKBJ8c5WXrbFY9yXXxK7fHPs0o2omawHIjxpbRRNPpGSJ5hL6WqlfwWiNi0sxa60&lptoken=17d4145f126b34a07793 IP23.106.127.218:0 ASN#59253 Leaseweb Asia Pacific pte. ltd.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /inter-pro.php?cep=JnsWi0pO6YqI0QF28Jc9A39FZybjBTu4mYHeeLYZel9XyuRwq043Qmjjyjwn4AuQCKlL8s-MFFcOZsHtiv3KcWl4-mL4WIthhZAMMLWYOgthbcVNXw0k_X3vx7rX-hSEkNxXJjlBii_-yD1UACIauDvsbONUHNg_L59TCIkmZEcJR9conW_Kk74mw8YKKTadhunJxY1zA6mwasxBt-rHdbp82585qWe7E7hcsZI_bagD2LT1mn3ulNmnMlEe1EtJlTh29m5tOqcwt2esxQL_U6-pTgms0Cu6J4J084WgfqLdkP2HnYkrq2Ine3lgY4uwOxo30ZEUhuVtAzqWPZ-2KCg_L0mN_9-QGD9jihlC6pPLKBJ8c5WXrbFY9yXXxK7fHPs0o2omawHIjxpbRRNPpGSJ5hL6WqlfwWiNi0sxa60&lptoken=17d4145f126b34a07793 HTTP/1.1
Host: premiummobileprotection.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 26 Apr 2024 08:54:39 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://track.getupgradedsecurity.com/click/1
|
|
| track.getupgradedsecurity.com/click/1 | 54.230.111.111 | | 0 B |
URL track.getupgradedsecurity.com/click/1 IP54.230.111.111:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /click/1 HTTP/1.1
Host: track.getupgradedsecurity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: f6458901-c3f9-4190-9683-b4599a461bf0-v4=n0q4nUFD1gAURj9HVJ2WMYlQJeabL38UhkpwkJybDQ8; cep-v4=OI4sf5lisXf1_S8k7x0B82aQzA7uBIGYV_RM9EA6ccjpdNbad8EqHpEiOK25QPOpSvGCbNvoILNc8VhwDGv2jpBYfAJrc0UeaWZ1XXGYKHjrlUzuPtskD6CV8i0dQwxgHttRQUmRKLVyaE3hutV4iStmuQ1_ert2MVeORRWtvkwLCVRCJAjKM5uz95_N9e3Rv8rSzTe19Et5Eprx3sxzzfP-l7-7cJriCiRrwFacvykurIB7DNbqbLWn9He_oXfzhjgUMEuCTZ6fhfUTDK3QhTqV7gcXNNR7kiSCVP1kw9kUdwqklIlFeELb3pSuVFti9GeyXN_cgnsC7U9ONtgXgjOgR5h7BhwA4QtxqDfHowYcil00o97nzqNwfmdZlaLdNu65Y07-eIdZP44gkhlSeNhtg4bIOxmAKs2KqrUrqoI
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
content-length: 0
location: https://getprotectionalshield.com/sep/?to=0203-av-cmpl-wh&campid=f6458901-c3f9-4190-9683-b4599a461bf0&utm_source=&landerid=96c030a3-3f5b-4f8a-ab14-4cc2b64a3152&bv=Firefox%2096&lander=1305-intermediary-lander%20%5BPRO%5D&pccid=d21jn1l7skhk10s0343mcge2&phone_brand=Desktop&model=Desktop&zone_id=&supply_id=&camp_id=&source=&ua=&creative=&pathid=0f4302c0-b7f8-69a9-e9bd-0f828225b68a&brand=av&tracking_domain=track.getupgradedsecurity.com&lang=fr&geo=fr-pro
date: Fri, 26 Apr 2024 08:54:40 GMT
cache-control: no-store, no-cache, pre-check=0, post-check=0
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: voluum-cid-v4=%7B%22cid%22%3A%22d21jn1l7skhk10s0343mcge2%22%2C%22caid%22%3A%22f6458901-c3f9-4190-9683-b4599a461bf0%22%7D; Max-Age=31536000; Expires=Sat, 26-Apr-2025 08:54:40 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
f6458901-c3f9-4190-9683-b4599a461bf0-clk-v4=f6458901-c3f9-4190-9683-b4599a461bf0; Max-Age=86400; Expires=Sat, 27-Apr-2024 08:54:40 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
f6458901-c3f9-4190-9683-b4599a461bf0-v4=BLSw5etV73itHtjvO8h6Dj5sNk4aklyqV6o0NEsEyWY; Max-Age=86400; Expires=Sat, 27-Apr-2024 08:54:40 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
server: nginx
x-cache: Miss from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: arTHYRv6LXNFh_p5ksoDDfqxf_8EnfjRXcjg5VOq0t8gzmDEvQMDvQ==
X-Firefox-Spdy: h2
|
|
| track.getupgradedsecurity.com/ | 54.230.111.88 | | 227 B |
URL track.getupgradedsecurity.com/ IP54.230.111.88:0
File typeHTML document, ASCII text Hashd7e39a03eb36cd0ca88c7d3833668ee1 3beb5597c07f8aef8d1caace6a23d09a66550c95 0ada30892e47ec0cf6acd9dbf9fd085f8601a18375a5b7388683561f1f6cc626
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: track.getupgradedsecurity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404
Content-Type: text/html
Content-Length: 227
Connection: keep-alive
Date: Fri, 26 Apr 2024 08:54:40 GMT
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Server: nginx
X-Cache: Error from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: i3ms_Sjb23mnfSh3OxKmFjo6XN6Pae6RFrPj6JTWlkaD9PYMgPEjmg==
|
|
| getprotectionalshield.com/sep/?to=0203-av-cmpl-wh&campid=f6458901-c3f9-4190-9683-b4599a461bf0&utm_source=&landerid=96c030a3-3f5b-4f8a-ab14-4cc2b64a3152&bv=Firefox%2096&lander=1305-intermediary-lander%20%5BPRO%5D&pccid=d21jn1l7skhk10s0343mcge2&phone_brand=Desktop&model=Desktop&zone_id=&supply_id=&camp_id=&source=&ua=&creative=&pathid=0f4302c0-b7f8-69a9-e9bd-0f828225b68a&brand=av&tracking_domain=track.getupgradedsecurity.com&lang=fr&geo=fr-pro | 23.106.127.218 | | 2.4 kB |
URL getprotectionalshield.com/sep/?to=0203-av-cmpl-wh&campid=f6458901-c3f9-4190-9683-b4599a461bf0&utm_source=&landerid=96c030a3-3f5b-4f8a-ab14-4cc2b64a3152&bv=Firefox%2096&lander=1305-intermediary-lander%20%5BPRO%5D&pccid=d21jn1l7skhk10s0343mcge2&phone_brand=Desktop&model=Desktop&zone_id=&supply_id=&camp_id=&source=&ua=&creative=&pathid=0f4302c0-b7f8-69a9-e9bd-0f828225b68a&brand=av&tracking_domain=track.getupgradedsecurity.com&lang=fr&geo=fr-pro IP23.106.127.218:0 ASN#59253 Leaseweb Asia Pacific pte. ltd.
