162.255.119.65302 Found 46 B URL User Request GET HTTP/1.1 IP 162.255.119.65:80
File type HTML document, ASCII text
Hash fe23277405fe46e8b792c09b47c06ed7
0fc8a2ebf6d5727963aab8a2f547b26117a06f84
3689d5b9bed0b29eee449fbef21bdaebab02683323f0039a86ca0d30a86fbfc6
NIDS Severity Alert suricata low ET INFO Namecheap URL Forward
GET / HTTP/1.1
Host: broserk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Mon, 17 Apr 2023 10:15:04 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 46
Connection: keep-alive
Location: http://www.broserk.com/
X-Served-By: Namecheap URL Forward
Server: namecheap-nginx
198.54.117.215200 OK 1.9 kB URL User Request GET HTTP/1.1 IP 198.54.117.215:80
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (319), with CRLF line terminators
Hash 6b37c9427824e875811ffce522dc381f
8593f01c27ce3b7636c348f838ee1847fcc37b25
0728f75e038552cf55d5899d75e398eab70483f27a1dda251ef6638817b76262
GET / HTTP/1.1
Host: www.broserk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 17 Apr 2023 10:15:04 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Server: namecheap-nginx
X-CST: HIT, MISS
Allow: GET, HEAD
Content-Encoding: gzip
i.cdnpark.com/themes/assets/style.css
143.204.55.34200 OK 359 B URL GET HTTP/1.1 i.cdnpark.com/themes/assets/style.css
IP 143.204.55.34:80
Hash 032ec25397c92f462776dcb9e6267c69
8920951fd2a5222d0776954873d3e94f2a910954
169fcc59cf94c77a091e2c55daef50b28332bf78508bf8555bb93a1e7342479f
GET /themes/assets/style.css HTTP/1.1
Host: i.cdnpark.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.broserk.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Last-Modified: Mon, 28 Nov 2022 10:41:35 GMT
Content-Encoding: gzip
Date: Mon, 17 Apr 2023 02:05:10 GMT
ETag: W/"6384905f-37c"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 64eNiQz3QUUG-E3EGaj22W7EwE36Y9CZgEXpxZmniAWTDYBCYTsy9w==
Age: 51548
i.cdnpark.com/themes/registrar/style_namecheap.css
143.204.55.34200 OK 1.8 kB URL GET HTTP/1.1 i.cdnpark.com/themes/registrar/style_namecheap.css
IP 143.204.55.34:80
File type ASCII text, with very long lines (1313)
Hash 32662929dadf9b5a995b6a0b8106eeeb
1d8b6574edf5e05a28e5c74a6bd7359da35347a9
41a5e25c7119b26620ac929ad752b94086f5ca9fbbbf26e35af807eb4bfe2941
GET /themes/registrar/style_namecheap.css HTTP/1.1
Host: i.cdnpark.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.broserk.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
Content-Encoding: gzip
Date: Mon, 17 Apr 2023 02:12:26 GMT
ETag: W/"5ebab1f0-fa0"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: TH-cgxTpA8JyjWTxRzeDlt8z3cnpSzEC2rNSvpBkaXeMoDBzSEMjdA==
Age: 28960
i.cdnpark.com/themes/registrar/images/logo_namecheap.png
143.204.55.34200 OK 4.9 kB URL GET HTTP/1.1 i.cdnpark.com/themes/registrar/images/logo_namecheap.png
IP 143.204.55.34:80
File type PNG image data, 260 x 60, 8-bit colormap, non-interlaced\012- data
Hash 24cfc82dfacb3ecc2e1ba6600391576d
49eaca85596996a749c9d7407189fdb86845667e
903046ac1355826e49c089ca2dd88c720bff908adb1760ee6e1884755b6041f1
GET /themes/registrar/images/logo_namecheap.png HTTP/1.1
Host: i.cdnpark.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.broserk.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 4917
Connection: keep-alive
Server: nginx
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
Accept-Ranges: bytes
Date: Mon, 17 Apr 2023 06:14:26 GMT
ETag: "5ebab1f0-1335"
X-Cache: Hit from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: A1xNKlW0aSLa31zJR2lXmHQzALJoNDt1yTTqNvg9CrIsgsn3fuilHg==
Age: 47439
parkingcrew.net/jsparkcaf.php?regcn=243142&_v=2&_h=www.broserk.com&_t=1681726616723
