302 Found 48 B URL User Request GET HTTP/1.1 IP
File type HTML document, ASCII text
Hash 8d2a44a784e26c85222381d080cdd86b
26e59980970234f09814caf9248e241030188a2a
1a77ecc2c641f368c24c885adff9653e91d45f11726d9964b73a38e54640711a
NIDS Severity Alert suricata low ET INFO Namecheap URL Forward
GET / HTTP/1.1
Host: kimlose23.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Mon, 04 Dec 2023 05:00:14 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 48
Connection: keep-alive
Location: http://www.kimlose23.xyz/
X-Served-By: Namecheap URL Forward
Server: namecheap-nginx
200 OK 7.3 kB URL User Request GET HTTP/1.1 IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10825)
Hash 4210c3a997534017a820e53f242a70c4
49e2d8e78a63034d2fc4578ee2f4b1914096b67a
d9a5bed22b5ac10da434fe119efd52088fd17afa66897c250332d93d7533335b
GET / HTTP/1.1
Host: www.kimlose23.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Mon, 04 Dec 2023 05:00:14 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
vary: Accept-Encoding
x-powered-by: PHP/8.1.17
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANnylWw2vLY4hUn9w06zQKbhKBfvjFUCsdFlb6TdQhxb9RXWXuI4t31c+o8fYOv/s8q1LGPga3DE1L/tHU4LENMCAwEAAQ==_Z2wY4y2FiPBeGIkF1jyhVziEOfPWQknoZc/9a8CpCLXNFK7ZFTDcahAFExndEsyUQVAb+7MXBrJPHsrS5Vhemw==
last-modified: Mon, 04 Dec 2023 05:00:14 GMT
x-cache-miss-from: parking-698fb476bf-cmbck
server: NginX
content-encoding: gzip
302 Found 48 B URL User Request GET HTTP/1.1 IP
File type HTML document, ASCII text
Hash 8d2a44a784e26c85222381d080cdd86b
26e59980970234f09814caf9248e241030188a2a
1a77ecc2c641f368c24c885adff9653e91d45f11726d9964b73a38e54640711a
NIDS Severity Alert suricata low ET INFO Namecheap URL Forward
GET / HTTP/1.1
Host: kimlose23.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Mon, 04 Dec 2023 05:00:17 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 48
Connection: keep-alive
Location: http://www.kimlose23.xyz/
X-Served-By: Namecheap URL Forward
Server: namecheap-nginx
200 OK 7.3 kB URL User Request GET HTTP/1.1 IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10825)
Hash a219fbf13e5c7bef5ec08a9a2a70bd5f
fd23c6cec512889673b20d4e22d9a45261631e51
ec7ab75d4287d08ae11b9e3546aa01d2049327065a8ee7f5b89a43a421681762
GET / HTTP/1.1
Host: www.kimlose23.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Mon, 04 Dec 2023 05:00:18 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
vary: Accept-Encoding
x-powered-by: PHP/8.1.17
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANnylWw2vLY4hUn9w06zQKbhKBfvjFUCsdFlb6TdQhxb9RXWXuI4t31c+o8fYOv/s8q1LGPga3DE1L/tHU4LENMCAwEAAQ==_Z2wY4y2FiPBeGIkF1jyhVziEOfPWQknoZc/9a8CpCLXNFK7ZFTDcahAFExndEsyUQVAb+7MXBrJPHsrS5Vhemw==
last-modified: Mon, 04 Dec 2023 05:00:18 GMT
x-cache-miss-from: parking-698fb476bf-6x2qm
server: NginX
content-encoding: gzip
img.sedoparking.com/templates/bg/arrows-curved.png
200 OK 14 kB URL GET HTTP/1.1 img.sedoparking.com/templates/bg/arrows-curved.png
IP
Requested by http://www.kimlose23.xyz/
File type PNG image data, 413 x 594, 8-bit/color RGBA, non-interlaced\012- data
Hash 107694ee1e94990d97b7e58651ffd6a0
7dd9ae7badf78be01ea0623df1e90171348716ff
7aa2a3e9a9575a27f5593c3b0357423128c468a46ed20d284ce5a21555ee67bc
GET /templates/bg/arrows-curved.png HTTP/1.1
Host: img.sedoparking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.kimlose23.xyz/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 05:00:18 GMT
Content-Type: image/png
Content-Length: 13502
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=604800
Expires: Mon, 11 Dec 2023 05:00:18 GMT
X-CFHash: "107694ee1e94990d97b7e58651ffd6a0"
X-CFF: B
Last-Modified: Tue, 12 Oct 2021 05:19:02 GMT
X-CF3: H
CF4Age: 45332
x-cf-tsc: 1701587647
