302 Found 46 B URL User Request GET HTTP/1.1 IP
File type HTML document, ASCII text
Hash 3bfda66ee17aa33fa57dfd58985f6337
2117d91616e456c808e6adee38aa55f9eea65901
3559d10827c61640483abf62f15f09c29940df917aa384ad64d804ae2212e974
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
NIDS Severity Alert suricata low ET INFO Namecheap URL Forward
suricata low ET INFO Namecheap URL Forward
GET / HTTP/1.1
Host: z2a.digital
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Mon, 04 Dec 2023 06:38:48 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 46
Connection: keep-alive
Location: http://www.z2a.digital/
X-Served-By: Namecheap URL Forward
Server: namecheap-nginx
200 OK 7.2 kB URL User Request GET HTTP/1.1 IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10825)
Hash c998cd5e0876f7e8fafe0463bcb977cd
e224829a91650fffdd51b1bab7f0589d3c400ff7
f4614bd3e58faa772c9ad2319b29ea0d36d2d2b193db47ee11e8fe2112b4c329
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET / HTTP/1.1
Host: www.z2a.digital
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Mon, 04 Dec 2023 06:38:48 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
vary: Accept-Encoding
x-powered-by: PHP/8.1.17
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANnylWw2vLY4hUn9w06zQKbhKBfvjFUCsdFlb6TdQhxb9RXWXuI4t31c+o8fYOv/s8q1LGPga3DE1L/tHU4LENMCAwEAAQ==_MIEJInyuEzk2prq+g7ZkLsufucFf0vVbBpJnT9yu0F9X61da1owv+b50xOybKcThg9OLRVA0i4LwbsxChk6CaQ==
last-modified: Mon, 04 Dec 2023 06:38:48 GMT
x-cache-miss-from: parking-698fb476bf-krcf5
server: NginX
content-encoding: gzip
302 Found 46 B URL User Request GET HTTP/1.1 IP
File type HTML document, ASCII text
Hash 3bfda66ee17aa33fa57dfd58985f6337
2117d91616e456c808e6adee38aa55f9eea65901
3559d10827c61640483abf62f15f09c29940df917aa384ad64d804ae2212e974
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
NIDS Severity Alert suricata low ET INFO Namecheap URL Forward
suricata low ET INFO Namecheap URL Forward
GET / HTTP/1.1
Host: z2a.digital
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Mon, 04 Dec 2023 06:38:49 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 46
Connection: keep-alive
Location: http://www.z2a.digital/
X-Served-By: Namecheap URL Forward
Server: namecheap-nginx
200 OK 7.3 kB URL User Request GET HTTP/1.1 IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10825)
Hash 4d8edfa028411ec8bdcff9792dff763f
f3fe3a364f16d66db5d6e7ec748d04ce363fbecb
4da9fca382b3d2caded175fa45e474e929dceb668f8cf2c55536c220bdf81b76
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET / HTTP/1.1
Host: www.z2a.digital
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Mon, 04 Dec 2023 06:38:55 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
vary: Accept-Encoding
x-powered-by: PHP/8.1.17
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANnylWw2vLY4hUn9w06zQKbhKBfvjFUCsdFlb6TdQhxb9RXWXuI4t31c+o8fYOv/s8q1LGPga3DE1L/tHU4LENMCAwEAAQ==_MIEJInyuEzk2prq+g7ZkLsufucFf0vVbBpJnT9yu0F9X61da1owv+b50xOybKcThg9OLRVA0i4LwbsxChk6CaQ==
last-modified: Mon, 04 Dec 2023 06:38:54 GMT
x-cache-miss-from: parking-698fb476bf-krcf5
server: NginX
content-encoding: gzip
img.sedoparking.com/templates/bg/arrows-curved.png
200 OK 14 kB URL GET HTTP/1.1 img.sedoparking.com/templates/bg/arrows-curved.png
IP
File type PNG image data, 413 x 594, 8-bit/color RGBA, non-interlaced\012- data
Hash 107694ee1e94990d97b7e58651ffd6a0
7dd9ae7badf78be01ea0623df1e90171348716ff
7aa2a3e9a9575a27f5593c3b0357423128c468a46ed20d284ce5a21555ee67bc
GET /templates/bg/arrows-curved.png HTTP/1.1
Host: img.sedoparking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.z2a.digital/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 06:38:55 GMT
