urlscan.io logo urlscan.io
SecurityTrails logo

qooh.me Open in urlscan Pro
188.114.97.3  Public Scan

Go To Rescan Add Verdict Report
URL: http://qooh.me/plainperu01
Submission: On July 06 via manual from PL — Scanned from GE
 Behaviour Indicators
Similar DOM Content API
Verdicts

Summary

This website contacted 8 IPs in 2 countries across 6 domains to perform 34 HTTP transactions. The main IP is 188.114.97.3, located in Amsterdam, Netherlands and belongs to CLOUDFLARENET, US. The main domain is qooh.me.
This is the only time qooh.me was scanned on urlscan.io!

urlscan.io Verdict: No classification

Domain & IP information

IP Address AS Autonomous System
13 188.114.97.3 13335 (CLOUDFLAR...)
7 142.250.74.194 15169 (GOOGLE)
2 172.217.16.206 15169 (GOOGLE)
1 172.217.16.194 15169 (GOOGLE)
2 142.250.186.34 15169 (GOOGLE)
5 142.250.185.226 15169 (GOOGLE)
3 142.250.186.161 15169 (GOOGLE)
1 172.217.16.196 15169 (GOOGLE)
34 8
13    188.114.97.3 (Amsterdam, Netherlands)

ASN13335 (CLOUDFLARENET, US)
qooh.me
7    142.250.74.194 (Staten Island, United States)

ASN15169 (GOOGLE, US)
PTR: fra24s02-in-f2.1e100.net
pagead2.googlesyndication.com
2    172.217.16.206 (United States)

ASN15169 (GOOGLE, US)
PTR: fra16s08-in-f14.1e100.net
www.google-analytics.com
1    172.217.16.194 (United States)

ASN15169 (GOOGLE, US)
PTR: fra16s08-in-f194.1e100.net
partner.googleadservices.com
2    142.250.186.34 (United States)

ASN15169 (GOOGLE, US)
PTR: fra24s04-in-f2.1e100.net
adservice.google.com
5    142.250.185.226 (United States)

ASN15169 (GOOGLE, US)
PTR: fra16s53-in-f2.1e100.net
googleads.g.doubleclick.net
3    142.250.186.161 (United States)

ASN15169 (GOOGLE, US)
PTR: fra24s08-in-f1.1e100.net
tpc.googlesyndication.com
1    172.217.16.196 (United States)

ASN15169 (GOOGLE, US)
PTR: fra16s65-in-f4.1e100.net
www.google.com
Apex Domain
Subdomains		 Transfer
13 qooh.me
qooh.me
85 KB
10 googlesyndication.com
pagead2.googlesyndication.com — Cisco Umbrella Rank: 135
tpc.googlesyndication.com — Cisco Umbrella Rank: 160
236 KB
5 doubleclick.net
googleads.g.doubleclick.net — Cisco Umbrella Rank: 57
11 KB
3 google.com
adservice.google.com — Cisco Umbrella Rank: 113
www.google.com — Cisco Umbrella Rank: 10
2 KB
2 google-analytics.com
www.google-analytics.com — Cisco Umbrella Rank: 63
17 KB
1 googleadservices.com
partner.googleadservices.com — Cisco Umbrella Rank: 1129
600 B
34 6
Domain Requested by
13 qooh.me qooh.me
7 pagead2.googlesyndication.com qooh.me
pagead2.googlesyndication.com
tpc.googlesyndication.com
5 googleads.g.doubleclick.net pagead2.googlesyndication.com
3 tpc.googlesyndication.com pagead2.googlesyndication.com
tpc.googlesyndication.com
2 adservice.google.com pagead2.googlesyndication.com
2 www.google-analytics.com qooh.me
1 www.google.com tpc.googlesyndication.com
1 partner.googleadservices.com pagead2.googlesyndication.com
34 8

This site contains links to these domains. Also see Links.

Domain
ofertyn.pl
Subject Issuer Validity Valid
*.g.doubleclick.net
GTS CA 1C3		 2023-06-19 -
2023-09-11		 3 months crt.sh
*.googleadservices.com
GTS CA 1C3		 2023-06-19 -
2023-09-11		 3 months crt.sh
*.google.com
GTS CA 1C3		 2023-06-19 -
2023-09-11		 3 months crt.sh
tpc.googlesyndication.com
GTS CA 1C3		 2023-06-19 -
2023-09-11		 3 months crt.sh
www.google.com
GTS CA 1C3		 2023-06-19 -
2023-09-11		 3 months crt.sh

This page contains 8 frames:

Primary Page: http://qooh.me/plainperu01
Frame ID: 329B8C53C834BAC6A00E43D426CAB16B
Requests: 24 HTTP requests in this frame

Frame: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1046108362436506&output=html&h=90&slotname=3666114337&adk=1371316831&adf=2765329810&pi=t.ma~as.3666114337&w=728&lmt=1688650041&url=http%3A%2F%2Fqooh.me%2Fplainperu01&wgl=1&dt=1688650041162&bpp=34&bdt=814&idt=455&shv=r20230628&mjsv=m202306290101&ptt=5&saldr=sa&abxe=1&correlator=3296666855891&frm=20&pv=2&ga_vid=227251307.1688650042&ga_sid=1688650042&ga_hid=748056591&ga_fc=0&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&adx=436&ady=120&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075642%2C31075758%2C31075780%2C44788441&oid=2&pvsid=1094071539221835&uas=0&nvt=1&fc=640&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CpeE%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=1&uci=a!1&fsb=1&xpc=tw4X5MiPLL&p=http%3A//qooh.me&dtd=479
Frame ID: 9A4845B3C4D70D143D69D6472AAE4AC2
Requests: 1 HTTP requests in this frame

Frame: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1046108362436506&output=html&h=600&slotname=7328249135&adk=2637415549&adf=564753802&pi=t.ma~as.7328249135&w=160&lmt=1688650041&url=http%3A%2F%2Fqooh.me%2Fplainperu01&wgl=1&dt=1688650041202&bpp=35&bdt=854&idt=450&shv=r20230628&mjsv=m202306290101&ptt=5&saldr=sa&abxe=1&prev_slotnames=3666114337&correlator=3296666855891&frm=20&pv=1&ga_vid=227251307.1688650042&ga_sid=1688650042&ga_hid=748056591&ga_fc=0&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&adx=1003&ady=413&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075642%2C31075758%2C31075780%2C44788441&oid=2&pvsid=1094071539221835&uas=0&nvt=1&fc=640&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=d%7C%7CpeE%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=2&uci=a!2&fsb=1&xpc=gQjOziW5r4&p=http%3A//qooh.me&dtd=474
Frame ID: 9976E94866D1E570E493B338A4AD6EAB
Requests: 1 HTTP requests in this frame

Frame: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1046108362436506&output=html&h=90&slotname=1032866731&adk=713589307&adf=3485994614&pi=t.ma~as.1032866731&w=728&lmt=1688650041&url=http%3A%2F%2Fqooh.me%2Fplainperu01&wgl=1&dt=1688650041245&bpp=13&bdt=897&idt=438&shv=r20230628&mjsv=m202306290101&ptt=5&saldr=sa&abxe=1&prev_slotnames=3666114337%2C7328249135&correlator=3296666855891&frm=20&pv=1&ga_vid=227251307.1688650042&ga_sid=1688650042&ga_hid=748056591&ga_fc=0&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&adx=436&ady=1107&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075642%2C31075758%2C31075780%2C44788441&oid=2&pvsid=1094071539221835&uas=0&nvt=1&fc=640&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CpeE%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=3&uci=a!3&fsb=1&xpc=os5IHVMa75&p=http%3A//qooh.me&dtd=450
Frame ID: 239AA52DBFB6547E6DEA8E5C90F57A3E
Requests: 1 HTTP requests in this frame

Frame: https://googleads.g.doubleclick.net/pagead/html/r20230628/r20190131/zrt_lookup.html
Frame ID: DF59BC5C589E7E310E0300FD4EF188C0
Requests: 1 HTTP requests in this frame