File typeHTML document, ASCII text, with very long lines (6850) Hash0917e0bf7adeb77ed28013b9006216da 7b949a134cb0500c66f274ca92e3411c3ae49986 fb8b6c74ccb06d9148b8d1039eec05a24287c43ccae7bc11f5be50c70a63fa3a
GET /sep/?to=0203-av-cmpl-wh&campid=f6458901-c3f9-4190-9683-b4599a461bf0&utm_source=&landerid=96c030a3-3f5b-4f8a-ab14-4cc2b64a3152&bv=Firefox%2096&lander=1305-intermediary-lander%20%5BPRO%5D&pccid=d21jn1l7skhk10s0343mcge2&phone_brand=Desktop&model=Desktop&zone_id=&supply_id=&camp_id=&source=&ua=&creative=&pathid=0f4302c0-b7f8-69a9-e9bd-0f828225b68a&brand=av&tracking_domain=track.getupgradedsecurity.com&lang=fr&geo=fr-pro HTTP/1.1
Host: getprotectionalshield.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 08:54:41 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 25 Apr 2024 13:37:30 GMT
ETag: W/"662a5c9a-1cce"
Content-Encoding: gzip
|
|
| d18b5y9gp0lr93.cloudfront.net/sqp-functions/functions.min.js | 54.230.241.97 | | 4.5 kB |
URL d18b5y9gp0lr93.cloudfront.net/sqp-functions/functions.min.js IP54.230.241.97:0
File typeJavaScript source, ASCII text, with very long lines (6850) Hashb7c7cd49746bed26ac727ef0804d6203 f25430cafd15a5479c8177087d6b5e73606b6e28 03ae4f494dd669d938c904eea6ba21eeddb0aeb87f41015a7ae55156e48d134a
GET /sqp-functions/functions.min.js HTTP/1.1
Host: d18b5y9gp0lr93.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getprotectionalshield.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 13 Dec 2023 09:40:44 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: dRA40FxrztBz3m1bZdOmgk_RvQfg.z05
server: AmazonS3
content-encoding: gzip
date: Fri, 26 Apr 2024 01:37:12 GMT
etag: W/"de27e5abcf1380fbab0accd9eb0b9630"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CEzWHDcTli5VrQRYKJ6gyOvJI0oRIQl73r3Ejmv41_7crWjT9MYi1A==
age: 29766
X-Firefox-Spdy: h2
|
|
| d18b5y9gp0lr93.cloudfront.net/sqp-functions/functions.min.js | 54.230.241.124 | | 7.7 kB |
URL d18b5y9gp0lr93.cloudfront.net/sqp-functions/functions.min.js IP54.230.241.124:0
File typegzip compressed data, from Unix Hashbddcf50bd8cdc9423d5e744e7aa9fd29 90832e93bc04b9bad20aaab80b6b929b487efcb1 4320a314fdf4b5ee9155093b14b05e3e6c93f6007dbf3047f685444729967e4e
GET /sqp-functions/functions.min.js HTTP/1.1
Host: d18b5y9gp0lr93.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://utiliserunbouclier.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 13 Dec 2023 09:40:44 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: dRA40FxrztBz3m1bZdOmgk_RvQfg.z05
server: AmazonS3
content-encoding: gzip
date: Fri, 26 Apr 2024 01:37:12 GMT
etag: W/"de27e5abcf1380fbab0accd9eb0b9630"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8Ib2tkCY_v0m6nsbHe15_HEgEX8ESsNXeAzkdGO_bsdyavvq2v05Lw==
age: 29768
X-Firefox-Spdy: h2
|
|
| 92.utiliserunbouclier.com/0203-av-cmpl-wh/?to=0203-av-cmpl-wh&campid=f6458901-c3f9-4190-9683-b4599a461bf0&utm_source=&landerid=96c030a3-3f5b-4f8a-ab14-4cc2b64a3152&bv=Firefox%2096&lander=1305-intermediary-lander%20%5BPRO%5D&pccid=d21jn1l7skhk10s0343mcge2&phone_brand=Desktop&model=Desktop&zone_id=&supply_id=&camp_id=&source=&ua=&creative=&pathid=0f4302c0-b7f8-69a9-e9bd-0f828225b68a&brand=av&tracking_domain=track.getupgradedsecurity.com&lang=fr&geo=fr-pro | 23.106.127.218 | | 13 kB |
URL 92.utiliserunbouclier.com/0203-av-cmpl-wh/?to=0203-av-cmpl-wh&campid=f6458901-c3f9-4190-9683-b4599a461bf0&utm_source=&landerid=96c030a3-3f5b-4f8a-ab14-4cc2b64a3152&bv=Firefox%2096&lander=1305-intermediary-lander%20%5BPRO%5D&pccid=d21jn1l7skhk10s0343mcge2&phone_brand=Desktop&model=Desktop&zone_id=&supply_id=&camp_id=&source=&ua=&creative=&pathid=0f4302c0-b7f8-69a9-e9bd-0f828225b68a&brand=av&tracking_domain=track.getupgradedsecurity.com&lang=fr&geo=fr-pro IP23.106.127.218:0 ASN#59253 Leaseweb Asia Pacific pte. ltd.
