| iage.zip/ | 15.197.148.33 | | 114 B |
IP15.197.148.33:0
File typeHTML document, ASCII text, with no line terminators Hashe89f75f918dbdcee28604d4e09dd71d7 f9d9055e9878723a12063b47d4a1a5f58c3eb1e9 6dc9c7fc93bb488bb0520a6c780a8d3c0fb5486a4711aca49b4c53fac7393023
NIDS | Severity | Alert | suricata | low | ET INFO HTTP Request to a *.zip Domain | suricata | low | ET INFO HTTP Request to a *.zip Domain | suricata | low | ET INFO HTTP Request to a *.zip Domain | suricata | low | ET INFO HTTP Request to a *.zip Domain |
GET / HTTP/1.1
Host: iage.zip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Mon, 20 May 2024 22:01:27 GMT
Content-Type: text/html
Content-Length: 114
Connection: keep-alive
|
|
| iage.zip/ | 3.33.130.190 | | 114 B |
IP3.33.130.190:0
File typeHTML document, ASCII text, with no line terminators Hashe89f75f918dbdcee28604d4e09dd71d7 f9d9055e9878723a12063b47d4a1a5f58c3eb1e9 6dc9c7fc93bb488bb0520a6c780a8d3c0fb5486a4711aca49b4c53fac7393023
NIDS | Severity | Alert | suricata | low | ET INFO HTTP Request to a *.zip Domain | suricata | low | ET INFO HTTP Request to a *.zip Domain | suricata | low | ET INFO HTTP Request to a *.zip Domain | suricata | low | ET INFO HTTP Request to a *.zip Domain |
GET / HTTP/1.1
Host: iage.zip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Mon, 20 May 2024 22:01:27 GMT
Content-Type: text/html
Content-Length: 114
Connection: keep-alive
|
|
| | 15.197.148.33 | 200 OK | 620 B |
URL User Request GET HTTP/2IP15.197.148.33:443
CertificateIssuerGoDaddy.com, Inc. Subjectiage.zip Fingerprint0D:60:1C:32:05:37:20:E2:13:96:FE:48:B3:8B:1E:19:FC:E7:77:0C ValiditySat, 28 Oct 2023 14:03:49 GMT - Mon, 28 Oct 2024 14:03:49 GMT
File typeHTML document, ASCII text, with very long lines (619) Hasha65ca73acd47117a7151c42bd9a44349 88ccae0dda2e9adbcadf3154a6a4f68d4470fb6f 80dfdb5804586fa0cce739ce343816d92cba24c6376414921533016a94ab90e2
GET /lander HTTP/1.1
Host: iage.zip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://iage.zip/
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: private, max-age=86400
content-type: text/html
date: Mon, 20 May 2024 22:01:27 GMT
server: openresty
set-cookie: traffic_target=gd; Path=/; Max-Age=86400
caf_ipaddr=91.90.42.154; Path=/; Max-Age=86400
country=NO; Path=/; Max-Age=86400
city=Oslo; Path=/; Max-Age=86400
lander_type=parkweb; Path=/; Max-Age=86400
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_Jg7AqlZ4vCvA4TfWYREloYoZIbCRLfBJdAA/CDCWsx8sznbf4jwFIO3QuTPIhePwwBwOqqdgzjxkqQkZT4UXWA
x-content-type-options: nosniff
content-length: 620
X-Firefox-Spdy: h2
|
|
| img1.wsimg.com/parking-lander/static/css/main.11ce2ed9.css | 95.101.10.128 | 200 OK | 897 B |
URL GET HTTP/2img1.wsimg.com/parking-lander/static/css/main.11ce2ed9.css IP95.101.10.128:443 ASN#20940 Akamai International B.V.