CF4ttl: 31490668.000
X-CF2: H
Server: CFS 1124
X-CF-ReqID: d495db9445c4b647200aa7bf0d6297e0
X-CF1: 11696:fB.arn1:cf:cacheN.arn1-01:H
Accept-Ranges: bytes
www.google.com/adsense/domains/caf.js
200 OK 54 kB URL GET HTTP/1.1 www.google.com/adsense/domains/caf.js
IP
Requested by http://www.kimlose23.xyz/
File type ASCII text, with very long lines (1888)
Hash 5a0e19cda72713ad9d0025a071e9aace
084525ff5ae9ab96babecab6ca8958b7ea1349c6
a9962fd366bf7d9f937011f136bad4874a94705af08b2f6324d49ad5131e4903
GET /adsense/domains/caf.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.kimlose23.xyz/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Type: text/javascript; charset=UTF-8
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="ads-afs-ui"
Report-To: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
Date: Mon, 04 Dec 2023 05:00:18 GMT
Expires: Mon, 04 Dec 2023 05:00:18 GMT
Cache-Control: private, max-age=3600
ETag: "7255770353194493123"
X-Content-Type-Options: nosniff
Link: <https://www.adsensecustomsearchads.com>; rel="preconnect"
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: sffe
X-XSS-Protection: 0
img.sedoparking.com/templates/images/hero_nc.svg
200 OK 20 kB URL GET HTTP/2 img.sedoparking.com/templates/images/hero_nc.svg
IP
Requested by http://www.kimlose23.xyz/
Certificate IssuerGlobalSign nv-sa
Subject*.cachefly.net
Fingerprint0F:4E:B2:D7:96:B9:94:D0:35:66:76:6C:4B:16:18:49:DE:42:80:71
ValidityMon, 13 Nov 2023 19:46:02 GMT - Sat, 14 Dec 2024 19:46:01 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1738)
Hash 5a2c392e7acdf6e9de6e00129500503c
c8d0f80381e4ce180b5eb3c4c98539907292a7bb
878da09a057ec8f1775cdc522e5f7ec44966df547a87a9c29826ba114833c24b
GET /templates/images/hero_nc.svg HTTP/1.1
Host: img.sedoparking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.kimlose23.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:00:18 GMT
content-type: image/svg+xml
content-length: 20346
access-control-allow-origin: *
x-cff: B
last-modified: Thu, 05 Oct 2023 09:16:15 GMT
vary: Accept-Encoding
x-cf3: H
cf4age: 1983
x-cf-tsc: 1701544285
cf4ttl: 31534016.000
content-encoding: gzip
x-cf2: H
server: CFS 1124
x-cf-reqid: 2e6cfe1370cbbcd46340663bbf154803
x-cf1: 11696:fB.arn1:nom:cacheN.arn1-01:H
accept-ranges: bytes
X-Firefox-Spdy: h2
www.kimlose23.xyz/search/tsc.php?200=NTU5MTgyNzYw&21=OTEuOTAuNDIuMTU0&681=MTcwMTY2NjAxODliNDdjMThhNzI5ODMxODdjMzkyYWNjZDY4NTk2ODk4&crc=00924ce77b8b141e4291550761f4f6f102b610e3&cv=1
200 OK 0 B URL GET HTTP/1.1 www.kimlose23.xyz/search/tsc.php?200=NTU5MTgyNzYw&21=OTEuOTAuNDIuMTU0&681=MTcwMTY2NjAxODliNDdjMThhNzI5ODMxODdjMzkyYWNjZDY4NTk2ODk4&crc=00924ce77b8b141e4291550761f4f6f102b610e3&cv=1
IP
Requested by http://www.kimlose23.xyz/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /search/tsc.php?200=NTU5MTgyNzYw&21=OTEuOTAuNDIuMTU0&681=MTcwMTY2NjAxODliNDdjMThhNzI5ODMxODdjMzkyYWNjZDY4NTk2ODk4&crc=00924ce77b8b141e4291550761f4f6f102b610e3&cv=1 HTTP/1.1
Host: www.kimlose23.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.kimlose23.xyz/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Mon, 04 Dec 2023 05:00:18 GMT
content-type: text/html; charset=UTF-8
content-length: 0
x-powered-by: PHP/8.1.17
x-cache-miss-from: parking-698fb476bf-lvhcl
server: NginX
img.sedoparking.com/templates/logos/sedo_logo.png
200 OK 15 kB URL GET HTTP/1.1 img.sedoparking.com/templates/logos/sedo_logo.png
IP
Requested by http://www.kimlose23.xyz/
File type MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash def00c11b1596db4efee6a9fbe64fc27
bd298981e6d8d7e4ffa18abcf687041f4246672d
95c427fa3143b1896faf42a6406686ce7602cb39052081bb32d12b51c9e047e4
GET /templates/logos/sedo_logo.png HTTP/1.1
