302 Found 58 B URL User Request GET HTTP/1.1 IP
File type HTML document, ASCII text
Hash 7b0f88d821396a08fdd5bd77df5eb20e
4ebdb373d6644e09e873ccd3e469875d7930ebe3
010db8ee1f834832657ddc47ea5bccf5789d4fbad9fea59a8dad1b8329a2b8ab
NIDS Severity Alert suricata low ET INFO Namecheap URL Forward
suricata low ET INFO Namecheap URL Forward
GET / HTTP/1.1
Host: thetesler2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Tue, 05 Dec 2023 14:59:12 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 58
Connection: keep-alive
Location: http://www.thetesler2.com/?from=%40
X-Served-By: Namecheap URL Forward
Server: namecheap-nginx
www.thetesler2.com/?from=%40
7.2 kB URL User Request GET www.thetesler2.com/?from=%40
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10825)
Hash 9f83df0f0d88a8f93356f3436fe700f3
7bf3d026c1e384e6801aace4333141a143f2df49
507f91a52ebe122fec03e44c3d3921f740e675b37f237eccc3960443c265d47e
GET /?from=%40 HTTP/1.1
Host: www.thetesler2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Tue, 05 Dec 2023 14:59:12 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
vary: Accept-Encoding
x-powered-by: PHP/8.1.17
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANnylWw2vLY4hUn9w06zQKbhKBfvjFUCsdFlb6TdQhxb9RXWXuI4t31c+o8fYOv/s8q1LGPga3DE1L/tHU4LENMCAwEAAQ==_sd/jhwBCGZ6KPM/slpMmuOb6sW86VR7v+r48l2Kg3pEyUFo6PwhcSj5Rk3cJ6ZfINxB/fq/o1JAwE87DW3LzAw==
last-modified: Tue, 05 Dec 2023 14:59:12 GMT
x-cache-miss-from: parking-698fb476bf-xqxcz
server: NginX
content-encoding: gzip
302 Found 58 B URL User Request GET HTTP/1.1 IP
File type HTML document, ASCII text
Hash 7b0f88d821396a08fdd5bd77df5eb20e
4ebdb373d6644e09e873ccd3e469875d7930ebe3
010db8ee1f834832657ddc47ea5bccf5789d4fbad9fea59a8dad1b8329a2b8ab
NIDS Severity Alert suricata low ET INFO Namecheap URL Forward
suricata low ET INFO Namecheap URL Forward
GET / HTTP/1.1
Host: thetesler2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Tue, 05 Dec 2023 14:59:12 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 58
Connection: keep-alive
Location: http://www.thetesler2.com/?from=%40
X-Served-By: Namecheap URL Forward
Server: namecheap-nginx
www.thetesler2.com/?from=%40
7.2 kB URL User Request GET www.thetesler2.com/?from=%40
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10825)
Hash 7ce3232031c66911af794ef7ab6e276a
ca4307de5863cf5d6c0bfec8b5f7ad18058af84e
8d072b8bf4ca0613c33f9b2ef9ff9476206d9d2ed0e904078b34041aa9e71771
GET /?from=%40 HTTP/1.1
Host: www.thetesler2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Tue, 05 Dec 2023 14:59:14 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
vary: Accept-Encoding
x-powered-by: PHP/8.1.17
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANnylWw2vLY4hUn9w06zQKbhKBfvjFUCsdFlb6TdQhxb9RXWXuI4t31c+o8fYOv/s8q1LGPga3DE1L/tHU4LENMCAwEAAQ==_sd/jhwBCGZ6KPM/slpMmuOb6sW86VR7v+r48l2Kg3pEyUFo6PwhcSj5Rk3cJ6ZfINxB/fq/o1JAwE87DW3LzAw==
last-modified: Tue, 05 Dec 2023 14:59:14 GMT
x-cache-miss-from: parking-698fb476bf-6x2qm
server: NginX
content-encoding: gzip
img.sedoparking.com/templates/bg/arrows-curved.png
200 OK 14 kB URL GET HTTP/1.1 img.sedoparking.com/templates/bg/arrows-curved.png
IP
Requested by http://www.thetesler2.com/?from=%40
File type PNG image data, 413 x 594, 8-bit/color RGBA, non-interlaced\012- data
