Report - cidr.sh

Report Overview

Submitted URL
cidr.sh
IP
192.64.119.78
ASN
#22612 NAMECHEAP-NET
Submitted
2024-05-10 19:57:31
Access
public
Website Title
cidr.sh - cidr Ressurser og informasjon
Final URL
www.cidr.sh/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
4
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cidr.sh	unknown	unknown	No data	No data	636 B	550 B	192.64.119.78
www.cidr.sh	unknown	unknown	No data	No data	1.1 kB	16 kB	91.195.240.19
img.sedoparking.com	54200	2001-09-18	2013-04-23	2024-05-09	1.2 kB	50 kB	205.234.175.175
www.google.com	7	1997-09-15	2015-05-10	2024-03-23	369 B	75 kB	142.250.74.132
www.adsensecustomsearchads.com	unknown	2011-01-28	2015-09-02	2024-05-09	5.2 kB	84 kB	216.58.211.14
afs.googleusercontent.com	12123	2008-11-17	2013-05-06	2024-05-09	995 B	2.1 kB	142.250.74.97

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-05-10 19:57:19	low	192.64.119.78	Client IP	ET INFO Namecheap URL Forward
2024-05-10 19:57:19	low	192.64.119.78	Client IP	ET INFO Namecheap URL Forward
2024-05-10 19:57:20	low	192.64.119.78	Client IP	ET INFO Namecheap URL Forward
2024-05-10 19:57:20	low	192.64.119.78	Client IP	ET INFO Namecheap URL Forward

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (7)

	URL	Size	First Seen	Last Seen
	www.cidr.sh/	2.9 kB	2024-05-10	2024-05-10
Pretty URL www.cidr.sh/ IP 91.195.240.19 ASN #47846 SEDO GmbH Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-10 21:57:38 Last Seen2024-05-10 21:57:38 Times Seen1 Hash 8c7bb04c7887b65b760ed3cb8bcdf86b 43e50671e00a2ec3a9d0405492c052a2df7a5a87 158504a67adae53bc8193be3b3cdc19521ff2d52dd3d1cf1c7ff8133cda4b700 Loading...

	www.google.com/adsense/domains/caf.js?abp=1&YEr3CiF6AuQqLspNobyal3ji0SyqxBLn=true	190 kB	2024-05-09	2024-05-15
Pretty URL www.google.com/adsense/domains/caf.js?abp=1&YEr3CiF6AuQqLspNobyal3ji0SyqxBLn=true IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-09 21:53:00 Last Seen2024-05-15 18:16:15 Times Seen197 Hash 0669d214fbac2d5fdfb442d3e2820166 92c480ba0f0a8151942d26cee930bb35260b1cc6 b79ad37bb7365a54e1522b6fa825fbb9387c37040bc15725ff40465a4957b94c Loading...

	www.cidr.sh/	622 B	2023-03-07	2024-06-04
Pretty URL www.cidr.sh/ IP 91.195.240.19 ASN #47846 SEDO GmbH Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:15 Last Seen2024-06-04 06:29:03 Times Seen8587 Hash a250fbc5a068488660893f64bcbd3883 a1b5f3c0b8e3d1d4b24c80a2b0ec26e1bfdb710b c23bcb1a9582fa5e6a7640914593be32834a9f9c9996d30c430906c46a448b49 Loading...

	www.cidr.sh/	5.5 kB	2024-01-10	2024-05-23
Pretty URL www.cidr.sh/ IP 91.195.240.19 ASN #47846 SEDO GmbH Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-10 16:33:42 Last Seen2024-05-23 10:48:17 Times Seen8191 Hash 8dea1c8dd04f9474489541bca012175b ada487edd0cde69a3b8dc8fc0d15a393ac865e65 f1b4243e2948e50bd1024644673f303d9e5a14873f86ae05fd3e27b55009ddb1 Loading...

	www.adsensecustomsearchads.com/afs/ads/i/iframe.html	1.3 kB	2023-04-05	2024-06-04
Pretty URL www.adsensecustomsearchads.com/afs/ads/i/iframe.html IP 216.58.211.14 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-05 04:36:39 Last Seen2024-06-04 06:29:03 Times Seen25907 Hash 33839cb72649c81ab58b763c95b4a163 0c9b62881e660fded013cee58439ae287690065a cdded269406c9b2b49a3066d12e75913abf338cdd7fa00e31fff299efef1cb76 Loading...