Content-Type: image/png
Content-Length: 13502
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=604800
Expires: Mon, 11 Dec 2023 06:38:55 GMT
X-CFHash: "107694ee1e94990d97b7e58651ffd6a0"
X-CFF: B
Last-Modified: Tue, 12 Oct 2021 05:19:02 GMT
X-CF3: H
CF4Age: 45332
x-cf-tsc: 1701587647
CF4ttl: 31490668.000
X-CF2: H
Server: CFS 1124
X-CF-ReqID: daf01950a3700ef8f10a1634d9784517
X-CF1: 11696:fB.arn1:cf:cacheN.arn1-01:H
Accept-Ranges: bytes
www.google.com/adsense/domains/caf.js
200 OK 54 kB URL GET HTTP/1.1 www.google.com/adsense/domains/caf.js
IP
File type ASCII text, with very long lines (1888)
Hash 980fb04d2da5f7f360deea9af49a0fdc
d9c762b66a33644ddc28c2ce6c09e1f400df8cdd
f9b94b36f3a1ff7c60d1048d748663b9d5592499491f07f7574a6b77b089a0af
GET /adsense/domains/caf.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.z2a.digital/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Type: text/javascript; charset=UTF-8
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="ads-afs-ui"
Report-To: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
Date: Mon, 04 Dec 2023 06:38:55 GMT
Expires: Mon, 04 Dec 2023 06:38:55 GMT
Cache-Control: private, max-age=3600
ETag: "671007550098774708"
X-Content-Type-Options: nosniff
Link: <https://www.adsensecustomsearchads.com>; rel="preconnect"
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: sffe
X-XSS-Protection: 0
img.sedoparking.com/templates/images/hero_nc.svg
200 OK 20 kB URL GET HTTP/2 img.sedoparking.com/templates/images/hero_nc.svg
IP
Certificate IssuerGlobalSign nv-sa
Subject*.cachefly.net
Fingerprint0F:4E:B2:D7:96:B9:94:D0:35:66:76:6C:4B:16:18:49:DE:42:80:71
ValidityMon, 13 Nov 2023 19:46:02 GMT - Sat, 14 Dec 2024 19:46:01 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1738)
Hash 5a2c392e7acdf6e9de6e00129500503c
c8d0f80381e4ce180b5eb3c4c98539907292a7bb
878da09a057ec8f1775cdc522e5f7ec44966df547a87a9c29826ba114833c24b
GET /templates/images/hero_nc.svg HTTP/1.1
Host: img.sedoparking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.z2a.digital/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 06:38:55 GMT
content-type: image/svg+xml
content-length: 20346
access-control-allow-origin: *
x-cff: B
last-modified: Thu, 05 Oct 2023 09:16:15 GMT
vary: Accept-Encoding
x-cf3: H
cf4age: 1983
x-cf-tsc: 1701544285
cf4ttl: 31534016.000
content-encoding: gzip
x-cf2: H
server: CFS 1124
x-cf-reqid: 49a931143fc894a0d54f75ccff1e2638
x-cf1: 11696:fB.arn1:nom:cacheN.arn1-01:H
accept-ranges: bytes
X-Firefox-Spdy: h2
www.z2a.digital/search/tsc.php?200=NTM3NTg5ODUy&21=OTEuOTAuNDIuMTU0&681=MTcwMTY3MTkzNDg1YzNkZGNkYTZiZmNhMzQ4MjM3MmRiZGEwN2E4Yjdm&crc=3b1143ba8707cae2f4b0aef65c4ba1e381a44a3e&cv=1
200 OK 0 B URL GET HTTP/1.1 www.z2a.digital/search/tsc.php?200=NTM3NTg5ODUy&21=OTEuOTAuNDIuMTU0&681=MTcwMTY3MTkzNDg1YzNkZGNkYTZiZmNhMzQ4MjM3MmRiZGEwN2E4Yjdm&crc=3b1143ba8707cae2f4b0aef65c4ba1e381a44a3e&cv=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /search/tsc.php?200=NTM3NTg5ODUy&21=OTEuOTAuNDIuMTU0&681=MTcwMTY3MTkzNDg1YzNkZGNkYTZiZmNhMzQ4MjM3MmRiZGEwN2E4Yjdm&crc=3b1143ba8707cae2f4b0aef65c4ba1e381a44a3e&cv=1 HTTP/1.1
Host: www.z2a.digital
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.z2a.digital/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Mon, 04 Dec 2023 06:38:55 GMT
content-type: text/html; charset=UTF-8
content-length: 0
x-powered-by: PHP/8.1.17
x-cache-miss-from: parking-698fb476bf-xqxcz
server: NginX
img.sedoparking.com/templates/logos/sedo_logo.png
200 OK 15 kB URL GET HTTP/1.1 img.sedoparking.com/templates/logos/sedo_logo.png
IP
File type MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash def00c11b1596db4efee6a9fbe64fc27
