Report - spotify.effers.com/1024359.html

Report Overview

Visited public
2023-12-07 21:00:17
Tags
dyndns
URL
spotify.effers.com/1024359.html
Finishing URL
effers.com/
IP / ASN
192.64.151.240
#399522 TP
Title
effers.com
Suspicious - DynDNS domain

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-12-07 08:07:58	439 B	92 kB	142.250.74.104
chatbox.computer.com	unknown	1994-08-11	2023-06-01 04:32:24	2023-12-05 12:55:53	5.1 kB	2.9 MB	192.64.151.249
computer.com	unknown	1994-08-11	2013-01-31 11:30:20	2023-12-07 05:16:41	936 B	2.1 kB	192.64.151.249
www.gstatic.com	unknown	2008-02-11	2016-07-26 11:37:06	2023-12-07 06:59:04	1.0 kB	2.2 MB	142.250.74.35
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-12-07 07:59:33	486 B	92 kB	216.58.207.227
www.adsensecustomsearchads.com	unknown	2011-01-28	2015-09-02 02:57:40	2023-12-07 05:10:26	3.4 kB	156 kB	142.250.74.78
afs.googleusercontent.com	12123	2008-11-17	2013-05-06 21:11:00	2023-12-07 07:28:57	1.0 kB	2.1 kB	142.250.74.97
www.google.com	7	1997-09-15	2015-05-10 13:11:19	2023-11-19 18:48:38	342 B	55 kB	142.250.74.164
c.parkingcrew.net	70582	2011-01-24	2017-01-29 20:17:16	2023-12-06 05:34:11	337 B	1.0 kB	185.53.178.30
d38psrni17bvxu.cloudfront.net	unknown	2008-04-25	2022-09-22 18:48:38	2023-12-07 11:30:25	402 B	12 kB	108.157.217.49
spotify.effers.com	unknown	unknown	2017-06-29 23:47:11	2023-01-24 13:26:07	413 B	348 B	192.64.151.240
effers.com	unknown	unknown	No data	No data	5.8 kB	568 kB	192.64.151.240

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-12-07 21:00:03	medium	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to a *.effers.com Domain
2023-12-07 21:00:03	medium	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to a *.effers.com Domain
2023-12-07 21:00:03	medium	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to a *.effers.com Domain
2023-12-07 21:00:03	medium	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to a *.effers.com Domain
2023-12-07 21:00:03	medium	Client IP	192.64.151.240	ET INFO DYNAMIC_DNS HTTP Request to a *.effers.com Domain

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (31)

	URL	From	Size	First Seen	Last Seen
	effers.com/public/ajax/libs/jquery/3.7.0/jquery.min.js	ScriptElement	88 kB	2023-05-12	2025-05-09
Pretty URL effers.com/public/ajax/libs/jquery/3.7.0/jquery.min.js IP 192.64.151.240 ASN #399522 TP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-12 23:07 Last Seen2025-05-09 13:04 Times Seen5997 Hash e6c2415c0ace414e5153670314ce99a9 5a9eeac34d86e92e5660e0f4f87204f1ed0c8ff6 d8f9afbf492e4c139e9d2bcb9ba6ef7c14921eb509fb703bc7a3f911b774eff8 Loading...

	c.parkingcrew.net/scripts/sale_form.js	ScriptElement	761 B	2023-03-07	2025-05-09
Pretty URL c.parkingcrew.net/scripts/sale_form.js IP 185.53.178.30 ASN #19905 NEUSTAR-AS6 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-09 12:56 Times Seen6496 Hash 64f809e06446647e192fce8d1ec34e09 5b7ced07da42e205067afa88615317a277a4a82c f52cbd664986ad7ed6e71c448e2d31d1a16463e4d9b7bca0c6be278649ccc4f3 Loading...

	effers.com/	ScriptElement	473 B	2023-06-01	2024-08-21
Pretty URL effers.com/ IP 192.64.151.240 ASN #399522 TP Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-01 04:32 Last Seen2024-08-21 07:18 Times Seen60 Hash eaa7f79b1302e8655e76509cd09e0107 b0cbc56b1f0f9279b69c1bfbaf6bd863720bbd25 b5306fb2e433014af302242ec2248fc33b17ebe2bafac66734938eff5cd0bea5 Loading...

	effers.com/	ScriptElement	968 B	2023-03-08	2025-05-09
Pretty URL effers.com/ IP 192.64.151.240 ASN #399522 TP Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 02:24 Last Seen2025-05-09 13:10 Times Seen73668 Hash c77554570ae0fa8e4fb31747dc213058 e989fbde07e6a68975c7a31e1d4df76afd90b96f c3f831fe1717c6d76a8950ac5e7dc88ceee7440d079b11584be5c6c5b3269e77 Loading...

	effers.com/	ScriptElement	662 B	2024-08-20	2024-08-20
Pretty URL effers.com/ IP 192.64.151.240 ASN #399522 TP Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:25 Last Seen2024-08-20 16:25 Times Seen1 Hash 79ce2ba8258b2fc8f519ba2f54e99767 9308604978446735bc84c4caa79430c127af1da2 08d646ba1e23f1c47723b084066cfe367d31ae0fe40ec55e449cf4906f6b54e7 Loading...

	www.adsensecustomsearchads.com/afs/ads?adtest=off&psid=1167268112&pcsa=false&channel=000002%2C000003%2C001806%2Cbucket103&client=dp-teaminternet09_3ph&r=m&hl=en&rpbu=http%3A%2F%2Fwww1.effers.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQxMDN8fHx8fHw2NTcyMzI0ZWIzMDZlfHx8MTcwMTk4Mjc5OC43OTQ5fDhkMmYxYmE3OWM2ZGZmZjI3ZmMyOGNiODhkMmViZmFlMzc2YWNiMDl8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfGV5Sm9iQ0k2SW1WdUluMD18fDF8VzEwPXwzMzdlOWVkYzQ1MWEzYzhlMGNmNjZiNzk4ZDk4YjYwODkxYmE1YzQyfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2604024762724288&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301383&format=r3%7Cs&nocache=4971701982806596&num=0&output=afd_ads&domain_name=effers.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1701982806598&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=745&frm=0&cl=579967862&uio=--&cont=tc&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Feffers.com%2F	ScriptElement	884 B	2024-08-20	2024-08-20
Pretty URL www.adsensecustomsearchads.com/afs/ads?adtest=off&psid=1167268112&pcsa=false&channel=000002%2C000003%2C001806%2Cbucket103&client=dp-teaminternet09_3ph&r=m&hl=en&rpbu=http%3A%2F%2Fwww1.effers.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQxMDN8fHx8fHw2NTcyMzI0ZWIzMDZlfHx8MTcwMTk4Mjc5OC43OTQ5fDhkMmYxYmE3OWM2ZGZmZjI3ZmMyOGNiODhkMmViZmFlMzc2YWNiMDl8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfGV5Sm9iQ0k2SW1WdUluMD18fDF8VzEwPXwzMzdlOWVkYzQ1MWEzYzhlMGNmNjZiNzk4ZDk4YjYwODkxYmE1YzQyfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2604024762724288&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301383&format=r3%7Cs&nocache=4971701982806596&num=0&output=afd_ads&domain_name=effers.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1701982806598&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=745&frm=0&cl=579967862&uio=--&cont=tc&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Feffers.com%2F IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:25 Last Seen2024-08-20 16:25 Times Seen1 Hash 06677929e03677039d32ea74aee8dbc9 9902ad7369783c255cf3d2b7408dc88b1cccae08 463cab877e0326e9148b76764de8e51a3ea5d1175727396b7f664fb5dcca283e Loading...

	effers.com/public/ajax/libs/eModal/1.2.69/eModal.min.js	ScriptElement	6.1 kB	2023-03-14	2025-04-23
Pretty URL effers.com/public/ajax/libs/eModal/1.2.69/eModal.min.js IP 192.64.151.240 ASN #399522 TP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 04:32 Last Seen2025-04-23 18:53 Times Seen94 Hash 12dc1e020fcb41cea5346e7da0c6d1d9 526ecaabf13a9db6372fb32dd4e8b242be390902 2048951eab7e2fef25c5ff1a027565df6276127847e3940d3687b1491d4236d7 Loading...

	effers.com/	ScriptElement	246 B	2024-08-20	2024-08-20
Pretty URL effers.com/ IP 192.64.151.240 ASN #399522 TP Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:25 Last Seen2024-08-20 16:25 Times Seen1 Hash 24da0d1d620dc201ea5e681040c0b38c 85cf3cbda73f8b0f608384bb0e7e5f4eb65a38d0 b1041fd6155c9a2523c39748eb5d621eb2ec033fe3a2eb3e5a3b40b61f852511 Loading...

	effers.com/	ScriptElement	7.0 kB	2023-03-13	2024-08-21
Pretty URL effers.com/ IP 192.64.151.240 ASN #399522 TP Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 06:10 Last Seen2024-08-21 09:44 Times Seen6195 Hash 04b2b624f94797c26d17a57f399d9356 3143986e839c47a5c1eff03bd9df63ecc54dca9c 233b1cbfb295a0629bcf68a2a4198a62132f02ee1f061ada2ce7143bd5d2dabb Loading...