Hash 107694ee1e94990d97b7e58651ffd6a0
7dd9ae7badf78be01ea0623df1e90171348716ff
7aa2a3e9a9575a27f5593c3b0357423128c468a46ed20d284ce5a21555ee67bc
GET /templates/bg/arrows-curved.png HTTP/1.1
Host: img.sedoparking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.thetesler2.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 14:59:14 GMT
Content-Type: image/png
Content-Length: 13502
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=604800
Expires: Tue, 12 Dec 2023 14:59:14 GMT
X-CFHash: "107694ee1e94990d97b7e58651ffd6a0"
X-CFF: B
Last-Modified: Tue, 12 Oct 2021 05:19:02 GMT
X-CF3: H
CF4Age: 45332
x-cf-tsc: 1701587647
CF4ttl: 31490668.000
X-CF2: H
Server: CFS 1124
X-CF-ReqID: b613291d3d383ed6153cc154adbd1594
X-CF1: 11696:fC.arn1:cf:cacheN.arn1-01:H
Accept-Ranges: bytes
img.sedoparking.com/templates/images/hero_nc.svg
200 OK 20 kB URL GET HTTP/2 img.sedoparking.com/templates/images/hero_nc.svg
IP
Requested by http://www.thetesler2.com/?from=%40
Certificate IssuerGlobalSign nv-sa
Subject*.cachefly.net
Fingerprint0F:4E:B2:D7:96:B9:94:D0:35:66:76:6C:4B:16:18:49:DE:42:80:71
ValidityMon, 13 Nov 2023 19:46:02 GMT - Sat, 14 Dec 2024 19:46:01 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1738)
Hash 5a2c392e7acdf6e9de6e00129500503c
c8d0f80381e4ce180b5eb3c4c98539907292a7bb
878da09a057ec8f1775cdc522e5f7ec44966df547a87a9c29826ba114833c24b
GET /templates/images/hero_nc.svg HTTP/1.1
Host: img.sedoparking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.thetesler2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 14:59:14 GMT
content-type: image/svg+xml
content-length: 20346
access-control-allow-origin: *
x-cff: B
last-modified: Thu, 05 Oct 2023 09:16:15 GMT
vary: Accept-Encoding
x-cf3: H
cf4age: 1983
x-cf-tsc: 1701544285
cf4ttl: 31534016.000
content-encoding: gzip
x-cf2: H
accept-ranges: bytes
server: CFS 1124
x-cf-reqid: af5dcda04b5ee1300787cc711605c150
x-cf1: 11696:fC.arn1:nom:cacheN.arn1-01:M
X-Firefox-Spdy: h2
www.google.com/adsense/domains/caf.js
200 OK 54 kB URL GET HTTP/3 www.google.com/adsense/domains/caf.js
IP
Requested by https://www.google.com/afs/ads?adsafe=low&adtest=off&psid=3259787283&channel=exp-0051%2Cauxa-control-1%2C44786252&client=dp-sedo85_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.thetesler2.com%2Fcaf%2F%3Fses%3DY3JlPTE3MDE3ODgzNTQmdGNpZD13d3cudGhldGVzbGVyMi5jb202NTZmM2FjMjdkMTY1Ny41MjAzNjUxMiZ0YXNrPXNlYXJjaCZkb21haW49dGhldGVzbGVyMi5jb20mYV9pZD0zJnNlc3Npb249akRESEpCa0RFZ2F0WFJXZ2dfYzQ%3D&type=3&uiopt=false&swp=as-drid-2280784292183247&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301157&format=r3%7Cs&nocache=9981701788360735&num=0&output=afd_ads&domain_name=www.thetesler2.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1701788360742&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=1146&frm=0&cl=579967862&uio=--&cont=rb-default&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Fwww.thetesler2.com%2F%3Ffrom%3D%2540
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with very long lines (1888)
Hash 8a76c49bbeb49fa874cb415fe2b10d0c
76de9796dbe01e64d77fccd00d0b19cf382493b8
a1f85a8b9c0ae7e01a01780b44c447ebbadb5d856c6ff826e2cd9fe19f15135f
GET /adsense/domains/caf.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.thetesler2.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Type: text/javascript; charset=UTF-8