	www.adsensecustomsearchads.com/afs/ads?adsafe=low&adtest=off&psid=3259787283&channel=exp-0051%2Cauxa-control-1%2C44786252&client=dp-sedo85_3ph&r=m&hl=no&ivt=0&rpbu=http%3A%2F%2Fwww.cidr.sh%2Fcaf%2F%3Fses%3DY3JlPTE3MTUzNzEwMzAmdGNpZD13d3cuY2lkci5zaDY2M2U3YzE2NGVjZGQxLjQyMTM3NDY0JnRhc2s9c2VhcmNoJmRvbWFpbj1jaWRyLnNoJmFfaWQ9MyZzZXNzaW9uPUc5T1VnUno0cW9wSVZqaHg1MXlO&type=3&uiopt=false&swp=as-drid-2280784292183247&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301437%2C17301439%2C17301442&client_gdprApplies=1&format=r3%7Cs&nocache=2951715371030761&num=0&output=afd_ads&domain_name=www.cidr.sh&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1715371030771&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=1146&frm=0&uio=--&cont=rb-default&drt=0&jsid=caf&jsv=631415066&rurl=http%3A%2F%2Fwww.cidr.sh%2F	898 B	2024-05-10	2024-05-10
Pretty URL www.adsensecustomsearchads.com/afs/ads?adsafe=low&adtest=off&psid=3259787283&channel=exp-0051%2Cauxa-control-1%2C44786252&client=dp-sedo85_3ph&r=m&hl=no&ivt=0&rpbu=http%3A%2F%2Fwww.cidr.sh%2Fcaf%2F%3Fses%3DY3JlPTE3MTUzNzEwMzAmdGNpZD13d3cuY2lkci5zaDY2M2U3YzE2NGVjZGQxLjQyMTM3NDY0JnRhc2s9c2VhcmNoJmRvbWFpbj1jaWRyLnNoJmFfaWQ9MyZzZXNzaW9uPUc5T1VnUno0cW9wSVZqaHg1MXlO&type=3&uiopt=false&swp=as-drid-2280784292183247&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301437%2C17301439%2C17301442&client_gdprApplies=1&format=r3%7Cs&nocache=2951715371030761&num=0&output=afd_ads&domain_name=www.cidr.sh&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1715371030771&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=1146&frm=0&uio=--&cont=rb-default&drt=0&jsid=caf&jsv=631415066&rurl=http%3A%2F%2Fwww.cidr.sh%2F IP 216.58.211.14 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-10 21:57:38 Last Seen2024-05-10 21:57:38 Times Seen1 Hash deb78ecaff264cab07523614f89afdcd c8529a6bc74529d4bb0c105904ef0894c940482b a641497412efdda01fc44274d4e474f0a623dfde8cd526278e9d9b69d70d7a57 Loading...

	www.adsensecustomsearchads.com/adsense/domains/caf.js	190 kB	2024-05-08	2024-05-14
Pretty URL www.adsensecustomsearchads.com/adsense/domains/caf.js IP 216.58.211.14 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-08 18:25:16 Last Seen2024-05-14 10:32:21 Times Seen230 Hash 12a17891bfabcc5b06c166af8467a7f3 c0d91b04c2d5e8f69c0e2610c83ad434c6f80596 2cfa82bad9a6ee8932723fa5ea2ed789aa92673b4d35de4e752524154a873134 Loading...

HTTP Transactions (18)

URL IP Response Size

cidr.sh/

192.64.119.78

302 Found

42 B

URL User Request GET HTTP/1.1
cidr.sh/
IP
192.64.119.78:80
ASN
#22612 NAMECHEAP-NET

File type
HTML document, ASCII text
Size
42 B (42 bytes)
Hash
fce19adca818d147c0797be2880a3fef
5c558fdc86a12d9c700773e9d75c8dda7329eed5
a80530b1a412294d082bab4798f2cdb2f670d6b4f2a165508eef164c527b01c8

Detections

NIDS	Severity	Alert
suricata	low	ET INFO Namecheap URL Forward
suricata	low	ET INFO Namecheap URL Forward
suricata	low	ET INFO Namecheap URL Forward
suricata	low	ET INFO Namecheap URL Forward