Frame: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1046108362436506&output=html&adk=1812271804&adf=3025194257&lmt=1688650042&plat=9%3A32776%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32%2C42%3A32&plas=404x945_l%7C404x945_r&format=0x0&url=http%3A%2F%2Fqooh.me%2Fplainperu01&ea=0&pra=7&wgl=1&dt=1688650042604&bpp=4&bdt=2256&idt=4&shv=r20230628&mjsv=m202306290101&ptt=9&saldr=aa&abxe=1&cookie=ID%3Dc5a7928d4f51854c-227344fe86e20085%3AT%3D1688650041%3ART%3D1688650041%3AS%3DALNI_Mbuja_4dtS1QrPJ2U1ypY-PKbpbmw&gpic=UID%3D00000c374f2d2a48%3AT%3D1688650041%3ART%3D1688650041%3AS%3DALNI_MZjpG9MLNhJE5UwA_khFeZZKrz_fw&prev_slotnames=3666114337%2C7328249135%2C1032866731&nras=1&correlator=3296666855891&frm=20&pv=1&ga_vid=227251307.1688650042&ga_sid=1688650042&ga_hid=748056591&ga_fc=0&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&adx=-12245933&ady=-12245933&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075642%2C31075758%2C31075780%2C44788441&oid=2&pvsid=1094071539221835&tmod=1213356672&uas=0&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7Cs%7C&abl=NS&alvm=m202306280101&fu=32768&bc=23&ifi=4&uci=a!4&fsb=1&dtd=39
Frame ID: D39941BB82A1009C65FBCC4FC7AEA36B
Requests: 1 HTTP requests in this frame

Frame: https://tpc.googlesyndication.com/sodar/sodar2/225/runner.html
Frame ID: A77077BF7698B426A99B703331986F0A
Requests: 3 HTTP requests in this frame

Frame: https://www.google.com/recaptcha/api2/aframe
Frame ID: C4915D58C5814A7A1EFCA6C45FA8B107
Requests: 2 HTTP requests in this frame

Screenshot
Live screenshot
Full Image

Page Title

Qoohme

Detected technologies

Overall confidence: 100%
Detected patterns
  • googlesyndication\.com/pagead/show_ads\.js
Overall confidence: 100%
Detected patterns
  • googlesyndication\.com/
Overall confidence: 100%
Detected patterns
  • google-analytics\.com/(?:ga|urchin|analytics)\.js
Overall confidence: 100%
Detected patterns
  • jquery[.-]([\d.]*\d)[^/]*\.js
  • jquery.*\.js(?:\?ver(?:sion)?=([\d.]+))?

Page Statistics

34
Requests

56 %
HTTPS

0 %
IPv6

6
Domains

8
Subdomains

8
IPs

2
Countries

351 kB
Transfer

967 kB
Size

9
Cookies

Redirected requests

There were HTTP redirect chains for the following requests:

Request Chain 14
  • http://www.google-analytics.com/ga.js HTTP 307
  • https://www.google-analytics.com/ga.js
Request Chain 20
  • http://www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=2036480141&utmhn=qooh.me&utmcs=UTF-8&utmsr=1600x1200&utmvp=1600x1200&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Qoohme&utmhid=748056591&utmr=-&utmp=%2Fplainperu01&utmht=1688650041810&utmac=UA-23732945-1&utmcc=__utma%3D3998191.1362447615.1688650042.1688650042.1688650042.1%3B%2B__utmz%3D3998191.1688650042.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1714057685&utmredir=1&utmu=qBAAAAAAAAAAAAAAAAAAAAAE~ HTTP 307
  • https://www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=2036480141&utmhn=qooh.me&utmcs=UTF-8&utmsr=1600x1200&utmvp=1600x1200&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Qoohme&utmhid=748056591&utmr=-&utmp=%2Fplainperu01&utmht=1688650041810&utmac=UA-23732945-1&utmcc=__utma%3D3998191.1362447615.1688650042.1688650042.1688650042.1%3B%2B__utmz%3D3998191.1688650042.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1714057685&utmredir=1&utmu=qBAAAAAAAAAAAAAAAAAAAAAE~

34 HTTP transactions

Resource
Path		 Size
x-fer		 Type
MIME-Type
Primary Request plainperu01
qooh.me/ 		12 KB
4 KB 		Document
General
Check archive.org
Download Go to
Full URL
http://qooh.me/plainperu01
Protocol
HTTP/1.1
Server
188.114.97.3 Amsterdam, Netherlands, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare / PHP/5.6.40
Resource Hash
7d30eae8787f7ef172ab10f1bc08e8dcac7bec1d5d3a74737a01da7672e34784

Request headers

Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
accept-language
ka-GE,ka;q=0.9

Response headers

CF-Cache-Status
DYNAMIC
CF-RAY
7e282f3cabec2dcb-TBS
Cache-Control
no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection
keep-alive
Content-Encoding
gzip
Content-Type
text/html; charset=UTF-8
Date
Thu, 06 Jul 2023 13:27:20 GMT
Expires
Thu, 19 Nov 1981 08:52:00 GMT
NEL
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Pragma
no-cache
Report-To
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NWSMxWL3KpNYhFTqD6BR%2FtkK9I6E7F3JxXEmCFrJyCbNybYzQOSwam5iJaWTlNCk4ujDzEklqFVHUWI%2F7UeE1OwdZ8CHqRojzHuHRUoKJWOWAJy3JrUvz6U2"}],"group":"cf-nel","max_age":604800}
Server
cloudflare
Transfer-Encoding
chunked
X-Powered-By
PHP/5.6.40
alt-svc
h3=":443"; ma=86400
main.css
qooh.me/css/ 		51 KB
11 KB 		Stylesheet
General
Check archive.org
Download Go to
Full URL
http://qooh.me/css/main.css
Requested by
Host: qooh.me
URL: http://qooh.me/plainperu01
Protocol
HTTP/1.1
Server
188.114.97.3 Amsterdam, Netherlands, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
62bd121116b457d0864b2a9c58696ae8c520868df36b3ef414ec6142872ef472

Request headers

accept-language
ka-GE,ka;q=0.9
Referer
http://qooh.me/plainperu01
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

Date
Thu, 06 Jul 2023 13:27:20 GMT
Content-Encoding
gzip
CF-Cache-Status
REVALIDATED
NEL
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Cf-Polished
origSize=64177
Transfer-Encoding
chunked
Connection
keep-alive
alt-svc
h3=":443"; ma=86400
Cf-Bgj
minify
Last-Modified
Wed, 08 Nov 2017 07:22:11 GMT
Server
cloudflare
ETag
W/"5a02b0a3-fab1"
Vary
Accept-Encoding
Report-To
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ew875ETKTbckfPs49PN%2FfIo%2F5dvk7LhGUVcOHJsPZz6WlB1Smuqc1VAgIEJocPJ%2FvyiQwI%2FN27iDWprrjgcYxua3GFTWruTJIP3XwsMl5nxzpPKB1RJmIbPr"}],"group":"cf-nel","max_age":604800}
Content-Type
text/css
Cache-Control
max-age=86400
CF-RAY
7e282f4128752dcb-TBS
jquery-1.9.1.js
qooh.me/js/lib/ 		142 KB
41 KB 		Script
General
Check archive.org
Download Go to
Full URL
http://qooh.me/js/lib/jquery-1.9.1.js
Requested by
Host: qooh.me
URL: http://qooh.me/plainperu01
Protocol
HTTP/1.1
Server
188.114.97.3 Amsterdam, Netherlands, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
549a75e349567add1be9f64d09b384dbd223cfd24bf1968699ba905b41a8ac23

Request headers

accept-language
ka-GE,ka;q=0.9
Referer
http://qooh.me/plainperu01
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