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="ads-afs-ui"
Report-To: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
Date: Tue, 05 Dec 2023 14:59:14 GMT
Expires: Tue, 05 Dec 2023 14:59:14 GMT
Cache-Control: private, max-age=3600
ETag: "3100330882123301848"
X-Content-Type-Options: nosniff
Link: <https://www.adsensecustomsearchads.com>; rel="preconnect"
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: sffe
X-XSS-Protection: 0
www.thetesler2.com/search/tsc.php?200=NTM5Nzc4MjEz&21=OTEuOTAuNDIuMTU0&681=MTcwMTc4ODM1NDA1ODc4ZDZmNTZhMmVjZGJhYTQyZDQ3MjQyNTg3ZTVh&crc=f1d9fcf1ac154330a851093560023a253d137525&cv=1
200 OK 0 B URL GET HTTP/1.1 www.thetesler2.com/search/tsc.php?200=NTM5Nzc4MjEz&21=OTEuOTAuNDIuMTU0&681=MTcwMTc4ODM1NDA1ODc4ZDZmNTZhMmVjZGJhYTQyZDQ3MjQyNTg3ZTVh&crc=f1d9fcf1ac154330a851093560023a253d137525&cv=1
IP
Requested by http://www.thetesler2.com/?from=%40
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /search/tsc.php?200=NTM5Nzc4MjEz&21=OTEuOTAuNDIuMTU0&681=MTcwMTc4ODM1NDA1ODc4ZDZmNTZhMmVjZGJhYTQyZDQ3MjQyNTg3ZTVh&crc=f1d9fcf1ac154330a851093560023a253d137525&cv=1 HTTP/1.1
Host: www.thetesler2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.thetesler2.com/?from=%40
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Tue, 05 Dec 2023 14:59:14 GMT
content-type: text/html; charset=UTF-8
content-length: 0
x-powered-by: PHP/8.1.17
x-cache-miss-from: parking-698fb476bf-xftqn
server: NginX
img.sedoparking.com/templates/logos/sedo_logo.png
200 OK 15 kB URL GET HTTP/1.1 img.sedoparking.com/templates/logos/sedo_logo.png
IP
Requested by http://www.thetesler2.com/?from=%40
File type MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash def00c11b1596db4efee6a9fbe64fc27
bd298981e6d8d7e4ffa18abcf687041f4246672d
95c427fa3143b1896faf42a6406686ce7602cb39052081bb32d12b51c9e047e4
GET /templates/logos/sedo_logo.png HTTP/1.1
Host: img.sedoparking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.thetesler2.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 14:59:14 GMT
Content-Type: image/png
Content-Length: 15086
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=604800
Expires: Tue, 12 Dec 2023 14:59:14 GMT
X-CFHash: "def00c11b1596db4efee6a9fbe64fc27"
X-CFF: B
Last-Modified: Mon, 11 Jan 2021 07:44:34 GMT
X-CF3: H
CF4Age: 2436
x-cf-tsc: 1701545420
CF4ttl: 31533564.000
X-CF2: H
Server: CFS 1124
X-CF-ReqID: 0384db1d25b53330c6be3197ff4ed0c2
X-CF1: 11696:fC.arn1:cf:cacheN.arn1-01:H
Accept-Ranges: bytes
www.google.com/afs/ads/i/iframe.html
200 OK 727 B URL GET HTTP/2 www.google.com/afs/ads/i/iframe.html
IP
Requested by http://www.thetesler2.com/?from=%40
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintB0:8E:97:10:7E:30:90:F6:42:A1:32:63:5C:78:27:D3:A8:F1:05:D1
ValidityMon, 23 Oct 2023 11:24:57 GMT - Mon, 15 Jan 2024 11:24:56 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1559)
Hash d00d874b0a82f4f62b54cd06e1b0126c
c1b6f29a41af8e30ee3e8b74112407d73f585da4
1be98ab1b9b6a644a248b28d8045e3973413b985e3c08891ed96f4614e65112c
GET /afs/ads/i/iframe.html HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.thetesler2.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/html