	effers.com/	ScriptElement	1.2 kB	2024-08-20	2024-08-20
Pretty URL effers.com/ IP 192.64.151.240 ASN #399522 TP Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:25 Last Seen2024-08-20 16:25 Times Seen1 Hash 006822e7ac7e200197d17ab900d71de3 5aee9ffd0c1a496489cb776147f7d042f25d0b71 2722d66c0ae57486db7e199cba62f76f2f1c1eb987745f0ce23867a437be3b48 Loading...

	chatbox.computer.com/	ScriptElement	0 B	0001-01-01	2025-05-09
Pretty URL chatbox.computer.com/ IP 192.64.151.249 ASN #399522 TP Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-09 13:13 Times Seen4636113 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	effers.com/public/ajax/libs/jqueryui/1.13.2/jquery-ui.min.js	ScriptElement	255 kB	2023-03-07	2025-05-09
Pretty URL effers.com/public/ajax/libs/jqueryui/1.13.2/jquery-ui.min.js IP 192.64.151.240 ASN #399522 TP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:39 Last Seen2025-05-09 12:00 Times Seen4214 Hash 1e2047978946a1d271356d0b557a84a3 5f29a324c8affb1fdb26ad4564b1e044372beed2 9528ca634fecad433d044ddd3e6f9ce1f068d5d932dafdbb19d8e6daea1968bd Loading...

	effers.com/	ScriptElement	29 B	2023-03-12	2024-08-21
Pretty URL effers.com/ IP 192.64.151.240 ASN #399522 TP Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 12:56 Last Seen2024-08-21 09:43 Times Seen2033 Hash 5405126a58d646a09ad6d154c5d3a335 9e64f2a4ee55fef112fbd9654e76e8eabb751e28 76229fdaf8e9553878811c30cf5305bd2dab82248d0054d3fb2e760b35f32154 Loading...

	www.gstatic.com/flutter-canvaskit/d44b5a94c976fbb65815374f61ab5392a220b084/canvaskit.js	ScriptElement	96 kB	2023-05-16	2025-04-26
Pretty URL www.gstatic.com/flutter-canvaskit/d44b5a94c976fbb65815374f61ab5392a220b084/canvaskit.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-16 05:41 Last Seen2025-04-26 11:06 Times Seen298 Hash 76f7d822f42397160c5dfc69cbc9b2de a7739ae575812316ab0924225becfa3941f5b3da 86c5d12e43e93359933fbe2f8575d2bfd1ee595aa581b6111943de2d77975e31 Loading...

	chatbox.computer.com/	ScriptElement	0 B	0001-01-01	2025-05-09
Pretty URL chatbox.computer.com/ IP 192.64.151.249 ASN #399522 TP Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-09 13:13 Times Seen4636113 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	chatbox.computer.com/	ScriptElement	0 B	0001-01-01	2025-05-09
Pretty URL chatbox.computer.com/ IP 192.64.151.249 ASN #399522 TP Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-09 13:13 Times Seen4636113 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.googletagmanager.com/gtag/js?id=G-V90D3SRJGW	ScriptElement	274 kB	2023-12-07	2023-12-07
Pretty URL www.googletagmanager.com/gtag/js?id=G-V90D3SRJGW IP 142.250.74.104 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-07 22:00 Last Seen2023-12-07 22:00 Times Seen1 Hash 5e54192e9da424357b86a3c8764908fc 8e50de6c5d288b990ecd90ad0ed91115ee517361 6618dcc52de865a6ebcb4367e096205a7d39c91f3c7f47a32a93975586db0fdc Loading...

	chatbox.computer.com/flutter.js	ScriptElement	15 kB	2023-05-16	2025-04-06
Pretty URL chatbox.computer.com/flutter.js IP 192.64.151.249 ASN #399522 TP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-16 05:41 Last Seen2025-04-06 11:14 Times Seen436 Hash 6b515e434cea20006b3ef1726d2c8894 65e782370bc35a4f5e37922f12debfae61eff946 ebef4683c7634467e3e792e993cd8e28d44940d4299dd8f3f8ce8ea3c1f20b67 Loading...

	computer.com/js/script.js	ScriptElement	1.3 kB	2023-05-22	2025-05-08
Pretty URL computer.com/js/script.js IP 192.64.151.249 ASN #399522 TP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-22 17:22 Last Seen2025-05-08 23:04 Times Seen4808 Hash abd4e2373b2e8c4dac2e80159641c5f1 e273656e58ca934d873204e68dd35670fde657ed 021f0fd27042b279a49e982215c6dc3c3ab84e95b35553a119dfdbd50af6be94 Loading...

	effers.com/	ScriptElement	65 B	2023-03-12	2024-08-21
Pretty URL effers.com/ IP 192.64.151.240 ASN #399522 TP Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 13:54 Last Seen2024-08-21 07:18 Times Seen52 Hash 0c688c4e83950712221f558ff47cab2c ec121192f6c5f3156700e5cc8edf06893d671745 e62d3f0e8737eef57aee6ba8425adc59db65936946da164398ecd6bdc588c859 Loading...

	effers.com/public/bootstrap/3.3.7/js/bootstrap.min.js	ScriptElement	37 kB	2023-03-07	2025-05-09
Pretty URL effers.com/public/bootstrap/3.3.7/js/bootstrap.min.js IP 192.64.151.240 ASN #399522 TP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-09 12:57 Times Seen27460 Hash 5869c96cc8f19086aee625d670d741f9 430a443d74830fe9be26efca431f448c1b3740f9 53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef Loading...

	chatbox.computer.com/	ScriptElement	0 B	0001-01-01	2025-05-09
Pretty URL chatbox.computer.com/ IP 192.64.151.249 ASN #399522 TP Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-09 13:13 Times Seen4636113 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	unknown	EventHandler	9 B	2023-06-01	2025-04-23
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-06-01 04:32 Last Seen2025-04-23 18:53 Times Seen89 Hash 1ac2e364ef4640e0d5df08d16d0b552e c67984c9dd98fe1e67397867d9df542b3c6916cf 37d9e745acf681d0c18936f65fa3c7b485b58e3f96e65c35e9195a25a2f389eb Loading...

	effers.com/	ScriptElement	472 B	2023-03-13	2024-08-21
Pretty URL effers.com/ IP 192.64.151.240 ASN #399522 TP Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 06:13 Last Seen2024-08-21 09:44 Times Seen6016 Hash d31eefc1e54bdae9204297e4ae5b9cce fc49bf319586a623670a81c01d43bbd93b477fbb 2683a6247a15433dd269eaefbc7131b1326c7bc0146361913ea10ad8fa23bb14 Loading...

	www.adsensecustomsearchads.com/adsense/domains/caf.js	ScriptElement	150 kB	2023-11-08	2023-12-11
Pretty URL www.adsensecustomsearchads.com/adsense/domains/caf.js IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-08 18:13 Last Seen2023-12-11 15:06 Times Seen582 Hash 1123a0a217608d6d401c22547fafb74c bc0e5bb3c8b3c77fcd85c8483a62f56106177ffd 39f2992cdab5eafb6182f90b851aa9e7f568d2a3e90fa33efd8ec7cbfb352fed Loading...

	www.google.com/adsense/domains/caf.js?abp=1	ScriptElement	150 kB	2023-11-09	2023-12-13
Pretty URL www.google.com/adsense/domains/caf.js?abp=1 IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-09 14:10 Last Seen2023-12-13 17:50 Times Seen1323 Hash 874a9639750ae434c10140eb1a983849 075e222560bb798ac08f476e157afa2782d3c85b a49690ce6db822bd1ae860ad7687076d3259019e7353ecdd86cd02066fd6bee8 Loading...

	effers.com/public/npm/@rwap/jquery-ui-touch-punch@1.0.11/jquery.ui.touch-punch.min.js	ScriptElement	2.8 kB	2023-06-01	2025-04-23
Pretty URL effers.com/public/npm/@rwap/jquery-ui-touch-punch@1.0.11/jquery.ui.touch-punch.min.js IP 192.64.151.240 ASN #399522 TP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-01 04:32 Last Seen2025-04-23 18:53 Times Seen92 Hash d78ec54003324d4ee10cf2cf22fc7c7e b64b3d9c991384533dc97b6a88ff1d8bc179cbc4 ac47c332d3055f634a100a799ad11e559d5b23189dd79a9b800d18f1797d074c Loading...

	effers.com/	ScriptElement	669 B	2024-08-20	2024-08-20
Pretty URL effers.com/ IP 192.64.151.240 ASN #399522 TP Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:25 Last Seen2024-08-20 16:25 Times Seen1 Hash ebd1c47a9287473b447b9b43e81d5e6f 5b4109664a74a029a266ded10b17bc4113613db0 9b851f9f2a9c0421dfd8fc11c79f728390a9599ea4efe2e3cddda9852bc77958 Loading...

	effers.com/	ScriptElement	40 B	2023-08-09	2024-08-21
Pretty URL effers.com/ IP 192.64.151.240 ASN #399522 TP Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-09 10:52 Last Seen2024-08-21 09:42 Times Seen9104 Hash fca3e6a61d4a07440e4f10c4dbaad8e3 41480802bf872b2d15f9cbcadba025fe326eac03 dfe5c5e10934e7abf7903d4ede3b8fa091c11bef63d675808e6314ec763185ee Loading...

	effers.com/	ScriptElement	71 B	2023-03-08	2024-08-21
Pretty URL effers.com/ IP 192.64.151.240 ASN #399522 TP Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 02:23 Last Seen2024-08-21 09:44 Times Seen6209 Hash 1a5a5e1b6a26f57b95e3dd42f60612f4 b62a27e55a59b49084e682bd3c1588f6a40881ab 4066da16910907c7962da8e7011bf0cd62b6f2dcddb1911e3ea2de03ce3e1dc7 Loading...

	chatbox.computer.com/main.dart.js	ScriptElement	2.4 MB	2023-11-19	2024-08-20
Pretty URL chatbox.computer.com/main.dart.js IP 192.64.151.249 ASN #399522 TP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-19 20:43 Last Seen2024-08-20 18:45 Times Seen40 Hash e2dbaf4c543a7bfaaf991aa5071f0e7c 366bd06f8d8fc7eee9e44ec342e9ec8e56fe018e 7b002849efa71f2bf7b458169f9fb026ff5309df3cf2b4f10acc98bd600bc08a Loading...