185.53.179.29200 OK 3.6 kB URL GET HTTP/1.1 parkingcrew.net/jsparkcaf.php?regcn=243142&_v=2&_h=www.broserk.com&_t=1681726616723
IP 185.53.179.29:80
ASN #61969 Team Internet AG
File type HTML document, ASCII text, with very long lines (2968)
Hash 8d4a666ecb63178fe284d8a2af055f8f
7e68e3753a045c1f698f908efee3dd56f5309728
35c55e19eaaf23ce806fb34c425ae8c9fb8c675aa38e93aab0c4233eabbbbc2a
GET /jsparkcaf.php?regcn=243142&_v=2&_h=www.broserk.com&_t=1681726616723 HTTP/1.1
Host: parkingcrew.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.broserk.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 17 Apr 2023 10:15:05 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Language: norwegian
X-Domain: broserk.com
X-Subdomain: www
X-Template: tpl_CleanPeppermintBlack_twoclick
d38psrni17bvxu.cloudfront.net/scripts/jsparkcaf.js
54.230.245.138200 OK 5.6 kB URL GET HTTP/1.1 d38psrni17bvxu.cloudfront.net/scripts/jsparkcaf.js
IP 54.230.245.138:80
Hash 6f95d346f97b06c2d81a5cb147d35de0
c591eaa19ed0d227b4555f5e699b668b05aa40b0
35ca990c39f9194a5a17ff664a0fdcc7dfb6cb433ea6844e2960d9744bd9b9b6
GET /scripts/jsparkcaf.js HTTP/1.1
Host: d38psrni17bvxu.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.broserk.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 5638
Connection: keep-alive
Server: nginx
Date: Mon, 17 Apr 2023 00:52:41 GMT
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
Accept-Ranges: bytes
ETag: "5ebab1f0-1606"
X-Cache: Hit from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: nnmrMiGQycvh_OrS6bVYxh0ESay0i22MOayWuKsQkLiQY0EYxVNJtg==
Age: 33744
js.parkingcrew.net/ls.php?t=643d1c29&token=11a4d33a50bd8c4c8f70bfa9687280514746e80b
185.53.178.30201 Created 16 B URL GET HTTP/1.1 js.parkingcrew.net/ls.php?t=643d1c29&token=11a4d33a50bd8c4c8f70bfa9687280514746e80b
IP 185.53.178.30:80
File type JSON data\012- , ASCII text, with no line terminators
Hash 7363e85fe9edee6f053a4b319588c086
a15e2127145548437173fc17f3e980e3f3dee2d0
c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97
GET /ls.php?t=643d1c29&token=11a4d33a50bd8c4c8f70bfa9687280514746e80b HTTP/1.1
Host: js.parkingcrew.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.broserk.com
Connection: keep-alive
Referer: http://www.broserk.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 201 Created
Server: nginx
Date: Mon, 17 Apr 2023 10:15:05 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
X-Log-Success: 643d1c298d9e781b147d92b6
Charset: utf-8
Access-Control-Allow-Origin: http://www.broserk.com
Access-Control-Allow-Methods: POST, OPTIONS
Access-Control-Max-Age: 86400
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_HlT4z4vtgV0CsDiR2khwGo54OiO8iEOveNBH4koDGQoo/W1nK4fPdr1pcM5zKVC8JiaGBxXDDtIE0Wu+D0/Nyw==
www.google.com/adsense/domains/caf.js?abp=1
216.58.211.4200 OK 54 kB URL GET HTTP/1.1 www.google.com/adsense/domains/caf.js?abp=1
IP 216.58.211.4:80
File type ASCII text, with very long lines (2193)
Hash 1774b550f1c3ec0e2256cb1271dabfd8
23de9e205f51dc7dc0157ea5d0600c437e1490d9
ddf2b2fda02564146812c838664a4a7ea28697d52f5986e54ebe58e208e3d6d8
GET /adsense/domains/caf.js?abp=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.broserk.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Type: text/javascript; charset=UTF-8
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="ads-afs-ui"
Report-To: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
Date: Mon, 17 Apr 2023 10:15:05 GMT
Expires: Mon, 17 Apr 2023 10:15:05 GMT
Cache-Control: private, max-age=3600
ETag: "5541196816858744750"
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: sffe
X-XSS-Protection: 0
js.parkingcrew.net/track.php?domain=broserk.com&toggle=browserjs&uid=MTY4MTcyNjUwNS4yNDc0OmQwYWZhY2RmZjVhNjJkYmM2ZjQwOWY0YzdkOWE5N2NmNzUwZjk2MTI3ZjBjOTAwODJjNWVlNzI1YzlhNDc5OWY6NjQzZDFjMjkzYzY1Yw%3D%3D