File typeHTML document, Unicode text, UTF-8 text, with very long lines (10905) Hasha6915d61dc0d38f7e942e0a2c2552fa1 a094ddc4ec00dd8cd2794706a3849c00a4db4129 c54e1ce0d4f5a55702efb1387ed814c8250607fbf7f9d47eddf288570f3196c1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /0203-av-cmpl-wh/?to=0203-av-cmpl-wh&campid=f6458901-c3f9-4190-9683-b4599a461bf0&utm_source=&landerid=96c030a3-3f5b-4f8a-ab14-4cc2b64a3152&bv=Firefox%2096&lander=1305-intermediary-lander%20%5BPRO%5D&pccid=d21jn1l7skhk10s0343mcge2&phone_brand=Desktop&model=Desktop&zone_id=&supply_id=&camp_id=&source=&ua=&creative=&pathid=0f4302c0-b7f8-69a9-e9bd-0f828225b68a&brand=av&tracking_domain=track.getupgradedsecurity.com&lang=fr&geo=fr-pro HTTP/1.1
Host: 92.utiliserunbouclier.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://utiliserunbouclier.com/
Cookie: pc_domains_record=%5B%7B%22name%22%3A%22utiliserunbouclier.com%22%2C%22allowed%22%3A%5B1%5D%7D%5D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 08:54:46 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 25 Apr 2024 13:36:54 GMT
ETag: W/"662a5c76-76a3"
Content-Encoding: gzip
|
|
| js.sentry-cdn.com/d31b9988ec25444db0b16116ddc6edee.min.js | 151.101.2.217 | | 1.3 kB |
URL js.sentry-cdn.com/d31b9988ec25444db0b16116ddc6edee.min.js IP151.101.2.217:0
File typeJavaScript source, ASCII text, with very long lines (2639) Hash29fbefd7629cac1597290018e7ebaf22 5ff9fc70c82bfed2f0418e73c5f217eab04b73a8 d24e324470829c47de5de45618904d672d0966fad4592f9630f1483e98145ad8
GET /d31b9988ec25444db0b16116ddc6edee.min.js HTTP/1.1
Host: js.sentry-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://92.utiliserunbouclier.com
DNT: 1
Connection: keep-alive
Referer: https://92.utiliserunbouclier.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
access-control-allow-origin: *
cache-control: public, max-age=3600, s-maxage=60, stale-while-revalidate=315360000, stale-if-error=315360000
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: worker-src blob:; style-src * 'unsafe-inline'; font-src * data:; base-uri 'none'; img-src * blob: data:; frame-ancestors 'self' *.sentry.io; default-src 'none'; connect-src 'self' *.algolia.net *.algolianet.com *.algolia.io sentry.io *.sentry.io s1.sentry-cdn.com o1.ingest.sentry.io api2.amplitude.com app.pendo.io data.pendo.io reload.getsentry.net t687h3m0nh65.statuspage.io sentry.zendesk.com ekr.zdassets.com maps.googleapis.com; media-src *; object-src 'none'; script-src 'self' 'unsafe-inline' 'report-sample' s1.sentry-cdn.com js.sentry-cdn.com browser.sentry-cdn.com statuspage-production.s3.amazonaws.com static.zdassets.com aui-cdn.atlassian.com connect-cdn.atl-paas.net js.stripe.com 'strict-dynamic' cdn.pendo.io data.pendo.io pendo-io-static.storage.googleapis.com pendo-static-5634074999128064.storage.googleapis.com; frame-src app.pendo.io demo.arcade.software js.stripe.com sentry.io; report-uri https://o1.ingest.sentry.io/api/54785/security/?sentry_key=f724a8a027db45f5b21507e7142ff78e&sentry_release=f2dba23da74640aefed6c0e33f962983de42c4b6
x-envoy-attempt-count: 1
x-envoy-upstream-service-time: 24
content-encoding: gzip
accept-ranges: bytes
date: Fri, 26 Apr 2024 08:54:47 GMT
age: 57
x-served-by: getsentry-web-default-profiling-production-7786767d9c-v4vpx, cache-chi-kigq8000167-CHI, cache-hel1410026-HEL
vary: Accept-Encoding
timing-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 1275
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/@growthbook/growthbook/dist/bundles/auto.min.js | 151.101.193.229 | | 12 kB |
URL cdn.jsdelivr.net/npm/@growthbook/growthbook/dist/bundles/auto.min.js IP151.101.193.229:0
File typeJavaScript source, ASCII text, with very long lines (34803) Hashf0c55bd0fc0de14b604add2c58698f3d 0090704a200e963a53f88d20d0ff6def08d2fe66 be36d3009bb6551e85f209630e8cf0e0f7f7098a5677a3a210923237aa06305e
GET /npm/@growthbook/growthbook/dist/bundles/auto.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://92.utiliserunbouclier.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.36.0
x-jsd-version-type: version
etag: W/"8819-AJBwSiAOljpT+I0g0P9t7wjS/mY"
content-encoding: br
accept-ranges: bytes
date: Fri, 26 Apr 2024 08:54:47 GMT
age: 4889
x-served-by: cache-fra-etou8220138-FRA, cache-hel1410023-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 11945
X-Firefox-Spdy: h2
|
|
| 92.utiliserunbouclier.com/0203-av-cmpl-wh/css/style.min.css | 23.106.127.218 | | 886 B |
URL 92.utiliserunbouclier.com/0203-av-cmpl-wh/css/style.min.css IP23.106.127.218:0 ASN#59253 Leaseweb Asia Pacific pte. ltd.