HTTP Transactions (42)

URL IP Response Size

spotify.effers.com/1024359.html

192.64.151.240

302 Moved Temporarily

145 B

URL User Request GET HTTP/1.1
spotify.effers.com/1024359.html
IP
192.64.151.240:80
ASN
#399522 TP

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
145 B (145 bytes)
Hash
bfe2c1d1b36c62666ce9ba537d324bd4
4d52a7c6d2909a506a4e81559eb24e8af077c741
5216ad883da8fe250db6892c9abca11bae07572d49a4c48a3c42276ffe6a9fb8

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - DynDNS domain

NIDS	Severity	Alert
suricata	medium	ET INFO DYNAMIC_DNS HTTP Request to a *.effers.com Domain

HTTP Headers

GET /1024359.html HTTP/1.1
Host: spotify.effers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Moved Temporarily
Server: nginx/1.18.0
Date: Thu, 07 Dec 2023 20:59:57 GMT
Content-Type: text/html
Content-Length: 145
Connection: keep-alive
Location: http://effers.com/1024359.html

effers.com/1024359.html

192.64.151.240

302 Moved Temporarily

145 B

URL User Request GET HTTP/1.1
effers.com/1024359.html
IP
192.64.151.240:80
ASN
#399522 TP

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
145 B (145 bytes)
Hash
bfe2c1d1b36c62666ce9ba537d324bd4
4d52a7c6d2909a506a4e81559eb24e8af077c741
5216ad883da8fe250db6892c9abca11bae07572d49a4c48a3c42276ffe6a9fb8

HTTP Headers

GET /1024359.html HTTP/1.1
Host: effers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Moved Temporarily
Server: nginx/1.18.0
Date: Thu, 07 Dec 2023 20:59:58 GMT
Content-Type: text/html
Content-Length: 145
Location: http://effers.com/
Connection: keep-alive

effers.com/

192.64.151.240

7.6 kB

URL User Request GET
effers.com/
IP
192.64.151.240:0
ASN
#399522 TP

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1201)
Size
7.6 kB (7551 bytes)
Hash
dbf6f2e6f6306dd6dbf10ace50cc64b9
63a61f28c63e5e92101509f53f397a27d1315e17
f5b0d31931d56c7df5d57a47d07cd22b48a66bbe1fd6015c9775da77c4409f3d

HTTP Headers

GET / HTTP/1.1
Host: effers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Thu, 07 Dec 2023 20:59:58 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_ppmbQqNGR2B+qaVdF87AB91HTipTySx7Q0NAW3w0zWpAdXYZFOz7DO7ICjqRfd14vJ79J9EZWSTnM0bZ7JTMlw==
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
X-Domain: effers.com
X-Subdomain: www1
Content-Encoding: gzip

www.google.com/adsense/domains/caf.js?abp=1

142.250.74.164

200 OK

54 kB

URL GET HTTP/1.1
www.google.com/adsense/domains/caf.js?abp=1
IP
142.250.74.164:80
ASN
#15169 GOOGLE

Requested by
http://effers.com/

File type
ASCII text, with very long lines (1888)
Size
54 kB (54358 bytes)
Hash
874a9639750ae434c10140eb1a983849
075e222560bb798ac08f476e157afa2782d3c85b
a49690ce6db822bd1ae860ad7687076d3259019e7353ecdd86cd02066fd6bee8

HTTP Headers

GET /adsense/domains/caf.js?abp=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://effers.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Type: text/javascript; charset=UTF-8
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="ads-afs-ui"
Report-To: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
Date: Thu, 07 Dec 2023 20:59:58 GMT
Expires: Thu, 07 Dec 2023 20:59:58 GMT
Cache-Control: private, max-age=3600
ETag: "13859965838328933494"
X-Content-Type-Options: nosniff
Link: <https://www.adsensecustomsearchads.com>; rel="preconnect"
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: sffe
X-XSS-Protection: 0

c.parkingcrew.net/scripts/sale_form.js

185.53.178.30

200 OK

761 B

URL GET HTTP/1.1
c.parkingcrew.net/scripts/sale_form.js
IP
185.53.178.30:80
ASN
#19905 NEUSTAR-AS6

Requested by
http://effers.com/

File type
ASCII text
Size
761 B (761 bytes)
Hash
64f809e06446647e192fce8d1ec34e09
5b7ced07da42e205067afa88615317a277a4a82c
f52cbd664986ad7ed6e71c448e2d31d1a16463e4d9b7bca0c6be278649ccc4f3

HTTP Headers

GET /scripts/sale_form.js HTTP/1.1
Host: c.parkingcrew.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://effers.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 07 Dec 2023 20:59:59 GMT
Content-Type: application/javascript
Content-Length: 761
Connection: keep-alive
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
ETag: "5ebab1f0-2f9"
Accept-Ranges: bytes

effers.com/public/ajax/libs/eModal/1.2.69/eModal.min.js

192.64.151.240

200 OK

6.1 kB

URL GET HTTP/1.1
effers.com/public/ajax/libs/eModal/1.2.69/eModal.min.js
IP
192.64.151.240:80
ASN
#399522 TP

Requested by
http://effers.com/

File type
ASCII text, with very long lines (6145), with no line terminators
Size
6.1 kB (6145 bytes)
Hash
12dc1e020fcb41cea5346e7da0c6d1d9
526ecaabf13a9db6372fb32dd4e8b242be390902
2048951eab7e2fef25c5ff1a027565df6276127847e3940d3687b1491d4236d7

HTTP Headers

GET /public/ajax/libs/eModal/1.2.69/eModal.min.js HTTP/1.1
Host: effers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Thu, 07 Dec 2023 20:59:59 GMT
Content-Type: application/javascript
Content-Length: 6145
Last-Modified: Mon, 04 May 2020 16:09:34 GMT
Connection: keep-alive
ETag: "5eb03e3e-1801"
Accept-Ranges: bytes

effers.com/public/ajax/libs/jqueryui/1.13.2/themes/base/jquery-ui.min.css

192.64.151.240

200 OK

31 kB

URL GET HTTP/1.1
effers.com/public/ajax/libs/jqueryui/1.13.2/themes/base/jquery-ui.min.css
IP
192.64.151.240:80
ASN
#399522 TP

Requested by
http://effers.com/

File type
ASCII text, with very long lines (29189)
Size
31 kB (30778 bytes)
Hash
938109d2b5f9778c8d9eec5884ed0a64
7f6c4397d33a9a268d80e26b9336c7d6a35c99ab
54dc71796bfbf1f069559ddc33c2e8992efec541f621797a849d442a69822696

HTTP Headers

GET /public/ajax/libs/jqueryui/1.13.2/themes/base/jquery-ui.min.css HTTP/1.1
Host: effers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Thu, 07 Dec 2023 20:59:59 GMT
Content-Type: text/css
Content-Length: 30778
Last-Modified: Fri, 29 Jul 2022 20:40:53 GMT
Connection: keep-alive
ETag: "62e445d5-783a"
Accept-Ranges: bytes

effers.com/public/bootstrap/3.3.7/css/bootstrap.min.css

192.64.151.240

200 OK

121 kB

URL GET HTTP/1.1
effers.com/public/bootstrap/3.3.7/css/bootstrap.min.css
IP
192.64.151.240:80
ASN
#399522 TP

Requested by
http://effers.com/

File type
ASCII text, with very long lines (65371)
Size
121 kB (121200 bytes)
Hash
ec3bb52a00e176a7181d454dffaea219
6527d8bf3e1e9368bab8c7b60f56bc01fa3afd68
f75e846cc83bd11432f4b1e21a45f31bc85283d11d372f7b19accd1bf6a2635c

HTTP Headers

GET /public/bootstrap/3.3.7/css/bootstrap.min.css HTTP/1.1
Host: effers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://effers.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Thu, 07 Dec 2023 20:59:59 GMT
Content-Type: text/css
Content-Length: 121200
Last-Modified: Mon, 25 Jan 2021 22:03:59 GMT
Connection: keep-alive
ETag: "600f404f-1d970"
Accept-Ranges: bytes

effers.com/public/npm/@rwap/jquery-ui-touch-punch@1.0.11/jquery.ui.touch-punch.min.js

192.64.151.240

200 OK

2.8 kB

URL GET HTTP/1.1
effers.com/public/npm/@rwap/jquery-ui-touch-punch@1.0.11/jquery.ui.touch-punch.min.js
IP
192.64.151.240:80
ASN
#399522 TP