HTTP Headers

GET / HTTP/1.1
Host: cidr.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Date: Fri, 10 May 2024 19:57:09 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 42
Connection: keep-alive
Location: http://www.cidr.sh/
X-Served-By: Namecheap URL Forward
Server: namecheap-nginx

www.cidr.sh/

91.195.240.19

7.3 kB

URL User Request GET
www.cidr.sh/
IP
91.195.240.19:0
ASN
#47846 SEDO GmbH

File type
HTML document, Unicode text, UTF-8 text, with very long lines (10840)
Size
7.3 kB (7292 bytes)
Hash
227db9bcfcb54e344a36c27fc2835591
b7deb447793d351792555dc1af62336f49dd0c24
badaec784e302707b6e3844f766d5bb48ba52731129293471464136f3aea1f4b

HTTP Headers

GET / HTTP/1.1
Host: www.cidr.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Fri, 10 May 2024 19:57:09 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
vary: Accept-Encoding
x-powered-by: PHP/8.1.17
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANnylWw2vLY4hUn9w06zQKbhKBfvjFUCsdFlb6TdQhxb9RXWXuI4t31c+o8fYOv/s8q1LGPga3DE1L/tHU4LENMCAwEAAQ==_tlRQ9NJThqi4iV0vl4fe66aRRneG4mtub8aIHiSLhjj64CbOkucl69YzptPpr7ZXrKY6CQH9p7rmWHb0eI6ZqQ==
last-modified: Fri, 10 May 2024 19:57:09 GMT
x-cache-miss-from: parking-7cbf88ff6b-bsk5t
server: NginX
content-encoding: gzip

cidr.sh/

192.64.119.78

302 Found

42 B

URL User Request GET HTTP/1.1
cidr.sh/
IP
192.64.119.78:80
ASN
#22612 NAMECHEAP-NET

File type
HTML document, ASCII text
Size
42 B (42 bytes)
Hash
fce19adca818d147c0797be2880a3fef
5c558fdc86a12d9c700773e9d75c8dda7329eed5
a80530b1a412294d082bab4798f2cdb2f670d6b4f2a165508eef164c527b01c8

Detections

NIDS	Severity	Alert
suricata	low	ET INFO Namecheap URL Forward
suricata	low	ET INFO Namecheap URL Forward
suricata	low	ET INFO Namecheap URL Forward
suricata	low	ET INFO Namecheap URL Forward

HTTP Headers

GET / HTTP/1.1
Host: cidr.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Date: Fri, 10 May 2024 19:57:10 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 42
Connection: keep-alive
Location: http://www.cidr.sh/
X-Served-By: Namecheap URL Forward
Server: namecheap-nginx

www.cidr.sh/

91.195.240.19

7.3 kB

URL User Request GET
www.cidr.sh/
IP
91.195.240.19:0
ASN
#47846 SEDO GmbH

File type
HTML document, Unicode text, UTF-8 text, with very long lines (10840)
Size
7.3 kB (7302 bytes)
Hash
e32339874047f4b43600e5fca2d4da82
1aea5d1e1cee98be528098df6ce31d5693825a9c
4bf4d77996495e933fe80678674ed5a2635e5397805e880005af2dbfda006248

HTTP Headers

GET / HTTP/1.1
Host: www.cidr.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Fri, 10 May 2024 19:57:10 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
vary: Accept-Encoding
x-powered-by: PHP/8.1.17
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANnylWw2vLY4hUn9w06zQKbhKBfvjFUCsdFlb6TdQhxb9RXWXuI4t31c+o8fYOv/s8q1LGPga3DE1L/tHU4LENMCAwEAAQ==_tlRQ9NJThqi4iV0vl4fe66aRRneG4mtub8aIHiSLhjj64CbOkucl69YzptPpr7ZXrKY6CQH9p7rmWHb0eI6ZqQ==
last-modified: Fri, 10 May 2024 19:57:10 GMT
x-cache-miss-from: parking-7cbf88ff6b-7flh7
server: NginX
content-encoding: gzip

img.sedoparking.com/templates/bg/arrows-curved.png

205.234.175.175

200 OK

14 kB

URL GET HTTP/1.1
img.sedoparking.com/templates/bg/arrows-curved.png
IP
205.234.175.175:80
ASN
#30081 CACHENETWORKS