File typeASCII text, with very long lines (2108), with no line terminators Hash164cf3caad1ad9d992bcaefe89ae62cc be71b1ca01ad523687e4d29cef812e4298b01e13 0630a50d42f92bb5fc726cdfa92041b28f4997ba7e5d541be6c14cdb165eeebd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /0203-av-cmpl-wh/css/style.min.css HTTP/1.1
Host: 92.utiliserunbouclier.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://92.utiliserunbouclier.com/0203-av-cmpl-wh/?to=0203-av-cmpl-wh&campid=f6458901-c3f9-4190-9683-b4599a461bf0&utm_source=&landerid=96c030a3-3f5b-4f8a-ab14-4cc2b64a3152&bv=Firefox%2096&lander=1305-intermediary-lander%20%5BPRO%5D&pccid=d21jn1l7skhk10s0343mcge2&phone_brand=Desktop&model=Desktop&zone_id=&supply_id=&camp_id=&source=&ua=&creative=&pathid=0f4302c0-b7f8-69a9-e9bd-0f828225b68a&brand=av&tracking_domain=track.getupgradedsecurity.com&lang=fr&geo=fr-pro
Cookie: pc_domains_record=%5B%7B%22name%22%3A%22utiliserunbouclier.com%22%2C%22allowed%22%3A%5B1%5D%7D%5D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 08:54:48 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 25 Apr 2024 13:36:54 GMT
ETag: W/"662a5c76-83c"
Content-Encoding: gzip
|
|
| browser.sentry-cdn.com/7.112.2/bundle.tracing.es5.min.js | 151.101.2.217 | | 41 kB |
URL browser.sentry-cdn.com/7.112.2/bundle.tracing.es5.min.js IP151.101.2.217:0
File typeJavaScript source, ASCII text, with very long lines (65428) Hash7c661a141bb745826ef08f12ca9e665a 5469b194f583a347f05617a484de4c7166334def 30026d2717eefac3d865e31e84c9a006d5d50184aef611c61ffad81150bb249f
GET /7.112.2/bundle.tracing.es5.min.js HTTP/1.1
Host: browser.sentry-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://92.utiliserunbouclier.com
DNT: 1
Connection: keep-alive
Referer: https://92.utiliserunbouclier.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Thu, 24 Apr 2025 13:45:12 GMT
last-modified: Wed, 24 Apr 2024 12:03:58 GMT
etag: "10af1dd29c2941b4d4bb7017f36599c1"
content-type: application/javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
date: Fri, 26 Apr 2024 08:54:48 GMT
age: 155376
vary: Accept-Encoding
access-control-allow-origin: *
server: Fastly
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 40679
X-Firefox-Spdy: h2
|
|
| track.getupgradedsecurity.com/click/2?utm_term=2642024&utm_medium=d21jn1l7skhk10s0343mcge2&initial-cid=d21jn1l7skhk10s0343mcge2 | 54.230.111.111 | 302 Found | 0 B |
URL User Request GET HTTP/2track.getupgradedsecurity.com/click/2?utm_term=2642024&utm_medium=d21jn1l7skhk10s0343mcge2&initial-cid=d21jn1l7skhk10s0343mcge2 IP54.230.111.111:443
CertificateIssuerAmazon Subjecttrack.getupgradedsecurity.com Fingerprint47:47:24:C9:E9:62:08:42:27:7A:2E:A8:6A:3B:F8:DA:33:56:D5:26 ValidityThu, 25 Apr 2024 00:00:00 GMT - Sat, 24 May 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /click/2?utm_term=2642024&utm_medium=d21jn1l7skhk10s0343mcge2&initial-cid=d21jn1l7skhk10s0343mcge2 HTTP/1.1
Host: track.getupgradedsecurity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://92.utiliserunbouclier.com/
Cookie: f6458901-c3f9-4190-9683-b4599a461bf0-v4=BLSw5etV73itHtjvO8h6Dj5sNk4aklyqV6o0NEsEyWY; cep-v4=OI4sf5lisXf1_S8k7x0B82aQzA7uBIGYV_RM9EA6ccjpdNbad8EqHpEiOK25QPOpSvGCbNvoILNc8VhwDGv2jpBYfAJrc0UeaWZ1XXGYKHjrlUzuPtskD6CV8i0dQwxgHttRQUmRKLVyaE3hutV4iStmuQ1_ert2MVeORRWtvkwLCVRCJAjKM5uz95_N9e3Rv8rSzTe19Et5Eprx3sxzzfP-l7-7cJriCiRrwFacvykurIB7DNbqbLWn9He_oXfzhjgUMEuCTZ6fhfUTDK3QhTqV7gcXNNR7kiSCVP1kw9kUdwqklIlFeELb3pSuVFti9GeyXN_cgnsC7U9ONtgXgjOgR5h7BhwA4QtxqDfHowYcil00o97nzqNwfmdZlaLdNu65Y07-eIdZP44gkhlSeNhtg4bIOxmAKs2KqrUrqoI; voluum-cid-v4=%7B%22cid%22%3A%22d21jn1l7skhk10s0343mcge2%22%2C%22caid%22%3A%22f6458901-c3f9-4190-9683-b4599a461bf0%22%7D; f6458901-c3f9-4190-9683-b4599a461bf0-clk-v4=f6458901-c3f9-4190-9683-b4599a461bf0
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
content-length: 0
location: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2
date: Fri, 26 Apr 2024 08:54:48 GMT
cache-control: no-store, no-cache, pre-check=0, post-check=0
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: voluum-cid-v4=%7B%22cid%22%3A%22d8tl2cnrgse3n0s0j5igl128%22%2C%22caid%22%3A%22f6458901-c3f9-4190-9683-b4599a461bf0%22%7D; Max-Age=31536000; Expires=Sat, 26-Apr-2025 08:54:48 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
f6458901-c3f9-4190-9683-b4599a461bf0-clk-v4=f6458901-c3f9-4190-9683-b4599a461bf0; Max-Age=86400; Expires=Sat, 27-Apr-2024 08:54:48 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
f6458901-c3f9-4190-9683-b4599a461bf0-v4=f5s3zeNEylkWGP1l9QAI17pZbDOey9V_m_6u5yJ1DO0; Max-Age=86400; Expires=Sat, 27-Apr-2024 08:54:48 GMT; Domain=track.getupgradedsecurity.com; Path=/; Secure; HttpOnly;SameSite=None
server: nginx
x-cache: Miss from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xq_NH_VFVEMnvFTBl9ObzeTVrcHxuVfD3xOqBy2CilAz7GyY46a--g==
X-Firefox-Spdy: h2
|
|
| o1063441.ingest.us.sentry.io/api/6072671/envelope/?sentry_key=d31b9988ec25444db0b16116ddc6edee&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.112.2 | 34.120.195.249 | | 41 B |
URL o1063441.ingest.us.sentry.io/api/6072671/envelope/?sentry_key=d31b9988ec25444db0b16116ddc6edee&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.112.2 IP34.120.195.249:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
Hashf1f669eb36390a09dc0ad1a5348c3695 e7f38c2de01ee30b50c27f34140e9f8840c04416 887a33e53c39481684bd00ecbbf26322ddb35d527e5e8350b3258bd03bc6d576
POST /api/6072671/envelope/?sentry_key=d31b9988ec25444db0b16116ddc6edee&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.112.2 HTTP/1.1
Host: o1063441.ingest.us.sentry.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://92.utiliserunbouclier.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 2219
Origin: https://92.utiliserunbouclier.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 08:54:48 GMT