Requested by
http://effers.com/

File type
Unicode text, UTF-8 text, with very long lines (1897)
Size
2.8 kB (2781 bytes)
Hash
d78ec54003324d4ee10cf2cf22fc7c7e
b64b3d9c991384533dc97b6a88ff1d8bc179cbc4
ac47c332d3055f634a100a799ad11e559d5b23189dd79a9b800d18f1797d074c

HTTP Headers

GET /public/npm/@rwap/jquery-ui-touch-punch@1.0.11/jquery.ui.touch-punch.min.js HTTP/1.1
Host: effers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://effers.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Thu, 07 Dec 2023 20:59:59 GMT
Content-Type: application/javascript
Content-Length: 2781
Last-Modified: Fri, 26 May 2023 09:14:47 GMT
Connection: keep-alive
ETag: "64707887-add"
Accept-Ranges: bytes

effers.com/public/ajax/libs/jquery/3.7.0/jquery.min.js

192.64.151.240

200 OK

88 kB

URL GET HTTP/1.1
effers.com/public/ajax/libs/jquery/3.7.0/jquery.min.js
IP
192.64.151.240:80
ASN
#399522 TP

Requested by
http://effers.com/

File type
ASCII text, with very long lines (65447)
Size
88 kB (87462 bytes)
Hash
e6c2415c0ace414e5153670314ce99a9
5a9eeac34d86e92e5660e0f4f87204f1ed0c8ff6
d8f9afbf492e4c139e9d2bcb9ba6ef7c14921eb509fb703bc7a3f911b774eff8

HTTP Headers

GET /public/ajax/libs/jquery/3.7.0/jquery.min.js HTTP/1.1
Host: effers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Thu, 07 Dec 2023 20:59:59 GMT
Content-Type: application/javascript
Content-Length: 87462
Last-Modified: Fri, 12 May 2023 02:05:12 GMT
Connection: keep-alive
ETag: "645d9ed8-155a6"
Accept-Ranges: bytes

effers.com/public/bootstrap/3.3.7/js/bootstrap.min.js

192.64.151.240

200 OK

37 kB

URL GET HTTP/1.1
effers.com/public/bootstrap/3.3.7/js/bootstrap.min.js
IP
192.64.151.240:80
ASN
#399522 TP

Requested by
http://effers.com/

File type
ASCII text, with very long lines (32033)
Size
37 kB (37045 bytes)
Hash
5869c96cc8f19086aee625d670d741f9
430a443d74830fe9be26efca431f448c1b3740f9
53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef

HTTP Headers

GET /public/bootstrap/3.3.7/js/bootstrap.min.js HTTP/1.1
Host: effers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://effers.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Thu, 07 Dec 2023 20:59:59 GMT
Content-Type: application/javascript
Content-Length: 37045
Last-Modified: Mon, 25 Jan 2021 22:04:00 GMT
Connection: keep-alive
ETag: "600f4050-90b5"
Accept-Ranges: bytes

effers.com/public/ajax/libs/jqueryui/1.13.2/jquery-ui.min.js

192.64.151.240

200 OK

255 kB

URL GET HTTP/1.1
effers.com/public/ajax/libs/jqueryui/1.13.2/jquery-ui.min.js
IP
192.64.151.240:80
ASN
#399522 TP

Requested by
http://effers.com/

File type
Unicode text, UTF-8 text, with very long lines (64399)
Size
255 kB (255084 bytes)
Hash
1e2047978946a1d271356d0b557a84a3
5f29a324c8affb1fdb26ad4564b1e044372beed2
9528ca634fecad433d044ddd3e6f9ce1f068d5d932dafdbb19d8e6daea1968bd

HTTP Headers

GET /public/ajax/libs/jqueryui/1.13.2/jquery-ui.min.js HTTP/1.1
Host: effers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Thu, 07 Dec 2023 20:59:59 GMT
Content-Type: application/javascript
Content-Length: 255084
Last-Modified: Fri, 29 Jul 2022 20:40:53 GMT
Connection: keep-alive
ETag: "62e445d5-3e46c"
Accept-Ranges: bytes

effers.com/public/logo.svg

192.64.151.240

200 OK

7.7 kB

URL GET HTTP/1.1
effers.com/public/logo.svg
IP
192.64.151.240:80
ASN
#399522 TP

Requested by
http://effers.com/

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (7651), with no line terminators
Size
7.7 kB (7651 bytes)
Hash
39714c739b7b145f7453f0cd18ef12ec
0d0737bfb251dcbd16004722ed7dc1346fe099cb
0ce9e099125464652b7b98bc935028f2dfbc957f97b36263c4967edbb3841d34

HTTP Headers

GET /public/logo.svg HTTP/1.1
Host: effers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://effers.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Thu, 07 Dec 2023 20:59:59 GMT
Content-Type: image/svg+xml
Content-Length: 7651
Last-Modified: Fri, 10 Nov 2023 01:50:10 GMT
Connection: keep-alive
ETag: "654d8c52-1de3"
Accept-Ranges: bytes

effers.com/track.php?domain=effers.com&toggle=browserjs&uid=MTcwMTk4Mjc5OC43MzM0OjdkMGIyMzY2MDZjZmJkY2YwZWU1NjhjMjRhNjQ1MTYzMTYxNDE0MGVjODlkZDllZWYzMzdkYjE2MWRjNzA0NTU6NjU3MjMyNGViMzBlZQ%3D%3D

192.64.151.240

200 OK

20 B

URL GET HTTP/1.1
effers.com/track.php?domain=effers.com&toggle=browserjs&uid=MTcwMTk4Mjc5OC43MzM0OjdkMGIyMzY2MDZjZmJkY2YwZWU1NjhjMjRhNjQ1MTYzMTYxNDE0MGVjODlkZDllZWYzMzdkYjE2MWRjNzA0NTU6NjU3MjMyNGViMzBlZQ%3D%3D
IP
192.64.151.240:80
ASN
#399522 TP

Requested by
http://effers.com/

File type
gzip compressed data, max speed, from Unix\012- data
Size
20 B (20 bytes)
Hash
a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf

HTTP Headers

GET /track.php?domain=effers.com&toggle=browserjs&uid=MTcwMTk4Mjc5OC43MzM0OjdkMGIyMzY2MDZjZmJkY2YwZWU1NjhjMjRhNjQ1MTYzMTYxNDE0MGVjODlkZDllZWYzMzdkYjE2MWRjNzA0NTU6NjU3MjMyNGViMzBlZQ%3D%3D HTTP/1.1
Host: effers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://effers.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Thu, 07 Dec 2023 21:00:00 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Custom-Track: browserjs
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Access-Control-Allow-Origin: *
Content-Encoding: gzip

www.adsensecustomsearchads.com/afs/ads?adtest=off&psid=1167268112&pcsa=false&channel=000002%2C000003%2C001806%2Cbucket103&client=dp-teaminternet09_3ph&r=m&hl=en&rpbu=http%3A%2F%2Fwww1.effers.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQxMDN8fHx8fHw2NTcyMzI0ZWIzMDZlfHx8MTcwMTk4Mjc5OC43OTQ5fDhkMmYxYmE3OWM2ZGZmZjI3ZmMyOGNiODhkMmViZmFlMzc2YWNiMDl8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfGV5Sm9iQ0k2SW1WdUluMD18fDF8VzEwPXwzMzdlOWVkYzQ1MWEzYzhlMGNmNjZiNzk4ZDk4YjYwODkxYmE1YzQyfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2604024762724288&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301383&format=r3%7Cs&nocache=4971701982806596&num=0&output=afd_ads&domain_name=effers.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1701982806598&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=745&frm=0&cl=579967862&uio=--&cont=tc&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Feffers.com%2F

142.250.74.78

200 OK

2.9 kB

URL GET HTTP/2
www.adsensecustomsearchads.com/afs/ads?adtest=off&psid=1167268112&pcsa=false&channel=000002%2C000003%2C001806%2Cbucket103&client=dp-teaminternet09_3ph&r=m&hl=en&rpbu=http%3A%2F%2Fwww1.effers.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQxMDN8fHx8fHw2NTcyMzI0ZWIzMDZlfHx8MTcwMTk4Mjc5OC43OTQ5fDhkMmYxYmE3OWM2ZGZmZjI3ZmMyOGNiODhkMmViZmFlMzc2YWNiMDl8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfGV5Sm9iQ0k2SW1WdUluMD18fDF8VzEwPXwzMzdlOWVkYzQ1MWEzYzhlMGNmNjZiNzk4ZDk4YjYwODkxYmE1YzQyfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2604024762724288&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301383&format=r3%7Cs&nocache=4971701982806596&num=0&output=afd_ads&domain_name=effers.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1701982806598&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=745&frm=0&cl=579967862&uio=--&cont=tc&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Feffers.com%2F
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
http://effers.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13947)
Size
2.9 kB (2888 bytes)
Hash
5c7cd824cabe8d399170e6ec25e8954c
0dfa054386daff2014b0c8c1879758eb4bdde1ae
a2a59320d6b389d877e6d7137ee61c40f29dc30b7b46ddf4a5d952a986c813a6

