Report - www.websecuritydefender.com/c/c8c6c0b39fe65b6e?click_id={click_id}&cost={cost}&s1=tc3-mcf-nl&s3=c5&s4={camp

Report Overview

Submitted URL
www.websecuritydefender.com/c/c8c6c0b39fe65b6e?click_id={click_id}&cost={cost}&s1=tc3-mcf-nl&s3=c5&s4={camp_id}
IP
52.51.27.131
ASN
#16509 AMAZON-02
Submitted
2023-10-30 14:22:10
Access
public
Website Title
Complete McAfee® Protection
Final URL
www.websecuritydefender.com/c/c8c6c0b39fe65b6e?click_id={click_id}&cost={cost}&s1=tc3-mcf-nl&s3=c5&s4={camp_id}
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.websecuritydefender.com	unknown	2023-06-26	2023-07-27	2023-10-29	567 B	4.4 kB	52.51.27.131
cdnjs.claudflare.io	unknown	2021-08-09	2021-08-12	2023-10-29	457 B	92 kB	206.189.196.86
stormtrk.com	289095	2019-05-15	2019-05-17	2023-10-29	630 B	1.5 kB	172.67.69.203
cdn-adef.akamaized.net	125719	2014-03-18	2018-02-06	2023-10-29	14 kB	429 kB	95.101.10.67
cdn.stfilecamp.com	400667	2021-09-06	2021-09-06	2023-10-29	1.3 kB	42 kB	205.185.216.42
route.frest.pro	unknown	2022-10-19	2023-01-02	2023-10-29	526 B	754 B	172.67.211.109
ocsp.pki.goog	175	2016-06-13	2018-07-01	2023-10-30	1.7 kB	3.5 kB	142.250.74.131
www.gstatic.com	unknown	2008-02-11	2016-07-26	2023-10-30	1.1 kB	7.3 kB	142.250.74.35
translate.googleapis.com	1005	2005-01-25	2012-05-31	2023-10-30	1.8 kB	84 kB	216.58.207.234
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2023-10-30	466 B	4.2 kB	216.58.207.227
translate-pa.googleapis.com	1620	2005-01-25	2021-11-04	2023-10-30	543 B	2.3 kB	216.58.207.234
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2023-10-30	477 B	5.2 kB	104.17.24.14
translate.google.com	1156	1997-09-15	2012-05-30	2023-10-30	463 B	90 kB	142.250.74.78

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-10-30	medium	claudflare.io	Sinkholed

ThreatFox

No alerts detected

JavaScript (13)

	URL	Size	First Seen	Last Seen
	cdn.stfilecamp.com/stormtrk.js	6.8 kB	2023-03-12	2024-07-24
Pretty URL cdn.stfilecamp.com/stormtrk.js IP 205.185.216.42 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 06:32:38 Last Seen2024-07-24 02:00:58 Times Seen321 Hash 39e5f8ad757fe438c784e8d883e47ab0 6b2905489485100c83605f43186c5843031e1f3b e421906cc3be04e5f6795074c0a91e5a194f218b3f8c57adfed0f4d315dd445a Loading...

	www.websecuritydefender.com/_/translate_http/_/js/k=translate_http.tr.no.vl68TrjMkCQ.O/d=1/rs=AN8SPfqAqWbqnzcfPxAmfiD18IeEcNfkGA/m=el_conf	90 kB	2023-10-30	2023-10-30
Pretty URL www.websecuritydefender.com/_/translate_http/_/js/k=translate_http.tr.no.vl68TrjMkCQ.O/d=1/rs=AN8SPfqAqWbqnzcfPxAmfiD18IeEcNfkGA/m=el_conf IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-30 15:22:11 Last Seen2023-10-30 15:58:21 Times Seen4 Hash ec62c9ca4ccd16f06245797d437603ea ee100ed4b983942b053434e94cad03b82fc94ab9 fda4aba1a5e2406e1a888ffdfd1a00ae56b13f17da550840d6e6fb2cbab51b2c Loading...

	cdn-adef.akamaized.net/landings/277787/1691600158/js/interactive.js?1691600158	24 kB	2023-10-30	2024-02-28
Pretty URL cdn-adef.akamaized.net/landings/277787/1691600158/js/interactive.js?1691600158 IP 95.101.10.67 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-30 15:22:11 Last Seen2024-02-28 14:02:55 Times Seen4 Hash 44dedb54623350ad8d75d078c9bf0960 756ae7dbbe19248972b9ad96bafc5a22a34000ee 0618978f50c59af1368a47640a75e7f4f458e6bf2969ff8c4e8677d3b9544ee9 Loading...

	cdn-adef.akamaized.net/landings/277787/1691600158/js/translete.js?1691600158	1.4 kB	2023-03-07	2024-07-03
Pretty URL cdn-adef.akamaized.net/landings/277787/1691600158/js/translete.js?1691600158 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-07-03 02:01:00 Times Seen128 Hash ec54980cfed635492cef5628111560d2 a5dbc3628701447711d16decd4409070c9967714 b402b988b04cea3b1ba157a14aa973998a6f5cad4d079dfc81622d77c3ba7558 Loading...

	cdn-adef.akamaized.net/landings/277787/1691600158/js/main.js?1691600158	2.1 kB	2023-03-08	2024-06-29
Pretty URL cdn-adef.akamaized.net/landings/277787/1691600158/js/main.js?1691600158 IP 95.101.10.67 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:26 Last Seen2024-06-29 02:01:02 Times Seen52 Hash b56630c7276ebda1b23e2083b8367691 65239919d2202573d05c3a6b205a3d047f60c0dc b81046748042cabb935f24c3bce857a5c4c4386c0b892bbc2ca3d70624b6371e Loading...

	cdn-adef.akamaized.net/landings/277787/1691600158/js/js.cockie.min.js?1691600158	2.3 kB	2023-03-07	2024-07-03
Pretty URL cdn-adef.akamaized.net/landings/277787/1691600158/js/js.cockie.min.js?1691600158 IP 95.101.10.67 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-07-03 02:01:00 Times Seen104 Hash ee34078cc4ca5f836c668cdabfea8637 5e344a985d5544b25695323eecf113e5f147767a 2977fda7a224fff42e1ff6b1d7a93448597c69555326e14a147abc6cab313ed7 Loading...

	translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.vl68TrjMkCQ.O/d=1/exm=el_conf/ed=1/rs=AN8SPfqAqWbqnzcfPxAmfiD18IeEcNfkGA/m=el_main	230 kB	2023-10-23	2023-10-30
Pretty URL translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.vl68TrjMkCQ.O/d=1/exm=el_conf/ed=1/rs=AN8SPfqAqWbqnzcfPxAmfiD18IeEcNfkGA/m=el_main IP 216.58.207.234 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-23 23:45:50 Last Seen2023-10-30 23:22:05 Times Seen948 Hash 3f31494195869ab3f2fb815cafb617a0 6f929be04cd1ff06d101f527302a7f544770c400 676ae102d7b2002943481229381b8ba85f23920daf6197d109c1045c94225146 Loading...

	cdnjs.claudflare.io/ajax/libs/jquery/3.6.0/d/jquery.min.js?1691600158	92 kB	2023-10-29	2023-10-30
Pretty URL cdnjs.claudflare.io/ajax/libs/jquery/3.6.0/d/jquery.min.js?1691600158 IP 206.189.196.86 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-29 02:39:25 Last Seen2023-10-30 15:22:11 Times Seen4 Hash 9f537c1c73c0e9bc6fba48ccdade5952 3ba7673b1ef58a6b81adb3eac9c2bcb9157bd873 90dd6ed33c872f8c1eef52290e80238e061a22cdd0a30116fc12eff34646973d Loading...

	cdn-adef.akamaized.net/landings/277787/1691600158/js/second_back_multi.js?1691600158	2.2 kB	2023-03-07	2024-07-01
Pretty URL cdn-adef.akamaized.net/landings/277787/1691600158/js/second_back_multi.js?1691600158 IP 95.101.10.67 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-07-01 02:01:09 Times Seen146 Hash 4034050f2be05cd41b77c4bb153f89eb 395187f1b6ad0a67fcdede70756a1c455903d84d 717b9e3b39eb201ec4cf8ade5f0ce9f2f2537b02b0b7f822ae159a8d1496df60 Loading...

	cdn.stfilecamp.com/multi_push.js?1691600158	1.1 kB	2023-03-07	2024-02-16
Pretty URL cdn.stfilecamp.com/multi_push.js?1691600158 IP 205.185.216.42 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-02-16 11:05:10 Times Seen152 Hash a50322f9d3f3fafe3fb02be02285e433 c0a894b3bfa545832c3ad1c2f145005d02e50ac4 cb763e10664b93ac12aaead7af7b0838195e45eb89f678ebb3f5776b147f5d99 Loading...