content-type: application/json
content-length: 41
access-control-allow-origin: *
vary: origin,access-control-request-method,access-control-request-headers
access-control-expose-headers: x-sentry-error,x-sentry-rate-limits,retry-after
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2 | 143.204.55.18 | 200 OK | 871 B |
URL User Request GET HTTP/2shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2 IP143.204.55.18:443
CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typeHTML document, ASCII text Hash831357ff58695d44a091202d8ccbf9bd f2ca0d2ad04c1205cafd3234b73f231506d433a2 e7956270b41e0c32a302b7287bef9d28da9cefad472533e0ff0305766570f2d1
GET /Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2 HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://92.utiliserunbouclier.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 871
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:43 GMT
accept-ranges: bytes
content-encoding: gzip
date: Fri, 26 Apr 2024 08:54:48 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Fri, 26 Apr 2024 09:54:48 GMT
etag: "6b7-616ec165499c0-gzip"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: nBtswb--3rhszwOlil7nJppJX1M2QKRey8TiSnXWuZCj_gBVdpBvfA==
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/css/index.925b2269.css | 143.204.55.18 | 200 OK | 5.9 kB |
URL GET HTTP/2shsf.try-adtranq.com/css/index.925b2269.css IP143.204.55.18:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2 CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typeASCII text, with very long lines (26643) Hash5da360cc52f1c60dce2f894d71d16fa2 70b71fe839b8d2889eb4c0d8bfcc6c433e86361b 925b2269cff35373e7d472f86998c8da90e7db28f4f6eb76d5d4a23ae274009c
GET /css/index.925b2269.css HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 5920
date: Thu, 25 Apr 2024 13:52:10 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:43 GMT
etag: "6814-616ec165499c0-gzip"
accept-ranges: bytes
cache-control: max-age=2678400, public
expires: Thu, 25 Apr 2024 14:52:10 GMT
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3HtNhr1qRYMO870X6hlLIY-FrQXrnbssm2jXOh7v62HVjtSZeZ_V5g==
age: 68558
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-5DNQ3QT | 142.250.74.168 | 200 OK | 76 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-5DNQ3QT IP142.250.74.168:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
File typeJavaScript source, ASCII text, with very long lines (6801) Hash2382e7337d01674ec7fee4e9853c2e4a 71f575a71e630df4b7ac224ffb70d9f0fac24ab4 76af1ad7df389b0f1b65b2cf621700b4e68ac3823db03141471eb3a11c846794
GET /gtm.js?id=GTM-5DNQ3QT HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 08:54:48 GMT
expires: Fri, 26 Apr 2024 08:54:48 GMT
cache-control: private, max-age=900
last-modified: Fri, 26 Apr 2024 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76505
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/css/Atlas102Survey.cc92fdda.css | 143.204.55.18 | 200 OK | 1.1 kB |
URL GET HTTP/2shsf.try-adtranq.com/css/Atlas102Survey.cc92fdda.css IP143.204.55.18:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2 CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typeASCII text, with very long lines (3494) Hash64eb9827b87121d8cb4b2a6e9af0a6ee d212aa84e1778e95382e3e3d3e276805680c73b9 cc92fdda2102e2f59eda48c70c328d1a6a0a1f084c7a34040fa5249f94da5631
GET /css/Atlas102Survey.cc92fdda.css HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 1117
date: Thu, 25 Apr 2024 13:52:19 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:43 GMT
etag: "da7-616ec165499c0-gzip"
accept-ranges: bytes
cache-control: max-age=2678400, public
expires: Thu, 25 Apr 2024 14:52:19 GMT
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LvCGNKHKt7HY8OCkslCnwYDuYS7FzmuR0iZeU2KdgRyyMfndyQnvPw==
age: 68549
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/css/SurveyLayout.b0fb08c3.css | 143.204.55.18 | 200 OK | 339 B |
URL GET HTTP/2shsf.try-adtranq.com/css/SurveyLayout.b0fb08c3.css IP143.204.55.18:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2 CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typeASCII text, with very long lines (899) Hash34ebd98cfeff8702bdd9ba7d222969b5 ce169317941d22c09e62bc9a6aadd885ab1676c9 b0fb08c350d0c90003a3fee98f52c9e72f349ed8041966c24929fbbe39e6702f
GET /css/SurveyLayout.b0fb08c3.css HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 339
date: Thu, 25 Apr 2024 13:52:19 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:43 GMT
etag: "384-616ec165499c0-gzip"
accept-ranges: bytes
cache-control: max-age=2678400, public
expires: Thu, 25 Apr 2024 14:52:19 GMT
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: CsinuFCWfEqpNXbanYg4_l56q2vDVs7yjn3RIPUczTeuCAPqnE9gDA==
age: 68549
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-PXTFLT7QZ3&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 91 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-PXTFLT7QZ3&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
File typeJavaScript source, ASCII text, with very long lines (4179) Hashfb8c51e07f169039f618b371ee0949c4 e9e59adaec17335c0eaf68c51cb180322d45353d 54b22bc9b9d679bb3eb39c1260e6abb5b1cdcda45abdbb8864987884df43da41
GET /gtag/js?id=G-PXTFLT7QZ3&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 08:54:48 GMT
expires: Fri, 26 Apr 2024 08:54:48 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 91399
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| shsf.try-adtranq.com/js/SurveyLayout.4cae0c47.js | 143.204.55.18 | 200 OK | 920 B |
URL GET HTTP/2shsf.try-adtranq.com/js/SurveyLayout.4cae0c47.js IP143.204.55.18:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2 CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typeJava source, ASCII text, with very long lines (2443) Hashcae9f93a2cda2f8acc3d78d109c0731f 3de6b20fc977ba9dce2400981b096343bcf6a668 a39dfd4489ee5e245b27601a8ebce3fbfbd60b1eb44e3bb5a39b5c27d3f9b06c