HTTP Headers

GET /afs/ads?adtest=off&psid=1167268112&pcsa=false&channel=000002%2C000003%2C001806%2Cbucket103&client=dp-teaminternet09_3ph&r=m&hl=en&rpbu=http%3A%2F%2Fwww1.effers.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQxMDN8fHx8fHw2NTcyMzI0ZWIzMDZlfHx8MTcwMTk4Mjc5OC43OTQ5fDhkMmYxYmE3OWM2ZGZmZjI3ZmMyOGNiODhkMmViZmFlMzc2YWNiMDl8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfGV5Sm9iQ0k2SW1WdUluMD18fDF8VzEwPXwzMzdlOWVkYzQ1MWEzYzhlMGNmNjZiNzk4ZDk4YjYwODkxYmE1YzQyfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2604024762724288&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301383&format=r3%7Cs&nocache=4971701982806596&num=0&output=afd_ads&domain_name=effers.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1701982806598&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=745&frm=0&cl=579967862&uio=--&cont=tc&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Feffers.com%2F HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://effers.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-disposition: inline
date: Thu, 07 Dec 2023 21:00:00 GMT
expires: Thu, 07 Dec 2023 21:00:00 GMT
cache-control: private, max-age=3600
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-4g8DOjnkWkPLVisFq2252w' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
content-encoding: br
server: gws
content-length: 2888
x-xss-protection: 0
set-cookie: CONSENT=PENDING+940; expires=Sat, 06-Dec-2025 21:00:00 GMT; path=/; domain=.adsensecustomsearchads.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

d38psrni17bvxu.cloudfront.net/themes/cleanPeppermintBlack_657d9013/img/arrows.png

108.157.217.49

200 OK

11 kB

URL GET HTTP/1.1
d38psrni17bvxu.cloudfront.net/themes/cleanPeppermintBlack_657d9013/img/arrows.png
IP
108.157.217.49:80
ASN
#16509 AMAZON-02

Requested by
http://effers.com/

File type
PNG image data, 1500 x 600, 8-bit colormap, non-interlaced\012- data
Size
11 kB (11375 bytes)
Hash
0cb2e5165dc9324eb462199f04e1ffa9
9e0f89847ec8a98d98a6020bc5c4ed32b7a48bf8
67dff0aad873050f12609885f2264417ccdd0d438311000a704c89f0865f7865

HTTP Headers

GET /themes/cleanPeppermintBlack_657d9013/img/arrows.png HTTP/1.1
Host: d38psrni17bvxu.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://effers.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 11375
Connection: keep-alive
Server: nginx
Date: Thu, 07 Dec 2023 17:26:07 GMT
Last-Modified: Thu, 23 Jun 2022 10:44:43 GMT
Accept-Ranges: bytes
ETag: "62b4441b-2c6f"
X-Cache: Hit from cloudfront
Via: 1.1 5189ed92462b822bc9c8a27ceed0cb4e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ARN56-P1
X-Amz-Cf-Id: h6tJ6MlmM8k65h5BcAD39orVR-IItMn8WCI5a7eMsEvjEWKJJnGjEQ==
Age: 12833

effers.com/favicon.ico

192.64.151.240

200 OK

0 B

URL GET HTTP/1.1
effers.com/favicon.ico
IP
192.64.151.240:80
ASN
#399522 TP

Requested by
http://effers.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: effers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://effers.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Thu, 07 Dec 2023 21:00:00 GMT
Content-Type: image/x-icon
Content-Length: 0
Last-Modified: Fri, 26 May 2023 22:59:27 GMT
Connection: keep-alive
ETag: "647139cf-0"
Accept-Ranges: bytes

effers.com/ls.php?t=6572324e&token=337e9edc451a3c8e0cf66b798d98b60891ba5c42

192.64.151.240

201 Created

16 B

URL GET HTTP/1.1
effers.com/ls.php?t=6572324e&token=337e9edc451a3c8e0cf66b798d98b60891ba5c42
IP
192.64.151.240:80
ASN
#399522 TP

Requested by
http://effers.com/

File type
JSON data\012- , ASCII text, with no line terminators
Size
16 B (16 bytes)
Hash
7363e85fe9edee6f053a4b319588c086
a15e2127145548437173fc17f3e980e3f3dee2d0
c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97

HTTP Headers

GET /ls.php?t=6572324e&token=337e9edc451a3c8e0cf66b798d98b60891ba5c42 HTTP/1.1
Host: effers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://effers.com/
Cookie: GoogleAdServingTest=Good
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 201 Created
Server: nginx/1.18.0
Date: Thu, 07 Dec 2023 21:00:00 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Charset: utf-8
Access-Control-Allow-Origin: 
Access-Control-Allow-Methods: POST, OPTIONS
Access-Control-Max-Age: 86400
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_uR5SXG9Qjp+krOMdn8i2opnGfLjJWkIlvaA9wo6jgcb0xIbaWKHkm2ygIxYsjmdjn7yoE3ngzrQopq+BbwciKA==

effers.com/track.php?domain=effers.com&caf=1&toggle=answercheck&answer=yes&uid=MTcwMTk4Mjc5OC43MzM0OjdkMGIyMzY2MDZjZmJkY2YwZWU1NjhjMjRhNjQ1MTYzMTYxNDE0MGVjODlkZDllZWYzMzdkYjE2MWRjNzA0NTU6NjU3MjMyNGViMzBlZQ%3D%3D

192.64.151.240

200 OK

20 B

URL GET HTTP/1.1
effers.com/track.php?domain=effers.com&caf=1&toggle=answercheck&answer=yes&uid=MTcwMTk4Mjc5OC43MzM0OjdkMGIyMzY2MDZjZmJkY2YwZWU1NjhjMjRhNjQ1MTYzMTYxNDE0MGVjODlkZDllZWYzMzdkYjE2MWRjNzA0NTU6NjU3MjMyNGViMzBlZQ%3D%3D
IP
192.64.151.240:80
ASN
#399522 TP

Requested by
http://effers.com/

File type
gzip compressed data, max speed, from Unix\012- data
Size
20 B (20 bytes)
Hash
a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf

HTTP Headers

GET /track.php?domain=effers.com&caf=1&toggle=answercheck&answer=yes&uid=MTcwMTk4Mjc5OC43MzM0OjdkMGIyMzY2MDZjZmJkY2YwZWU1NjhjMjRhNjQ1MTYzMTYxNDE0MGVjODlkZDllZWYzMzdkYjE2MWRjNzA0NTU6NjU3MjMyNGViMzBlZQ%3D%3D HTTP/1.1
Host: effers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://effers.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Thu, 07 Dec 2023 21:00:00 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Custom-Track: answercheck
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Access-Control-Allow-Origin: *
Content-Encoding: gzip

afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff

142.250.74.97

200 OK

174 B

URL GET HTTP/2
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://www.adsensecustomsearchads.com/afs/ads?adtest=off&psid=1167268112&pcsa=false&channel=000002%2C000003%2C001806%2Cbucket103&client=dp-teaminternet09_3ph&r=m&hl=en&rpbu=http%3A%2F%2Fwww1.effers.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQxMDN8fHx8fHw2NTcyMzI0ZWIzMDZlfHx8MTcwMTk4Mjc5OC43OTQ5fDhkMmYxYmE3OWM2ZGZmZjI3ZmMyOGNiODhkMmViZmFlMzc2YWNiMDl8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfGV5Sm9iQ0k2SW1WdUluMD18fDF8VzEwPXwzMzdlOWVkYzQ1MWEzYzhlMGNmNjZiNzk4ZDk4YjYwODkxYmE1YzQyfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2604024762724288&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301383&format=r3%7Cs&nocache=4971701982806596&num=0&output=afd_ads&domain_name=effers.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1701982806598&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=745&frm=0&cl=579967862&uio=--&cont=tc&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Feffers.com%2F
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE
ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Size
174 B (174 bytes)
Hash
11b3089d616633ca6b73b57aa877eeb4
07632f63e06b30d9b63c97177d3a8122629bda9b
809fb4619d2a2f1a85dbda8cc69a7f1659215212d708a098d62150eee57070c1

HTTP Headers

GET /ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.adsensecustomsearchads.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 174
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:46:10 GMT
expires: Fri, 08 Dec 2023 14:46:10 GMT
cache-control: public, max-age=82800
last-modified: Thu, 02 Nov 2023 22:48:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
age: 18831
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%23ffffff

142.250.74.97

200 OK

270 B

URL GET HTTP/2
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%23ffffff
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://www.adsensecustomsearchads.com/afs/ads?adtest=off&psid=1167268112&pcsa=false&channel=000002%2C000003%2C001806%2Cbucket103&client=dp-teaminternet09_3ph&r=m&hl=en&rpbu=http%3A%2F%2Fwww1.effers.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQxMDN8fHx8fHw2NTcyMzI0ZWIzMDZlfHx8MTcwMTk4Mjc5OC43OTQ5fDhkMmYxYmE3OWM2ZGZmZjI3ZmMyOGNiODhkMmViZmFlMzc2YWNiMDl8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfGV5Sm9iQ0k2SW1WdUluMD18fDF8VzEwPXwzMzdlOWVkYzQ1MWEzYzhlMGNmNjZiNzk4ZDk4YjYwODkxYmE1YzQyfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2604024762724288&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301383&format=r3%7Cs&nocache=4971701982806596&num=0&output=afd_ads&domain_name=effers.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1701982806598&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=745&frm=0&cl=579967862&uio=--&cont=tc&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Feffers.com%2F
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE
ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (390)
Size
270 B (270 bytes)
Hash
8959ddcd9712196961d93f58064ed655
62ab1e38e7e9fbf58a04381b76c2d96a9c829f24
17c7a89bf169c2ee400e31b042cea68513f06b9cd7d1e8990dbec800f0d771c7