185.53.178.30200 OK 20 B URL GET HTTP/1.1 js.parkingcrew.net/track.php?domain=broserk.com&toggle=browserjs&uid=MTY4MTcyNjUwNS4yNDc0OmQwYWZhY2RmZjVhNjJkYmM2ZjQwOWY0YzdkOWE5N2NmNzUwZjk2MTI3ZjBjOTAwODJjNWVlNzI1YzlhNDc5OWY6NjQzZDFjMjkzYzY1Yw%3D%3D
IP 185.53.178.30:80
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /track.php?domain=broserk.com&toggle=browserjs&uid=MTY4MTcyNjUwNS4yNDc0OmQwYWZhY2RmZjVhNjJkYmM2ZjQwOWY0YzdkOWE5N2NmNzUwZjk2MTI3ZjBjOTAwODJjNWVlNzI1YzlhNDc5OWY6NjQzZDFjMjkzYzY1Yw%3D%3D HTTP/1.1
Host: js.parkingcrew.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.broserk.com
Connection: keep-alive
Referer: http://www.broserk.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 17 Apr 2023 10:15:06 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Custom-Track: browserjs
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Access-Control-Allow-Origin: *
Content-Encoding: gzip
js.parkingcrew.net/assets/scripts/registrar-caf/243142.js
185.53.178.30200 OK 3.0 kB URL GET HTTP/1.1 js.parkingcrew.net/assets/scripts/registrar-caf/243142.js
IP 185.53.178.30:80
Hash 23316d6bbbe4b9d7c85945ce4c9428e5
f7c03d2a03416a697d658cf799620684f958664b
119710c0d9e01024bc9d65493a77b661196c02706ce008f5152f78b3c224a981
GET /assets/scripts/registrar-caf/243142.js HTTP/1.1
Host: js.parkingcrew.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.broserk.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 17 Apr 2023 10:15:06 GMT
Content-Type: application/javascript
Content-Length: 2994
Connection: keep-alive
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
ETag: "5ebab1f0-bb2"
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3 471 B IP 142.250.74.3:0
Hash eec2f11c2e107e124a8690cf9a42df7f
c0c25ab7db92e51882559e8428a9061eebae7144
2803666d6cb51e49f0bdf0f4ab0d544114ba332954888a151d9df52634a40dfa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Apr 2023 10:15:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3 471 B IP 142.250.74.3:0
Hash b105900cb9f9b7c132fc24081551f8dc
02ce5e83ca84d5180b85993af662054f2bfcb3e9
82dbfc7dd1b3d02c82b205f018b248807162f8f709907e8b788b12133e468382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Apr 2023 10:15:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3 471 B IP 142.250.74.3:0
Hash b105900cb9f9b7c132fc24081551f8dc
02ce5e83ca84d5180b85993af662054f2bfcb3e9
82dbfc7dd1b3d02c82b205f018b248807162f8f709907e8b788b12133e468382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Apr 2023 10:15:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=www.broserk.com&client=dp-teaminternet09_3ph&product=SAS&callback=__sasCookie
216.58.207.226200 OK 239 B URL GET HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=www.broserk.com&client=dp-teaminternet09_3ph&product=SAS&callback=__sasCookie
IP 216.58.207.226:443
Certificate IssuerGoogle Trust Services LLC
Subject*.googleadservices.com
Fingerprint4B:CB:DB:D2:14:E4:F5:46:FA:69:7D:5D:7F:77:3E:7B:A4:87:E2:E7
ValidityTue, 28 Mar 2023 16:51:59 GMT - Tue, 20 Jun 2023 16:51:58 GMT
File type ASCII text, with very long lines (362), with no line terminators
Hash 01fb095e8869d8bdea4bfc60375c0be6
0fe8a7410d149fee59b1b1ad5fd1631c7bfee854
3d9562412abc3fefe1444d66fa97388dd7b4feda52cc1f7a22cb473ab8c4bc52
GET /gampad/cookie.js?domain=www.broserk.com&client=dp-teaminternet09_3ph&product=SAS&callback=__sasCookie HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.broserk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 17 Apr 2023 10:15:07 GMT
server: cafe
cache-control: private
content-length: 239