GET /js/SurveyLayout.4cae0c47.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/js/index.4b3362bc.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 920
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:43 GMT
accept-ranges: bytes
content-encoding: gzip
date: Fri, 26 Apr 2024 08:54:48 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Fri, 26 Apr 2024 09:54:48 GMT
etag: "98c-616ec165499c0-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: t3ET9A1WqYOeDTuFr6gAuP8AarTi0ATh6emOTIVqxcfGduBhbw8A6A==
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/js/SurveyLayout.4cae0c47.js | 143.204.55.18 | 200 OK | 920 B |
URL GET HTTP/2shsf.try-adtranq.com/js/SurveyLayout.4cae0c47.js IP143.204.55.18:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2 CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typeJava source, ASCII text, with very long lines (2443) Hashcae9f93a2cda2f8acc3d78d109c0731f 3de6b20fc977ba9dce2400981b096343bcf6a668 a39dfd4489ee5e245b27601a8ebce3fbfbd60b1eb44e3bb5a39b5c27d3f9b06c
GET /js/SurveyLayout.4cae0c47.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 920
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:43 GMT
accept-ranges: bytes
content-encoding: gzip
date: Fri, 26 Apr 2024 08:54:48 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Fri, 26 Apr 2024 09:54:48 GMT
etag: "98c-616ec165499c0-gzip"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5R9F17ywci0uduU3Wn6zhRWHh14b_DZRfU3hbuWGrtBH93rlFEecVg==
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/js/LogosSafeCheckout.041b0038.js | 143.204.55.18 | 200 OK | 348 B |
URL GET HTTP/2shsf.try-adtranq.com/js/LogosSafeCheckout.041b0038.js IP143.204.55.18:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2 CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typeJava source, ASCII text, with very long lines (539) Hash7d8d56d491ccb812ab5dc89b1e1e4913 82c3b6d3f27aa3ed5b8849680b03cfbd8f2cb191 7b5f588c21a5bf41aa82773852b2ad78108a3ead58f3e60e867a83b104c02495
GET /js/LogosSafeCheckout.041b0038.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/js/SurveyLayout.4cae0c47.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 348
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:43 GMT
accept-ranges: bytes
content-encoding: gzip
date: Fri, 26 Apr 2024 08:54:48 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Fri, 26 Apr 2024 09:54:48 GMT
etag: "21c-616ec165499c0-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: KMnLlZjjngh7V16cLQhMr50q62kgFjTgu1J8IZjgVwEYtUSW6NsLTQ==
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/js/index.4b3362bc.js | 143.204.55.18 | 200 OK | 104 kB |
URL GET HTTP/2shsf.try-adtranq.com/js/index.4b3362bc.js IP143.204.55.18:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2 CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size104 kB (103565 bytes) Hash620613df4a7ed29ee8d7814db0143147 632c5f385178ffe19fe8736e4f62b9b1f16fb03b 2defb839b27a2b58601bb3020e06b7c24b08461d5d387fe2a7f719c13d3c149f
GET /js/index.4b3362bc.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:43 GMT
accept-ranges: bytes
content-encoding: gzip
date: Fri, 26 Apr 2024 08:54:48 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Fri, 26 Apr 2024 09:54:48 GMT
etag: "4f864-616ec165499c0-gzip"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: gZG2nNf4n2uKGR0f0aGSYw5am_vjngMfOIdD9yys3k_tc3uP82wNIQ==
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/js/LogoGooglePlay.e9645553.js | 143.204.55.18 | 200 OK | 345 B |
URL GET HTTP/2shsf.try-adtranq.com/js/LogoGooglePlay.e9645553.js IP143.204.55.18:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2 CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typeJava source, ASCII text, with very long lines (529) Hashd0a534368d8a1cc043a2983825e34d18 7b7f3a8de741a1d66df6331054ffb1c256da084a a351494bc3344c0818e7b5223798f4b66f62650b33b6c35980825a4a45bae559
GET /js/LogoGooglePlay.e9645553.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 345
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:43 GMT
accept-ranges: bytes
content-encoding: gzip
date: Fri, 26 Apr 2024 08:54:48 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Fri, 26 Apr 2024 09:54:48 GMT
etag: "212-616ec165499c0-gzip"
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: acG_TLiBkgUHGMKjm83NTXgCFNmTbnPIpThQKsWp5j2JhCjbo6GGsA==
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/js/LogoGooglePlay.e9645553.js | 143.204.55.18 | 200 OK | 345 B |
URL GET HTTP/2shsf.try-adtranq.com/js/LogoGooglePlay.e9645553.js IP143.204.55.18:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2 CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typeJava source, ASCII text, with very long lines (529) Hashd0a534368d8a1cc043a2983825e34d18 7b7f3a8de741a1d66df6331054ffb1c256da084a a351494bc3344c0818e7b5223798f4b66f62650b33b6c35980825a4a45bae559
GET /js/LogoGooglePlay.e9645553.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/js/SurveyLayout.4cae0c47.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 345
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:43 GMT
accept-ranges: bytes
content-encoding: gzip
date: Fri, 26 Apr 2024 08:54:48 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Fri, 26 Apr 2024 09:54:48 GMT
etag: "212-616ec165499c0-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: n1SsbAh2u2BP3jonF0PvMijFh7yRUn0pT-f0QraWk_PcP29yCerbig==
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/js/Atlas102Survey.88e3e1a4.js | 143.204.55.18 | 200 OK | 6.1 kB |