HTTP Headers

GET /ad_icons/standard/publisher_icon_image/search.svg?c=%23ffffff HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.adsensecustomsearchads.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 270
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 04:20:51 GMT
expires: Fri, 08 Dec 2023 03:20:51 GMT
cache-control: public, max-age=82800
last-modified: Thu, 20 Jul 2023 22:48:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
age: 59950
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-V90D3SRJGW

142.250.74.104

200 OK

92 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-V90D3SRJGW
IP
142.250.74.104:443
ASN
#15169 GOOGLE

Requested by
https://chatbox.computer.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (4179)
Size
92 kB (91654 bytes)
Hash
5e54192e9da424357b86a3c8764908fc
8e50de6c5d288b990ecd90ad0ed91115ee517361
6618dcc52de865a6ebcb4367e096205a7d39c91f3c7f47a32a93975586db0fdc

HTTP Headers

GET /gtag/js?id=G-V90D3SRJGW HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://chatbox.computer.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 07 Dec 2023 21:00:01 GMT
expires: Thu, 07 Dec 2023 21:00:01 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 91654
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

chatbox.computer.com/flutter.js

192.64.151.249

200 OK

15 kB

URL GET HTTP/2
chatbox.computer.com/flutter.js
IP
192.64.151.249:443
ASN
#399522 TP

Requested by
https://chatbox.computer.com/
Certificate
IssuerLet's Encrypt
Subject*.computer.com
Fingerprint3D:97:66:C0:3B:05:20:A1:DC:4F:A0:1B:29:28:7A:B2:24:A9:76:F7
ValidityTue, 05 Dec 2023 16:50:26 GMT - Mon, 04 Mar 2024 16:50:25 GMT

File type
ASCII text, with CRLF line terminators
Size
15 kB (14623 bytes)
Hash
6b515e434cea20006b3ef1726d2c8894
65e782370bc35a4f5e37922f12debfae61eff946
ebef4683c7634467e3e792e993cd8e28d44940d4299dd8f3f8ce8ea3c1f20b67

HTTP Headers

GET /flutter.js HTTP/1.1
Host: chatbox.computer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://chatbox.computer.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 07 Dec 2023 21:00:01 GMT
content-type: application/javascript
content-length: 14623
last-modified: Sun, 12 Nov 2023 20:55:29 GMT
etag: "65513bc1-391f"
strict-transport-security: max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2

chatbox.computer.com/assets/cc-logo.png

192.64.151.249

200 OK

24 kB

URL GET HTTP/2
chatbox.computer.com/assets/cc-logo.png
IP
192.64.151.249:443
ASN
#399522 TP

Requested by
https://chatbox.computer.com/
Certificate
IssuerLet's Encrypt
Subject*.computer.com
Fingerprint3D:97:66:C0:3B:05:20:A1:DC:4F:A0:1B:29:28:7A:B2:24:A9:76:F7
ValidityTue, 05 Dec 2023 16:50:26 GMT - Mon, 04 Mar 2024 16:50:25 GMT

File type
PNG image data, 663 x 663, 8-bit/color RGBA, non-interlaced\012- data
Size
24 kB (24328 bytes)
Hash
84ebd1f6c798744b151caabafa7537e9
cf809e7d102395323e7befb66242b2a54b19f28c
55fffe3b8fe5fde99213a206c483971acf9a847f0c93f5afacdcdb1703578e49

HTTP Headers

GET /assets/cc-logo.png HTTP/1.1
Host: chatbox.computer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://chatbox.computer.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 07 Dec 2023 21:00:01 GMT
content-type: image/png
content-length: 24328
last-modified: Sun, 12 Nov 2023 20:55:03 GMT
etag: "65513ba7-5f08"
strict-transport-security: max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2

computer.com/js/script.js

192.64.151.249

200 OK

1.3 kB

URL GET HTTP/2
computer.com/js/script.js
IP
192.64.151.249:443
ASN
#399522 TP

Requested by
https://chatbox.computer.com/
Certificate
IssuerLet's Encrypt
Subject*.computer.com
Fingerprint3D:97:66:C0:3B:05:20:A1:DC:4F:A0:1B:29:28:7A:B2:24:A9:76:F7
ValidityTue, 05 Dec 2023 16:50:26 GMT - Mon, 04 Mar 2024 16:50:25 GMT

File type
ASCII text, with very long lines (1346), with no line terminators
Size
1.3 kB (1346 bytes)
Hash
abd4e2373b2e8c4dac2e80159641c5f1
e273656e58ca934d873204e68dd35670fde657ed
021f0fd27042b279a49e982215c6dc3c3ab84e95b35553a119dfdbd50af6be94

HTTP Headers

GET /js/script.js HTTP/1.1
Host: computer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://chatbox.computer.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 07 Dec 2023 21:00:01 GMT
content-type: application/javascript
content-length: 1346
access-control-allow-origin: *
cache-control: public, max-age=86400, must-revalidate
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

computer.com/api/event

192.64.151.249

202 Accepted

2 B

URL POST HTTP/2
computer.com/api/event
IP
192.64.151.249:443
ASN
#399522 TP

Requested by
https://chatbox.computer.com/
Certificate
IssuerLet's Encrypt
Subject*.computer.com
Fingerprint3D:97:66:C0:3B:05:20:A1:DC:4F:A0:1B:29:28:7A:B2:24:A9:76:F7
ValidityTue, 05 Dec 2023 16:50:26 GMT - Mon, 04 Mar 2024 16:50:25 GMT

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df

HTTP Headers

POST /api/event HTTP/1.1
Host: computer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 96
Origin: https://chatbox.computer.com
DNT: 1
Connection: keep-alive
Referer: https://chatbox.computer.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 202 Accepted
server: nginx/1.18.0 (Ubuntu)
date: Thu, 07 Dec 2023 21:00:01 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers: 
cache-control: max-age=0, private, must-revalidate
x-request-id: F56oVzstx9ydcncB9-3C
X-Firefox-Spdy: h2

effers.com/public/ajax/libs/jqueryui/1.13.2/themes/base/images/ui-icons_444444_256x240.png

192.64.151.240

200 OK

7.1 kB

URL GET HTTP/1.1
effers.com/public/ajax/libs/jqueryui/1.13.2/themes/base/images/ui-icons_444444_256x240.png
IP
192.64.151.240:80
ASN
#399522 TP

Requested by
http://effers.com/

File type
PNG image data, 256 x 240, 8-bit gray+alpha, non-interlaced\012- data
Size
7.1 kB (7142 bytes)
Hash
0494d08913adc4581aa6a7da6c488d65
3ffa878d00d5e632f4f4260eb390334466caf653
2cd2a1b0f8368d37835f82a3a52733d871bf4e9db4cd047ca985d01c07169624

HTTP Headers

GET /public/ajax/libs/jqueryui/1.13.2/themes/base/images/ui-icons_444444_256x240.png HTTP/1.1
Host: effers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://effers.com/public/ajax/libs/jqueryui/1.13.2/themes/base/jquery-ui.min.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Thu, 07 Dec 2023 21:00:01 GMT
Content-Type: image/png
Content-Length: 7142
Last-Modified: Fri, 15 Jul 2022 00:51:06 GMT
Connection: keep-alive
ETag: "62d0b9fa-1be6"
Accept-Ranges: bytes

chatbox.computer.com/main.dart.js

192.64.151.249

200 OK

2.4 MB

URL GET HTTP/2
chatbox.computer.com/main.dart.js
IP
192.64.151.249:443
ASN
#399522 TP

Requested by
https://chatbox.computer.com/
Certificate
IssuerLet's Encrypt
Subject*.computer.com
Fingerprint3D:97:66:C0:3B:05:20:A1:DC:4F:A0:1B:29:28:7A:B2:24:A9:76:F7
ValidityTue, 05 Dec 2023 16:50:26 GMT - Mon, 04 Mar 2024 16:50:25 GMT

File type
ASCII text, with very long lines (727)
Size
2.4 MB (2429628 bytes)
Hash
e2dbaf4c543a7bfaaf991aa5071f0e7c
366bd06f8d8fc7eee9e44ec342e9ec8e56fe018e
7b002849efa71f2bf7b458169f9fb026ff5309df3cf2b4f10acc98bd600bc08a

HTTP Headers

GET /main.dart.js HTTP/1.1
Host: chatbox.computer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://chatbox.computer.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 07 Dec 2023 21:00:01 GMT
content-type: application/javascript
content-length: 2429628
last-modified: Sun, 12 Nov 2023 20:55:34 GMT
etag: "65513bc6-2512bc"
strict-transport-security: max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2

www.adsensecustomsearchads.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=zihd9k7a6aug&aqid=UDJyZdjrDfSBiM0Pi_SMyAw&psid=1167268112&pbt=bs&adbx=375&adby=123.5&adbh=496&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=579967862&csala=25%7C0%7C576%7C75%7C289&lle=0&ifv=1&hpt=1