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/afs/ads/i/iframe.html
216.58.211.4200 OK 730 B URL GET HTTP/2 www.google.com/afs/ads/i/iframe.html
IP 216.58.211.4:443
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint3E:43:00:13:2A:5D:12:97:9E:3A:1C:62:F3:7E:D1:C4:FB:DB:B7:73
ValidityTue, 28 Mar 2023 16:54:58 GMT - Tue, 20 Jun 2023 16:54:57 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1559)
Hash feacd3b92c17053c25d1ddc1c96db9bd
583af1822a671557f15023f373eac8358bd56604
95cbe8ed3fee067e8a67d40ef4e7f0006d9383d987371835636d6de6eff28b46
GET /afs/ads/i/iframe.html HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.broserk.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/html
content-security-policy: script-src 'nonce-Zi3JC825_ZzacNq7WGyCYA' 'report-sample' 'strict-dynamic' 'unsafe-eval' 'unsafe-inline' http: https:; object-src 'none'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui; base-uri 'none'
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
content-length: 730
date: Mon, 17 Apr 2023 10:15:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
last-modified: Mon, 18 Oct 2021 14:30:00 GMT
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/afs/ads?pcsa=false&channel=000001&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.broserk.com%2F%3Fcaf&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2744431292869648&oe=UTF-8&ie=UTF-8&fexp=21404&format=r10%7Cs&nocache=6281681726618277&num=0&output=afd_ads&domain_name=www.broserk.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1681726618282&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=329&frm=0&cl=523105112&uio=--&cont=tc_holder1&jsid=caf&jsv=523105112&rurl=http%3A%2F%2Fwww.broserk.com%2F&adbw=slave-1-1%3A720%2Cmaster-1%3A720
216.58.211.4200 OK 3.0 kB URL GET HTTP/2 www.google.com/afs/ads?pcsa=false&channel=000001&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.broserk.com%2F%3Fcaf&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2744431292869648&oe=UTF-8&ie=UTF-8&fexp=21404&format=r10%7Cs&nocache=6281681726618277&num=0&output=afd_ads&domain_name=www.broserk.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1681726618282&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=329&frm=0&cl=523105112&uio=--&cont=tc_holder1&jsid=caf&jsv=523105112&rurl=http%3A%2F%2Fwww.broserk.com%2F&adbw=slave-1-1%3A720%2Cmaster-1%3A720
IP 216.58.211.4:443
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint3E:43:00:13:2A:5D:12:97:9E:3A:1C:62:F3:7E:D1:C4:FB:DB:B7:73
ValidityTue, 28 Mar 2023 16:54:58 GMT - Tue, 20 Jun 2023 16:54:57 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (7288)
Hash 24aeebbf54eadb8001c36ed420cde1fe
c2fe15a062d7c88a25720a8e3069941e0be55c92
6588ac347dde783e532173c1efca0fbedf4503ebe19b19166b6f31156de56c83
GET /afs/ads?pcsa=false&channel=000001&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.broserk.com%2F%3Fcaf&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2744431292869648&oe=UTF-8&ie=UTF-8&fexp=21404&format=r10%7Cs&nocache=6281681726618277&num=0&output=afd_ads&domain_name=www.broserk.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1681726618282&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=329&frm=0&cl=523105112&uio=--&cont=tc_holder1&jsid=caf&jsv=523105112&rurl=http%3A%2F%2Fwww.broserk.com%2F&adbw=slave-1-1%3A720%2Cmaster-1%3A720 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.broserk.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-disposition: inline
date: Mon, 17 Apr 2023 10:15:07 GMT
expires: Mon, 17 Apr 2023 10:15:07 GMT
cache-control: private, max-age=3600
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-KbUd1ECJa3AfaJYWIyVJhw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-encoding: br