	cdn.stfilecamp.com/fp.min.js	32 kB	2023-04-06	2024-07-26
Pretty URL cdn.stfilecamp.com/fp.min.js IP 205.185.216.42 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-06 21:01:52 Last Seen2024-07-26 20:11:00 Times Seen885 Hash 198f2f5b0a649f41fe890c59d37319aa f24629687612889bb59f610df3879afcd766fb80 d2bc2cb800679f495a7731c105b2e2047965800515f98008867ab33edc940912 Loading...

	cdn-adef.akamaized.net/landings/277787/1691600158/js/cookie.wrap.js?1691600158	771 B	2023-10-30	2024-02-28
Pretty URL cdn-adef.akamaized.net/landings/277787/1691600158/js/cookie.wrap.js?1691600158 IP 95.101.10.67 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-30 15:22:11 Last Seen2024-02-28 14:02:55 Times Seen4 Hash b3537ebea8b245bb2b9a11b938c5b8b5 c85f99ee03e3c1627d8b32b9beadb011d3c424f3 4bc48473363ae9ff97ea214e2386e7e0e80befffc9c486d2cb2d7307d010ccb3 Loading...

	cdn-adef.akamaized.net/landings/277787/1691600158/js/site-protect2.0.js?1691600158	3.1 kB	2023-03-07	2024-07-24
Pretty URL cdn-adef.akamaized.net/landings/277787/1691600158/js/site-protect2.0.js?1691600158 IP 95.101.10.67 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-07-24 02:00:58 Times Seen281 Hash fc96ab06b0f9fcea6731405215ae5daf 8af9f27d895eb69754919a2fc0d74760fecd3860 9243e166cbcd628fd992eba59544ebf99328fd4db7c0c08c2fb28a7af14d759e Loading...

HTTP Transactions (50)

URL IP Response Size

cdnjs.cloudflare.com/ajax/libs/animate.css/4.1.1/animate.min.css?1691600158

104.17.24.14

4.2 kB

URL
cdnjs.cloudflare.com/ajax/libs/animate.css/4.1.1/animate.min.css?1691600158
IP
104.17.24.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65348)
Size
4.2 kB (4216 bytes)
Hash
c0be8e53226ac34833fd9b5dbc01ebc5
b81ef1b22de26af8a7a4656f565fbc91a69d7518
5fbaeb9f8e25d7e0143bae61d4b1802c16ce7390b96ceb2d498b0d96ff4c853f

HTTP Headers

GET /ajax/libs/animate.css/4.1.1/animate.min.css?1691600158 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 30 Oct 2023 14:21:54 GMT
content-type: text/css; charset=utf-8
content-length: 4216
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5f5628a2-11846"
last-modified: Mon, 07 Sep 2020 12:33:38 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 375654
expires: Sat, 19 Oct 2024 14:21:54 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qpYb68vOuPI8HfYGauWlUJcGuI8VdXypvQaJhQ7Rqa%2Firm44q0j%2Ftwcsp%2FpG%2B5a8ndKLTmZe9yl%2FKL2mERGG8IIxh%2Boq%2BEMY8kqYNTrwCkxPKd%2FrtMgXVrgfAtACZ0Py%2BMtF6xww"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 81e44eade9405699-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-adef.akamaized.net/landings/277787/1691600158/js/main.js?1691600158

95.101.10.67

883 B

URL
cdn-adef.akamaized.net/landings/277787/1691600158/js/main.js?1691600158
IP
95.101.10.67:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (2060), with no line terminators
Size
883 B (883 bytes)
Hash
b56630c7276ebda1b23e2083b8367691
65239919d2202573d05c3a6b205a3d047f60c0dc
b81046748042cabb935f24c3bce857a5c4c4386c0b892bbc2ca3d70624b6371e

HTTP Headers

GET /landings/277787/1691600158/js/main.js?1691600158 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: eAHU2kirhI4Q/+SA32ofWc5ac/9JdCnFrmK7K7OR5cbd4vPNSdbS0Bc+Fsliifu0Xyj1dtERCdo=
x-amz-request-id: 5HS1DNDQ2J2J1VBB
Last-Modified: Wed, 09 Aug 2023 16:56:01 GMT
ETag: "b56630c7276ebda1b23e2083b8367691"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Mon, 30 Oct 2023 14:21:54 GMT
Content-Length: 883
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

www.websecuritydefender.com/c/c8c6c0b39fe65b6e?click_id={click_id}&cost={cost}&s1=tc3-mcf-nl&s3=c5&s4={camp_id}

52.51.27.131

3.9 kB

URL
www.websecuritydefender.com/c/c8c6c0b39fe65b6e?click_id={click_id}&cost={cost}&s1=tc3-mcf-nl&s3=c5&s4={camp_id}
IP
52.51.27.131:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (23587)
Size
3.9 kB (3899 bytes)
Hash
471b5b4a981aa7380cc698688676488c
d9ee5187b692851a0d2d75c29dcd820c010f5e1e
800d91de47ea94c7880881eb3e254e8728afd6dbc047e97b0315c45e0a6a7050

HTTP Headers

GET /c/c8c6c0b39fe65b6e?click_id={click_id}&cost={cost}&s1=tc3-mcf-nl&s3=c5&s4={camp_id} HTTP/1.1
Host: www.websecuritydefender.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 30 Oct 2023 14:21:53 GMT
content-type: text/html; charset=utf-8
set-cookie: unique_id=653fbc01000712f7; Path=/; Expires=Fri, 29 Dec 2023 14:21:53 GMT; Secure; SameSite=None
unique_id2=653fbc0100071941; Path=/; Expires=Sun, 28 Jan 2024 14:21:53 GMT; Secure; SameSite=None
impression=; Path=/; Expires=Mon, 30 Oct 2023 14:21:53 GMT; Secure; SameSite=None
653fbc0100071941_sl=[277787]; Path=/; Expires=Mon, 13 Nov 2023 14:21:53 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2

cdn-adef.akamaized.net/landings/277787/1691600158/css/style.css?1691600158

95.101.10.67

2.2 kB

URL
cdn-adef.akamaized.net/landings/277787/1691600158/css/style.css?1691600158
IP
95.101.10.67:0
ASN
#20940 Akamai International B.V.

File type
ASCII text
Size
2.2 kB (2191 bytes)
Hash
66b21fe005ac404504a3db3702c25e9f
cfdd59b97896ce1e542511763c0717ec5601894b
3f3e381a73e45cd280b25d8ef4455e05fe62709b13da4bb87d99183a8f629f51

HTTP Headers

GET /landings/277787/1691600158/css/style.css?1691600158 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: xG7erU15rGMwBJUORPx8JYp27hXGywGuPQZgqxsfhYI1+Z7kuz2D+/Zs6inE8Ua0QBHv3jt0lBg=
x-amz-request-id: 4EK0GSAD0H9X7GF8
Last-Modified: Wed, 09 Aug 2023 16:56:01 GMT
ETag: "66b21fe005ac404504a3db3702c25e9f"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Mon, 30 Oct 2023 14:21:54 GMT
Content-Length: 2191
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/277787/1691600158/js/js.cockie.min.js?1691600158

95.101.10.67

921 B

URL
cdn-adef.akamaized.net/landings/277787/1691600158/js/js.cockie.min.js?1691600158
IP
95.101.10.67:0
ASN
#20940 Akamai International B.V.