142.250.74.78

204 No Content

0 B

URL GET HTTP/3
www.adsensecustomsearchads.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=zihd9k7a6aug&aqid=UDJyZdjrDfSBiM0Pi_SMyAw&psid=1167268112&pbt=bs&adbx=375&adby=123.5&adbh=496&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=579967862&csala=25%7C0%7C576%7C75%7C289&lle=0&ifv=1&hpt=1
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
http://effers.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=zihd9k7a6aug&aqid=UDJyZdjrDfSBiM0Pi_SMyAw&psid=1167268112&pbt=bs&adbx=375&adby=123.5&adbh=496&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=579967862&csala=25%7C0%7C576%7C75%7C289&lle=0&ifv=1&hpt=1 HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://effers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-dfNyZQGqQGmdjXgs7xtN6Q' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Thu, 07 Dec 2023 21:00:02 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+418; expires=Sat, 06-Dec-2025 21:00:02 GMT; path=/; domain=.adsensecustomsearchads.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.adsensecustomsearchads.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=dezqn7k667ql&aqid=UDJyZdjrDfSBiM0Pi_SMyAw&psid=1167268112&pbt=bv&adbx=375&adby=123.5&adbh=496&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=579967862&csala=25%7C0%7C576%7C75%7C289&lle=0&ifv=1&hpt=1

142.250.74.78

204 No Content

0 B

URL GET HTTP/3
www.adsensecustomsearchads.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=dezqn7k667ql&aqid=UDJyZdjrDfSBiM0Pi_SMyAw&psid=1167268112&pbt=bv&adbx=375&adby=123.5&adbh=496&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=579967862&csala=25%7C0%7C576%7C75%7C289&lle=0&ifv=1&hpt=1
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
http://effers.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=dezqn7k667ql&aqid=UDJyZdjrDfSBiM0Pi_SMyAw&psid=1167268112&pbt=bv&adbx=375&adby=123.5&adbh=496&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=579967862&csala=25%7C0%7C576%7C75%7C289&lle=0&ifv=1&hpt=1 HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://effers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-cRR_32c3j8RE2SSa_dguuQ' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Thu, 07 Dec 2023 21:00:03 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+322; expires=Sat, 06-Dec-2025 21:00:03 GMT; path=/; domain=.adsensecustomsearchads.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/flutter-canvaskit/d44b5a94c976fbb65815374f61ab5392a220b084/canvaskit.js

142.250.74.35

200 OK

26 kB

URL GET HTTP/2
www.gstatic.com/flutter-canvaskit/d44b5a94c976fbb65815374f61ab5392a220b084/canvaskit.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://chatbox.computer.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (545)
Size
26 kB (26292 bytes)
Hash
76f7d822f42397160c5dfc69cbc9b2de
a7739ae575812316ab0924225becfa3941f5b3da
86c5d12e43e93359933fbe2f8575d2bfd1ee595aa581b6111943de2d77975e31

HTTP Headers

GET /flutter-canvaskit/d44b5a94c976fbb65815374f61ab5392a220b084/canvaskit.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://chatbox.computer.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/flutter-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="flutter-team"
report-to: {"group":"flutter-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/flutter-team"}]}
content-length: 26292
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 17:39:55 GMT
expires: Fri, 06 Dec 2024 17:39:55 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 08 May 2023 22:54:50 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 12008
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

chatbox.computer.com/assets/FontManifest.json

192.64.151.249

200 OK

670 B

URL GET HTTP/2
chatbox.computer.com/assets/FontManifest.json
IP
192.64.151.249:443
ASN
#399522 TP

Requested by
https://chatbox.computer.com/
Certificate
IssuerLet's Encrypt
Subject*.computer.com
Fingerprint3D:97:66:C0:3B:05:20:A1:DC:4F:A0:1B:29:28:7A:B2:24:A9:76:F7
ValidityTue, 05 Dec 2023 16:50:26 GMT - Mon, 04 Mar 2024 16:50:25 GMT

File type
JSON data\012- , ASCII text, with very long lines (670), with no line terminators
Size
670 B (670 bytes)
Hash
5a32d4310a6f5d9a6b651e75ba0d7372
1eea93fdd82fad31ce32e9b9428e415dfc737da3
2cd9411b540e5c6e15ac65523a3601bee668aeca9104e1de136fc34b3a912771

HTTP Headers

GET /assets/FontManifest.json HTTP/1.1
Host: chatbox.computer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chatbox.computer.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 07 Dec 2023 21:00:03 GMT
content-type: application/json
content-length: 670
last-modified: Sun, 12 Nov 2023 20:55:04 GMT
etag: "65513ba8-29e"
strict-transport-security: max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2

chatbox.computer.com/assets/fonts/MaterialIcons-Regular.otf

192.64.151.249

200 OK

9.4 kB

URL GET HTTP/2
chatbox.computer.com/assets/fonts/MaterialIcons-Regular.otf
IP
192.64.151.249:443
ASN
#399522 TP

Requested by
https://chatbox.computer.com/
Certificate
IssuerLet's Encrypt
Subject*.computer.com
Fingerprint3D:97:66:C0:3B:05:20:A1:DC:4F:A0:1B:29:28:7A:B2:24:A9:76:F7
ValidityTue, 05 Dec 2023 16:50:26 GMT - Mon, 04 Mar 2024 16:50:25 GMT

File type
OpenType font data\012- data
Size
9.4 kB (9356 bytes)
Hash
941b46b65069efb03ac182f5807e354d
bfde5fd5cbd4f9d9d3f8892591de7b3ac9d9b2b1
65461a0c857d2a10ca547400d2066d73fb6d9b1de30c1eb391b8f356377a5111

HTTP Headers

GET /assets/fonts/MaterialIcons-Regular.otf HTTP/1.1
Host: chatbox.computer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chatbox.computer.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 07 Dec 2023 21:00:03 GMT
content-type: application/octet-stream
content-length: 9356
last-modified: Sun, 12 Nov 2023 20:55:04 GMT
etag: "65513ba8-248c"
strict-transport-security: max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2

chatbox.computer.com/assets/packages/cupertino_icons/assets/CupertinoIcons.ttf

192.64.151.249

200 OK

1.2 kB

URL GET HTTP/2
chatbox.computer.com/assets/packages/cupertino_icons/assets/CupertinoIcons.ttf
IP
192.64.151.249:443
ASN
#399522 TP

Requested by
https://chatbox.computer.com/
Certificate
IssuerLet's Encrypt
Subject*.computer.com
Fingerprint3D:97:66:C0:3B:05:20:A1:DC:4F:A0:1B:29:28:7A:B2:24:A9:76:F7
ValidityTue, 05 Dec 2023 16:50:26 GMT - Mon, 04 Mar 2024 16:50:25 GMT

File type
TrueType Font data, 12 tables, 1st "OS/2", 7 names, Microsoft, language 0x409\012- data
Size
1.2 kB (1236 bytes)
Hash
57d849d738900cfd590e9adc7e208250
41985b8972e5289666d6054b2242f562f1d6e11a
7faebfc34fcf9aeed5ed14c8d859995da91d26ee4d515a5d5a632a14cc6b3d98

HTTP Headers

GET /assets/packages/cupertino_icons/assets/CupertinoIcons.ttf HTTP/1.1
Host: chatbox.computer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chatbox.computer.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 07 Dec 2023 21:00:03 GMT
content-type: application/octet-stream
content-length: 1236
last-modified: Sun, 12 Nov 2023 20:55:09 GMT
etag: "65513bad-4d4"
strict-transport-security: max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2

chatbox.computer.com/assets/packages/font_awesome_flutter/lib/fonts/fa-brands-400.ttf

192.64.151.249

200 OK

2.7 kB

URL GET HTTP/2
chatbox.computer.com/assets/packages/font_awesome_flutter/lib/fonts/fa-brands-400.ttf
IP
192.64.151.249:443
ASN
#399522 TP

Requested by
https://chatbox.computer.com/
Certificate
IssuerLet's Encrypt
Subject*.computer.com
Fingerprint3D:97:66:C0:3B:05:20:A1:DC:4F:A0:1B:29:28:7A:B2:24:A9:76:F7
ValidityTue, 05 Dec 2023 16:50:26 GMT - Mon, 04 Mar 2024 16:50:25 GMT

File type
TrueType Font data, 10 tables, 1st "OS/2", 7 names, Microsoft, language 0x409\012- data
Size
2.7 kB (2744 bytes)
Hash
7ae9f8cdfe9edff305430d9b0cf6238b
c89ab6a60b95277260718a5c25f1bcd4ffda0077
b1186c9873e7fd05f8cf70da3eea9b95f98f3d65581ead32bf7fd75b001040c8

HTTP Headers

GET /assets/packages/font_awesome_flutter/lib/fonts/fa-brands-400.ttf HTTP/1.1
Host: chatbox.computer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chatbox.computer.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 07 Dec 2023 21:00:03 GMT
content-type: application/octet-stream
content-length: 2744
last-modified: Sun, 12 Nov 2023 20:55:10 GMT
etag: "65513bae-ab8"
strict-transport-security: max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2

chatbox.computer.com/assets/packages/font_awesome_flutter/lib/fonts/fa-regular-400.ttf

192.64.151.249

200 OK

63 kB

URL GET HTTP/2
chatbox.computer.com/assets/packages/font_awesome_flutter/lib/fonts/fa-regular-400.ttf
IP
192.64.151.249:443
ASN
#399522 TP

Requested by
https://chatbox.computer.com/
Certificate
IssuerLet's Encrypt
Subject*.computer.com
Fingerprint3D:97:66:C0:3B:05:20:A1:DC:4F:A0:1B:29:28:7A:B2:24:A9:76:F7
ValidityTue, 05 Dec 2023 16:50:26 GMT - Mon, 04 Mar 2024 16:50:25 GMT