server: gws
content-length: 3010
x-xss-protection: 0
set-cookie: NID=511=VYGfO39QZqruchnKKtBiVldzgvxxeBFy2cDJbVvn7TBk7bFgNAYFy4Msgo8q9jtvGQwspg9z5M68-hVtyUDzDU4MUsC6hdwQCWoODnH0gJuStaR1se1IY-rzVsSFRKwG3u6gQ25Ne72GiTu-vFIqIfutGeOojqmQ0QHFI3JhwEw; expires=Tue, 17-Oct-2023 10:15:07 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+934; expires=Wed, 16-Apr-2025 10:15:07 GMT; path=/; domain=.google.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3 471 B IP 142.250.74.3:0
Hash eec2f11c2e107e124a8690cf9a42df7f
c0c25ab7db92e51882559e8428a9061eebae7144
2803666d6cb51e49f0bdf0f4ab0d544114ba332954888a151d9df52634a40dfa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Apr 2023 10:15:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3 471 B IP 142.250.74.3:0
Hash e6284d9b261ba511418b096c6faae820
82279104a7ebb9384c51758e5a1d099dc6e31d1b
10fdf6968be372b6f76e83bba6136e8fc8fe0ae46f187acc312550b2345eb5f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Apr 2023 10:15:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js.parkingcrew.net/track.php?domain=broserk.com&caf=1&toggle=answercheck&answer=yes&uid=MTY4MTcyNjUwNS4yNDc0OmQwYWZhY2RmZjVhNjJkYmM2ZjQwOWY0YzdkOWE5N2NmNzUwZjk2MTI3ZjBjOTAwODJjNWVlNzI1YzlhNDc5OWY6NjQzZDFjMjkzYzY1Yw%3D%3D
185.53.178.30200 OK 20 B URL GET HTTP/1.1 js.parkingcrew.net/track.php?domain=broserk.com&caf=1&toggle=answercheck&answer=yes&uid=MTY4MTcyNjUwNS4yNDc0OmQwYWZhY2RmZjVhNjJkYmM2ZjQwOWY0YzdkOWE5N2NmNzUwZjk2MTI3ZjBjOTAwODJjNWVlNzI1YzlhNDc5OWY6NjQzZDFjMjkzYzY1Yw%3D%3D
IP 185.53.178.30:80
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /track.php?domain=broserk.com&caf=1&toggle=answercheck&answer=yes&uid=MTY4MTcyNjUwNS4yNDc0OmQwYWZhY2RmZjVhNjJkYmM2ZjQwOWY0YzdkOWE5N2NmNzUwZjk2MTI3ZjBjOTAwODJjNWVlNzI1YzlhNDc5OWY6NjQzZDFjMjkzYzY1Yw%3D%3D HTTP/1.1
Host: js.parkingcrew.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.broserk.com
Connection: keep-alive
Referer: http://www.broserk.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 17 Apr 2023 10:15:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Custom-Track: answercheck
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Access-Control-Allow-Origin: *
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.3 471 B IP 142.250.74.3:0
Hash bb6db5e565d55f4f9fc6ca13dadbf107
9117820fc0d86b5277a9b5df7521797854fc90d8
bc5da0a10af0249ab05ec82ec173d2569354e5a09e5b48745fdd7c4ce9b830ac
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Apr 2023 10:15:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3 471 B IP 142.250.74.3:0
Hash bb6db5e565d55f4f9fc6ca13dadbf107
9117820fc0d86b5277a9b5df7521797854fc90d8
bc5da0a10af0249ab05ec82ec173d2569354e5a09e5b48745fdd7c4ce9b830ac
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Apr 2023 10:15:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/adsense/domains/caf.js
216.58.211.4200 OK 54 kB URL GET HTTP/2 www.google.com/adsense/domains/caf.js
IP 216.58.211.4:443
Requested by https://www.google.com/afs/ads?pcsa=false&channel=000001&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.broserk.com%2F%3Fcaf&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2744431292869648&oe=UTF-8&ie=UTF-8&fexp=21404&format=r10%7Cs&nocache=6281681726618277&num=0&output=afd_ads&domain_name=www.broserk.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1681726618282&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=329&frm=0&cl=523105112&uio=--&cont=tc_holder1&jsid=caf&jsv=523105112&rurl=http%3A%2F%2Fwww.broserk.com%2F&adbw=slave-1-1%3A720%2Cmaster-1%3A720
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint3E:43:00:13:2A:5D:12:97:9E:3A:1C:62:F3:7E:D1:C4:FB:DB:B7:73