bd298981e6d8d7e4ffa18abcf687041f4246672d
95c427fa3143b1896faf42a6406686ce7602cb39052081bb32d12b51c9e047e4
GET /templates/logos/sedo_logo.png HTTP/1.1
Host: img.sedoparking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.z2a.digital/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 06:38:55 GMT
Content-Type: image/png
Content-Length: 15086
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=604800
Expires: Mon, 11 Dec 2023 06:38:55 GMT
X-CFHash: "def00c11b1596db4efee6a9fbe64fc27"
X-CFF: B
Last-Modified: Mon, 11 Jan 2021 07:44:34 GMT
X-CF3: H
CF4Age: 2436
x-cf-tsc: 1701545420
CF4ttl: 31533564.000
X-CF2: H
Server: CFS 1124
X-CF-ReqID: f0f6c41c4204d604c39fbe75608974fe
X-CF1: 11696:fB.arn1:cf:cacheN.arn1-01:H
Accept-Ranges: bytes
www.adsensecustomsearchads.com/afs/ads/i/iframe.html
200 OK 727 B URL GET HTTP/2 www.adsensecustomsearchads.com/afs/ads/i/iframe.html
IP
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1559)
Hash a45efa24ead7b727789ad7d6e46283cb
9498fd3d441ab1e9d81d972df8a9bfaf2bfce84d
4eb3be0c93c111807ef80d86e102ad95d60160c627be3dbe8200b51f00239d58
GET /afs/ads/i/iframe.html HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.z2a.digital/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/html
content-security-policy: script-src 'nonce-AcYhNnsP_PRTzgup27pmvQ' 'report-sample' 'strict-dynamic' 'unsafe-eval' 'unsafe-inline' http: https:; object-src 'none'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui; base-uri 'none'
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
content-length: 727
date: Mon, 04 Dec 2023 06:38:55 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
last-modified: Tue, 14 Nov 2023 07:00:00 GMT
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.adsensecustomsearchads.com/afs/ads?adsafe=low&adtest=off&psid=3259787283&channel=exp-0051%2Cauxa-control-1%2C44786252&client=dp-sedo85_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.z2a.digital%2Fcaf%2F%3Fses%3DY3JlPTE3MDE2NzE5MzQmdGNpZD13d3cuejJhLmRpZ2l0YWw2NTZkNzNmZWU5NTViNy45OTE0MjA0OCZ0YXNrPXNlYXJjaCZkb21haW49ejJhLmRpZ2l0YWwmYV9pZD0zJnNlc3Npb249MXBVLUlxcjZHOW0xaktFTG92TjM%3D&type=3&uiopt=false&swp=as-drid-2280784292183247&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002%2C17301383&format=r3%7Cs&nocache=7031701671940750&num=0&output=afd_ads&domain_name=www.z2a.digital&v=3&bsl=8&pac=2&u_his=2&u_tz=0&dt=1701671940756&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=1146&frm=0&cl=579967862&uio=--&cont=rb-default&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Fwww.z2a.digital%2F
200 OK 2.9 kB URL GET HTTP/2 www.adsensecustomsearchads.com/afs/ads?adsafe=low&adtest=off&psid=3259787283&channel=exp-0051%2Cauxa-control-1%2C44786252&client=dp-sedo85_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.z2a.digital%2Fcaf%2F%3Fses%3DY3JlPTE3MDE2NzE5MzQmdGNpZD13d3cuejJhLmRpZ2l0YWw2NTZkNzNmZWU5NTViNy45OTE0MjA0OCZ0YXNrPXNlYXJjaCZkb21haW49ejJhLmRpZ2l0YWwmYV9pZD0zJnNlc3Npb249MXBVLUlxcjZHOW0xaktFTG92TjM%3D&type=3&uiopt=false&swp=as-drid-2280784292183247&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002%2C17301383&format=r3%7Cs&nocache=7031701671940750&num=0&output=afd_ads&domain_name=www.z2a.digital&v=3&bsl=8&pac=2&u_his=2&u_tz=0&dt=1701671940756&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=1146&frm=0&cl=579967862&uio=--&cont=rb-default&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Fwww.z2a.digital%2F
IP
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (13630)
Hash 3ee8b6c71f38377c799fc98771999dec
e40dc4f1c801dfddb299f0f7d498227ed92e612e
590b274e0f3b07a1169d3de9c064ec2fedb418bac821fa650e998ccb63c2a8f2