CertificateIssuerStarfield Technologies, Inc. Subject*.wsimg.com FingerprintB7:FF:50:92:4F:A1:64:14:99:A1:DE:DB:55:C9:FA:92:78:6B:89:DD ValidityTue, 19 Sep 2023 21:06:14 GMT - Sun, 20 Oct 2024 21:06:14 GMT
File typeASCII text, with very long lines (3093) Hash026c91fa8650832f37ed2db278bda1a9 dcb72f899002d061a6e6c221c5f665b6463da57f 82189c363ce1f29b1fa40ea1d8f91679009a4b0b89fe4f1a032dd3e8512d17a1
GET /parking-lander/static/css/main.11ce2ed9.css HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iage.zip/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: xIxU/DtPNW+HP2cM2TKwaAiMhMHO0+CEzxX47xdMKd08b9MjuRtFnKc+f7zm+jZxmvxpF1QyZvQ=
x-amz-request-id: E7CWZZ8XCN3ECTTT
last-modified: Mon, 20 May 2024 21:18:12 GMT
etag: "026c91fa8650832f37ed2db278bda1a9"
x-amz-server-side-encryption: AES256
x-amz-version-id: lhJyFUmArkP9FgsTP3zHSJg83dr6jd.I
accept-ranges: bytes
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
content-length: 897
cache-control: max-age=31536000
expires: Tue, 20 May 2025 22:01:28 GMT
date: Mon, 20 May 2024 22:01:28 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| img1.wsimg.com/parking-lander/static/js/main.38adfcfa.js | 95.101.10.128 | 200 OK | 177 kB |
URL GET HTTP/2img1.wsimg.com/parking-lander/static/js/main.38adfcfa.js IP95.101.10.128:443 ASN#20940 Akamai International B.V.
CertificateIssuerStarfield Technologies, Inc. Subject*.wsimg.com FingerprintB7:FF:50:92:4F:A1:64:14:99:A1:DE:DB:55:C9:FA:92:78:6B:89:DD ValidityTue, 19 Sep 2023 21:06:14 GMT - Sun, 20 Oct 2024 21:06:14 GMT
File typeJavaScript source, ASCII text, with very long lines (65465) Size177 kB (177266 bytes) Hashcc57c721c0a3dc1788a997977930174b 9569a45b6308e3e2d37c96dc5f3322c27df00974 b51090c71e0b0f63cd1a9cecf294db582ee8ee5895e0bdf757dd590facd02974
GET /parking-lander/static/js/main.38adfcfa.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iage.zip/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: t7fkSi2jvmmopAan+c3g9tixLhfV8pnjB1IJUzor01HaRJ2O8wggqMvwG0qMtJEhdEV+3Hb4My0=
x-amz-request-id: VQFHX66BSWVGHAGF
last-modified: Mon, 20 May 2024 21:18:07 GMT
etag: "cc57c721c0a3dc1788a997977930174b"
x-amz-server-side-encryption: AES256
x-amz-version-id: p2fAWgjA0I.Fn.oscNhiscgy8J64Ukwu
accept-ranges: bytes
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
content-length: 177266
cache-control: max-age=31536000
expires: Tue, 20 May 2025 22:01:28 GMT
date: Mon, 20 May 2024 22:01:28 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| btloader.com/tag?o=5097926782615552&upapi=true | 104.22.75.216 | 200 OK | 19 kB |
URL GET HTTP/2btloader.com/tag?o=5097926782615552&upapi=true IP104.22.75.216:443
CertificateIssuerGoogle Trust Services LLC Subjectbtloader.com Fingerprint70:F7:F9:F7:42:5B:08:2E:94:58:BB:71:DF:F9:4D:8C:F5:09:57:DA ValiditySun, 14 Apr 2024 06:05:01 GMT - Sat, 13 Jul 2024 06:05:00 GMT
File typeJavaScript source, ASCII text, with very long lines (56340) Hashb722e19572d5db4999cd0b0909719016 59cc58f15bda1e5c066dff34f234dafc37c4ee76 52d203de8ff92747682910b33ab10d10e19a9939b936bce4029bbdb3fa2cacd0
GET /tag?o=5097926782615552&upapi=true HTTP/1.1
Host: btloader.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iage.zip/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 20 May 2024 22:01:28 GMT
content-type: application/javascript
content-length: 18798
cache-control: public, max-age=300, must-revalidate, stale-if-error=3600, stale-while-revalidate=300
content-encoding: gzip
etag: "1965e023b5cd9a33e8ec8e492cc47e36"
last-modified: Mon, 20 May 2024 21:44:32 GMT
vary: Origin, Accept-Encoding
via: 1.1 google
cf-cache-status: HIT
age: 792
accept-ranges: bytes
server: cloudflare
cf-ray: 886f9aff9cfdbe56-CPH
X-Firefox-Spdy: h2
|
|
| img1.wsimg.com/parking-lander/px.js?ch=1&abp=1&gdabp=true | 95.101.10.128 | 200 OK | 20 B |
URL GET HTTP/2img1.wsimg.com/parking-lander/px.js?ch=1&abp=1&gdabp=true IP95.101.10.128:443 ASN#20940 Akamai International B.V.