File type
ASCII text
Size
921 B (921 bytes)
Hash
ee34078cc4ca5f836c668cdabfea8637
5e344a985d5544b25695323eecf113e5f147767a
2977fda7a224fff42e1ff6b1d7a93448597c69555326e14a147abc6cab313ed7

HTTP Headers

GET /landings/277787/1691600158/js/js.cockie.min.js?1691600158 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: 4rUbZc0Go+pHOBE0mQyOrLgqn5OETbXtD8JMPSZPj8PQ3p3Wjl+RmEy9i7/ld5O3ZYBd9VDTsoc=
x-amz-request-id: 4EKF3PPEHPBWV6QR
Last-Modified: Wed, 09 Aug 2023 16:56:02 GMT
ETag: "ee34078cc4ca5f836c668cdabfea8637"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Mon, 30 Oct 2023 14:21:54 GMT
Content-Length: 921
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/277787/1691600158/css/translate.css?1691600158

95.101.10.67

3.9 kB

URL
cdn-adef.akamaized.net/landings/277787/1691600158/css/translate.css?1691600158
IP
95.101.10.67:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (507)
Size
3.9 kB (3859 bytes)
Hash
ddd8385212ed9ba4b8e4d7081b329f49
c0144102e76f622f4548727ffe499fc76af7fcd4
03f7f9bedf884d3178ffba77fc8bdd57a90e79822ba6f66237b45e9f58177c1e

HTTP Headers

GET /landings/277787/1691600158/css/translate.css?1691600158 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: pGWcVqEkLl67x5KM8+OIrUH0/ihJjGDY3d7ngX87Ur0TrMcv8AtawESGd6Lukl/J+9up1rkw/Kc=
x-amz-request-id: 4EK779KTD22HHZS3
Last-Modified: Wed, 09 Aug 2023 16:56:01 GMT
ETag: "ddd8385212ed9ba4b8e4d7081b329f49"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Mon, 30 Oct 2023 14:21:54 GMT
Content-Length: 3859
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/277787/1691600158/js/interactive.js?1691600158

95.101.10.67

4.9 kB

URL
cdn-adef.akamaized.net/landings/277787/1691600158/js/interactive.js?1691600158
IP
95.101.10.67:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (23764), with no line terminators
Size
4.9 kB (4939 bytes)
Hash
44dedb54623350ad8d75d078c9bf0960
756ae7dbbe19248972b9ad96bafc5a22a34000ee
0618978f50c59af1368a47640a75e7f4f458e6bf2969ff8c4e8677d3b9544ee9

HTTP Headers

GET /landings/277787/1691600158/js/interactive.js?1691600158 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: 6zqwWi9kZyKAq+C3pRWYVMlmR1kwiOqWptBndV1jMLPAOfG+Zv6ume3coscXNEUqWALTHDovXAM=
x-amz-request-id: 5HS7YPJ6PT59CHZ0
Last-Modified: Wed, 09 Aug 2023 16:56:01 GMT
ETag: "44dedb54623350ad8d75d078c9bf0960"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Mon, 30 Oct 2023 14:21:54 GMT
Content-Length: 4939
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/277787/1691600158/js/cookie.wrap.js?1691600158

95.101.10.67

200 OK

771 B

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/277787/1691600158/js/cookie.wrap.js?1691600158
IP
95.101.10.67:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.websecuritydefender.com/c/c8c6c0b39fe65b6e?click_id={click_id}&cost={cost}&s1=tc3-mcf-nl&s3=c5&s4={camp_id}
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
ASCII text
Size
771 B (771 bytes)
Hash
b3537ebea8b245bb2b9a11b938c5b8b5
c85f99ee03e3c1627d8b32b9beadb011d3c424f3
4bc48473363ae9ff97ea214e2386e7e0e80befffc9c486d2cb2d7307d010ccb3

HTTP Headers

GET /landings/277787/1691600158/js/cookie.wrap.js?1691600158 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: RCwt6pAMjT2VtQ/UlSVKPBtF05qcioZJIQzwKiVs3rSmyxxkGivP6MkFkJU1gks573DKaJ3D+7Q=
x-amz-request-id: 5HSCYZ4T0P9SERW9
Last-Modified: Wed, 09 Aug 2023 16:56:02 GMT
ETag: "b3537ebea8b245bb2b9a11b938c5b8b5"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Content-Length: 771
Date: Mon, 30 Oct 2023 14:21:54 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/277787/1691600158/js/site-protect2.0.js?1691600158

95.101.10.67

1.1 kB

URL
cdn-adef.akamaized.net/landings/277787/1691600158/js/site-protect2.0.js?1691600158
IP
95.101.10.67:0
ASN
#20940 Akamai International B.V.

File type
ASCII text
Size
1.1 kB (1068 bytes)
Hash
fc96ab06b0f9fcea6731405215ae5daf
8af9f27d895eb69754919a2fc0d74760fecd3860
9243e166cbcd628fd992eba59544ebf99328fd4db7c0c08c2fb28a7af14d759e

HTTP Headers

GET /landings/277787/1691600158/js/site-protect2.0.js?1691600158 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: yTJO3nB+D1vMkmAw9PjnAiEf91JW2UZxoYAm2yZtAdvKkiTZPmaFlznjp7T917L26nFUKacW0xI=
x-amz-request-id: 5HS096S1B2C5KEZD
Last-Modified: Wed, 09 Aug 2023 16:56:02 GMT
ETag: "fc96ab06b0f9fcea6731405215ae5daf"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Mon, 30 Oct 2023 14:21:54 GMT
Content-Length: 1068
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/277787/1691600158/js/second_back_multi.js?1691600158

95.101.10.67

779 B

URL
cdn-adef.akamaized.net/landings/277787/1691600158/js/second_back_multi.js?1691600158
IP
95.101.10.67:0
ASN
#20940 Akamai International B.V.

File type
HTML document, ASCII text
Size
779 B (779 bytes)
Hash
4034050f2be05cd41b77c4bb153f89eb
395187f1b6ad0a67fcdede70756a1c455903d84d
717b9e3b39eb201ec4cf8ade5f0ce9f2f2537b02b0b7f822ae159a8d1496df60

HTTP Headers

GET /landings/277787/1691600158/js/second_back_multi.js?1691600158 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: tyH5EfNtkDIVPRCAIVTYzuHdKUonUH2uPdM+g3Dg94YAzna592ztOM1WxDiQe9Sax0k1LyK8g2w=
x-amz-request-id: 4P6TG4QSB4DRTRMA
Last-Modified: Wed, 09 Aug 2023 16:56:02 GMT
ETag: "4034050f2be05cd41b77c4bb153f89eb"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Mon, 30 Oct 2023 14:21:54 GMT
Content-Length: 779
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn.stfilecamp.com/multi_push.js?1691600158

205.185.216.42

200 OK

1.1 kB

URL GET HTTP/1.1
cdn.stfilecamp.com/multi_push.js?1691600158
IP
205.185.216.42:443
ASN
#20446 STACKPATH-CDN

Requested by
https://www.websecuritydefender.com/c/c8c6c0b39fe65b6e?click_id={click_id}&cost={cost}&s1=tc3-mcf-nl&s3=c5&s4={camp_id}
Certificate
IssuerLet's Encrypt
Subjectstfilecamp.com
FingerprintB9:69:70:B1:52:5D:FE:AE:F0:24:90:58:7D:85:5B:38:3E:38:9C:4F
ValidityThu, 26 Oct 2023 11:10:00 GMT - Wed, 24 Jan 2024 11:09:59 GMT

File type
ASCII text
Size
1.1 kB (1072 bytes)
Hash
a50322f9d3f3fafe3fb02be02285e433
c0a894b3bfa545832c3ad1c2f145005d02e50ac4
cb763e10664b93ac12aaead7af7b0838195e45eb89f678ebb3f5776b147f5d99

HTTP Headers

GET /multi_push.js?1691600158 HTTP/1.1
Host: cdn.stfilecamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 30 Oct 2023 14:21:55 GMT
Connection: Keep-Alive
Cache-Control: max-age=3600
Content-Length: 1072
Content-Type: text/javascript
Last-Modified: Thu, 07 Jul 2022 14:21:23 GMT
Accept-Ranges: bytes
x-rgw-object-type: Normal
etag: "a50322f9d3f3fafe3fb02be02285e433"
x-amz-request-id: tx00000c5f42180a5b9cc2e-00653fbc03-3c6f4933-sfo3a
strict-transport-security: max-age=15552000; includeSubDomains; preload
Vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin
X-HW: 1698675714.dop224.sk1.t,1698675714.cds219.sk1.shn,1698675714.dop224.sk1.t,1698675715.cds022.sk1.pr

cdnjs.claudflare.io/ajax/libs/jquery/3.6.0/d/jquery.min.js?1691600158

206.189.196.86

92 kB

URL
cdnjs.claudflare.io/ajax/libs/jquery/3.6.0/d/jquery.min.js?1691600158
IP
206.189.196.86:0
ASN
#14061 DIGITALOCEAN-ASN