GET /afs/ads?adsafe=low&adtest=off&psid=3259787283&channel=exp-0051%2Cauxa-control-1%2C44786252&client=dp-sedo85_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.z2a.digital%2Fcaf%2F%3Fses%3DY3JlPTE3MDE2NzE5MzQmdGNpZD13d3cuejJhLmRpZ2l0YWw2NTZkNzNmZWU5NTViNy45OTE0MjA0OCZ0YXNrPXNlYXJjaCZkb21haW49ejJhLmRpZ2l0YWwmYV9pZD0zJnNlc3Npb249MXBVLUlxcjZHOW0xaktFTG92TjM%3D&type=3&uiopt=false&swp=as-drid-2280784292183247&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002%2C17301383&format=r3%7Cs&nocache=7031701671940750&num=0&output=afd_ads&domain_name=www.z2a.digital&v=3&bsl=8&pac=2&u_his=2&u_tz=0&dt=1701671940756&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=1146&frm=0&cl=579967862&uio=--&cont=rb-default&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Fwww.z2a.digital%2F HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.z2a.digital/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-disposition: inline
date: Mon, 04 Dec 2023 06:38:55 GMT
expires: Mon, 04 Dec 2023 06:38:55 GMT
cache-control: private, max-age=3600
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-HzYX3Py56R-FlenLEZFKWg' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
content-encoding: br
server: gws
content-length: 2865
x-xss-protection: 0
set-cookie: CONSENT=PENDING+500; expires=Wed, 03-Dec-2025 06:38:55 GMT; path=/; domain=.adsensecustomsearchads.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff
200 OK 174 B URL GET HTTP/2 afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff
IP
Requested by https://www.adsensecustomsearchads.com/afs/ads?adsafe=low&adtest=off&psid=3259787283&channel=exp-0051%2Cauxa-control-1%2C44786252&client=dp-sedo85_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.z2a.digital%2Fcaf%2F%3Fses%3DY3JlPTE3MDE2NzE5MzQmdGNpZD13d3cuejJhLmRpZ2l0YWw2NTZkNzNmZWU5NTViNy45OTE0MjA0OCZ0YXNrPXNlYXJjaCZkb21haW49ejJhLmRpZ2l0YWwmYV9pZD0zJnNlc3Npb249MXBVLUlxcjZHOW0xaktFTG92TjM%3D&type=3&uiopt=false&swp=as-drid-2280784292183247&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002%2C17301383&format=r3%7Cs&nocache=7031701671940750&num=0&output=afd_ads&domain_name=www.z2a.digital&v=3&bsl=8&pac=2&u_his=2&u_tz=0&dt=1701671940756&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=1146&frm=0&cl=579967862&uio=--&cont=rb-default&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Fwww.z2a.digital%2F
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE
ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash 11b3089d616633ca6b73b57aa877eeb4
07632f63e06b30d9b63c97177d3a8122629bda9b
809fb4619d2a2f1a85dbda8cc69a7f1659215212d708a098d62150eee57070c1
GET /ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.adsensecustomsearchads.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 174
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 04 Dec 2023 02:49:01 GMT
expires: Tue, 05 Dec 2023 01:49:01 GMT
cache-control: public, max-age=82800
age: 13795
last-modified: Thu, 02 Nov 2023 22:48:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%231967d2
200 OK 272 B URL GET HTTP/2 afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%231967d2
IP
Requested by https://www.adsensecustomsearchads.com/afs/ads?adsafe=low&adtest=off&psid=3259787283&channel=exp-0051%2Cauxa-control-1%2C44786252&client=dp-sedo85_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.z2a.digital%2Fcaf%2F%3Fses%3DY3JlPTE3MDE2NzE5MzQmdGNpZD13d3cuejJhLmRpZ2l0YWw2NTZkNzNmZWU5NTViNy45OTE0MjA0OCZ0YXNrPXNlYXJjaCZkb21haW49ejJhLmRpZ2l0YWwmYV9pZD0zJnNlc3Npb249MXBVLUlxcjZHOW0xaktFTG92TjM%3D&type=3&uiopt=false&swp=as-drid-2280784292183247&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002%2C17301383&format=r3%7Cs&nocache=7031701671940750&num=0&output=afd_ads&domain_name=www.z2a.digital&v=3&bsl=8&pac=2&u_his=2&u_tz=0&dt=1701671940756&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=1146&frm=0&cl=579967862&uio=--&cont=rb-default&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Fwww.z2a.digital%2F