ValidityTue, 28 Mar 2023 16:54:58 GMT - Tue, 20 Jun 2023 16:54:57 GMT
File type ASCII text, with very long lines (2193)
Hash 15afded0923fd7b70945b4ea0fe93b30
9ce049207e0715ef4586b043d11ba581247bc4bd
27c73ef3756d59ee3fcaf53d311f75fec8f53a929d008dcda8c15d82d583e0e9
GET /adsense/domains/caf.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Mon, 17 Apr 2023 10:15:07 GMT
expires: Mon, 17 Apr 2023 10:15:07 GMT
cache-control: private, max-age=3600
etag: "12206343283090304948"
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%231967D2
142.250.74.97200 OK 273 B URL GET HTTP/2 afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%231967D2
IP 142.250.74.97:443
Requested by https://www.google.com/afs/ads?pcsa=false&channel=000001&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.broserk.com%2F%3Fcaf&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2744431292869648&oe=UTF-8&ie=UTF-8&fexp=21404&format=r10%7Cs&nocache=6281681726618277&num=0&output=afd_ads&domain_name=www.broserk.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1681726618282&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=329&frm=0&cl=523105112&uio=--&cont=tc_holder1&jsid=caf&jsv=523105112&rurl=http%3A%2F%2Fwww.broserk.com%2F&adbw=slave-1-1%3A720%2Cmaster-1%3A720
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintD6:E1:72:BF:8B:94:81:F5:A1:9B:A7:B6:5B:FD:B8:A5:CA:2B:E5:FD
ValidityTue, 28 Mar 2023 16:54:33 GMT - Tue, 20 Jun 2023 16:54:32 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (390)
Hash 4879b4bfc581cab5b5c803866211a36e
e1705c1fa9103a1a9f82a1bb5cd44c8e45bd520a
6ad1ffb79c80d41ec978dd45defe97ee70d0e2efd01bfe678198248819d1b98a
GET /ad_icons/standard/publisher_icon_image/search.svg?c=%231967D2 HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 273
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
date: Mon, 17 Apr 2023 10:15:08 GMT
expires: Tue, 18 Apr 2023 09:15:08 GMT
cache-control: public, max-age=82800
last-modified: Thu, 19 Dec 2019 14:15:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3 471 B IP 142.250.74.3:0
Hash bb6db5e565d55f4f9fc6ca13dadbf107
9117820fc0d86b5277a9b5df7521797854fc90d8
bc5da0a10af0249ab05ec82ec173d2569354e5a09e5b48745fdd7c4ce9b830ac
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Apr 2023 10:15:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=89cs0dpie1df&aqid=Kxw9ZOHcDpLSygXUjYLIBA&pbt=bs&adbx=280&adby=169&adbh=594&adbw=720&adbah=56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=523105112&csala=72%7C0%7C767%7C231%7C604&lle=0&ifv=1&usr=1
216.58.211.4204 No Content 0 B URL GET HTTP/3 www.google.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=89cs0dpie1df&aqid=Kxw9ZOHcDpLSygXUjYLIBA&pbt=bs&adbx=280&adby=169&adbh=594&adbw=720&adbah=56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=523105112&csala=72%7C0%7C767%7C231%7C604&lle=0&ifv=1&usr=1
IP 216.58.211.4:443
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintED:88:16:3C:FE:E3:0A:31:34:FF:BE:21:B4:92:AA:6F:B9:EA:AA:B5
ValidityTue, 28 Mar 2023 16:47:33 GMT - Tue, 20 Jun 2023 16:47:32 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=89cs0dpie1df&aqid=Kxw9ZOHcDpLSygXUjYLIBA&pbt=bs&adbx=280&adby=169&adbh=594&adbw=720&adbah=56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=523105112&csala=72%7C0%7C767%7C231%7C604&lle=0&ifv=1&usr=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.google.com
Connection: keep-alive
Referer: http://www.broserk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-0wJRQL_DPWM4dmIqMDBydA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