File type
ASCII text, with very long lines (65447)
Size
92 kB (92013 bytes)
Hash
9f537c1c73c0e9bc6fba48ccdade5952
3ba7673b1ef58a6b81adb3eac9c2bcb9157bd873
90dd6ed33c872f8c1eef52290e80238e061a22cdd0a30116fc12eff34646973d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ajax/libs/jquery/3.6.0/d/jquery.min.js?1691600158 HTTP/1.1
Host: cdnjs.claudflare.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.22.0 (Ubuntu)
Date: Mon, 30 Oct 2023 14:21:55 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 92013
Connection: keep-alive
Cache-Control: public, max-age=43200
Expires: Tue, 31 Oct 2023 02:21:55 GMT

cdn-adef.akamaized.net/landings/277787/1691600158/images/ico_gray1.png

95.101.10.67

200 OK

364 B

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/277787/1691600158/images/ico_gray1.png
IP
95.101.10.67:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.websecuritydefender.com/c/c8c6c0b39fe65b6e?click_id={click_id}&cost={cost}&s1=tc3-mcf-nl&s3=c5&s4={camp_id}
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
PNG image data, 12 x 12, 8-bit/color RGB, non-interlaced\012- data
Size
364 B (364 bytes)
Hash
e144c3378090087c8ce129a30cb6cb4e
59da5466551de941d0215e45c54aa2ceaf436be1
b13a03e0db893734298cbe203bf264407636ffe5dab0a141f83c492d0034dd6a

HTTP Headers

GET /landings/277787/1691600158/images/ico_gray1.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: bkFNaTJuurzfnqa6KfrJrwOjukp/OjijEABG7Iec616TDm5XuO7VcGierjjFe6laE41AvsUV4a0=
x-amz-request-id: H5WYMVJ7RD4Z8C1M
Last-Modified: Wed, 09 Aug 2023 16:56:00 GMT
ETag: "e144c3378090087c8ce129a30cb6cb4e"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 364
Date: Mon, 30 Oct 2023 14:21:55 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/277787/1691600158/images/win_min.png

95.101.10.67

128 B

URL
cdn-adef.akamaized.net/landings/277787/1691600158/images/win_min.png
IP
95.101.10.67:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 12 x 12, 8-bit/color RGB, non-interlaced\012- data
Size
128 B (128 bytes)
Hash
0bb86caf792dd7d24731c18cd37bb68e
dda1e433a0eaf785b2aa2c6214d5e48cb82a3a25
2ac27821ba64d645f36e2ad197492d30c11b10a032cc474554679555f4604622

HTTP Headers

GET /landings/277787/1691600158/images/win_min.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: 3VRH9cwkfE9FISkmptvoWS4xPkjHEfgTy3vxKjLxVWr745ZseSeIvq16PSgSOTtYAH7jMUFPoJk=
x-amz-request-id: H5WT6PNBH99SRGMD
Last-Modified: Wed, 09 Aug 2023 16:56:00 GMT
ETag: "0bb86caf792dd7d24731c18cd37bb68e"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 128
Date: Mon, 30 Oct 2023 14:21:55 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/277787/1691600158/images/logo-red-full.png

95.101.10.67

200 OK

7.3 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/277787/1691600158/images/logo-red-full.png
IP
95.101.10.67:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.websecuritydefender.com/c/c8c6c0b39fe65b6e?click_id={click_id}&cost={cost}&s1=tc3-mcf-nl&s3=c5&s4={camp_id}
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
PNG image data, 230 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
7.3 kB (7254 bytes)
Hash
63fb2900e5622e4a6cadfd616f84476e
60d9f07aa5e9fd0595f00e7ce41eb80a51927f8c
6dbe00201def9dbf69293b028055f8ea0513ef52cb1f2e60212a5061c37d283d

HTTP Headers

GET /landings/277787/1691600158/images/logo-red-full.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: 7hRCokTeII3isv2DI2z0Cj2ZgILjeeaAnCZEUpRUFfS9zUgjQqlHy8iYptW1nDgX3akbzGa/Tkg=
x-amz-request-id: H5WXMZMBESMRKYY5
Last-Modified: Wed, 09 Aug 2023 16:56:01 GMT
ETag: "63fb2900e5622e4a6cadfd616f84476e"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 7254
Date: Mon, 30 Oct 2023 14:21:55 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/277787/1691600158/images/ico_bl1.gif

95.101.10.67

511 B

URL
cdn-adef.akamaized.net/landings/277787/1691600158/images/ico_bl1.gif
IP
95.101.10.67:0
ASN
#20940 Akamai International B.V.

File type
GIF image data, version 89a, 80 x 65\012- data
Size
511 B (511 bytes)
Hash
af3aca2036675c5979fb535c5d190f15
70c4f17ef1a2afe0477c84c5d209fbe31760b657
aa88fa9731a6021cd8c0f80ef76476fd055a9cf0bff3ad9fbefbedbd255e26fa

HTTP Headers

GET /landings/277787/1691600158/images/ico_bl1.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: HJyJBBFAJM+MqLkWWVVSKS4yiItjYv5vQtiUbsEdmx+hqj1FJTqILcABJjwloQ3RmG2/TWOi15U=
x-amz-request-id: GXGF4MSPC9FTHKAP
Last-Modified: Wed, 09 Aug 2023 16:56:01 GMT
ETag: "af3aca2036675c5979fb535c5d190f15"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 511
Date: Mon, 30 Oct 2023 14:21:55 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/277787/1691600158/images/protect.png

95.101.10.67

71 kB

URL
cdn-adef.akamaized.net/landings/277787/1691600158/images/protect.png
IP
95.101.10.67:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 543 x 300, 8-bit/color RGBA, non-interlaced\012- data
Size
71 kB (70593 bytes)
Hash
9979fef59356099c8f41e2248fb3765d
b675d4030621b8de6bb823085ff9d9b8613c5f48
d00309ba24e28a196d0ce99ced950476954b7435a539e5157556cdb4c23fd310

HTTP Headers

GET /landings/277787/1691600158/images/protect.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: G8tmGWlWNRWLYuA+4/BbKXB9EJaw6FRG+Fl8zKlz8aMZ1YnvsxXkQNGMl/U4le3VH6abVSiwhGU=
x-amz-request-id: H5WSJ18JDQS5XC13
Last-Modified: Wed, 09 Aug 2023 16:56:00 GMT
ETag: "9979fef59356099c8f41e2248fb3765d"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 70593
Date: Mon, 30 Oct 2023 14:21:55 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/277787/1691600158/images/cross.gif

95.101.10.67

200 OK

211 B

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/277787/1691600158/images/cross.gif
IP
95.101.10.67:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.websecuritydefender.com/c/c8c6c0b39fe65b6e?click_id={click_id}&cost={cost}&s1=tc3-mcf-nl&s3=c5&s4={camp_id}
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
GIF image data, version 89a, 29 x 29\012- data
Size
211 B (211 bytes)
Hash
45b0c8a1e52d91e8cf84eaf75ebca9a9
0e358b8571f9062dedfacd0c31d54179270153cd
4e635bdab7a300d0ccb5aac26b4610a07ee1b33643578c1a4308e677d7eb595d

HTTP Headers

GET /landings/277787/1691600158/images/cross.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: lqgJlbqdTLvUkBuvxNH9HUPV0jLbkKwnF0/hB//gid9XO1hSWfnec86U/YVcuQjZRNUsdktPuFs=
x-amz-request-id: FZND7RA6G3H0PZEB
Last-Modified: Wed, 09 Aug 2023 16:56:01 GMT
ETag: "45b0c8a1e52d91e8cf84eaf75ebca9a9"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 211
Date: Mon, 30 Oct 2023 14:21:55 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/277787/1691600158/images/ico_bl3.gif

95.101.10.67

949 B

URL
cdn-adef.akamaized.net/landings/277787/1691600158/images/ico_bl3.gif
IP
95.101.10.67:0
ASN
#20940 Akamai International B.V.

File type
GIF image data, version 89a, 78 x 68\012- data
Size
949 B (949 bytes)
Hash
da9d153375da51a616a7663f1504e3a5
bd81fe60fe017bfe79be8c1afed88b659ff166d9
9bb88049c3d3f3c172d97246fa148bb725e727847c37e28c3be156be240a0c04

HTTP Headers

GET /landings/277787/1691600158/images/ico_bl3.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: MqybdISo8URGyMYIFoOH39QpQxciZyFvV8hj4wH7qPfVTKmJy4s6SKkaQ3OZoqxWuMMrNJlOynI=
x-amz-request-id: H5WRABKK93CTSZXJ
Last-Modified: Wed, 09 Aug 2023 16:56:01 GMT
ETag: "da9d153375da51a616a7663f1504e3a5"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 949
Date: Mon, 30 Oct 2023 14:21:55 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/277787/1691600158/images/ico_tray3.gif

95.101.10.67

200 OK

234 B

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/277787/1691600158/images/ico_tray3.gif
IP
95.101.10.67:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.websecuritydefender.com/c/c8c6c0b39fe65b6e?click_id={click_id}&cost={cost}&s1=tc3-mcf-nl&s3=c5&s4={camp_id}
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
GIF image data, version 89a, 16 x 16\012- data
Size
234 B (234 bytes)
Hash
9ce99ec458daf212f9812a90f3fadd13
9e3041bc91b79a17b52e0fbb6c2d0e2f905d98a1
b0d335401c9fd5fac9991ec92edaf7865ff3a491ebe390120936c69796c3b753