Date
Thu, 06 Jul 2023 13:27:20 GMT
Content-Encoding
gzip
CF-Cache-Status
REVALIDATED
NEL
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Cf-Polished
origSize=268381
Transfer-Encoding
chunked
Connection
keep-alive
alt-svc
h3=":443"; ma=86400
Cf-Bgj
minify
Last-Modified
Wed, 08 Nov 2017 07:22:11 GMT
Server
cloudflare
ETag
W/"5a02b0a3-4185d"
Vary
Accept-Encoding
Report-To
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BL4AzFpHoTDTQD0Q9Z%2F6zKKVoU0nRGu87gauqDNtMZAkKCiGx%2B8MB5T8jFdkPyFIknqdNpwmwOdDmAR7ILNXEypgKi077fhJhHkj8rt%2BczxBfm8Dx7Bx9ZS%2F"}],"group":"cf-nel","max_age":604800}
Content-Type
application/javascript
Cache-Control
max-age=86400
CF-RAY
7e282f4148a02dcb-TBS
jquery.colorbox.js
qooh.me/scripts/ 		19 KB
6 KB 		Script
General
Check archive.org
Download Go to
Full URL
http://qooh.me/scripts/jquery.colorbox.js
Requested by
Host: qooh.me
URL: http://qooh.me/plainperu01
Protocol
HTTP/1.1
Server
188.114.97.3 Amsterdam, Netherlands, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
a7119d4f8e5761d77f6e5fa97d237ba166209f37ae52514ab7cbc2c7020719b5

Request headers

accept-language
ka-GE,ka;q=0.9
Referer
http://qooh.me/plainperu01
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

Date
Thu, 06 Jul 2023 13:27:20 GMT
Content-Encoding
gzip
CF-Cache-Status
REVALIDATED
NEL
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Cf-Polished
origSize=29920
Transfer-Encoding
chunked
Connection
keep-alive
alt-svc
h3=":443"; ma=86400
Cf-Bgj
minify
Last-Modified
Wed, 08 Nov 2017 07:22:11 GMT
Server
cloudflare
ETag
W/"5a02b0a3-74e0"
Vary
Accept-Encoding
Report-To
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yLc4mr30M6f19cl6hQIy1Gb7rNf0FhWjCJQi4abwCxV6nB74bhD54YA293MmB5eVwqUecXm4puYT3axoYghjr3syEloMK88zvNKQloZPDUqZlfkcVC5vLb93"}],"group":"cf-nel","max_age":604800}
Content-Type
application/javascript
Cache-Control
max-age=86400
CF-RAY
7e282f414eb32dcd-TBS
FacebookHelper.js
qooh.me/js/ 		4 KB
2 KB 		Script
General
Check archive.org
Download Go to
Full URL
http://qooh.me/js/FacebookHelper.js
Requested by
Host: qooh.me
URL: http://qooh.me/plainperu01
Protocol
HTTP/1.1
Server
188.114.97.3 Amsterdam, Netherlands, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
e0d3de97e09ca7befbaaae73167158ae334cc0117c61342b99448c0206e713ed

Request headers

accept-language
ka-GE,ka;q=0.9
Referer
http://qooh.me/plainperu01
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

Date
Thu, 06 Jul 2023 13:27:20 GMT
Content-Encoding
gzip
CF-Cache-Status
REVALIDATED
NEL
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Cf-Polished
origSize=5339
Transfer-Encoding
chunked
Connection
keep-alive
alt-svc
h3=":443"; ma=86400
Cf-Bgj
minify
Last-Modified
Wed, 08 Nov 2017 07:22:11 GMT
Server
cloudflare
ETag
W/"5a02b0a3-14db"
Vary
Accept-Encoding
Report-To
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I4VAqSyvLxRj8hYV66K5XoDRL8HbEpVwJ0POQAc3PHPmgDHNEJXncTE%2FqLBFIij4ZLlHKEcFuccqpI6YAEUmHWT0BLUWvKUoR7N1TksPaXL5dU1gppDc1gAg"}],"group":"cf-nel","max_age":604800}
Content-Type
application/javascript
Cache-Control
max-age=86400
CF-RAY
7e282f414a372dcf-TBS
show_ads.js
pagead2.googlesyndication.com/pagead/ 		92 KB
32 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/pagead/show_ads.js
Requested by
Host: qooh.me
URL: http://qooh.me/plainperu01
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
142.250.74.194 Staten Island, United States, ASN15169 (GOOGLE, US),
Reverse DNS
fra24s02-in-f2.1e100.net
Software
cafe /
Resource Hash
cea1b8335b8ad7fa0b89e895162e6f3763306943ce736ec690b838f491f4b649
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
ka-GE,ka;q=0.9
Referer
http://qooh.me/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 06 Jul 2023 13:27:20 GMT
content-encoding
br
x-content-type-options
nosniff
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
32838
x-xss-protection
0
server
cafe
etag
5678313692041216794
vary
Accept-Encoding
content-type
text/javascript; charset=UTF-8
cache-control
private, max-age=3600
timing-allow-origin
*
expires
Thu, 06 Jul 2023 13:27:20 GMT
photo_default.png
qooh.me/images/ 		1 KB
2 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
http://qooh.me/images/photo_default.png
Requested by
Host: qooh.me
URL: http://qooh.me/plainperu01
Protocol
HTTP/1.1
Server
188.114.97.3 Amsterdam, Netherlands, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
3fbd6dbee061c92bfef462e6c78a0596808620a1d1463d6dd713e2eecc03a418

Request headers

accept-language
ka-GE,ka;q=0.9
Referer
http://qooh.me/plainperu01
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

Date
Thu, 06 Jul 2023 13:27:21 GMT
CF-Cache-Status
REVALIDATED
Last-Modified
Wed, 08 Nov 2017 07:22:11 GMT
NEL
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server
cloudflare
ETag
"5a02b0a3-4e9"
Vary
Accept-Encoding
Report-To
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mUPJ5BCEfGZkOHIuj2%2BdXh7I5bAKGSCEQJMt5xj62H7V1gWs2TmE9GrfjqoucQ2jWhXR03TzTbKjfIBZC%2FYQ6HUkJr5qqtTxU%2Bc5oSQ3u9twFSaFH3gLwfPn"}],"group":"cf-nel","max_age":604800}
Content-Type
image/png
Cache-Control
max-age=86400
Connection
keep-alive
Accept-Ranges
bytes
CF-RAY
7e282f447a702dcd-TBS
alt-svc
h3=":443"; ma=86400
Content-Length
1257
bodyBg.png
qooh.me/images/ 		3 KB
4 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
http://qooh.me/images/bodyBg.png
Requested by
Host: qooh.me
URL: http://qooh.me/css/main.css
Protocol
HTTP/1.1
Server
188.114.97.3 Amsterdam, Netherlands, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
09d950567a1f8eb1adbc9fd8e16bd3a3ea0738fc1814f53582e512eff6a50c5a

Request headers

accept-language
ka-GE,ka;q=0.9
Referer
http://qooh.me/css/main.css
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

Date
Thu, 06 Jul 2023 13:27:21 GMT
CF-Cache-Status
REVALIDATED
Last-Modified
Wed, 08 Nov 2017 07:22:11 GMT
NEL
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server
cloudflare
ETag
"5a02b0a3-d40"
Vary
Accept-Encoding
Report-To
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0hXLdpO0e0JcOanbInuei91TgA5PveAjSojOlVkuGt1hhqmyYuC96F3AmE9LGrtq2TFCl5wBcfB9hBWp6zzVBCn8BiPw5Mq%2B5VNlSkLlbyIVtq%2BTjuIpEi7M"}],"group":"cf-nel","max_age":604800}
Content-Type
image/png
Cache-Control
max-age=86400
Connection
keep-alive
Accept-Ranges
bytes
CF-RAY
7e282f457d792dcb-TBS
alt-svc
h3=":443"; ma=86400
Content-Length
3392
show_ads_impl_fy2021.js
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202306290101/ 		344 KB
118 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202306290101/show_ads_impl_fy2021.js?bust=31075780
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/show_ads.js
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
142.250.74.194 Staten Island, United States, ASN15169 (GOOGLE, US),
Reverse DNS
fra24s02-in-f2.1e100.net
Software
cafe /
Resource Hash
44a7a4b83dbaaa6093901a913c3249287b47a310f731564e90b81c7261609ef3
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
ka-GE,ka;q=0.9
Referer
http://qooh.me/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 06 Jul 2023 13:27:21 GMT
content-encoding
br
x-content-type-options
nosniff
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
121022
x-xss-protection
0
server
cafe
etag
105094770377769474
vary
Accept-Encoding
content-type
text/javascript; charset=UTF-8
cache-control
private, max-age=1209600
timing-allow-origin
*
expires
Thu, 06 Jul 2023 13:27:21 GMT
body-bg.png
qooh.me/images/ 		3 KB
4 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
http://qooh.me/images/body-bg.png
Requested by
Host: qooh.me
URL: http://qooh.me/css/main.css
Protocol
HTTP/1.1
Server
188.114.97.3 Amsterdam, Netherlands, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
3154c36c867d443af5ac6bf35643ec6f144bc0548e224c25e66259767d744ea5