Host: img.sedoparking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.kimlose23.xyz/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 05:00:18 GMT
Content-Type: image/png
Content-Length: 15086
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=604800
Expires: Mon, 11 Dec 2023 05:00:18 GMT
X-CFHash: "def00c11b1596db4efee6a9fbe64fc27"
X-CFF: B
Last-Modified: Mon, 11 Jan 2021 07:44:34 GMT
X-CF3: H
CF4Age: 2436
x-cf-tsc: 1701545420
CF4ttl: 31533564.000
X-CF2: H
Server: CFS 1124
X-CF-ReqID: 0030473f4745289afd12ba5a204475b2
X-CF1: 11696:fB.arn1:cf:cacheN.arn1-01:H
Accept-Ranges: bytes
www.adsensecustomsearchads.com/afs/ads/i/iframe.html
200 OK 726 B URL GET HTTP/2 www.adsensecustomsearchads.com/afs/ads/i/iframe.html
IP
Requested by http://www.kimlose23.xyz/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1559)
Hash a7173d06fb135cc0ed1290b458f5250b
c302e58ca55e4cc79e0f88059d2d52de5ca5036b
b0d18f6159f6ad23b21d9c2dcdbea8a65a01ec58f09001ad402d6a90dbe6b3b5
GET /afs/ads/i/iframe.html HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.kimlose23.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/html
content-security-policy: script-src 'nonce-aZqqu1LUsGTMSCw2kRe2tQ' 'report-sample' 'strict-dynamic' 'unsafe-eval' 'unsafe-inline' http: https:; object-src 'none'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui; base-uri 'none'
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
content-length: 726
date: Mon, 04 Dec 2023 05:00:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
last-modified: Tue, 14 Nov 2023 07:00:00 GMT
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.adsensecustomsearchads.com/afs/ads?adsafe=low&adtest=off&psid=3259787283&channel=exp-0051%2Cauxa-control-1%2C44786252&client=dp-sedo85_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.kimlose23.xyz%2Fcaf%2F%3Fses%3DY3JlPTE3MDE2NjYwMTgmdGNpZD13d3cua2ltbG9zZTIzLnh5ejY1NmQ1Y2UyMmQyOGEwLjUxMTI5ODAzJnRhc2s9c2VhcmNoJmRvbWFpbj1raW1sb3NlMjMueHl6JmFfaWQ9MyZzZXNzaW9uPTdXUWNnYnZsdEdfcnJOd1hXbVJq&type=3&uiopt=false&swp=as-drid-2280784292183247&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300000%2C17301383&format=r3%7Cs&nocache=4991701666023976&num=0&output=afd_ads&domain_name=www.kimlose23.xyz&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1701666023985&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=1146&frm=0&cl=579967862&uio=--&cont=rb-default&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Fwww.kimlose23.xyz%2F
200 OK 2.9 kB URL GET HTTP/2 www.adsensecustomsearchads.com/afs/ads?adsafe=low&adtest=off&psid=3259787283&channel=exp-0051%2Cauxa-control-1%2C44786252&client=dp-sedo85_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.kimlose23.xyz%2Fcaf%2F%3Fses%3DY3JlPTE3MDE2NjYwMTgmdGNpZD13d3cua2ltbG9zZTIzLnh5ejY1NmQ1Y2UyMmQyOGEwLjUxMTI5ODAzJnRhc2s9c2VhcmNoJmRvbWFpbj1raW1sb3NlMjMueHl6JmFfaWQ9MyZzZXNzaW9uPTdXUWNnYnZsdEdfcnJOd1hXbVJq&type=3&uiopt=false&swp=as-drid-2280784292183247&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300000%2C17301383&format=r3%7Cs&nocache=4991701666023976&num=0&output=afd_ads&domain_name=www.kimlose23.xyz&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1701666023985&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=1146&frm=0&cl=579967862&uio=--&cont=rb-default&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Fwww.kimlose23.xyz%2F
IP
Requested by http://www.kimlose23.xyz/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (13654)
Hash fdffbd88d473456627e330d59cc47be8
826777bc979aa981f527eec3ba4ceab9be4385cf
32e56083e4d9a2cd296d0baca5be07e9914761ed3574763875ba678b5fa87b7c