HTTP Headers

GET /landings/277787/1691600158/images/ico_tray3.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: Win8MPkudouc8H2x0kHwrCxDtD2ibsWghATOWLmQ0kd5ZI/XOYXQgIfB5RUo9Z2i6po6EXpxrBU=
x-amz-request-id: T3HPPD36M29FAGGT
Last-Modified: Wed, 09 Aug 2023 16:56:01 GMT
ETag: "9ce99ec458daf212f9812a90f3fadd13"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 234
Date: Mon, 30 Oct 2023 14:21:55 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/277787/1691600158/images/icon-red.png

95.101.10.67

200 OK

1.7 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/277787/1691600158/images/icon-red.png
IP
95.101.10.67:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.websecuritydefender.com/c/c8c6c0b39fe65b6e?click_id={click_id}&cost={cost}&s1=tc3-mcf-nl&s3=c5&s4={camp_id}
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
PNG image data, 40 x 45, 8-bit/color RGBA, non-interlaced\012- data
Size
1.7 kB (1709 bytes)
Hash
f460adcdcb62bffc8961d6681d5042be
a3c4fcb71daf78ab130938480ace7588ffa16194
c60d95afdfb06b36758c44ee23b82f5c5504f0119a2c86d83c990821e8f5cae6

HTTP Headers

GET /landings/277787/1691600158/images/icon-red.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: Q3zOPhzt3LhDO5LGgAra686kL80LuokAE0yKonmEMus33XBkP3Hl5oUplYsjDl4LmCzn3gp+DOI=
x-amz-request-id: H5WGH18QYFSEXP7V
Last-Modified: Wed, 09 Aug 2023 16:56:01 GMT
ETag: "f460adcdcb62bffc8961d6681d5042be"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 1709
Date: Mon, 30 Oct 2023 14:21:55 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/277787/1691600158/images/win_cls.png

95.101.10.67

200 OK

293 B

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/277787/1691600158/images/win_cls.png
IP
95.101.10.67:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.websecuritydefender.com/c/c8c6c0b39fe65b6e?click_id={click_id}&cost={cost}&s1=tc3-mcf-nl&s3=c5&s4={camp_id}
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
PNG image data, 12 x 12, 8-bit/color RGB, non-interlaced\012- data
Size
293 B (293 bytes)
Hash
9eb68d2ce05c151bda542a7a6356e22c
baeeefe4a7ac657c10a5f081841015de1bcf90dd
2d2b7040bc32b397c3c60d800de9aa7d86404f1874862eba61bdaa21f1523eb7

HTTP Headers

GET /landings/277787/1691600158/images/win_cls.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: 9aqMLougKzwsYVw4ba4w99g80i4Z2ctWrVZehN2rAyxW5Mriaq2ab3skLC314zaSGjFELFuZ4jg=
x-amz-request-id: H5WJ8E3AY50Z9K6F
Last-Modified: Wed, 09 Aug 2023 16:56:00 GMT
ETag: "9eb68d2ce05c151bda542a7a6356e22c"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 293
Date: Mon, 30 Oct 2023 14:21:55 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/277787/1691600158/images/ico_bl2.gif

95.101.10.67

1.5 kB

URL
cdn-adef.akamaized.net/landings/277787/1691600158/images/ico_bl2.gif
IP
95.101.10.67:0
ASN
#20940 Akamai International B.V.

File type
GIF image data, version 89a, 65 x 80\012- data
Size
1.5 kB (1547 bytes)
Hash
af52e51f42fd0c55bc3cf2c8ece71492
016f83da68ff461a5c6aebcc2a45668317b2f24c
e91f304cf7409723968740e6363dda01b50acb8e94b5ca05b4a4617666ff095c

HTTP Headers

GET /landings/277787/1691600158/images/ico_bl2.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: OqLYk2RpB53TB4q86LudQlXBMKXUtcBHqrBbQY8VCYgqTkTgAyNPHDIffBKsmGDvJCX+53udiqw=
x-amz-request-id: H5WTVN7E6T32SDJW
Last-Modified: Wed, 09 Aug 2023 16:56:00 GMT
ETag: "af52e51f42fd0c55bc3cf2c8ece71492"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 1547
Date: Mon, 30 Oct 2023 14:21:55 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/277787/1691600158/images/ico_tray2.gif

95.101.10.67

200 OK

377 B

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/277787/1691600158/images/ico_tray2.gif
IP
95.101.10.67:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.websecuritydefender.com/c/c8c6c0b39fe65b6e?click_id={click_id}&cost={cost}&s1=tc3-mcf-nl&s3=c5&s4={camp_id}
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
GIF image data, version 89a, 16 x 16\012- data
Size
377 B (377 bytes)
Hash
c10bdec858cb0cf9e6cc5865d5925746
697c095ed5509e5a5af0c5ebf2380662aeffc531
b65b47a79e32335d9ca35ff59c6975d2b5808f84da0db88d11ce777b33e72ad9

HTTP Headers

GET /landings/277787/1691600158/images/ico_tray2.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: coZ/0KF1BqjpbftjAIP6bSxPr5OO74933tU2yL0NKf0sl7tCj0cRbZskfDz0YCpiVbe61pEweJQ=
x-amz-request-id: T3HQS9AWNW2QB9PM
Last-Modified: Wed, 09 Aug 2023 16:56:01 GMT
ETag: "c10bdec858cb0cf9e6cc5865d5925746"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 377
Date: Mon, 30 Oct 2023 14:21:55 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/277787/1691600158/images/ico_gray2.png

95.101.10.67

200 OK

349 B

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/277787/1691600158/images/ico_gray2.png
IP
95.101.10.67:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.websecuritydefender.com/c/c8c6c0b39fe65b6e?click_id={click_id}&cost={cost}&s1=tc3-mcf-nl&s3=c5&s4={camp_id}
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
PNG image data, 13 x 13, 8-bit/color RGB, non-interlaced\012- data
Size
349 B (349 bytes)
Hash
7454c652e0733d92de6c920c2d646ae0
34a5bd8c7401f95e346895b0e5ccffbf0e9ad638
44f752b0bd2e48052d538bc6aca5379f3630ca64da945f794690ddf47e8eaef7

HTTP Headers

GET /landings/277787/1691600158/images/ico_gray2.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: D9zUm0EmVacuWhXY/jGknLldhFg7TVOXrxLa9wHJKizSHd1Ad5f2Njd81SR1eTRrXPU8VOvBviA=
x-amz-request-id: H5WQRDJEZC224GTC
Last-Modified: Wed, 09 Aug 2023 16:56:00 GMT
ETag: "7454c652e0733d92de6c920c2d646ae0"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 349
Date: Mon, 30 Oct 2023 14:21:55 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/277787/1691600158/images/ico_tray1.gif

95.101.10.67

200 OK

69 B

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/277787/1691600158/images/ico_tray1.gif
IP
95.101.10.67:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.websecuritydefender.com/c/c8c6c0b39fe65b6e?click_id={click_id}&cost={cost}&s1=tc3-mcf-nl&s3=c5&s4={camp_id}
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
GIF image data, version 89a, 16 x 16\012- data
Size
69 B (69 bytes)
Hash
3ae573d079dcd1d2da4086f2c0c72c45
e7c9dabec81379373476ed23168dcecb9b8c56aa
9cce08ab28e94790cf78c87e37f8690acbc6c535e4b43ae7b38506b94538e107

HTTP Headers

GET /landings/277787/1691600158/images/ico_tray1.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: eNWE9YsuGUcWoOXrM/eLaHTHFMbSu76+6xoUD4pXWGMAA8aYHHAic/04haw1RANsBV4FLTV+Opk=
x-amz-request-id: H5WNKCJBV79SETN1
Last-Modified: Wed, 09 Aug 2023 16:56:01 GMT
ETag: "3ae573d079dcd1d2da4086f2c0c72c45"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 69
Date: Mon, 30 Oct 2023 14:21:55 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/277787/1691600158/images/logo-white.svg

95.101.10.67

200 OK

1.3 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/277787/1691600158/images/logo-white.svg
IP
95.101.10.67:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.websecuritydefender.com/c/c8c6c0b39fe65b6e?click_id={click_id}&cost={cost}&s1=tc3-mcf-nl&s3=c5&s4={camp_id}
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1296), with no line terminators
Size
1.3 kB (1296 bytes)
Hash
6afb794723ba525f2c526c9899569924
8921668647cb2e4e8f689abd3f2bb8c9579432a8
e4aef0aba15680c1b745414a7c7bc39cdbeda17f1de0c7bf57bf90378b6a5d26