content-security-policy: script-src 'nonce-0K1b1RlnHtY-KYCJvSIARw' 'report-sample' 'strict-dynamic' 'unsafe-eval' 'unsafe-inline' http: https:; object-src 'none'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui; base-uri 'none'
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
content-length: 727
date: Tue, 05 Dec 2023 14:59:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
last-modified: Tue, 14 Nov 2023 07:00:00 GMT
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/afs/ads?adsafe=low&adtest=off&psid=3259787283&channel=exp-0051%2Cauxa-control-1%2C44786252&client=dp-sedo85_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.thetesler2.com%2Fcaf%2F%3Fses%3DY3JlPTE3MDE3ODgzNTQmdGNpZD13d3cudGhldGVzbGVyMi5jb202NTZmM2FjMjdkMTY1Ny41MjAzNjUxMiZ0YXNrPXNlYXJjaCZkb21haW49dGhldGVzbGVyMi5jb20mYV9pZD0zJnNlc3Npb249akRESEpCa0RFZ2F0WFJXZ2dfYzQ%3D&type=3&uiopt=false&swp=as-drid-2280784292183247&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301157&format=r3%7Cs&nocache=9981701788360735&num=0&output=afd_ads&domain_name=www.thetesler2.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1701788360742&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=1146&frm=0&cl=579967862&uio=--&cont=rb-default&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Fwww.thetesler2.com%2F%3Ffrom%3D%2540
200 OK 2.9 kB URL GET HTTP/2 www.google.com/afs/ads?adsafe=low&adtest=off&psid=3259787283&channel=exp-0051%2Cauxa-control-1%2C44786252&client=dp-sedo85_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.thetesler2.com%2Fcaf%2F%3Fses%3DY3JlPTE3MDE3ODgzNTQmdGNpZD13d3cudGhldGVzbGVyMi5jb202NTZmM2FjMjdkMTY1Ny41MjAzNjUxMiZ0YXNrPXNlYXJjaCZkb21haW49dGhldGVzbGVyMi5jb20mYV9pZD0zJnNlc3Npb249akRESEpCa0RFZ2F0WFJXZ2dfYzQ%3D&type=3&uiopt=false&swp=as-drid-2280784292183247&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301157&format=r3%7Cs&nocache=9981701788360735&num=0&output=afd_ads&domain_name=www.thetesler2.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1701788360742&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=1146&frm=0&cl=579967862&uio=--&cont=rb-default&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Fwww.thetesler2.com%2F%3Ffrom%3D%2540
IP
Requested by http://www.thetesler2.com/?from=%40
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintB0:8E:97:10:7E:30:90:F6:42:A1:32:63:5C:78:27:D3:A8:F1:05:D1
ValidityMon, 23 Oct 2023 11:24:57 GMT - Mon, 15 Jan 2024 11:24:56 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (13688)
Hash 12fcd3107ef491928640f0dd20c0a6f8
9c15ca49798018efcb1b9be825a51c9f560cb22d
aa0fcd3ac70a0f9616520d9bfbccde28c86026099650ab900575c832bd56735a
GET /afs/ads?adsafe=low&adtest=off&psid=3259787283&channel=exp-0051%2Cauxa-control-1%2C44786252&client=dp-sedo85_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.thetesler2.com%2Fcaf%2F%3Fses%3DY3JlPTE3MDE3ODgzNTQmdGNpZD13d3cudGhldGVzbGVyMi5jb202NTZmM2FjMjdkMTY1Ny41MjAzNjUxMiZ0YXNrPXNlYXJjaCZkb21haW49dGhldGVzbGVyMi5jb20mYV9pZD0zJnNlc3Npb249akRESEpCa0RFZ2F0WFJXZ2dfYzQ%3D&type=3&uiopt=false&swp=as-drid-2280784292183247&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301157&format=r3%7Cs&nocache=9981701788360735&num=0&output=afd_ads&domain_name=www.thetesler2.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1701788360742&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=1146&frm=0&cl=579967862&uio=--&cont=rb-default&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Fwww.thetesler2.com%2F%3Ffrom%3D%2540 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.thetesler2.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-disposition: inline