date: Mon, 17 Apr 2023 10:15:09 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: NID=511=vJcVSJlFKT8m9v3u3mR9XTfO74uEb4gF32x8teLS-ET7O8H1A95X2iezCeZhzy_jBF_qXr9O7s4vGvLyLHs9CmYWASHBXvhylaC2T-q3fnf--b_hhMOzOzy-va-YXc2EA2iD0-PnZDfXF1aGL_sgHyh32Mwf1LeExwi7P91MSl4; expires=Tue, 17-Oct-2023 10:15:09 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+826; expires=Wed, 16-Apr-2025 10:15:09 GMT; path=/; domain=.google.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=tlbpqx3qt94c&aqid=Kxw9ZOHcDpLSygXUjYLIBA&pbt=bs&adbx=280&adby=807&adbh=36&adbw=720&adbn=slave-1-1&eawp=partner-dp-teaminternet09_3ph&errv=523105112&csala=4%7C0%7C835%7C231%7C605&lle=0&ifv=1&usr=1
216.58.211.4204 No Content 0 B URL GET HTTP/3 www.google.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=tlbpqx3qt94c&aqid=Kxw9ZOHcDpLSygXUjYLIBA&pbt=bs&adbx=280&adby=807&adbh=36&adbw=720&adbn=slave-1-1&eawp=partner-dp-teaminternet09_3ph&errv=523105112&csala=4%7C0%7C835%7C231%7C605&lle=0&ifv=1&usr=1
IP 216.58.211.4:443
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintED:88:16:3C:FE:E3:0A:31:34:FF:BE:21:B4:92:AA:6F:B9:EA:AA:B5
ValidityTue, 28 Mar 2023 16:47:33 GMT - Tue, 20 Jun 2023 16:47:32 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=tlbpqx3qt94c&aqid=Kxw9ZOHcDpLSygXUjYLIBA&pbt=bs&adbx=280&adby=807&adbh=36&adbw=720&adbn=slave-1-1&eawp=partner-dp-teaminternet09_3ph&errv=523105112&csala=4%7C0%7C835%7C231%7C605&lle=0&ifv=1&usr=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.google.com
Connection: keep-alive
Referer: http://www.broserk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-F9w-3P9do-CbFe2_hjCqqQ' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
date: Mon, 17 Apr 2023 10:15:09 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: NID=511=AsocYVAUq5cL-SWezrFOReIaheVbcxMsvvL1F6ykM4ioSA1fl7GMjI9aGYWOC4k34ZA1r5o0yyu0SQL_vhBQZR6Q_cNVkAKvS4LC50mi-uJFTF3_BTa1O43Dw4B2ifNLT51q7mVZLyOfbS28pCR_uZ-Fgq5U3DT6Q2vXgttAnYs; expires=Tue, 17-Oct-2023 10:15:09 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+110; expires=Wed, 16-Apr-2025 10:15:09 GMT; path=/; domain=.google.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=3qo7i0ob7kh6&aqid=Kxw9ZOHcDpLSygXUjYLIBA&pbt=bv&adbx=280&adby=169&adbh=594&adbw=720&adbah=56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=523105112&csala=72%7C0%7C767%7C231%7C604&lle=0&ifv=1&usr=1
216.58.211.4204 No Content 0 B URL GET HTTP/3 www.google.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=3qo7i0ob7kh6&aqid=Kxw9ZOHcDpLSygXUjYLIBA&pbt=bv&adbx=280&adby=169&adbh=594&adbw=720&adbah=56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=523105112&csala=72%7C0%7C767%7C231%7C604&lle=0&ifv=1&usr=1
IP 216.58.211.4:443
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintED:88:16:3C:FE:E3:0A:31:34:FF:BE:21:B4:92:AA:6F:B9:EA:AA:B5
ValidityTue, 28 Mar 2023 16:47:33 GMT - Tue, 20 Jun 2023 16:47:32 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=3qo7i0ob7kh6&aqid=Kxw9ZOHcDpLSygXUjYLIBA&pbt=bv&adbx=280&adby=169&adbh=594&adbw=720&adbah=56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56%2C56&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=523105112&csala=72%7C0%7C767%7C231%7C604&lle=0&ifv=1&usr=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.google.com
Connection: keep-alive
Referer: http://www.broserk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce--XLd7kObhSAvwjJszfEg2Q' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