URL GET HTTP/2shsf.try-adtranq.com/js/Atlas102Survey.88e3e1a4.js IP143.204.55.18:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2 CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typeASCII text, with very long lines (19673) Hash9febd9a30546d3c389b6436fcdbbb792 cc466b8365541146c8c85c58e48b0c75dddaf386 a48da8c84591534eb2e80eb7c02df99943adce535ff40b90f116ed4545e18a5a
GET /js/Atlas102Survey.88e3e1a4.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 6122
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:43 GMT
accept-ranges: bytes
content-encoding: gzip
date: Fri, 26 Apr 2024 08:54:48 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Fri, 26 Apr 2024 09:54:48 GMT
etag: "4cda-616ec165499c0-gzip"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vwlK8i7z-nHX5e9k5MWHmyilx5w-9_eYKMx__ypedkSelvNosH3TZQ==
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/js/Atlas102Survey.88e3e1a4.js | 143.204.55.18 | 200 OK | 6.1 kB |
URL GET HTTP/2shsf.try-adtranq.com/js/Atlas102Survey.88e3e1a4.js IP143.204.55.18:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2 CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typeASCII text, with very long lines (19673) Hash9febd9a30546d3c389b6436fcdbbb792 cc466b8365541146c8c85c58e48b0c75dddaf386 a48da8c84591534eb2e80eb7c02df99943adce535ff40b90f116ed4545e18a5a
GET /js/Atlas102Survey.88e3e1a4.js HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/js/SurveyLayout.4cae0c47.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 6122
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:43 GMT
accept-ranges: bytes
content-encoding: gzip
date: Fri, 26 Apr 2024 08:54:48 GMT
cache-control: max-age=3600, private, must-revalidate
expires: Fri, 26 Apr 2024 09:54:48 GMT
etag: "4cda-616ec165499c0-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: JuCqM1wWGU1qPaLsTGu-WrCxg7gQc0RJbd7S2nNmY-HW8qxKMiIQTw==
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/assets/icons/apple-touch-icon.png | 143.204.55.18 | 200 OK | 18 kB |
URL GET HTTP/2shsf.try-adtranq.com/assets/icons/apple-touch-icon.png IP143.204.55.18:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2 CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typePNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced Hashd5a70c285453de5c525f7fb0a0e5ebad 0ba57dc02d1054c1604ac2fbb021271bd212f487 b951c1ced2f06cf42f652292e3e59016004c620d99bb938f0383955157eae9b7
GET /assets/icons/apple-touch-icon.png HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2
Cookie: _ga_PXTFLT7QZ3=GS1.1.1714121688.1.0.1714121688.0.0.0; _ga=GA1.1.1926338549.1714121689
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 18451
date: Thu, 25 Apr 2024 13:52:12 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:41 GMT
etag: "4813-616ec16361540"
accept-ranges: bytes
cache-control: max-age=2678400, public
expires: Sat, 25 May 2024 13:52:12 GMT
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: IqamyhSDkaE41hue-xxZeOuwyC0fXmU2cZNbcvlnI6nBSxo5ZV7EDA==
age: 68556
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/assets/icons/favicon-16x16.png | 143.204.55.18 | 200 OK | 767 B |
URL GET HTTP/2shsf.try-adtranq.com/assets/icons/favicon-16x16.png IP143.204.55.18:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2 CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typePNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced Hash055634234affa173e0fa12ecb25a3250 507ca6856b060381fbf0e27ba13a0ddbd3d10981 6e3bea7fe9044506a41748ebb532c7ad208da7720525f2a8d6540951a4208e79
GET /assets/icons/favicon-16x16.png HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2
Cookie: _ga_PXTFLT7QZ3=GS1.1.1714121688.1.0.1714121688.0.0.0; _ga=GA1.1.1926338549.1714121689
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 767
date: Thu, 25 Apr 2024 14:38:45 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:41 GMT
etag: "2ff-616ec16361540"
accept-ranges: bytes
cache-control: max-age=2678400, public
expires: Sat, 25 May 2024 14:38:45 GMT
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: WyAu4kFTeiFyMTqCB06uwEd4TRDjmSkDYFGqZzs3heox4WvOCulD0Q==
age: 65763
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/img/logo-google-play.png | 143.204.55.18 | 200 OK | 4.6 kB |
URL GET HTTP/2shsf.try-adtranq.com/img/logo-google-play.png IP143.204.55.18:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2 CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typePNG image data, 464 x 109, 8-bit colormap, non-interlaced Hash132a1552300a0a8a58aa1cf9c5989094 db51496dcbbc7439159a0de7cd2592737ac49812 b905cb3a69e4b8adc4133ed22945181721cc0f6dc8fa065b395c7238d2b48f9a
GET /img/logo-google-play.png HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/survey/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2
Cookie: _ga_PXTFLT7QZ3=GS1.1.1714121688.1.0.1714121688.0.0.0; _ga=GA1.1.1926338549.1714121689
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 4606
date: Thu, 25 Apr 2024 18:08:40 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:43 GMT
etag: "11fe-616ec165499c0"
accept-ranges: bytes
cache-control: max-age=2678400, public
expires: Sat, 25 May 2024 18:08:40 GMT
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rWnXFY75aZIvexQRX7qG-4608q22-a1Mu53CTvPOKHnVJwDODv2Ghw==
age: 53169
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/img/logo-google-play.webp | 143.204.55.18 | 200 OK | 4.1 kB |
URL GET HTTP/2shsf.try-adtranq.com/img/logo-google-play.webp IP143.204.55.18:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2 CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Hashb380a06902fdf4a0cd1fb2b3fb3bcbd1 e423a0bcbc3da4f7af407625f6972dee8d7bdc79 d1860ddf921271084c11d16a2d8ae6172b68a92db0739dea866cef68229b2901
GET /img/logo-google-play.webp HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/survey/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2
Cookie: _ga_PXTFLT7QZ3=GS1.1.1714121688.1.0.1714121688.0.0.0; _ga=GA1.1.1926338549.1714121689