GET /afs/ads?adsafe=low&adtest=off&psid=3259787283&channel=exp-0051%2Cauxa-control-1%2C44786252&client=dp-sedo85_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.kimlose23.xyz%2Fcaf%2F%3Fses%3DY3JlPTE3MDE2NjYwMTgmdGNpZD13d3cua2ltbG9zZTIzLnh5ejY1NmQ1Y2UyMmQyOGEwLjUxMTI5ODAzJnRhc2s9c2VhcmNoJmRvbWFpbj1raW1sb3NlMjMueHl6JmFfaWQ9MyZzZXNzaW9uPTdXUWNnYnZsdEdfcnJOd1hXbVJq&type=3&uiopt=false&swp=as-drid-2280784292183247&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300000%2C17301383&format=r3%7Cs&nocache=4991701666023976&num=0&output=afd_ads&domain_name=www.kimlose23.xyz&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1701666023985&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=1146&frm=0&cl=579967862&uio=--&cont=rb-default&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Fwww.kimlose23.xyz%2F HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.kimlose23.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-disposition: inline
date: Mon, 04 Dec 2023 05:00:18 GMT
expires: Mon, 04 Dec 2023 05:00:18 GMT
cache-control: private, max-age=3600
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-aY0nTAxO1pNodBZha7Ni7A' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
content-encoding: br
server: gws
content-length: 2882
x-xss-protection: 0
set-cookie: CONSENT=PENDING+519; expires=Wed, 03-Dec-2025 05:00:18 GMT; path=/; domain=.adsensecustomsearchads.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff
200 OK 174 B URL GET HTTP/2 afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff
IP
Requested by https://www.adsensecustomsearchads.com/afs/ads?adsafe=low&adtest=off&psid=3259787283&channel=exp-0051%2Cauxa-control-1%2C44786252&client=dp-sedo85_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.kimlose23.xyz%2Fcaf%2F%3Fses%3DY3JlPTE3MDE2NjYwMTgmdGNpZD13d3cua2ltbG9zZTIzLnh5ejY1NmQ1Y2UyMmQyOGEwLjUxMTI5ODAzJnRhc2s9c2VhcmNoJmRvbWFpbj1raW1sb3NlMjMueHl6JmFfaWQ9MyZzZXNzaW9uPTdXUWNnYnZsdEdfcnJOd1hXbVJq&type=3&uiopt=false&swp=as-drid-2280784292183247&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300000%2C17301383&format=r3%7Cs&nocache=4991701666023976&num=0&output=afd_ads&domain_name=www.kimlose23.xyz&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1701666023985&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=1146&frm=0&cl=579967862&uio=--&cont=rb-default&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Fwww.kimlose23.xyz%2F
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE
ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash 11b3089d616633ca6b73b57aa877eeb4
07632f63e06b30d9b63c97177d3a8122629bda9b
809fb4619d2a2f1a85dbda8cc69a7f1659215212d708a098d62150eee57070c1
GET /ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.adsensecustomsearchads.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 174
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 04 Dec 2023 02:49:01 GMT
expires: Tue, 05 Dec 2023 01:49:01 GMT
cache-control: public, max-age=82800
age: 7878
last-modified: Thu, 02 Nov 2023 22:48:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%231967d2
200 OK 272 B URL GET HTTP/2 afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%231967d2
IP
Requested by https://www.adsensecustomsearchads.com/afs/ads?adsafe=low&adtest=off&psid=3259787283&channel=exp-0051%2Cauxa-control-1%2C44786252&client=dp-sedo85_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.kimlose23.xyz%2Fcaf%2F%3Fses%3DY3JlPTE3MDE2NjYwMTgmdGNpZD13d3cua2ltbG9zZTIzLnh5ejY1NmQ1Y2UyMmQyOGEwLjUxMTI5ODAzJnRhc2s9c2VhcmNoJmRvbWFpbj1raW1sb3NlMjMueHl6JmFfaWQ9MyZzZXNzaW9uPTdXUWNnYnZsdEdfcnJOd1hXbVJq&type=3&uiopt=false&swp=as-drid-2280784292183247&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300000%2C17301383&format=r3%7Cs&nocache=4991701666023976&num=0&output=afd_ads&domain_name=www.kimlose23.xyz&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1701666023985&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=1146&frm=0&cl=579967862&uio=--&cont=rb-default&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Fwww.kimlose23.xyz%2F