File type
TrueType Font data, 10 tables, 1st "OS/2", 22 names, Macintosh, Copyright (c) Font AwesomeFontAwesome6Free-RegularThe web's most popular icon set and toolkit.ht\012- data
Size
63 kB (63348 bytes)
Hash
a5d7457fda15b7622c14f432ba63039a
daa961339773353c7649a3e101b582ac2492d73f
ab820353fdf6457334d9b1f367e8eb832f5fbc3c32d4de0d2f526d401e68d2e7

HTTP Headers

GET /assets/packages/font_awesome_flutter/lib/fonts/fa-regular-400.ttf HTTP/1.1
Host: chatbox.computer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chatbox.computer.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 07 Dec 2023 21:00:03 GMT
content-type: application/octet-stream
content-length: 63348
last-modified: Sun, 12 Nov 2023 20:55:11 GMT
etag: "65513baf-f774"
strict-transport-security: max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2

chatbox.computer.com/assets/packages/font_awesome_flutter/lib/fonts/fa-solid-900.ttf

192.64.151.249

200 OK

395 kB

URL GET HTTP/2
chatbox.computer.com/assets/packages/font_awesome_flutter/lib/fonts/fa-solid-900.ttf
IP
192.64.151.249:443
ASN
#399522 TP

Requested by
https://chatbox.computer.com/
Certificate
IssuerLet's Encrypt
Subject*.computer.com
Fingerprint3D:97:66:C0:3B:05:20:A1:DC:4F:A0:1B:29:28:7A:B2:24:A9:76:F7
ValidityTue, 05 Dec 2023 16:50:26 GMT - Mon, 04 Mar 2024 16:50:25 GMT

File type
TrueType Font data, 10 tables, 1st "OS/2", 22 names, Macintosh\012- data
Size
395 kB (394668 bytes)
Hash
b72c617acdf2227c8b1413215f620711
7b4920e6af48221a14a8821bdb129195514937fc
c36a603ad39025d0a0c72d48cb29ba8964865db21160f5c2e2cc6694ed0ba130

HTTP Headers

GET /assets/packages/font_awesome_flutter/lib/fonts/fa-solid-900.ttf HTTP/1.1
Host: chatbox.computer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chatbox.computer.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 07 Dec 2023 21:00:03 GMT
content-type: application/octet-stream
content-length: 394668
last-modified: Sun, 12 Nov 2023 20:55:13 GMT
etag: "65513bb1-605ac"
strict-transport-security: max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2

www.gstatic.com/flutter-canvaskit/d44b5a94c976fbb65815374f61ab5392a220b084/canvaskit.wasm

142.250.74.35

200 OK

2.1 MB

URL GET HTTP/3
www.gstatic.com/flutter-canvaskit/d44b5a94c976fbb65815374f61ab5392a220b084/canvaskit.wasm
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://chatbox.computer.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
WebAssembly (wasm) binary module version 0x1 (MVP)\012- data
Size
2.1 MB (2142317 bytes)
Hash
f48eaf57cada79163ec6dec7929486ea
9c2e3dfd5ea427fc42c8358fcec9be13b47534d0
65d6b549c3d21e2d9dc4f0504fc9462936a1e511fd538a8ce4a5d45a8e0c95cf

HTTP Headers

GET /flutter-canvaskit/d44b5a94c976fbb65815374f61ab5392a220b084/canvaskit.wasm HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chatbox.computer.com/
Origin: https://chatbox.computer.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-encoding: br
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/flutter-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="flutter-team"
report-to: {"group":"flutter-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/flutter-team"}]}
content-length: 2142317
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 08:08:59 GMT
expires: Fri, 06 Dec 2024 08:08:59 GMT
cache-control: public, max-age=31536000
age: 46264
last-modified: Mon, 08 May 2023 22:55:12 GMT
content-type: application/wasm
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Me5WZLCzYlKw.ttf

216.58.207.227

200 OK

91 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Me5WZLCzYlKw.ttf
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://chatbox.computer.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
TrueType Font data, 18 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.RobotoRegularVersion 2.137; 2017Roboto-RegularRob\012- data
Size
91 kB (91230 bytes)
Hash
11eabca2251325cfc5589c9c6fb57b46
096c9245b6a192d1403a82848e104a65f578a8ec
017c0be9aaa6d0359737e1fa762ad304c0e0107927faff5a6c1f415c7f5244ed

HTTP Headers

GET /s/roboto/v20/KFOmCnqEu92Fr1Me5WZLCzYlKw.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chatbox.computer.com/
Origin: https://chatbox.computer.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 91230
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:51:37 GMT
expires: Fri, 06 Dec 2024 15:51:37 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 24 Jul 2019 01:18:48 GMT
content-type: font/ttf
vary: Accept-Encoding
age: 18506
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

chatbox.computer.com/assets/config.yaml

192.64.151.249

200 OK

65 B

URL GET HTTP/2
chatbox.computer.com/assets/config.yaml
IP
192.64.151.249:443
ASN
#399522 TP

Requested by
https://chatbox.computer.com/
Certificate
IssuerLet's Encrypt
Subject*.computer.com
Fingerprint3D:97:66:C0:3B:05:20:A1:DC:4F:A0:1B:29:28:7A:B2:24:A9:76:F7
ValidityTue, 05 Dec 2023 16:50:26 GMT - Mon, 04 Mar 2024 16:50:25 GMT

File type
ASCII text, with CRLF line terminators
Size
65 B (65 bytes)
Hash
0bbcdc864c4389d38feca7dd602ac613
f9a35b0dc3d64f5e097b3e450d6b625e553c53cf
7a0e91f697119fbfbf434215e8a06f0b7e6d0ac5a5e2243a94e60eaf286cc651

HTTP Headers

GET /assets/config.yaml HTTP/1.1
Host: chatbox.computer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chatbox.computer.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 07 Dec 2023 21:00:03 GMT
content-type: application/octet-stream
content-length: 65
last-modified: Wed, 06 Dec 2023 21:34:03 GMT
etag: "6570e8cb-41"
strict-transport-security: max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2

chatbox.computer.com/

192.64.151.249

200 OK

3.9 kB

URL GET HTTP/2
chatbox.computer.com/
IP
192.64.151.249:443
ASN
#399522 TP

Requested by
http://effers.com/
Certificate
IssuerLet's Encrypt
Subject*.computer.com
Fingerprint3D:97:66:C0:3B:05:20:A1:DC:4F:A0:1B:29:28:7A:B2:24:A9:76:F7
ValidityTue, 05 Dec 2023 16:50:26 GMT - Mon, 04 Mar 2024 16:50:25 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (4267), with no line terminators
Size
3.9 kB (3925 bytes)
Hash
8cc064ca5ce2d7233416eb3a2d80434b
354d90262f0095b8965de0c3c4930ac019aff9d9
ee1011e26f19eaaa068b7cf00e7b8958e34219346a3ac8fec12e35022f774f3b

HTTP Headers

GET / HTTP/1.1
Host: chatbox.computer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://effers.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 07 Dec 2023 21:00:01 GMT
content-type: text/html
last-modified: Sun, 12 Nov 2023 20:55:33 GMT
etag: W/"65513bc5-f55"
strict-transport-security: max-age=15768000
content-encoding: gzip
X-Firefox-Spdy: h2

www.adsensecustomsearchads.com/adsense/domains/caf.js

142.250.74.78

200 OK

150 kB

URL GET HTTP/3
www.adsensecustomsearchads.com/adsense/domains/caf.js
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
https://www.adsensecustomsearchads.com/afs/ads?adtest=off&psid=1167268112&pcsa=false&channel=000002%2C000003%2C001806%2Cbucket103&client=dp-teaminternet09_3ph&r=m&hl=en&rpbu=http%3A%2F%2Fwww1.effers.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQxMDN8fHx8fHw2NTcyMzI0ZWIzMDZlfHx8MTcwMTk4Mjc5OC43OTQ5fDhkMmYxYmE3OWM2ZGZmZjI3ZmMyOGNiODhkMmViZmFlMzc2YWNiMDl8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfGV5Sm9iQ0k2SW1WdUluMD18fDF8VzEwPXwzMzdlOWVkYzQ1MWEzYzhlMGNmNjZiNzk4ZDk4YjYwODkxYmE1YzQyfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2604024762724288&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301383&format=r3%7Cs&nocache=4971701982806596&num=0&output=afd_ads&domain_name=effers.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1701982806598&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=745&frm=0&cl=579967862&uio=--&cont=tc&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Feffers.com%2F
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT

File type
ASCII text, with very long lines (1888)
Size
150 kB (149658 bytes)
Hash
1123a0a217608d6d401c22547fafb74c
bc0e5bb3c8b3c77fcd85c8483a62f56106177ffd
39f2992cdab5eafb6182f90b851aa9e7f568d2a3e90fa33efd8ec7cbfb352fed

HTTP Headers

GET /adsense/domains/caf.js HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.adsensecustomsearchads.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Thu, 07 Dec 2023 21:00:00 GMT
expires: Thu, 07 Dec 2023 21:00:00 GMT
cache-control: private, max-age=3600
etag: "9277249071508174420"
x-content-type-options: nosniff
link: <https://www.adsensecustomsearchads.com>; rel="preconnect"
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (31)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by