date: Tue, 05 Dec 2023 14:59:14 GMT
expires: Tue, 05 Dec 2023 14:59:14 GMT
cache-control: private, max-age=3600
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-iGOkxWQzTjzDuZGp5Lah7w' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
content-encoding: br
server: gws
content-length: 2903
x-xss-protection: 0
set-cookie: CONSENT=PENDING+398; expires=Thu, 04-Dec-2025 14:59:14 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff
200 OK 174 B URL GET HTTP/2 afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff
IP
Requested by https://www.google.com/afs/ads?adsafe=low&adtest=off&psid=3259787283&channel=exp-0051%2Cauxa-control-1%2C44786252&client=dp-sedo85_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.thetesler2.com%2Fcaf%2F%3Fses%3DY3JlPTE3MDE3ODgzNTQmdGNpZD13d3cudGhldGVzbGVyMi5jb202NTZmM2FjMjdkMTY1Ny41MjAzNjUxMiZ0YXNrPXNlYXJjaCZkb21haW49dGhldGVzbGVyMi5jb20mYV9pZD0zJnNlc3Npb249akRESEpCa0RFZ2F0WFJXZ2dfYzQ%3D&type=3&uiopt=false&swp=as-drid-2280784292183247&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301157&format=r3%7Cs&nocache=9981701788360735&num=0&output=afd_ads&domain_name=www.thetesler2.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1701788360742&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=1146&frm=0&cl=579967862&uio=--&cont=rb-default&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Fwww.thetesler2.com%2F%3Ffrom%3D%2540
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE
ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash 11b3089d616633ca6b73b57aa877eeb4
07632f63e06b30d9b63c97177d3a8122629bda9b
809fb4619d2a2f1a85dbda8cc69a7f1659215212d708a098d62150eee57070c1
GET /ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 174
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 01:15:24 GMT
expires: Wed, 06 Dec 2023 00:15:24 GMT
cache-control: public, max-age=82800
last-modified: Thu, 02 Nov 2023 22:48:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
age: 49431
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%231967d2
200 OK 272 B URL GET HTTP/2 afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%231967d2
IP
Requested by https://www.google.com/afs/ads?adsafe=low&adtest=off&psid=3259787283&channel=exp-0051%2Cauxa-control-1%2C44786252&client=dp-sedo85_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fwww.thetesler2.com%2Fcaf%2F%3Fses%3DY3JlPTE3MDE3ODgzNTQmdGNpZD13d3cudGhldGVzbGVyMi5jb202NTZmM2FjMjdkMTY1Ny41MjAzNjUxMiZ0YXNrPXNlYXJjaCZkb21haW49dGhldGVzbGVyMi5jb20mYV9pZD0zJnNlc3Npb249akRESEpCa0RFZ2F0WFJXZ2dfYzQ%3D&type=3&uiopt=false&swp=as-drid-2280784292183247&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301157&format=r3%7Cs&nocache=9981701788360735&num=0&output=afd_ads&domain_name=www.thetesler2.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1701788360742&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=1146&frm=0&cl=579967862&uio=--&cont=rb-default&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Fwww.thetesler2.com%2F%3Ffrom%3D%2540
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE
ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (390)
Hash a6ad6e65373db8c1b1f154c4c83f8ce5
84cc007d6d682c589e1e1f87482a5278830f3000
920a378947204498c122722933b3a4b67788a2b6fade8bd0d47cf830eeee0563
GET /ad_icons/standard/publisher_icon_image/search.svg?c=%231967d2 HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 272
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 04 Dec 2023 20:35:32 GMT
expires: Tue, 05 Dec 2023 19:35:32 GMT
cache-control: public, max-age=82800
last-modified: Thu, 20 Jul 2023 22:48:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
age: 66223
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=iuhlrzxh43hv&aqid=wjpvZabdPKylovsPhMaCkAg&psid=3259787283&pbt=bs&adbx=392&adby=413.04998779296875&adbh=553&adbw=496&adbah=178%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=16%7C0%7C232%7C170%7C43&lle=0&ifv=1&hpt=0
204 No Content 0 B URL GET HTTP/3 www.google.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=iuhlrzxh43hv&aqid=wjpvZabdPKylovsPhMaCkAg&psid=3259787283&pbt=bs&adbx=392&adby=413.04998779296875&adbh=553&adbw=496&adbah=178%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=16%7C0%7C232%7C170%7C43&lle=0&ifv=1&hpt=0
IP
Requested by http://www.thetesler2.com/?from=%40
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=iuhlrzxh43hv&aqid=wjpvZabdPKylovsPhMaCkAg&psid=3259787283&pbt=bs&adbx=392&adby=413.04998779296875&adbh=553&adbw=496&adbah=178%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=16%7C0%7C232%7C170%7C43&lle=0&ifv=1&hpt=0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.thetesler2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-iCZO-LxJSToUDU1C5A07xA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
date: Tue, 05 Dec 2023 14:59:16 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: NID=511=muYrl25PGFHbim5s2DNBytz1kJauDdx0K3-NYhT_fVs6-4JNcEavE1L8jtQJlQN791sLcq8SnnysgqKWEHvvGTZuXaSApnL_OEQAuQS4vxaZSLSngtP7Xb9q3QhdJaA47IgJcFHNOMSfxHvKF-2gv8U3rCwyLrFVcqG-v-cAp5E; expires=Wed, 05-Jun-2024 14:59:16 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+028; expires=Thu, 04-Dec-2025 14:59:16 GMT; path=/; domain=.google.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=h7d5b51foj1n&aqid=wjpvZabdPKylovsPhMaCkAg&pbt=bs&adbx=490&adby=986.0499877929688&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=6%7C0%7C242%7C170%7C44&lle=0&ifv=1&hpt=0
204 No Content 0 B URL GET HTTP/3 www.google.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=h7d5b51foj1n&aqid=wjpvZabdPKylovsPhMaCkAg&pbt=bs&adbx=490&adby=986.0499877929688&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=6%7C0%7C242%7C170%7C44&lle=0&ifv=1&hpt=0
IP
Requested by http://www.thetesler2.com/?from=%40
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=h7d5b51foj1n&aqid=wjpvZabdPKylovsPhMaCkAg&pbt=bs&adbx=490&adby=986.0499877929688&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=6%7C0%7C242%7C170%7C44&lle=0&ifv=1&hpt=0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.thetesler2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-1KIWqE3zZdqrOjwX6QqK8Q' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