Request headers

accept-language
ka-GE,ka;q=0.9
Referer
http://qooh.me/css/main.css
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

Date
Thu, 06 Jul 2023 13:27:21 GMT
CF-Cache-Status
REVALIDATED
Last-Modified
Wed, 08 Nov 2017 07:22:11 GMT
NEL
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server
cloudflare
ETag
"5a02b0a3-df3"
Vary
Accept-Encoding
Report-To
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5XfbP1%2F5UHQNL0tZ3ID4NjcOleI2LSW%2FvpqWh4yBigabFWK31Fx1OpSy52IkOcWW8JXRWfdp7Y6chY%2B%2BFs6foS3gs5mItm2RF5gCtYUj3FdEwEhXZJj3oT4Y"}],"group":"cf-nel","max_age":604800}
Content-Type
image/png
Cache-Control
max-age=86400
Connection
keep-alive
Accept-Ranges
bytes
CF-RAY
7e282f45ad9e2dcb-TBS
alt-svc
h3=":443"; ma=86400
Content-Length
3571
logo.png
qooh.me/images/ 		5 KB
6 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
http://qooh.me/images/logo.png
Requested by
Host: qooh.me
URL: http://qooh.me/css/main.css
Protocol
HTTP/1.1
Server
188.114.97.3 Amsterdam, Netherlands, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
1ce0cba7a42c7a59d3d7ae57bfe8fe657f2de70e27a71b37c3cba1c311e865b6

Request headers

accept-language
ka-GE,ka;q=0.9
Referer
http://qooh.me/css/main.css
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

Date
Thu, 06 Jul 2023 13:27:21 GMT
CF-Cache-Status
REVALIDATED
Last-Modified
Wed, 08 Nov 2017 07:22:11 GMT
NEL
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server
cloudflare
ETag
"5a02b0a3-136e"
Vary
Accept-Encoding
Report-To
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q4UIg4adfuf8H6lRpzRHHs5CCwYRhttQQehpLipJoeRiPT7vxFwsSR8JvQjuiXfmYkZXopX8cG4IOE7pYR8pxofzmZyZojjCVH%2F7jxiUgwqF21JnmmTWOQaG"}],"group":"cf-nel","max_age":604800}
Content-Type
image/png
Cache-Control
max-age=86400
Connection
keep-alive
Accept-Ranges
bytes
CF-RAY
7e282f45af182dcf-TBS
alt-svc
h3=":443"; ma=86400
Content-Length
4974
content-bg-repeat.png
qooh.me/images/ 		133 B
822 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
http://qooh.me/images/content-bg-repeat.png
Requested by
Host: qooh.me
URL: http://qooh.me/css/main.css
Protocol
HTTP/1.1
Server
188.114.97.3 Amsterdam, Netherlands, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
c22cef5f0feadef84070444d9a8dd634a08052ed13d5063b90f1f42bedecd84d

Request headers

accept-language
ka-GE,ka;q=0.9
Referer
http://qooh.me/css/main.css
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

Date
Thu, 06 Jul 2023 13:27:21 GMT
CF-Cache-Status
REVALIDATED
Last-Modified
Wed, 08 Nov 2017 07:22:11 GMT
NEL
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server
cloudflare
ETag
"5a02b0a3-85"
Vary
Accept-Encoding
Report-To
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5MAELAqv7zxy8P0s2kZsEF1cjRFJR2S6ggNmDsKA%2BRwyeBcJutsF7aUAacv%2BF4BAEK5RDtoEJYwEOiZ3pyPUi8juRlyuo39rcu5Yl2Ne%2B8Xiy6STPoucgUrq"}],"group":"cf-nel","max_age":604800}
Content-Type
image/png
Cache-Control
max-age=86400
Connection
keep-alive
Accept-Ranges
bytes
CF-RAY
7e282f45ce3c2dc9-TBS
alt-svc
h3=":443"; ma=86400
Content-Length
133
button-grey.png
qooh.me/images/ 		242 B
933 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
http://qooh.me/images/button-grey.png
Requested by
Host: qooh.me
URL: http://qooh.me/css/main.css
Protocol
HTTP/1.1
Server
188.114.97.3 Amsterdam, Netherlands, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
a4814d3116db4148ebd4a5bba756f2e6bfbfa7fd6f08f6322defab1017b028ef

Request headers

accept-language
ka-GE,ka;q=0.9
Referer
http://qooh.me/css/main.css
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

Date
Thu, 06 Jul 2023 13:27:22 GMT
CF-Cache-Status
REVALIDATED
Last-Modified
Wed, 08 Nov 2017 07:22:11 GMT
NEL
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server
cloudflare
ETag
"5a02b0a3-f2"
Vary
Accept-Encoding
Report-To
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Bboxew%2FOxNWUloULJGx6p9E7U%2FDgQWuaXO5KzOX6ZOuMPTK4b7e3juaVaEQvHNGb5gOGGTra3xzSa5zzc4hEZaguoUjW67bqSs%2B5OPbrOLYvMZFSms27u59y"}],"group":"cf-nel","max_age":604800}
Content-Type
image/png
Cache-Control
max-age=86400
Connection
keep-alive
Accept-Ranges
bytes
CF-RAY
7e282f47fe8b2dcd-TBS
alt-svc
h3=":443"; ma=86400
Content-Length
242
sidepanel-arrow.png
qooh.me/images/ 		233 B
924 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
http://qooh.me/images/sidepanel-arrow.png
Requested by
Host: qooh.me
URL: http://qooh.me/css/main.css
Protocol
HTTP/1.1
Server
188.114.97.3 Amsterdam, Netherlands, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
d921255f132c765306f6b28b46a5700b9e45c5a9951c38ae830aa8f19f655880

Request headers

accept-language
ka-GE,ka;q=0.9
Referer
http://qooh.me/css/main.css
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

Date
Thu, 06 Jul 2023 13:27:21 GMT
CF-Cache-Status
REVALIDATED
Last-Modified
Wed, 08 Nov 2017 07:22:11 GMT
NEL
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server
cloudflare
ETag
"5a02b0a3-e9"
Vary
Accept-Encoding
Report-To
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kGrp76qJTORbfy0FrEruHZeBxBcg%2Bvq%2By1bft5Qh9%2B4OtbI43SZeTKmuU7MvbVab8YjTqlPKViHspMDT4wy01hNHQpCj7uZz6ZO%2F2VgmXXLD4MfSvKyO6K2e"}],"group":"cf-nel","max_age":604800}
Content-Type
image/png
Cache-Control
max-age=86400
Connection
keep-alive
Accept-Ranges
bytes
CF-RAY
7e282f464bd52dd1-TBS
alt-svc
h3=":443"; ma=86400
Content-Length
233
tag-btn.png
qooh.me/images/ 		758 B
1 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
http://qooh.me/images/tag-btn.png
Requested by
Host: qooh.me
URL: http://qooh.me/css/main.css
Protocol
HTTP/1.1
Server
188.114.97.3 Amsterdam, Netherlands, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
7c06851aa6041915d2767b37507e293bd9aaedbd0c6941bc28a12f175873fcd7

Request headers

accept-language
ka-GE,ka;q=0.9
Referer
http://qooh.me/css/main.css
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