HTTP Headers

GET /landings/277787/1691600158/images/logo-white.svg HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: tw4VMBKOZohsN6vMJzCZtLs2WajVsfpHmY1iCQE/ujHUI9pNUlWd3Oh8INLM4H1xw09M861Pe3s=
x-amz-request-id: 4EKC04BP0Y0970EB
Last-Modified: Wed, 09 Aug 2023 16:56:00 GMT
ETag: "6afb794723ba525f2c526c9899569924"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 1296
Date: Mon, 30 Oct 2023 14:21:55 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/277787/1691600158/images/logo-red.png

95.101.10.67

200 OK

4.7 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/277787/1691600158/images/logo-red.png
IP
95.101.10.67:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.websecuritydefender.com/c/c8c6c0b39fe65b6e?click_id={click_id}&cost={cost}&s1=tc3-mcf-nl&s3=c5&s4={camp_id}
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
PNG image data, 230 x 45, 8-bit/color RGBA, non-interlaced\012- data
Size
4.7 kB (4714 bytes)
Hash
945db2cdbd67e8ad20315672f80c1f18
1d49f3128052594b6b46edc17712e83f62bdb035
cf56bcceaf23dba6d290e2c6739ac2bab77b36e03c20a48cdbe49bcfe2fb31d0

HTTP Headers

GET /landings/277787/1691600158/images/logo-red.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: Q5NR1RWT4+OuPA8K66cArG5pEVJTIQ5OJ41wEpYUO/hdSruWtHNXs7a60OnVzTADjPg8/KQgt+E=
x-amz-request-id: G96SBN5FA6HF18T7
Last-Modified: Wed, 09 Aug 2023 16:56:00 GMT
ETag: "945db2cdbd67e8ad20315672f80c1f18"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 4714
Date: Mon, 30 Oct 2023 14:21:55 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/277787/1691600158/images/icon-white.png

95.101.10.67

200 OK

2.2 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/277787/1691600158/images/icon-white.png
IP
95.101.10.67:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.websecuritydefender.com/c/c8c6c0b39fe65b6e?click_id={click_id}&cost={cost}&s1=tc3-mcf-nl&s3=c5&s4={camp_id}
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
PNG image data, 73 x 84, 8-bit/color RGBA, non-interlaced\012- data
Size
2.2 kB (2178 bytes)
Hash
c391e0f03315c1de2f0c3091c1170b38
4c6d1e87a69be58cd9fb9acdaee354580a2da1b6
8b7a5ce48e7e6a77ba8c97eae67a4556c325b7a80ad8bc1e831d08069e8ed37c

HTTP Headers

GET /landings/277787/1691600158/images/icon-white.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: TJk3iNcgyquU4EOxrflYwy1tGx8geRm2kC7Pxm3tmF0/u5emxK6CHVnJxtlxgqKF4rEBVqdq380=
x-amz-request-id: H5WY59PM0STE64PZ
Last-Modified: Wed, 09 Aug 2023 16:56:01 GMT
ETag: "c391e0f03315c1de2f0c3091c1170b38"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 2178
Date: Mon, 30 Oct 2023 14:21:55 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/277787/1691600158/images/globe-alpha.png

95.101.10.67

303 kB

URL
cdn-adef.akamaized.net/landings/277787/1691600158/images/globe-alpha.png
IP
95.101.10.67:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 1440 x 700, 8-bit gray+alpha, non-interlaced\012- data
Size
303 kB (302963 bytes)
Hash
bc336a3a0c484d7c65299b9c4af45596
36cb2608b4fef19277220dab7e0cb0a623eee289
af9a953b12a4994939f45054e31302a7b1f59577f69c21376821cf9b922b414b

HTTP Headers

GET /landings/277787/1691600158/images/globe-alpha.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: TYd3k6AMpyZWlJ0wOOc3y7hvkhQn6eHLoycYjAd+7B9oJcEl3UXTi/CiJy15veF57EPvrCtaQr8=
x-amz-request-id: 4EK71BM61006YSWT
Last-Modified: Wed, 09 Aug 2023 16:56:00 GMT
ETag: "bc336a3a0c484d7c65299b9c4af45596"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 302963
Date: Mon, 30 Oct 2023 14:21:55 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn.stfilecamp.com/stormtrk.js

205.185.216.42

200 OK

6.8 kB

URL GET HTTP/1.1
cdn.stfilecamp.com/stormtrk.js
IP
205.185.216.42:443
ASN
#20446 STACKPATH-CDN

Requested by
https://www.websecuritydefender.com/c/c8c6c0b39fe65b6e?click_id={click_id}&cost={cost}&s1=tc3-mcf-nl&s3=c5&s4={camp_id}
Certificate
IssuerLet's Encrypt
Subjectstfilecamp.com
FingerprintB9:69:70:B1:52:5D:FE:AE:F0:24:90:58:7D:85:5B:38:3E:38:9C:4F
ValidityThu, 26 Oct 2023 11:10:00 GMT - Wed, 24 Jan 2024 11:09:59 GMT

File type
ASCII text
Size
6.8 kB (6807 bytes)
Hash
39e5f8ad757fe438c784e8d883e47ab0
6b2905489485100c83605f43186c5843031e1f3b
e421906cc3be04e5f6795074c0a91e5a194f218b3f8c57adfed0f4d315dd445a

HTTP Headers

GET /stormtrk.js HTTP/1.1
Host: cdn.stfilecamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 30 Oct 2023 14:21:55 GMT
Connection: Keep-Alive
Cache-Control: max-age=2511
Content-Length: 6807
Content-Type: text/javascript
Last-Modified: Sat, 24 Dec 2022 08:48:24 GMT
Accept-Ranges: bytes
x-rgw-object-type: Normal
etag: "39e5f8ad757fe438c784e8d883e47ab0"
x-amz-request-id: tx0000079157043f8a70419-00653fb7c2-3c6f487a-sfo3a
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-envoy-upstream-healthchecked-cluster: 
Vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin
X-HW: 1698675714.dop224.sk1.t,1698675714.cds219.sk1.shn,1698675715.dop224.sk1.t,1698675715.cds014.sk1.c

route.frest.pro/is_redirect

172.67.211.109

200 OK

17 B

URL POST HTTP/2
route.frest.pro/is_redirect
IP
172.67.211.109:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.websecuritydefender.com/c/c8c6c0b39fe65b6e?click_id={click_id}&cost={cost}&s1=tc3-mcf-nl&s3=c5&s4={camp_id}
Certificate
IssuerGoogle Trust Services LLC
Subjectfrest.pro
FingerprintA1:6D:80:97:81:5F:7D:81:A1:3A:F7:AD:B0:7C:80:EF:AF:09:8F:04
ValiditySun, 08 Oct 2023 16:23:46 GMT - Sat, 06 Jan 2024 16:23:45 GMT

File type
JSON data\012- , ASCII text
Size
17 B (17 bytes)
Hash
6dec798efb56f56f33660938f6249ff6
e889219883cef38754dc1e5df7ca5277b3b314c8
b493cdb3b30ea63f6a924f814dfccfcfe305dac02106f9994ce2bcb2e8ed28c4

HTTP Headers

POST /is_redirect HTTP/1.1
Host: route.frest.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 10
Origin: https://www.websecuritydefender.com
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 30 Oct 2023 14:21:55 GMT
content-type: application/json
content-length: 17
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type, Access-Control-Allow-Headers, X-Requested-With
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6vlq0nf1RGhDLFvUKF8p4b1rdOCKFFAwFDIbjnu%2BfU3Z9M0PgJC9EB5kPd7Zm%2Fi4UEm%2Fppts6QXP5kXQVqgw6RkMNRs5Ju2Mj%2F%2BIr5KO2JDImHLzcXguc7m%2BnDcpOem1%2BpY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81e44eb7987e569a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-adef.akamaized.net/images/favicon.ico

95.101.10.67

4.1 kB

URL
cdn-adef.akamaized.net/images/favicon.ico
IP
95.101.10.67:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Size
4.1 kB (4103 bytes)
Hash
4cdf3256cd7b8ec3917adb79d6bf457e
bc615337e9223183a126c8fb649774866fb53e69
fbfff44a653dc193b93620f1035d221d3aaddf3238742270b3385482986ef7f0