date: Tue, 05 Dec 2023 14:59:16 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: NID=511=iNT1oL1LnwwtNvdJRFdUsEH6hGKRxAvvRdLrpC-sxgaWgxP8USMgK8keFzvvbn69JNXAgT3ty2zVsOxRbvNJ8h7RuWkGRntMw7xGUi61aZgcgFv5vDUa2Vx1SkApUe30-5owFJXbHsCnuIIjTlE1wc6sstiL-ayLrm-wzPPnNNA; expires=Wed, 05-Jun-2024 14:59:16 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+423; expires=Thu, 04-Dec-2025 14:59:16 GMT; path=/; domain=.google.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=hs58krlg6nw3&aqid=wjpvZabdPKylovsPhMaCkAg&pbt=bv&adbx=490&adby=986.0499877929688&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=6%7C0%7C242%7C170%7C44&lle=0&ifv=1&hpt=0
204 No Content 0 B URL GET HTTP/3 www.google.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=hs58krlg6nw3&aqid=wjpvZabdPKylovsPhMaCkAg&pbt=bv&adbx=490&adby=986.0499877929688&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=6%7C0%7C242%7C170%7C44&lle=0&ifv=1&hpt=0
IP
Requested by http://www.thetesler2.com/?from=%40
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=hs58krlg6nw3&aqid=wjpvZabdPKylovsPhMaCkAg&pbt=bv&adbx=490&adby=986.0499877929688&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=6%7C0%7C242%7C170%7C44&lle=0&ifv=1&hpt=0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.thetesler2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-1MWu-9u7ENlxQdDIkKEjMQ' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
date: Tue, 05 Dec 2023 14:59:17 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: NID=511=cvBRXHgEZmWiZPouorU_05yOsZRqV0lDAfPOLQsLS66RSENKv9pbyGxHiyrdNV8RzKQOMhvrxcbYl2acrHKHCLSrHCTKemyZgeJxv4vxigTCXNiG_0L58wjzYM4U4s32plX76yBAWbDdYEsOstPWAiL98sBW2SVMOPTXLAQ4aEg; expires=Wed, 05-Jun-2024 14:59:17 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+541; expires=Thu, 04-Dec-2025 14:59:17 GMT; path=/; domain=.google.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=vb9hv1ienhno&aqid=wjpvZabdPKylovsPhMaCkAg&psid=3259787283&pbt=bv&adbx=392&adby=413.04998779296875&adbh=553&adbw=496&adbah=178%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=16%7C0%7C232%7C170%7C43&lle=0&ifv=1&hpt=0
204 No Content 0 B URL GET HTTP/3 www.google.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=vb9hv1ienhno&aqid=wjpvZabdPKylovsPhMaCkAg&psid=3259787283&pbt=bv&adbx=392&adby=413.04998779296875&adbh=553&adbw=496&adbah=178%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=16%7C0%7C232%7C170%7C43&lle=0&ifv=1&hpt=0
IP
Requested by http://www.thetesler2.com/?from=%40
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=vb9hv1ienhno&aqid=wjpvZabdPKylovsPhMaCkAg&psid=3259787283&pbt=bv&adbx=392&adby=413.04998779296875&adbh=553&adbw=496&adbah=178%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo85_3ph&errv=579967862&csala=16%7C0%7C232%7C170%7C43&lle=0&ifv=1&hpt=0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.thetesler2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-GbVuL_zdh0cD_JAEZUp2lg' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
date: Tue, 05 Dec 2023 14:59:17 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: NID=511=m3AtINgsK6ARq2umklHmfV43eXYHejkIpJoBVqz51iWi-Zqav0i2E5QGMt33h3dapOzNL5HOVqGjk9sSs6yAbnO3q1Y_SJkUfPID1hahZqo7I6uArzYCHc1MTzAEubRrK3QM2FlJy9mvkRPjt6Bb75fex9NiqsGP19XJ_qFpeG4; expires=Wed, 05-Jun-2024 14:59:17 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+447; expires=Thu, 04-Dec-2025 14:59:17 GMT; path=/; domain=.google.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
162.255.119.154
91.195.240.19