Date
Thu, 06 Jul 2023 13:27:21 GMT
CF-Cache-Status
REVALIDATED
Last-Modified
Wed, 08 Nov 2017 07:22:11 GMT
NEL
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server
cloudflare
ETag
"5a02b0a3-2f6"
Vary
Accept-Encoding
Report-To
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Dd7e4%2Bqu5VJkvekxorUwFI%2Bco3ZbZ0m7myEr6mjstDvnyeh3ywbQ%2FrIyYTCwzakAM5PsixzYNid1jhepw2pFBuv9uAiUbmG9TsBFabD0um7XSaqBlZmUqEjk"}],"group":"cf-nel","max_age":604800}
Content-Type
image/png
Cache-Control
max-age=86400
Connection
keep-alive
Accept-Ranges
bytes
CF-RAY
7e282f462c482dcd-TBS
alt-svc
h3=":443"; ma=86400
Content-Length
758
ga.js
www.google-analytics.com/
Redirect Chain
  • http://www.google-analytics.com/ga.js
  • https://www.google-analytics.com/ga.js
45 KB
17 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://www.google-analytics.com/ga.js
Requested by
Host: qooh.me
URL: http://qooh.me/plainperu01
Protocol
H2
Server
172.217.16.206 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
fra16s08-in-f14.1e100.net
Software
Golfe2 /
Resource Hash
1259ea99bd76596239bfd3102c679eb0a5052578dc526b0452f4d42f8bcdd45f
Security Headers
Name Value
Strict-Transport-Security max-age=10886400; includeSubDomains; preload
X-Content-Type-Options nosniff

Request headers

accept-language
ka-GE,ka;q=0.9
Referer
http://qooh.me/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

strict-transport-security
max-age=10886400; includeSubDomains; preload
content-encoding
gzip
x-content-type-options
nosniff
date
Thu, 06 Jul 2023 12:57:54 GMT
last-modified
Mon, 12 Jun 2023 18:23:07 GMT
server
Golfe2
age
1767
vary
Accept-Encoding
content-type
text/javascript
cache-control
public, max-age=7200
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
17168
expires
Thu, 06 Jul 2023 14:57:54 GMT

Redirect headers

Location
https://www.google-analytics.com/ga.js
Non-Authoritative-Reason
HSTS
Cross-Origin-Resource-Policy
Cross-Origin
cookie.js
partner.googleadservices.com/gampad/ 		381 B
600 B 		Script
General
Check archive.org
Download Go to
Full URL
https://partner.googleadservices.com/gampad/cookie.js?domain=qooh.me&callback=_gfp_s_&client=ca-pub-1046108362436506
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202306290101/show_ads_impl_fy2021.js?bust=31075780
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
172.217.16.194 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
fra16s08-in-f194.1e100.net
Software
cafe /
Resource Hash
717a07938249097c24a548ad33695920c80e43d8529c604df93b47fa094567e7
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
ka-GE,ka;q=0.9
Referer
http://qooh.me/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 06 Jul 2023 13:27:21 GMT
content-encoding
gzip
x-content-type-options
nosniff
server
cafe
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
content-type
text/javascript; charset=UTF-8
cache-control
private
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
timing-allow-origin
*
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
248
x-xss-protection
0
integrator.js
adservice.google.com/adsid/ 		107 B
456 B 		Script
General
Check archive.org
Download Go to
Full URL
https://adservice.google.com/adsid/integrator.js?domain=qooh.me
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202306290101/show_ads_impl_fy2021.js?bust=31075780
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
142.250.186.34 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
fra24s04-in-f2.1e100.net
Software
cafe /
Resource Hash
a4a1824defec1084ca81d496ee77891684c26196924bdc4fc21dd3482ce15e14
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
ka-GE,ka;q=0.9
Referer
http://qooh.me/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 06 Jul 2023 13:27:21 GMT
content-encoding
gzip
x-content-type-options
nosniff
server
cafe
content-type
application/javascript; charset=UTF-8
p3p
CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
cache-control
private, no-cache, no-store
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
timing-allow-origin
*
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
100
x-xss-protection
0
ads
googleads.g.doubleclick.net/pagead/ Frame 9A48 		436 B
380 B 		Document
General
Check archive.org
Download Go to
Full URL
https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1046108362436506&output=html&h=90&slotname=3666114337&adk=1371316831&adf=2765329810&pi=t.ma~as.3666114337&w=728&lmt=1688650041&url=http%3A%2F%2Fqooh.me%2Fplainperu01&wgl=1&dt=1688650041162&bpp=34&bdt=814&idt=455&shv=r20230628&mjsv=m202306290101&ptt=5&saldr=sa&abxe=1&correlator=3296666855891&frm=20&pv=2&ga_vid=227251307.1688650042&ga_sid=1688650042&ga_hid=748056591&ga_fc=0&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&adx=436&ady=120&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075642%2C31075758%2C31075780%2C44788441&oid=2&pvsid=1094071539221835&uas=0&nvt=1&fc=640&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CpeE%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=1&uci=a!1&fsb=1&xpc=tw4X5MiPLL&p=http%3A//qooh.me&dtd=479
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202306290101/show_ads_impl_fy2021.js?bust=31075780
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
142.250.185.226 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
fra16s53-in-f2.1e100.net
Software
cafe /
Resource Hash
32aa3501c979ae8e841fdc949983c29342c191522110e5f060d8fb3dfd8780b9
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Referer
http://qooh.me/
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
accept-language
ka-GE,ka;q=0.9

Response headers

alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cache-control
private
content-encoding
br
content-length
212
content-type
text/html; charset=UTF-8
cross-origin-resource-policy
cross-origin
date
Thu, 06 Jul 2023 13:27:22 GMT
expires
Thu, 06 Jul 2023 13:27:22 GMT
observe-browsing-topics
true
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
server
cafe
timing-allow-origin
*
x-content-type-options
nosniff
x-xss-protection
0
ads
googleads.g.doubleclick.net/pagead/ Frame 9976 		436 B
386 B 		Document
General
Check archive.org
Download Go to
Full URL
https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1046108362436506&output=html&h=600&slotname=7328249135&adk=2637415549&adf=564753802&pi=t.ma~as.7328249135&w=160&lmt=1688650041&url=http%3A%2F%2Fqooh.me%2Fplainperu01&wgl=1&dt=1688650041202&bpp=35&bdt=854&idt=450&shv=r20230628&mjsv=m202306290101&ptt=5&saldr=sa&abxe=1&prev_slotnames=3666114337&correlator=3296666855891&frm=20&pv=1&ga_vid=227251307.1688650042&ga_sid=1688650042&ga_hid=748056591&ga_fc=0&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&adx=1003&ady=413&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075642%2C31075758%2C31075780%2C44788441&oid=2&pvsid=1094071539221835&uas=0&nvt=1&fc=640&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=d%7C%7CpeE%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=2&uci=a!2&fsb=1&xpc=gQjOziW5r4&p=http%3A//qooh.me&dtd=474
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202306290101/show_ads_impl_fy2021.js?bust=31075780
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
142.250.185.226 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
fra16s53-in-f2.1e100.net
Software
cafe /
Resource Hash
d62399b0e37a138ee9563e633448b539dca613d016972eeed52dd6a15f1d2e53
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Referer
http://qooh.me/
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
accept-language
ka-GE,ka;q=0.9

Response headers

alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cache-control
private
content-encoding
br
content-length
215
content-type
text/html; charset=UTF-8
cross-origin-resource-policy
cross-origin
date
Thu, 06 Jul 2023 13:27:22 GMT
expires
Thu, 06 Jul 2023 13:27:22 GMT
observe-browsing-topics
true
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
server
cafe
timing-allow-origin
*
x-content-type-options
nosniff
x-xss-protection
0
ads
googleads.g.doubleclick.net/pagead/ Frame 239A 		436 B
722 B 		Document
General
Check archive.org
Download Go to
Full URL
https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1046108362436506&output=html&h=90&slotname=1032866731&adk=713589307&adf=3485994614&pi=t.ma~as.1032866731&w=728&lmt=1688650041&url=http%3A%2F%2Fqooh.me%2Fplainperu01&wgl=1&dt=1688650041245&bpp=13&bdt=897&idt=438&shv=r20230628&mjsv=m202306290101&ptt=5&saldr=sa&abxe=1&prev_slotnames=3666114337%2C7328249135&correlator=3296666855891&frm=20&pv=1&ga_vid=227251307.1688650042&ga_sid=1688650042&ga_hid=748056591&ga_fc=0&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&adx=436&ady=1107&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075642%2C31075758%2C31075780%2C44788441&oid=2&pvsid=1094071539221835&uas=0&nvt=1&fc=640&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CpeE%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=3&uci=a!3&fsb=1&xpc=os5IHVMa75&p=http%3A//qooh.me&dtd=450
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202306290101/show_ads_impl_fy2021.js?bust=31075780
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
142.250.185.226 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
fra16s53-in-f2.1e100.net
Software
cafe /
Resource Hash
04878531eece84119b9420a667114df26078ff9c0990fc79f9a86b8c923176b9
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Referer
http://qooh.me/
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
accept-language
ka-GE,ka;q=0.9