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 4050
date: Thu, 25 Apr 2024 13:52:19 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:43 GMT
etag: "fd2-616ec165499c0"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sat, 25 May 2024 13:52:19 GMT
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bLTbyhdMC5FWYPcZNxQJ20lKWAK8VFR64zrw--l_d9OWSmWY1xxIVQ==
age: 68550
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/img/logos-safe-checkout.webp | 143.204.55.18 | 200 OK | 18 kB |
URL GET HTTP/2shsf.try-adtranq.com/img/logos-safe-checkout.webp IP143.204.55.18:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2 CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Hasha1301be1e948f0c62e4bc5b6f986d3e3 cccd9e2faac5e0438302674a3e7972c038cb28bc cbece4adbd81f7fff8694544397e9d641ddbb497b2cb859eba375f8a622a32ae
GET /img/logos-safe-checkout.webp HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/survey/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2
Cookie: _ga_PXTFLT7QZ3=GS1.1.1714121688.1.0.1714121688.0.0.0; _ga=GA1.1.1926338549.1714121689
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 17860
date: Thu, 25 Apr 2024 13:52:19 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:43 GMT
etag: "45c4-616ec165499c0"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sat, 25 May 2024 13:52:19 GMT
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3QiLum9FsDbuQiRNW8TUIneNz3vtVu5B1IbvR6DOYrKPRgy8WjjWMQ==
age: 68550
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/img/bg-layout-primary.jpg | 143.204.55.18 | 200 OK | 23 kB |
URL GET HTTP/2shsf.try-adtranq.com/img/bg-layout-primary.jpg IP143.204.55.18:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2 CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1024x768, components 3 Hash791472b353174105fa771082fcce9a2a eed0e0b1dd70f7f4854af645a6e09ae3e737ada2 fc9de09ec03e5bf98e3c1648d4f0f6f6d0c09981735049121da059875b7296f2
GET /img/bg-layout-primary.jpg HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/css/index.925b2269.css
Cookie: _ga_PXTFLT7QZ3=GS1.1.1714121688.1.0.1714121688.0.0.0; _ga=GA1.1.1926338549.1714121689
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 22906
date: Thu, 25 Apr 2024 13:52:19 GMT
server: Apache/2.4.56 (Amazon Linux)
last-modified: Thu, 25 Apr 2024 13:51:43 GMT
etag: "597a-616ec165499c0"
accept-ranges: bytes
cache-control: max-age=2678400, public
expires: Sat, 25 May 2024 13:52:19 GMT
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: QsY76o6A7bksIcFNCjpTFOVL6SRaC_U46YUHxIjxASSwjP57srPwbw==
age: 68550
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Lato:ital,wght@0,400;0,700;1,400;1,700&display=swap | 142.250.74.106 | 200 OK | 10 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Lato:ital,wght@0,400;0,700;1,400;1,700&display=swap IP142.250.74.106:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File typegzip compressed data, max compression Hashba35dd87775ee4a49c0b9566aa44b9a0 d9974bc7a25ec62f89819dbb4f5e975c4a584a0c 1c635defe835e60a0793f528bfbb6a8bc4a1945985449e77d71e9bf4bbef1138
GET /css2?family=Lato:ital,wght@0,400;0,700;1,400;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 Apr 2024 08:54:49 GMT
date: Fri, 26 Apr 2024 08:54:49 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 | 216.58.207.227 | 200 OK | 23 kB |
URL GET HTTP/2fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 IP216.58.207.227:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33 ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 23040, version 1.0 Hashde69cf9e514df447d1b0bb16f49d2457 2ac78601179c3a63ba3f3f3081556b12ddcaf655 c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shsf.try-adtranq.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 05:59:27 GMT
expires: Sat, 26 Apr 2025 05:59:27 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:07:25 GMT
content-type: font/woff2
age: 10522
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 | 216.58.207.227 | 200 OK | 24 kB |
URL GET HTTP/2fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 IP216.58.207.227:443
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33 ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 23580, version 1.0 Hashe1b3b5908c9cf23dfb2b9c52b9a023ab fcd4136085f2a03481d9958cc6793a5ed98e714c 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shsf.try-adtranq.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 15:44:03 GMT
expires: Fri, 25 Apr 2025 15:44:03 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:17:22 GMT
content-type: font/woff2
age: 61846
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| shsf.try-adtranq.com/img/logos-safe-checkout.png | 0.0.0.0 | | 0 B |
URL GET shsf.try-adtranq.com/img/logos-safe-checkout.png IP0.0.0.0:0
Requested byhttps://shsf.try-adtranq.com/Atlas250ControlNov24/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2 CertificateIssuerAmazon Subjectgetadtrnq.com Fingerprint6A:F5:E0:D1:CA:FE:E5:A2:DA:D5:80:D7:C1:02:DC:7E:39:FB:48:0C ValidityFri, 08 Mar 2024 00:00:00 GMT - Sun, 06 Apr 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /img/logos-safe-checkout.png HTTP/1.1
Host: shsf.try-adtranq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shsf.try-adtranq.com/Atlas250ControlNov24/survey/?geo=FR&locale=fr&utm_source=PropellerAds&sptoken=92$sAWYRrv&utm_content=f6458901-c3f9-4190-9683-b4599a461bf0&utm_campaign=d8tl2cnrgse3n0s0j5igl128&utm_medium=NO&ip_address=91.90.42.0&city=Oslo®ion=Oslo&country=Norway&clickid=d8tl2cnrgse3n0s0j5igl128&tracking_domain=track.getupgradedsecurity.com&client_id=&utm_term=2642024&initial-cid=d21jn1l7skhk10s0343mcge2
Cookie: _ga_PXTFLT7QZ3=GS1.1.1714121688.1.0.1714121688.0.0.0; _ga=GA1.1.1926338549.1714121689
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|