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE
ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (390)
Hash a6ad6e65373db8c1b1f154c4c83f8ce5
84cc007d6d682c589e1e1f87482a5278830f3000
920a378947204498c122722933b3a4b67788a2b6fade8bd0d47cf830eeee0563
GET /ad_icons/standard/publisher_icon_image/search.svg?c=%231967d2 HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.adsensecustomsearchads.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 272
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 03 Dec 2023 14:42:22 GMT
expires: Mon, 04 Dec 2023 13:42:22 GMT
cache-control: public, max-age=82800
age: 51477
last-modified: Thu, 20 Jul 2023 22:48:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=hvs9a03zkqb4&aqid=4lxtZYP8Kdy0iM0PrpaPiA8&psid=3259787283&pbt=bs&adbx=392&adby=413.04998779296875&adbh=553&adbw=496&adbah=178%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=20%7C0%7C725%7C55%7C66&lle=0&ifv=1&hpt=0
204 No Content 0 B URL GET HTTP/3 www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=hvs9a03zkqb4&aqid=4lxtZYP8Kdy0iM0PrpaPiA8&psid=3259787283&pbt=bs&adbx=392&adby=413.04998779296875&adbh=553&adbw=496&adbah=178%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=20%7C0%7C725%7C55%7C66&lle=0&ifv=1&hpt=0
IP
Requested by http://www.kimlose23.xyz/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=hvs9a03zkqb4&aqid=4lxtZYP8Kdy0iM0PrpaPiA8&psid=3259787283&pbt=bs&adbx=392&adby=413.04998779296875&adbh=553&adbw=496&adbah=178%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=20%7C0%7C725%7C55%7C66&lle=0&ifv=1&hpt=0 HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.kimlose23.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-B_us-P8mVwSRXvLhvnYNow' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Mon, 04 Dec 2023 05:00:20 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+834; expires=Wed, 03-Dec-2025 05:00:20 GMT; path=/; domain=.adsensecustomsearchads.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=2h8lfw9faa2o&aqid=4lxtZYP8Kdy0iM0PrpaPiA8&pbt=bs&adbx=490&adby=986.0499877929688&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=5%7C0%7C740%7C55%7C66&lle=0&ifv=1&hpt=0
204 No Content 0 B URL GET HTTP/3 www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=2h8lfw9faa2o&aqid=4lxtZYP8Kdy0iM0PrpaPiA8&pbt=bs&adbx=490&adby=986.0499877929688&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=5%7C0%7C740%7C55%7C66&lle=0&ifv=1&hpt=0
IP
Requested by http://www.kimlose23.xyz/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=2h8lfw9faa2o&aqid=4lxtZYP8Kdy0iM0PrpaPiA8&pbt=bs&adbx=490&adby=986.0499877929688&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=5%7C0%7C740%7C55%7C66&lle=0&ifv=1&hpt=0 HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.kimlose23.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-BCqFiEESZXHjmNMC31Vvbw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Mon, 04 Dec 2023 05:00:20 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+069; expires=Wed, 03-Dec-2025 05:00:20 GMT; path=/; domain=.adsensecustomsearchads.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=qlhfhrtkp15q&aqid=4lxtZYP8Kdy0iM0PrpaPiA8&psid=3259787283&pbt=bv&adbx=392&adby=413.04998779296875&adbh=553&adbw=496&adbah=178%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=20%7C0%7C725%7C55%7C66&lle=0&ifv=1&hpt=0
204 No Content 0 B URL GET HTTP/3 www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=qlhfhrtkp15q&aqid=4lxtZYP8Kdy0iM0PrpaPiA8&psid=3259787283&pbt=bv&adbx=392&adby=413.04998779296875&adbh=553&adbw=496&adbah=178%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=20%7C0%7C725%7C55%7C66&lle=0&ifv=1&hpt=0