CertificateIssuerStarfield Technologies, Inc. Subject*.wsimg.com FingerprintB7:FF:50:92:4F:A1:64:14:99:A1:DE:DB:55:C9:FA:92:78:6B:89:DD ValidityTue, 19 Sep 2023 21:06:14 GMT - Sun, 20 Oct 2024 21:06:14 GMT
File typegzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT) Hash3970e82605c7d109bb348fc94e9eecc0 e03849ea786b9f7b28a35c17949e85a93eb1cff1 f5d031af01f137ae07fa71720fab94d16cc8a2a59868766002918b7c240f3967
GET /parking-lander/px.js?ch=1&abp=1&gdabp=true HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://iage.zip/
Origin: https://iage.zip
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 8Xx9C3K+ge96KFYXALuB4dGrLyvrh9Ea3QSKmDW4HcjwKUdmjf+y7YCC+yuiKbiz/cCQPV3piTNIG6CBnAUU5A==
x-amz-request-id: 274TNPQAWMG0Z47M
last-modified: Tue, 30 Apr 2024 17:29:58 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
x-amz-server-side-encryption: AES256
x-amz-version-id: r379WJZyNAQk_Fk.PstwhOHm2FcbbkxE
accept-ranges: bytes
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
content-length: 20
cache-control: max-age=31536000
expires: Tue, 20 May 2025 22:01:28 GMT
date: Mon, 20 May 2024 22:01:28 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| img1.wsimg.com/parking-lander/px.js?ch=2&abp=2&gdabp=true | 95.101.10.128 | 200 OK | 20 B |
URL GET HTTP/2img1.wsimg.com/parking-lander/px.js?ch=2&abp=2&gdabp=true IP95.101.10.128:443 ASN#20940 Akamai International B.V.
CertificateIssuerStarfield Technologies, Inc. Subject*.wsimg.com FingerprintB7:FF:50:92:4F:A1:64:14:99:A1:DE:DB:55:C9:FA:92:78:6B:89:DD ValidityTue, 19 Sep 2023 21:06:14 GMT - Sun, 20 Oct 2024 21:06:14 GMT
File typegzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT) Hash3970e82605c7d109bb348fc94e9eecc0 e03849ea786b9f7b28a35c17949e85a93eb1cff1 f5d031af01f137ae07fa71720fab94d16cc8a2a59868766002918b7c240f3967
GET /parking-lander/px.js?ch=2&abp=2&gdabp=true HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://iage.zip/
Origin: https://iage.zip
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-amz-id-2: Exb44HuIubh10RjLzXGKVn88Id3nys+iRw+xEKSnZ9Hz6qZMr6t0tvMMZalcIA/URbptLdc2sWI=
x-amz-request-id: T1NB0E6CQA3MEVF4
last-modified: Tue, 30 Apr 2024 17:29:58 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
x-amz-server-side-encryption: AES256
x-amz-version-id: r379WJZyNAQk_Fk.PstwhOHm2FcbbkxE
accept-ranges: bytes
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
content-length: 20
cache-control: max-age=31536000
expires: Tue, 20 May 2025 22:01:28 GMT
date: Mon, 20 May 2024 22:01:28 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| ad-delivery.net/px.gif?ch=2 | 104.26.2.70 | 200 OK | 43 B |
URL GET HTTP/2ad-delivery.net/px.gif?ch=2 IP104.26.2.70:443
CertificateIssuerGoogle Trust Services LLC Subjectad-delivery.net Fingerprint03:7B:E9:04:33:1C:DF:29:E9:50:5E:D0:2F:B3:E2:A9:85:F2:3A:6A ValidityFri, 17 May 2024 08:39:03 GMT - Thu, 15 Aug 2024 08:39:02 GMT
File typeGIF image data, version 89a, 1 x 1 Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /px.gif?ch=2 HTTP/1.1
Host: ad-delivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iage.zip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 20 May 2024 22:01:28 GMT
content-type: image/gif
content-length: 43
x-guploader-uploadid: ABPtcPo6zuHjBRo7_QGjoPgBJ4cm6NGA39yz_qNjtg8PMIqquxVgKc71qnGT6ngjUyjh9ypCKobTvAyZ2w
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==, md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *
expires: Tue, 30 Apr 2024 17:17:29 GMT
cache-control: public, max-age=86400