HTTP Headers

GET /images/favicon.ico HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: IjvSRVcJlrA8KRtuHCIvySb7T9M4setamspkp4J4t5oLIH6qyzaHxu8PdVPZHXMCPnB1SRcSZOs=
x-amz-request-id: 9B7689322D7626CA
Last-Modified: Wed, 07 Nov 2018 08:41:38 GMT
ETag: "4cdf3256cd7b8ec3917adb79d6bf457e"
Accept-Ranges: bytes
Content-Type: image/x-icon
Content-Length: 4103
Server: AmazonS3
X-Akamai-EW-Subworker: 8096267
Date: Mon, 30 Oct 2023 14:21:56 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
25c06ac156361c4fc787856ef550bf22
e8e3e7b89a94280b1279abdda07047c89c2daf0d
7bc2ffea96bab60c723e5f97945e00177884d7bd8713fafddc98984b2fc0633a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Oct 2023 14:21:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
25c06ac156361c4fc787856ef550bf22
e8e3e7b89a94280b1279abdda07047c89c2daf0d
7bc2ffea96bab60c723e5f97945e00177884d7bd8713fafddc98984b2fc0633a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Oct 2023 14:21:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stormtrk.com/api/1.0/ping/pong?location=https%3A%2F%2Fwww.websecuritydefender.com%2Fc%2Fc8c6c0b39fe65b6e%3Fclick_id%3D%7Bclick_id%7D%26cost%3D%7Bcost%7D%26s1%3Dtc3-mcf-nl%26s3%3Dc5%26s4%3D%7Bcamp_id%7D

172.67.69.203

200 OK

750 B

URL GET HTTP/2
stormtrk.com/api/1.0/ping/pong?location=https%3A%2F%2Fwww.websecuritydefender.com%2Fc%2Fc8c6c0b39fe65b6e%3Fclick_id%3D%7Bclick_id%7D%26cost%3D%7Bcost%7D%26s1%3Dtc3-mcf-nl%26s3%3Dc5%26s4%3D%7Bcamp_id%7D
IP
172.67.69.203:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.websecuritydefender.com/c/c8c6c0b39fe65b6e?click_id={click_id}&cost={cost}&s1=tc3-mcf-nl&s3=c5&s4={camp_id}
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint12:CF:2B:DC:A1:B5:77:12:91:68:E8:DD:F0:22:9A:1B:06:84:6A:74
ValidityFri, 09 Dec 2022 00:00:00 GMT - Sat, 09 Dec 2023 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (332)
Size
750 B (750 bytes)
Hash
20a82cc1cb163998111a33614371780e
c4fd783e30bdcb9169f2a054a6c979852e36744f
78d62e529da404c54711355b87c88a1a06e44501ca4f325446f7552b996dcc15

HTTP Headers

GET /api/1.0/ping/pong?location=https%3A%2F%2Fwww.websecuritydefender.com%2Fc%2Fc8c6c0b39fe65b6e%3Fclick_id%3D%7Bclick_id%7D%26cost%3D%7Bcost%7D%26s1%3Dtc3-mcf-nl%26s3%3Dc5%26s4%3D%7Bcamp_id%7D HTTP/1.1
Host: stormtrk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.websecuritydefender.com
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 30 Oct 2023 14:21:56 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type, Access-Control-Allow-Headers, X-Requested-With
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y6ndcwrmDx06q85KDFHFk%2BufZ%2FIWNfK%2Bd%2B9oIH3GgfJkxBDd4RXYuzR%2BZOM0%2B1YLbRMCFQWJ%2BVplHBkUt8Zf5ePemSZtY%2FWvFh7pwNp53WgUAJ0PhXgC8n9pmIwU9g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81e44eb84d8856ba-OSL
content-encoding: br
X-Firefox-Spdy: h2

www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/d=0/rs=AN8SPfrtPftKEg7PtUwWauRCo_c976LPSg/m=el_main_css

142.250.74.35

200 OK

4.0 kB

URL GET HTTP/2
www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/d=0/rs=AN8SPfrtPftKEg7PtUwWauRCo_c976LPSg/m=el_main_css
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.websecuritydefender.com/c/c8c6c0b39fe65b6e?click_id={click_id}&cost={cost}&s1=tc3-mcf-nl&s3=c5&s4={camp_id}
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintBE:D3:D2:0A:C4:57:FB:0B:D7:17:48:C8:AB:52:49:39:3E:E9:3C:60
ValidityMon, 09 Oct 2023 08:10:32 GMT - Mon, 01 Jan 2024 08:10:31 GMT

File type
ASCII text, with very long lines (20367), with no line terminators
Size
4.0 kB (3960 bytes)
Hash
72d3a735ccca1027f6b3afba2c93e3a7
67f8eff8d17334c59c28fc1753bf451527c7490d
c8c845f55e2346b89894ce0df8185ee182359e096bf29987d5cf1f8a7391bef1

HTTP Headers

GET /_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/d=0/rs=AN8SPfrtPftKEg7PtUwWauRCo_c976LPSg/m=el_main_css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3960
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Oct 2023 03:58:17 GMT
expires: Sun, 27 Oct 2024 03:58:17 GMT
cache-control: public, max-age=31536000
age: 210219
last-modified: Sat, 15 Jul 2023 01:09:03 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.stfilecamp.com/fp.min.js

205.185.216.42

200 OK

32 kB

URL GET HTTP/1.1
cdn.stfilecamp.com/fp.min.js
IP
205.185.216.42:443
ASN
#20446 STACKPATH-CDN

Requested by
https://www.websecuritydefender.com/c/c8c6c0b39fe65b6e?click_id={click_id}&cost={cost}&s1=tc3-mcf-nl&s3=c5&s4={camp_id}
Certificate
IssuerLet's Encrypt
Subjectstfilecamp.com
FingerprintB9:69:70:B1:52:5D:FE:AE:F0:24:90:58:7D:85:5B:38:3E:38:9C:4F
ValidityThu, 26 Oct 2023 11:10:00 GMT - Wed, 24 Jan 2024 11:09:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (31370)
Size
32 kB (31705 bytes)
Hash
198f2f5b0a649f41fe890c59d37319aa
f24629687612889bb59f610df3879afcd766fb80
d2bc2cb800679f495a7731c105b2e2047965800515f98008867ab33edc940912

HTTP Headers

GET /fp.min.js HTTP/1.1
Host: cdn.stfilecamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 30 Oct 2023 14:21:56 GMT
Connection: Keep-Alive
Cache-Control: max-age=86
Content-Length: 31705
Content-Type: text/javascript
Last-Modified: Mon, 13 Jun 2022 11:23:14 GMT
Accept-Ranges: bytes
x-rgw-object-type: Normal
etag: "198f2f5b0a649f41fe890c59d37319aa"
x-amz-request-id: tx00000cffcd90f822d12cf-00653fae4a-3c6f493d-sfo3a
strict-transport-security: max-age=15552000; includeSubDomains; preload
Vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin
X-HW: 1698675714.dop224.sk1.t,1698675714.cds219.sk1.shn,1698675716.dop224.sk1.t,1698675716.cds237.sk1.c

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b93c0e56c0bb127fd6be9999bf3d2c54
570d7400b96b19db261977db4a60e28db6aa3c21
d45ebbd12edd17dfc558f17b959e7cab8e3e77b8c472e152778e17045ad03cb5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Oct 2023 14:21:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8df9299237125eac9bac8b6d5c5489a4
eb3bb312ced79b200cbfd0a59b619fd5ba522423
905f32707716b20fe15e28bb0378f82b98ee13db6048f70ae248e543d6979e72

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Oct 2023 14:21:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.vl68TrjMkCQ.O/d=1/exm=el_conf/ed=1/rs=AN8SPfqAqWbqnzcfPxAmfiD18IeEcNfkGA/m=el_main

216.58.207.234

200 OK

81 kB

URL GET HTTP/2
translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.vl68TrjMkCQ.O/d=1/exm=el_conf/ed=1/rs=AN8SPfqAqWbqnzcfPxAmfiD18IeEcNfkGA/m=el_main
IP
216.58.207.234:443
ASN
#15169 GOOGLE

Requested by
https://www.websecuritydefender.com/c/c8c6c0b39fe65b6e?click_id={click_id}&cost={cost}&s1=tc3-mcf-nl&s3=c5&s4={camp_id}
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint87:BD:C2:71:54:40:3F:F2:18:79:1A:89:F5:E9:BC:63:E5:EC:57:64
ValidityMon, 09 Oct 2023 08:10:33 GMT - Mon, 01 Jan 2024 08:10:32 GMT

File type
ASCII text, with very long lines (1880)
Size
81 kB (81148 bytes)
Hash
3f31494195869ab3f2fb815cafb617a0
6f929be04cd1ff06d101f527302a7f544770c400
676ae102d7b2002943481229381b8ba85f23920daf6197d109c1045c94225146