Response headers

alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cache-control
private
content-encoding
br
content-length
212
content-type
text/html; charset=UTF-8
cross-origin-resource-policy
cross-origin
date
Thu, 06 Jul 2023 13:27:22 GMT
expires
Thu, 06 Jul 2023 13:27:22 GMT
observe-browsing-topics
true
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
server
cafe
timing-allow-origin
*
x-content-type-options
nosniff
x-xss-protection
0
__utm.gif
www.google-analytics.com/r/
Redirect Chain
  • http://www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=2036480141&utmhn=qooh.me&utmcs=UTF-8&utmsr=1600x1200&utmvp=1600x1200&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Qoohme&utmhid...
  • https://www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=2036480141&utmhn=qooh.me&utmcs=UTF-8&utmsr=1600x1200&utmvp=1600x1200&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Qoohme&utmhi...
35 B
197 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=2036480141&utmhn=qooh.me&utmcs=UTF-8&utmsr=1600x1200&utmvp=1600x1200&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Qoohme&utmhid=748056591&utmr=-&utmp=%2Fplainperu01&utmht=1688650041810&utmac=UA-23732945-1&utmcc=__utma%3D3998191.1362447615.1688650042.1688650042.1688650042.1%3B%2B__utmz%3D3998191.1688650042.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1714057685&utmredir=1&utmu=qBAAAAAAAAAAAAAAAAAAAAAE~
Requested by
Host: qooh.me
URL: http://qooh.me/plainperu01
Protocol
H2
Server
172.217.16.206 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
fra16s08-in-f14.1e100.net
Software
Golfe2 /
Resource Hash
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
Security Headers
Name Value
X-Content-Type-Options nosniff

Request headers

accept-language
ka-GE,ka;q=0.9
Referer
http://qooh.me/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma
no-cache
date
Thu, 06 Jul 2023 13:27:21 GMT
x-content-type-options
nosniff
last-modified
Sun, 17 May 1998 03:00:00 GMT
server
Golfe2
content-type
image/gif
access-control-allow-origin
*
cache-control
no-cache, no-store, must-revalidate
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
35
expires
Fri, 01 Jan 1990 00:00:00 GMT

Redirect headers

Location
https://www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=2036480141&utmhn=qooh.me&utmcs=UTF-8&utmsr=1600x1200&utmvp=1600x1200&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Qoohme&utmhid=748056591&utmr=-&utmp=%2Fplainperu01&utmht=1688650041810&utmac=UA-23732945-1&utmcc=__utma%3D3998191.1362447615.1688650042.1688650042.1688650042.1%3B%2B__utmz%3D3998191.1688650042.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1714057685&utmredir=1&utmu=qBAAAAAAAAAAAAAAAAAAAAAE~
Non-Authoritative-Reason
HSTS
Cross-Origin-Resource-Policy
Cross-Origin
adsbygoogle.js
pagead2.googlesyndication.com/pagead/js/ 		139 KB
48 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/show_ads.js
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
142.250.74.194 Staten Island, United States, ASN15169 (GOOGLE, US),
Reverse DNS
fra24s02-in-f2.1e100.net
Software
cafe /
Resource Hash
2c030e0ce5de7d416ef5b1fda68ab0171720a82c98e05574a53182578620e8bd
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
ka-GE,ka;q=0.9
Referer
http://qooh.me/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 06 Jul 2023 13:27:22 GMT
content-encoding
br
x-content-type-options
nosniff
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
48681
x-xss-protection
0
server
cafe
etag
7933248122323036608
vary
Accept-Encoding
content-type
text/javascript; charset=UTF-8
access-control-allow-origin
*
cache-control
private, max-age=3600
timing-allow-origin
*
expires
Thu, 06 Jul 2023 13:27:22 GMT
sodar
pagead2.googlesyndication.com/getconfig/ 		15 KB
11 KB 		XHR
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20230628&st=env
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202306290101/show_ads_impl_fy2021.js?bust=31075780
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
142.250.74.194 Staten Island, United States, ASN15169 (GOOGLE, US),
Reverse DNS
fra24s02-in-f2.1e100.net
Software
cafe /
Resource Hash
8d9836474f6ca1a65d1bde2eba1398a4c80c0cf3bac7fbfa0cad549c4ef8d446
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
ka-GE,ka;q=0.9
Referer
http://qooh.me/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 06 Jul 2023 13:27:22 GMT
content-encoding
br
x-content-type-options
nosniff
server
cafe
content-type
application/json; charset=UTF-8
access-control-allow-origin
*
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
timing-allow-origin
*
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
11745
x-xss-protection
0
zrt_lookup.html
googleads.g.doubleclick.net/pagead/html/r20230628/r20190131/ Frame DF59 		10 KB
5 KB 		Document
General
Check archive.org
Download Go to
Full URL
https://googleads.g.doubleclick.net/pagead/html/r20230628/r20190131/zrt_lookup.html
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
142.250.185.226 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
fra16s53-in-f2.1e100.net
Software
cafe /
Resource Hash
18e7a53e3b3abd7ac0242719f7f62cb56b8efe7065091585b8ad22cbc2b8c41c
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Referer
http://qooh.me/
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
accept-language
ka-GE,ka;q=0.9

Response headers

age
26294
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cache-control
public, max-age=1209600
content-encoding
br
content-length
4544
content-type
text/html; charset=UTF-8
cross-origin-resource-policy
cross-origin
date
Thu, 06 Jul 2023 06:09:08 GMT
etag
12368291122986407432
expires
Thu, 20 Jul 2023 06:09:08 GMT
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
server
cafe
timing-allow-origin
*
vary
Accept-Encoding
x-content-type-options
nosniff
x-xss-protection
0
integrator.js
adservice.google.com/adsid/ 		107 B
165 B 		Script
General
Check archive.org
Download Go to
Full URL
https://adservice.google.com/adsid/integrator.js?domain=qooh.me
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202306290101/show_ads_impl_fy2021.js?bust=31075780
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
142.250.186.34 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
fra24s04-in-f2.1e100.net
Software
cafe /
Resource Hash
a4a1824defec1084ca81d496ee77891684c26196924bdc4fc21dd3482ce15e14
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
ka-GE,ka;q=0.9
Referer
http://qooh.me/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 06 Jul 2023 13:27:22 GMT
content-encoding
gzip
x-content-type-options
nosniff
server
cafe
content-type
application/javascript; charset=UTF-8
p3p
CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
cache-control
private, no-cache, no-store
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
timing-allow-origin
*
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
100
x-xss-protection
0
ads
googleads.g.doubleclick.net/pagead/ Frame D399 		11 KB
5 KB 		Document
General
Check archive.org
Download Go to
Full URL
https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1046108362436506&output=html&adk=1812271804&adf=3025194257&lmt=1688650042&plat=9%3A32776%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32%2C42%3A32&plas=404x945_l%7C404x945_r&format=0x0&url=http%3A%2F%2Fqooh.me%2Fplainperu01&ea=0&pra=7&wgl=1&dt=1688650042604&bpp=4&bdt=2256&idt=4&shv=r20230628&mjsv=m202306290101&ptt=9&saldr=aa&abxe=1&cookie=ID%3Dc5a7928d4f51854c-227344fe86e20085%3AT%3D1688650041%3ART%3D1688650041%3AS%3DALNI_Mbuja_4dtS1QrPJ2U1ypY-PKbpbmw&gpic=UID%3D00000c374f2d2a48%3AT%3D1688650041%3ART%3D1688650041%3AS%3DALNI_MZjpG9MLNhJE5UwA_khFeZZKrz_fw&prev_slotnames=3666114337%2C7328249135%2C1032866731&nras=1&correlator=3296666855891&frm=20&pv=1&ga_vid=227251307.1688650042&ga_sid=1688650042&ga_hid=748056591&ga_fc=0&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&adx=-12245933&ady=-12245933&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075642%2C31075758%2C31075780%2C44788441&oid=2&pvsid=1094071539221835&tmod=1213356672&uas=0&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7Cs%7C&abl=NS&alvm=m202306280101&fu=32768&bc=23&ifi=4&uci=a!4&fsb=1&dtd=39
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202306290101/show_ads_impl_fy2021.js?bust=31075780
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
142.250.185.226 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
fra16s53-in-f2.1e100.net
Software
cafe /
Resource Hash
ee36453a90a4554fcd46ddce6e0f47a7610e8f71881185d4ea6c9ff6d77e84ec
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Referer
http://qooh.me/
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
accept-language
ka-GE,ka;q=0.9