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
age: 1748639
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BbOPE0cuWXo8rwKCQWtUhBNrR5jc4zYDvonH6BPmP4hM7lUR39vllqlhaS7TW5fzP36RsMR9X24zvQDm71CPGZ8iLfYapis5SUEZqNV%2BPcqp7onMoAnJWHnpCGYumrb92g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 886f9b013a6556b7-OSL
X-Firefox-Spdy: h2
|
|
| ad-delivery.net/px.gif?ch=1&e=0.8735992737264802 | 104.26.2.70 | 200 OK | 43 B |
URL GET HTTP/2ad-delivery.net/px.gif?ch=1&e=0.8735992737264802 IP104.26.2.70:443
CertificateIssuerGoogle Trust Services LLC Subjectad-delivery.net Fingerprint03:7B:E9:04:33:1C:DF:29:E9:50:5E:D0:2F:B3:E2:A9:85:F2:3A:6A ValidityFri, 17 May 2024 08:39:03 GMT - Thu, 15 Aug 2024 08:39:02 GMT
File typeGIF image data, version 89a, 1 x 1 Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /px.gif?ch=1&e=0.8735992737264802 HTTP/1.1
Host: ad-delivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iage.zip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 20 May 2024 22:01:28 GMT
content-type: image/gif
content-length: 43
x-guploader-uploadid: ABPtcPo6zuHjBRo7_QGjoPgBJ4cm6NGA39yz_qNjtg8PMIqquxVgKc71qnGT6ngjUyjh9ypCKobTvAyZ2w
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==, md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *
expires: Tue, 30 Apr 2024 17:17:29 GMT
cache-control: public, max-age=86400
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
age: 1748639
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7NE8zz7ngx7B%2FWdEmVo5K4JiPxvfKmaciMN%2FBTvH7Rfo9fmQkSKBI1kJ%2F%2FMkRDri7lO14y44U5duyJoxpb2%2BbaLTI%2BqcUDOy9ptGY%2BlRnL8kMkJwnLAPRxHOuA88O5pElw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 886f9b013a6d56b7-OSL
X-Firefox-Spdy: h2
|
|
| api.btloader.com/mw/state?bt_env=prod | 130.211.23.194 | 204 No Content | 0 B |
URL GET HTTP/2api.btloader.com/mw/state?bt_env=prod IP130.211.23.194:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
CertificateIssuerGoogle Trust Services LLC Subjectapi.btloader.com Fingerprint91:D7:31:40:CA:23:84:1D:EC:B3:E5:18:FA:A1:67:B2:7E:BF:4D:3F ValidityFri, 05 Apr 2024 16:07:23 GMT - Thu, 04 Jul 2024 17:00:56 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /mw/state?bt_env=prod HTTP/1.1
Host: api.btloader.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://iage.zip/
Origin: https://iage.zip
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-origin: *
vary: Origin
date: Mon, 20 May 2024 22:01:28 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.com/adsense/domains/caf.js?abp=1&gdabp=true | 142.250.74.132 | 200 OK | 190 kB |
URL GET HTTP/2www.google.com/adsense/domains/caf.js?abp=1&gdabp=true IP142.250.74.132:443
CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com Fingerprint83:5E:48:E2:59:C5:EB:B8:6A:08:D7:56:90:A5:F5:18:4B:C8:B1:DF ValidityMon, 06 May 2024 14:44:50 GMT - Mon, 29 Jul 2024 14:44:49 GMT
File typeJavaScript source, ASCII text, with very long lines (2247) Size190 kB (190021 bytes) Hashaa8fe6f42be1614a1ce38ebf01311e6e b20b808d3069c8568b902d55340fc8186543145e 3909ed3cc276d1318b3e60c691d5d06f9657a0f2a004d5be770b3ed76c24e437
GET /adsense/domains/caf.js?abp=1&gdabp=true HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iage.zip/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Mon, 20 May 2024 22:01:28 GMT
expires: Mon, 20 May 2024 22:01:28 GMT
cache-control: private, max-age=3600
etag: "1311846951818713040"
x-content-type-options: nosniff
link: <https://www.adsensecustomsearchads.com>; rel="preconnect"
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|