HTTP Headers

GET /_/translate_http/_/js/k=translate_http.tr.no.vl68TrjMkCQ.O/d=1/exm=el_conf/ed=1/rs=AN8SPfqAqWbqnzcfPxAmfiD18IeEcNfkGA/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 81148
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 24 Oct 2023 17:32:13 GMT
expires: Wed, 23 Oct 2024 17:32:13 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 23 Oct 2023 21:09:56 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 506983
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8df9299237125eac9bac8b6d5c5489a4
eb3bb312ced79b200cbfd0a59b619fd5ba522423
905f32707716b20fe15e28bb0378f82b98ee13db6048f70ae248e543d6979e72

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Oct 2023 14:21:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gstatic.com/images/branding/product/2x/translate_24dp.png

142.250.74.35

200 OK

1.8 kB

URL GET HTTP/3
www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.websecuritydefender.com/c/c8c6c0b39fe65b6e?click_id={click_id}&cost={cost}&s1=tc3-mcf-nl&s3=c5&s4={camp_id}
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintBE:D3:D2:0A:C4:57:FB:0B:D7:17:48:C8:AB:52:49:39:3E:E9:3C:60
ValidityMon, 09 Oct 2023 08:10:32 GMT - Mon, 01 Jan 2024 08:10:31 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1842 bytes)
Hash
c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82

HTTP Headers

GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/d=0/rs=AN8SPfrtPftKEg7PtUwWauRCo_c976LPSg/m=el_main_css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Oct 2023 16:47:55 GMT
expires: Fri, 25 Oct 2024 16:47:55 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
vary: Origin
age: 336841
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg

216.58.207.227

200 OK

3.3 kB

URL GET HTTP/2
fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.websecuritydefender.com/c/c8c6c0b39fe65b6e?click_id={click_id}&cost={cost}&s1=tc3-mcf-nl&s3=c5&s4={camp_id}
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintBE:D3:D2:0A:C4:57:FB:0B:D7:17:48:C8:AB:52:49:39:3E:E9:3C:60
ValidityMon, 09 Oct 2023 08:10:32 GMT - Mon, 01 Jan 2024 08:10:31 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (6225), with no line terminators
Size
3.3 kB (3340 bytes)
Hash
2bd5c073a88b83ed74db88282a56ddfb
d0ebfc376f8c6a44a8d4cd216817dcd7d0c33650
ab5c23a05e39deed14d9d8262b0dce9f024f86105a27196cad37d14a3f516e09

HTTP Headers

GET /s/i/productlogos/translate/v14/24px.svg HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-length: 3340
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Oct 2023 04:23:55 GMT
expires: Tue, 29 Oct 2024 04:23:55 GMT
cache-control: public, max-age=31536000
age: 35881
last-modified: Wed, 20 Apr 2022 14:24:23 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback

216.58.207.234

1.4 kB

URL
translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback
IP
216.58.207.234:0
ASN
#15169 GOOGLE

File type
Unicode text, UTF-8 text
Size
1.4 kB (1392 bytes)
Hash
a3eefe14b1b4698460d992bd1673a26b
a2fca6ebb00b8bdcca3eda88654d02d2c165b9c4
87514750a90cd70dd22c8673cfa80d804ef55840bd0755950af2118d8d218067

HTTP Headers

GET /v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback HTTP/1.1
Host: translate-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Mon, 30 Oct 2023 14:21:57 GMT
server: ESF
cache-control: private
content-length: 1392
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=VJ0x_07taKjtutZugbwzMZNE1SlE9oPbfPamud2O5Ynypx3aPaMBdTrW5rp_B5YNbL4aDqAExUGoYLsbgBpxP5fyEYvgVvzV2_o1ZN_0SJf7yuUydJSKEaMA_NlylrLljZ6_GbdV0zGP8WyKuvQIjhElKXmg5G306YQ7fTc0pWY; expires=Tue, 30-Apr-2024 14:21:57 GMT; path=/; domain=.translate-pa.googleapis.com; HttpOnly
CONSENT=PENDING+746; expires=Wed, 29-Oct-2025 14:21:57 GMT; path=/; domain=.googleapis.com; Secure
expires: Mon, 30 Oct 2023 14:21:57 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

cdn-adef.akamaized.net/

95.101.10.67

0 B

URL
cdn-adef.akamaized.net/
IP
95.101.10.67:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Moved Temporarily
Server: AkamaiGHost
Content-Length: 0
Location: https://cdn-adef.akamaized.net/404
Date: Mon, 30 Oct 2023 14:21:57 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/404

95.101.10.67

404 Not Found

134 B

URL GET HTTP/1.1
cdn-adef.akamaized.net/404
IP
95.101.10.67:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.websecuritydefender.com/c/c8c6c0b39fe65b6e?click_id={click_id}&cost={cost}&s1=tc3-mcf-nl&s3=c5&s4={camp_id}
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
134 B (134 bytes)
Hash
9c7c01b7650d428a3540bd1d22390a2f
1de74307526c98f84fe5ef2f7dce7ae7c1f77dd0
08c97b6bb3dda74ce86e43cfe75fe216618aa8d1f1e04fa9fc5ef57d3b1a69e1

HTTP Headers

GET /404 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.websecuritydefender.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Content-Type: text/html
Content-Length: 134
Date: Mon, 30 Oct 2023 14:21:57 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0

216.58.207.234

0 B

URL POST
translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
IP
216.58.207.234:0
ASN
#15169 GOOGLE

Requested by
https://www.websecuritydefender.com/c/c8c6c0b39fe65b6e?click_id={click_id}&cost={cost}&s1=tc3-mcf-nl&s3=c5&s4={camp_id}
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint87:BD:C2:71:54:40:3F:F2:18:79:1A:89:F5:E9:BC:63:E5:EC:57:64
ValidityMon, 09 Oct 2023 08:10:33 GMT - Mon, 01 Jan 2024 08:10:32 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-encoding,content-type,x-goog-authuser
Referer: https://www.websecuritydefender.com/
Origin: https://www.websecuritydefender.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: https://www.websecuritydefender.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,content-encoding,content-type,x-goog-authuser,origin
content-type: text/plain; charset=UTF-8
date: Mon, 30 Oct 2023 14:22:06 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+722; expires=Wed, 29-Oct-2025 14:22:06 GMT; path=/; domain=.googleapis.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Mon, 30 Oct 2023 14:22:06 GMT
cache-control: private

translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0

216.58.207.234

131 B

URL POST
translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
IP
216.58.207.234:0
ASN
#15169 GOOGLE

Requested by
https://www.websecuritydefender.com/c/c8c6c0b39fe65b6e?click_id={click_id}&cost={cost}&s1=tc3-mcf-nl&s3=c5&s4={camp_id}
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint87:BD:C2:71:54:40:3F:F2:18:79:1A:89:F5:E9:BC:63:E5:EC:57:64
ValidityMon, 09 Oct 2023 08:10:33 GMT - Mon, 01 Jan 2024 08:10:32 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
131 B (131 bytes)
Hash
ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358

HTTP Headers

POST /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-AuthUser: 0
Content-Encoding: gzip
Content-Type: application/binary
Content-Length: 327
Origin: https://www.websecuritydefender.com
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: https://www.websecuritydefender.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Mon, 30 Oct 2023 14:22:06 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+240; expires=Wed, 29-Oct-2025 14:22:06 GMT; path=/; domain=.googleapis.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Mon, 30 Oct 2023 14:22:06 GMT

translate.google.com/translate_a/element.js?cb=googleTranslateElementInit

142.250.74.78

200 OK

90 kB

URL GET HTTP/2
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
https://www.websecuritydefender.com/c/c8c6c0b39fe65b6e?click_id={click_id}&cost={cost}&s1=tc3-mcf-nl&s3=c5&s4={camp_id}
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint71:34:F9:A1:80:2F:AF:05:CB:45:8A:35:D5:48:03:3F:B3:6F:61:30
ValidityMon, 09 Oct 2023 08:04:03 GMT - Mon, 01 Jan 2024 08:04:02 GMT

File type
ASCII text, with very long lines (2456)
Size
90 kB (89540 bytes)
Hash
ec62c9ca4ccd16f06245797d437603ea
ee100ed4b983942b053434e94cad03b82fc94ab9
fda4aba1a5e2406e1a888ffdfd1a00ae56b13f17da550840d6e6fb2cbab51b2c

HTTP Headers

GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.websecuritydefender.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 30 Oct 2023 14:21:56 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+368; expires=Wed, 29-Oct-2025 14:21:56 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (13)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by