Response headers

alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cache-control
private
content-encoding
br
content-length
4507
content-type
text/html; charset=UTF-8
cross-origin-resource-policy
cross-origin
date
Thu, 06 Jul 2023 13:27:23 GMT
expires
Thu, 06 Jul 2023 13:27:23 GMT
observe-browsing-topics
true
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
server
cafe
timing-allow-origin
*
x-content-type-options
nosniff
x-xss-protection
0
sodar2.js
tpc.googlesyndication.com/sodar/ 		17 KB
7 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://tpc.googlesyndication.com/sodar/sodar2.js
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202306290101/show_ads_impl_fy2021.js?bust=31075780
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
142.250.186.161 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
fra24s08-in-f1.1e100.net
Software
sffe /
Resource Hash
61c32059a5e94075a7ecff678b33907966fc9cfa384daa01aa057f872da14dbb
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
ka-GE,ka;q=0.9
Referer
http://qooh.me/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 06 Jul 2023 13:27:23 GMT
content-encoding
gzip
x-content-type-options
nosniff
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
6386
x-xss-protection
0
server
sffe
cross-origin-opener-policy
same-origin; report-to="adspam-signals-scs"
etag
"1637097310169751"
vary
Accept-Encoding
report-to
{"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-type
text/javascript
cache-control
private, max-age=3000
accept-ranges
bytes
expires
Thu, 06 Jul 2023 13:27:23 GMT
runner.html
tpc.googlesyndication.com/sodar/sodar2/225/ Frame A770 		13 KB
5 KB 		Document
General
Check archive.org
Download Go to
Full URL
https://tpc.googlesyndication.com/sodar/sodar2/225/runner.html
Requested by
Host: tpc.googlesyndication.com
URL: https://tpc.googlesyndication.com/sodar/sodar2.js
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
142.250.186.161 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
fra24s08-in-f1.1e100.net
Software
sffe /
Resource Hash
55a119c0394f901a8a297e109c17b5e5402689708b999ab10691c16179f32a4a
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Referer
http://qooh.me/
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
accept-language
ka-GE,ka;q=0.9

Response headers

accept-ranges
bytes
age
12362
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cache-control
public, max-age=31536000
content-encoding
gzip
content-length
5046
content-type
text/html
cross-origin-opener-policy
same-origin; report-to="adspam-signals-scs"
cross-origin-resource-policy
cross-origin
date
Thu, 06 Jul 2023 10:01:21 GMT
expires
Fri, 05 Jul 2024 10:01:21 GMT
last-modified
Mon, 21 Jun 2021 20:47:05 GMT
report-to
{"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
server
sffe
vary
Accept-Encoding
x-content-type-options
nosniff
x-xss-protection
0
aframe
www.google.com/recaptcha/api2/ Frame C491 		783 B
1 KB 		Document
General
Check archive.org
Download Go to
Full URL
https://www.google.com/recaptcha/api2/aframe
Requested by
Host: tpc.googlesyndication.com
URL: https://tpc.googlesyndication.com/sodar/sodar2.js
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
172.217.16.196 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
fra16s65-in-f4.1e100.net
Software
GSE /
Resource Hash
f4a15779955840bdf9a87f31c7a845effd308b39867174a22c0e32bf114add57
Security Headers
Name Value
Content-Security-Policy script-src 'report-sample' 'nonce-PDg0jlZQ0abXzXOi_LVsMA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
X-Content-Type-Options nosniff
X-Xss-Protection 1; mode=block

Request headers

Referer
http://qooh.me/
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
accept-language
ka-GE,ka;q=0.9

Response headers

alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cache-control
private, max-age=300
content-encoding
gzip
content-length
513
content-security-policy
script-src 'report-sample' 'nonce-PDg0jlZQ0abXzXOi_LVsMA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-type
text/html; charset=utf-8
cross-origin-embedder-policy
require-corp
cross-origin-resource-policy
cross-origin
date
Thu, 06 Jul 2023 13:27:23 GMT
expires
Thu, 06 Jul 2023 13:27:23 GMT
report-to
{"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
server
GSE
x-content-type-options
nosniff
x-xss-protection
1; mode=block
AOiihYbjk7GyPSPexE3PorOKRXoofTPF8NjvkAglc4c.js
pagead2.googlesyndication.com/bg/ Frame A770 		38 KB
14 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/bg/AOiihYbjk7GyPSPexE3PorOKRXoofTPF8NjvkAglc4c.js
Requested by
Host: tpc.googlesyndication.com
URL: https://tpc.googlesyndication.com/sodar/sodar2/225/runner.html
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
142.250.74.194 Staten Island, United States, ASN15169 (GOOGLE, US),
Reverse DNS
fra24s02-in-f2.1e100.net
Software
sffe /
Resource Hash
00e8a28586e393b1b23d23dec44dcfa2b38a457a287d33c5f0d8ef9008257387
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
ka-GE,ka;q=0.9
Referer
https://tpc.googlesyndication.com/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 06 Jul 2023 09:16:54 GMT
content-encoding
br
x-content-type-options
nosniff
age
15029
content-security-policy-report-only
require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
14768
x-xss-protection
0
last-modified
Mon, 26 Jun 2023 15:28:00 GMT
server
sffe
cross-origin-opener-policy
same-origin; report-to="botguard-scs"
vary
Accept-Encoding
report-to
{"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-type
text/javascript
cache-control
public, max-age=31536000
accept-ranges
bytes
expires
Fri, 05 Jul 2024 09:16:54 GMT
sodar
pagead2.googlesyndication.com/pagead/ Frame C491 		0
0 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&li=gda_r20230628&jk=1094071539221835&rc=
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
142.250.74.194 Staten Island, United States, ASN15169 (GOOGLE, US),
Reverse DNS
fra24s02-in-f2.1e100.net
Software
/
Resource Hash
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Request headers

accept-language
ka-GE,ka;q=0.9
Referer
https://www.google.com/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers
generate_204
tpc.googlesyndication.com/ Frame A770 		0
10 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://tpc.googlesyndication.com/generate_204?PE05tQ
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
142.250.186.161 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
fra24s08-in-f1.1e100.net
Software
/
Resource Hash
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Request headers