date: Mon, 17 Apr 2023 10:15:10 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: NID=511=TboNYSxprmbgl7n44izS_BTnJx5SfV2GOu4jxhdMxGDQDiAE1aqjpHWIw9pVEs0TL8oPJyySpeznfo1aLGBds4BRFEfxHGdwGEZ5TF76zEr2a0BjfjZ_HjBR8b3evlJDZAVyYJ5lfbKIT5XOQ3RR_eeV2xYbP5RrDIY2DgsOzWs; expires=Tue, 17-Oct-2023 10:15:10 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+816; expires=Wed, 16-Apr-2025 10:15:10 GMT; path=/; domain=.google.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=3pknqze8zl8a&aqid=Kxw9ZOHcDpLSygXUjYLIBA&pbt=bv&adbx=280&adby=807&adbh=36&adbw=720&adbn=slave-1-1&eawp=partner-dp-teaminternet09_3ph&errv=523105112&csala=4%7C0%7C835%7C231%7C605&lle=0&ifv=1&usr=1
216.58.211.4204 No Content 0 B URL GET HTTP/3 www.google.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=3pknqze8zl8a&aqid=Kxw9ZOHcDpLSygXUjYLIBA&pbt=bv&adbx=280&adby=807&adbh=36&adbw=720&adbn=slave-1-1&eawp=partner-dp-teaminternet09_3ph&errv=523105112&csala=4%7C0%7C835%7C231%7C605&lle=0&ifv=1&usr=1
IP 216.58.211.4:443
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintED:88:16:3C:FE:E3:0A:31:34:FF:BE:21:B4:92:AA:6F:B9:EA:AA:B5
ValidityTue, 28 Mar 2023 16:47:33 GMT - Tue, 20 Jun 2023 16:47:32 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=3pknqze8zl8a&aqid=Kxw9ZOHcDpLSygXUjYLIBA&pbt=bv&adbx=280&adby=807&adbh=36&adbw=720&adbn=slave-1-1&eawp=partner-dp-teaminternet09_3ph&errv=523105112&csala=4%7C0%7C835%7C231%7C605&lle=0&ifv=1&usr=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.google.com
Connection: keep-alive
Referer: http://www.broserk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-eNRGIB4yXzBZ5lmP9G_5Ig' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
date: Mon, 17 Apr 2023 10:15:10 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: NID=511=dfBJwpDi3wqW6WmxkmbK_XXOjKugKl2_SrU8zyzztLKTHV3PIXajMwe3KrYWQsHDslEDAUcW9uaYv8fonBgIrrd160sJU_UWGLPm3xZkM1A8MbETZ4AKNMH4Bldkk-MIRlzPuV7Dx4HsFS4gM5hpWlVM552m_edj3FgbqfEtUt0; expires=Tue, 17-Oct-2023 10:15:10 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+586; expires=Wed, 16-Apr-2025 10:15:10 GMT; path=/; domain=.google.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%231967D2
142.250.74.97200 OK 200 B URL GET HTTP/2 afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%231967D2
IP 142.250.74.97:443
Requested by https://www.google.com/afs/ads?pcsa=false&channel=000001&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.broserk.com%2F%3Fcaf&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2744431292869648&oe=UTF-8&ie=UTF-8&fexp=21404&format=r10%7Cs&nocache=6281681726618277&num=0&output=afd_ads&domain_name=www.broserk.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1681726618282&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=329&frm=0&cl=523105112&uio=--&cont=tc_holder1&jsid=caf&jsv=523105112&rurl=http%3A%2F%2Fwww.broserk.com%2F&adbw=slave-1-1%3A720%2Cmaster-1%3A720
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintD6:E1:72:BF:8B:94:81:F5:A1:9B:A7:B6:5B:FD:B8:A5:CA:2B:E5:FD
ValidityTue, 28 Mar 2023 16:54:33 GMT - Tue, 20 Jun 2023 16:54:32 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash c2f9f9b2de7be29dbdd2a707760bd8d7
3c1ca2c1f77ab056138e753c2633d807036b601b
9425ae6c4f167f3464382a52467482368a5fa21c246a0deffa13f3293db7ec80
GET /ad_icons/standard/publisher_icon_image/chevron.svg?c=%231967D2 HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 174
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
date: Sun, 16 Apr 2023 17:07:28 GMT
expires: Mon, 17 Apr 2023 16:07:28 GMT
cache-control: public, max-age=82800
age: 61660
last-modified: Thu, 22 Oct 2020 21:45:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.broserk.com/favicon.ico
0.0.0.0 0 B URL GET www.broserk.com/favicon.ico
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: www.broserk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.broserk.com/
Pragma: no-cache
Cache-Control: no-cache