IP
Requested by http://www.kimlose23.xyz/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=qlhfhrtkp15q&aqid=4lxtZYP8Kdy0iM0PrpaPiA8&psid=3259787283&pbt=bv&adbx=392&adby=413.04998779296875&adbh=553&adbw=496&adbah=178%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=20%7C0%7C725%7C55%7C66&lle=0&ifv=1&hpt=0 HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.kimlose23.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-wr-Y44AVV521BFKNId8t_Q' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Mon, 04 Dec 2023 05:00:21 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+865; expires=Wed, 03-Dec-2025 05:00:21 GMT; path=/; domain=.adsensecustomsearchads.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=4xrxi0bbg038&aqid=4lxtZYP8Kdy0iM0PrpaPiA8&pbt=bv&adbx=490&adby=986.0499877929688&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=5%7C0%7C740%7C55%7C66&lle=0&ifv=1&hpt=0
204 No Content 0 B URL GET HTTP/3 www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=4xrxi0bbg038&aqid=4lxtZYP8Kdy0iM0PrpaPiA8&pbt=bv&adbx=490&adby=986.0499877929688&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=5%7C0%7C740%7C55%7C66&lle=0&ifv=1&hpt=0
IP
Requested by http://www.kimlose23.xyz/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=4xrxi0bbg038&aqid=4lxtZYP8Kdy0iM0PrpaPiA8&pbt=bv&adbx=490&adby=986.0499877929688&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=5%7C0%7C740%7C55%7C66&lle=0&ifv=1&hpt=0 HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.kimlose23.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-Ye1QqX76fAHkrPeRWJs9Lg' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Mon, 04 Dec 2023 05:00:21 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+459; expires=Wed, 03-Dec-2025 05:00:21 GMT; path=/; domain=.adsensecustomsearchads.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.adsensecustomsearchads.com/adsense/domains/caf.js
200 OK 150 kB URL GET HTTP/3 www.adsensecustomsearchads.com/adsense/domains/caf.js
IP
Requested by https://www.adsensecustomsearchads.com/afs/ads?adsafe=low&adtest=off&psid=3259787283&channel=exp-0051%2Cauxa-control-1%2C44786252&client=dp-sedo85_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.kimlose23.xyz%2Fcaf%2F%3Fses%3DY3JlPTE3MDE2NjYwMTgmdGNpZD13d3cua2ltbG9zZTIzLnh5ejY1NmQ1Y2UyMmQyOGEwLjUxMTI5ODAzJnRhc2s9c2VhcmNoJmRvbWFpbj1raW1sb3NlMjMueHl6JmFfaWQ9MyZzZXNzaW9uPTdXUWNnYnZsdEdfcnJOd1hXbVJq&type=3&uiopt=false&swp=as-drid-2280784292183247&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300000%2C17301383&format=r3%7Cs&nocache=4991701666023976&num=0&output=afd_ads&domain_name=www.kimlose23.xyz&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1701666023985&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=1146&frm=0&cl=579967862&uio=--&cont=rb-default&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Fwww.kimlose23.xyz%2F
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT
File type ASCII text, with very long lines (1888)
Size 150 kB (149649 bytes)
Hash 295c98d1ef062dc83574af065c768d68
8db1bf9d4d203fda081389f9099fae82fce9995a
0dcbe293f090c78fd766dca3b924bd45bb58ede279aab98705b8e57b6b189c8f
GET /adsense/domains/caf.js HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.adsensecustomsearchads.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Mon, 04 Dec 2023 05:00:19 GMT
expires: Mon, 04 Dec 2023 05:00:19 GMT
cache-control: private, max-age=3600
etag: "17662540289770248759"
x-content-type-options: nosniff
link: <https://www.adsensecustomsearchads.com>; rel="preconnect"
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
162.255.119.217
91.195.240.19