accept-language
ka-GE,ka;q=0.9
Referer
https://tpc.googlesyndication.com/sodar/sodar2/225/runner.html
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 06 Jul 2023 13:27:23 GMT
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
0
sodar
pagead2.googlesyndication.com/pagead/ 		0
0 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20230628&jk=1094071539221835&bg=!IyClIHTNAAb90kgr3dI7ADkAdvg8Wl8gLQcdZm6ni2c377Vzv4He78bR7IgbMyjQm6J8bWKSEc3_bwcQdNJtFmmxqt-xLnbReMcCAAAAglIAAAAWaAEHCgAdPfqlxk-DPz7L0lYc1N5yU4ln97CpxG4P4hj0u9-ZApFRThlDLdHWQhV6wuL2grCFyM2AEoDi7bSGBpdyl-QJkbX5nXE4io7sWjH1C_AAyBFvxlDAXbqVPAhpQQ0s3-sYfh45bGnKOwoc5iJeR7ha_h7-TkHB44J6TefqJM4IpnhLfreRwPd6rc5MyOVAqBJxfS9j0HLlVeriWwTm9vYeT4jp9-xp4m-eCpJPSfvBa_pSShnFB59VOWTKWG7BLEJiOEmf6i6GN67452_a6E6LFI2Eyo8mV81SU1CVrVupI8YZ0B8-5gGwfqvaDpm-7Q8x07kui_UxBbSUt0a6_3aFys9N-_sx4XeI51JsT-NvJcZBYcdT1hNUZfIsTME3yVSQxSO27JqEUuiE50BQTLZo9U8mWkR6YBejkIcQyEwLUiTWIu2TjFKObVrf8B91E5XHWI6WQwsudxoEHH9yjM2-SrtB6CEB1sC_H0A7bEk_a2m14rQhrtIHzQgjfjtbN8ffjFIA5IaGPLUzMJI5kl8BjRPMWqoH8nhZWyDOl1vDiQtxQhwjXE-icsV7YioyuxSuw3sJAMCfZlNTQaVFFZcZh8RC3KPQKcoxir8UkdPP0Ui9l2B_miYUFw7llt27drQDcOjxlnywZq7x-gYXO8fX9DmHaulOfkfluLLizcFrT-2en0SJKI3t-CJnamdvLf2MRQ1cyPD07X1A4QobD4AzqfSSKIf5_1ksts3dUXWEZWuGTup-UnJP-8mCuyBsunX9LfHpVuRuTb13a5icr9_OiuxPWQt2F_F30qkXKSq3vI4_kxdkZN0CKyIak7R8gvJzcrXd3FgoLCXL3be24KDUdlUqqPO3dNW2jugMQvbCi1TQECyLd_O6Y_2wbtbrwIU6tKmvkoMAo4LALpxBZ-AYjVs
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
142.250.74.194 Staten Island, United States, ASN15169 (GOOGLE, US),
Reverse DNS
fra24s02-in-f2.1e100.net
Software
/
Resource Hash
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Request headers

accept-language
ka-GE,ka;q=0.9
Referer
http://qooh.me/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

Verdicts & Comments Add Verdict or Comment

198 JavaScript Global Variables

These are the non-standard "global" variables defined on the window object. These can be helpful in identifying possible client-side frameworks and code.

object| 0 object| 1 object| 2 object| 3 object| 4 object| 5 boolean| credentialless object| onbeforetoggle object| onscrollend function| $ function| jQuery string| siteName boolean| mobile undefined| facebookHelper object| facebookDialogTemplate function| FacebookDialogTemplate object| google_ad_client object| google_ad_slot object| google_ad_width object| google_ad_height object| google_js_reporting_queue number| google_srt object| google_logging_queue object| google_ad_modifications object| ggeac object| google_persistent_state_async boolean| google_measure_js_timing object| google_reactive_ads_global_state object| google_sa_queue function| google_process_slots number| google_unique_id object| google_ad_block object| google_ad_channel object| google_ad_format object| google_ad_host object| google_ad_host_channel object| google_ad_host_tier_id object| google_ad_layout object| google_ad_layout_key object| google_ad_output object| google_ad_region object| google_ad_section object| google_ad_type object| google_ad_unit_key object| google_ad_dom_fingerprint object| google_ad_semantic_area object| google_placement_id object| google_daaos_ts object| google_erank object| google_adtest object| google_allow_expandable_ads object| google_alternate_ad_url object| google_alternate_color object| google_apsail object| google_captcha_token object| google_city object| google_color_bg object| google_color_border object| google_color_line object| google_color_link object| google_color_text object| google_color_url object| google_container_id object| google_content_recommendation_ad_positions object| google_content_recommendation_columns_num object| google_content_recommendation_rows_num object| google_content_recommendation_ui_type object| google_content_recommendation_use_square_imgs object| google_contents object| google_country object| google_cpm object| google_ctr_threshold object| google_cust_age object| google_cust_ch object| google_cust_criteria object| google_cust_gender object| google_cust_id object| google_cust_interests object| google_cust_job object| google_cust_l object| google_cust_lh object| google_cust_u_url object| google_disable_video_autoplay object| google_enable_content_recommendations object| google_enable_ose object| google_encoding object| google_font_face object| google_font_size object| google_frame_id object| google_full_width_responsive_allowed object| efwr object| google_full_width_responsive object| gfwroh object| gfwrow object| gfwroml object| gfwromr object| gfwroz object| gfwrnh object| gfwrnwer object| gfwrnher object| google_gl object| google_hints object| google_image_size object| google_kw object| google_kw_type object| google_language object| google_loeid object| google_max_num_ads object| google_max_radlink_len object| google_max_responsive_height object| google_ml_rank object| google_mtl object| google_native_ad_template object| google_native_settings_key object| google_num_radlinks object| google_num_radlinks_per_unit object| google_override_format object| google_page_url object| google_pgb_reactive object| google_pucrd object| google_referrer_url object| google_region object| google_resizing_allowed object| google_resizing_height object| google_resizing_width object| rpe object| google_responsive_formats object| google_responsive_auto_format object| armr object| google_rl_dest_url object| google_rl_filtering object| google_rl_mode object| google_rt object| google_safe object| google_safe_for_responsive_override object| google_video_play_muted object| google_source_type object| google_tag_for_child_directed_treatment object| google_tag_for_under_age_of_consent object| google_tag_origin object| google_tag_partner object| google_targeting object| google_tfs object| google_video_doc_id object| google_video_product_type object| google_webgl_support object| google_package object| google_debug_params object| dash object| google_restrict_data_processing object| google_ad_public_floor object| google_ad_private_floor object| google_traffic_source object| easpi object| scsals object| asntpc object| asmat object| asptt object| asro object| asacml object| asrc object| srtr object| easppi object| asiscm object| asla object| asaa object| google_shadow_mode boolean| google_apltlad object| google_sv_map function| initializeColorBox function| get_more_questions function| post_question function| ask_another_question function| follow_me function| unfollow_me function| deleteResponse function| likeUnlike function| update_inbox_count function| chageCharacterCount object| _gaq function| google_sa_impl boolean| _gfp_p_ function| processGoogleToken object| googleToken object| googleIMState number| google_global_correlator object| google_prev_clients object| gaGlobal object| ampInaboxIframes object| ampInaboxPendingMessages object| _gat object| adsbygoogle number| tmod object| google_ama_state function| google_spfd number| google_rum_task_id_counter object| GoogleGcLKhOms object| google_image_requests

9 Cookies

Domain/Path Name / Value
.qooh.me/ Name: PHPSESSID
Value: s07g9ctbsv8gvs04ee2u8qn0i5
.qooh.me/ Name: __utma
Value: 3998191.1362447615.1688650042.1688650042.1688650042.1
.qooh.me/ Name: __utmc
Value: 3998191
.qooh.me/ Name: __utmz
Value: 3998191.1688650042.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none)
.qooh.me/ Name: __utmt
Value: 1
.qooh.me/ Name: __utmb
Value: 3998191.1.10.1688650042
.qooh.me/ Name: __gads
Value: ID=c5a7928d4f51854c-227344fe86e20085:T=1688650041:RT=1688650041:S=ALNI_Mbuja_4dtS1QrPJ2U1ypY-PKbpbmw
.qooh.me/ Name: __gpi
Value: UID=00000c374f2d2a48:T=1688650041:RT=1688650041:S=ALNI_MZjpG9MLNhJE5UwA_khFeZZKrz_fw
.doubleclick.net/ Name: IDE
Value: AHWqTUltxkAA17BEj-HrCd_HWTV4GpSY4P7rX96nGLwLL1kT4HngDNG_rs1RgrEu46E

Indicators

This is a term in the security industry to describe indicators such as IPs, Domains, Hashes, etc. This does not imply that any of these indicate malicious activity.

adservice.google.com
googleads.g.doubleclick.net
pagead2.googlesyndication.com
partner.googleadservices.com
qooh.me
tpc.googlesyndication.com
www.google-analytics.com
www.google.com
142.250.185.226
142.250.186.161
142.250.186.34
142.250.74.194
172.217.16.194
172.217.16.196
172.217.16.206
188.114.97.3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