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE
ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (390)
Hash a6ad6e65373db8c1b1f154c4c83f8ce5
84cc007d6d682c589e1e1f87482a5278830f3000
920a378947204498c122722933b3a4b67788a2b6fade8bd0d47cf830eeee0563
GET /ad_icons/standard/publisher_icon_image/search.svg?c=%231967d2 HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.adsensecustomsearchads.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 272
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 03 Dec 2023 14:42:22 GMT
expires: Mon, 04 Dec 2023 13:42:22 GMT
cache-control: public, max-age=82800
age: 57394
last-modified: Thu, 20 Jul 2023 22:48:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=qp5xtsyilcpm&aqid=_3NtZfOeGJaUiM0Ptb-euAo&pbt=bs&adbx=490&adby=986.0499877929688&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=5%7C0%7C631%7C56%7C43&lle=0&ifv=1&hpt=0
204 No Content 0 B URL GET HTTP/3 www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=qp5xtsyilcpm&aqid=_3NtZfOeGJaUiM0Ptb-euAo&pbt=bs&adbx=490&adby=986.0499877929688&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=5%7C0%7C631%7C56%7C43&lle=0&ifv=1&hpt=0
IP
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=qp5xtsyilcpm&aqid=_3NtZfOeGJaUiM0Ptb-euAo&pbt=bs&adbx=490&adby=986.0499877929688&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=5%7C0%7C631%7C56%7C43&lle=0&ifv=1&hpt=0 HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.z2a.digital/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-9Y7LT0KDpum-MR3xSMVCCw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Mon, 04 Dec 2023 06:38:57 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+465; expires=Wed, 03-Dec-2025 06:38:57 GMT; path=/; domain=.adsensecustomsearchads.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=ccffyua01os2&aqid=_3NtZfOeGJaUiM0Ptb-euAo&psid=3259787283&pbt=bs&adbx=392&adby=413.04998779296875&adbh=553&adbw=496&adbah=178%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=16%7C0%7C620%7C56%7C43&lle=0&ifv=1&hpt=0
204 No Content 0 B URL GET HTTP/3 www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=ccffyua01os2&aqid=_3NtZfOeGJaUiM0Ptb-euAo&psid=3259787283&pbt=bs&adbx=392&adby=413.04998779296875&adbh=553&adbw=496&adbah=178%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=16%7C0%7C620%7C56%7C43&lle=0&ifv=1&hpt=0
IP
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=ccffyua01os2&aqid=_3NtZfOeGJaUiM0Ptb-euAo&psid=3259787283&pbt=bs&adbx=392&adby=413.04998779296875&adbh=553&adbw=496&adbah=178%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=16%7C0%7C620%7C56%7C43&lle=0&ifv=1&hpt=0 HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.z2a.digital/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-FH3fz-JACCBxdES0ohHn7A' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Mon, 04 Dec 2023 06:38:57 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+730; expires=Wed, 03-Dec-2025 06:38:57 GMT; path=/; domain=.adsensecustomsearchads.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=cuqe15q232to&aqid=_3NtZfOeGJaUiM0Ptb-euAo&psid=3259787283&pbt=bv&adbx=392&adby=413.04998779296875&adbh=553&adbw=496&adbah=178%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=16%7C0%7C620%7C56%7C43&lle=0&ifv=1&hpt=0
204 No Content 0 B URL GET HTTP/3 www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=cuqe15q232to&aqid=_3NtZfOeGJaUiM0Ptb-euAo&psid=3259787283&pbt=bv&adbx=392&adby=413.04998779296875&adbh=553&adbw=496&adbah=178%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=16%7C0%7C620%7C56%7C43&lle=0&ifv=1&hpt=0
IP
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=cuqe15q232to&aqid=_3NtZfOeGJaUiM0Ptb-euAo&psid=3259787283&pbt=bv&adbx=392&adby=413.04998779296875&adbh=553&adbw=496&adbah=178%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=16%7C0%7C620%7C56%7C43&lle=0&ifv=1&hpt=0 HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.z2a.digital/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-RdNMGaTYOa-DqDeowOBHhQ' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Mon, 04 Dec 2023 06:38:57 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+941; expires=Wed, 03-Dec-2025 06:38:57 GMT; path=/; domain=.adsensecustomsearchads.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=7m7on9rsc2ao&aqid=_3NtZfOeGJaUiM0Ptb-euAo&pbt=bv&adbx=490&adby=986.0499877929688&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=5%7C0%7C631%7C56%7C43&lle=0&ifv=1&hpt=0
204 No Content 0 B URL GET HTTP/3 www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=7m7on9rsc2ao&aqid=_3NtZfOeGJaUiM0Ptb-euAo&pbt=bv&adbx=490&adby=986.0499877929688&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=5%7C0%7C631%7C56%7C43&lle=0&ifv=1&hpt=0
IP
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=7m7on9rsc2ao&aqid=_3NtZfOeGJaUiM0Ptb-euAo&pbt=bv&adbx=490&adby=986.0499877929688&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=5%7C0%7C631%7C56%7C43&lle=0&ifv=1&hpt=0 HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.z2a.digital/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-UAm7GZmP_48ZqCKgmNYP2w' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Mon, 04 Dec 2023 06:38:57 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+500; expires=Wed, 03-Dec-2025 06:38:57 GMT; path=/; domain=.adsensecustomsearchads.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.adsensecustomsearchads.com/adsense/domains/caf.js
200 OK 150 kB URL GET HTTP/3 www.adsensecustomsearchads.com/adsense/domains/caf.js
IP
Requested by https://www.adsensecustomsearchads.com/afs/ads?adsafe=low&adtest=off&psid=3259787283&channel=exp-0051%2Cauxa-control-1%2C44786252&client=dp-sedo85_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.z2a.digital%2Fcaf%2F%3Fses%3DY3JlPTE3MDE2NzE5MzQmdGNpZD13d3cuejJhLmRpZ2l0YWw2NTZkNzNmZWU5NTViNy45OTE0MjA0OCZ0YXNrPXNlYXJjaCZkb21haW49ejJhLmRpZ2l0YWwmYV9pZD0zJnNlc3Npb249MXBVLUlxcjZHOW0xaktFTG92TjM%3D&type=3&uiopt=false&swp=as-drid-2280784292183247&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002%2C17301383&format=r3%7Cs&nocache=7031701671940750&num=0&output=afd_ads&domain_name=www.z2a.digital&v=3&bsl=8&pac=2&u_his=2&u_tz=0&dt=1701671940756&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=1146&frm=0&cl=579967862&uio=--&cont=rb-default&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Fwww.z2a.digital%2F
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT
File type ASCII text, with very long lines (1888)
Size 150 kB (149658 bytes)
Hash ca4c8a037727ba393035511df505714d
213efa15007630fca5f216ec84d9c5fe73e23e68
1b07c4c1b4c0bf6bbe3e20182e5494e3a7ebee6eec262e891e29f559c4a66c41
GET /adsense/domains/caf.js HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.adsensecustomsearchads.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Mon, 04 Dec 2023 06:38:55 GMT
expires: Mon, 04 Dec 2023 06:38:55 GMT
cache-control: private, max-age=3600
etag: "12408733539917061013"
x-content-type-options: nosniff
link: <https://www.adsensecustomsearchads.com>; rel="preconnect"
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
162.255.119.122
91.195.240.19