Requested by
http://www.cidr.sh/

File type
PNG image data, 413 x 594, 8-bit/color RGBA, non-interlaced
Size
14 kB (13502 bytes)
Hash
107694ee1e94990d97b7e58651ffd6a0
7dd9ae7badf78be01ea0623df1e90171348716ff
7aa2a3e9a9575a27f5593c3b0357423128c468a46ed20d284ce5a21555ee67bc

HTTP Headers

GET /templates/bg/arrows-curved.png HTTP/1.1
Host: img.sedoparking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cidr.sh/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 19:57:10 GMT
Content-Type: image/png
Content-Length: 13502
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=604800
Expires: Fri, 17 May 2024 19:57:10 GMT
X-CFHash: "107694ee1e94990d97b7e58651ffd6a0"
X-CFF: B
Last-Modified: Tue, 12 Oct 2021 05:19:02 GMT
X-CF3: H
CF4Age: 238283
x-cf-tsc: 1711139574
CF4ttl: 31297716.000
X-CF2: H
Server: CFS 1124
X-CF-ReqID: 9e62de85cebe718713c48ed0d05b570d
X-CF1: 11696:fD.arn1:cf:nom:cacheN.arn1-01:H
Accept-Ranges: bytes

img.sedoparking.com/templates/images/hero_nc.svg

205.234.175.175

200 OK

20 kB

URL GET HTTP/2
img.sedoparking.com/templates/images/hero_nc.svg
IP
205.234.175.175:443
ASN
#30081 CACHENETWORKS

Requested by
http://www.cidr.sh/
Certificate
IssuerGlobalSign nv-sa
Subject*.cachefly.net
Fingerprint0F:4E:B2:D7:96:B9:94:D0:35:66:76:6C:4B:16:18:49:DE:42:80:71
ValidityMon, 13 Nov 2023 19:46:02 GMT - Sat, 14 Dec 2024 19:46:01 GMT

File type
SVG Scalable Vector Graphics image
Size
20 kB (20346 bytes)
Hash
5a2c392e7acdf6e9de6e00129500503c
c8d0f80381e4ce180b5eb3c4c98539907292a7bb
878da09a057ec8f1775cdc522e5f7ec44966df547a87a9c29826ba114833c24b

HTTP Headers

GET /templates/images/hero_nc.svg HTTP/1.1
Host: img.sedoparking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cidr.sh/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 10 May 2024 19:57:10 GMT
content-type: image/svg+xml
content-length: 20346
access-control-allow-origin: *
x-cff: B
last-modified: Thu, 05 Oct 2023 09:16:15 GMT
vary: Accept-Encoding
x-cf3: H
cf4age: 18658
x-cf-tsc: 1711139347
cf4ttl: 31517342.000
content-encoding: gzip
x-cf2: H
server: CFS 1124
x-cf-reqid: 13fcf4a081bc394e795a72ff48fade3e
x-cf1: 11696:fC.arn1:nom:cacheN.arn1-01:H
accept-ranges: bytes
X-Firefox-Spdy: h2

www.google.com/adsense/domains/caf.js?abp=1&YEr3CiF6AuQqLspNobyal3ji0SyqxBLn=true

142.250.74.132

200 OK

74 kB

URL GET HTTP/1.1
www.google.com/adsense/domains/caf.js?abp=1&YEr3CiF6AuQqLspNobyal3ji0SyqxBLn=true
IP
142.250.74.132:80
ASN
#15169 GOOGLE

Requested by
http://www.cidr.sh/

File type
JavaScript source, ASCII text, with very long lines (2247)
Size
74 kB (74017 bytes)
Hash
0669d214fbac2d5fdfb442d3e2820166
92c480ba0f0a8151942d26cee930bb35260b1cc6
b79ad37bb7365a54e1522b6fa825fbb9387c37040bc15725ff40465a4957b94c

HTTP Headers

GET /adsense/domains/caf.js?abp=1&YEr3CiF6AuQqLspNobyal3ji0SyqxBLn=true HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cidr.sh/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Type: text/javascript; charset=UTF-8
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="ads-afs-ui"
Report-To: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
Date: Fri, 10 May 2024 19:57:10 GMT
Expires: Fri, 10 May 2024 19:57:10 GMT
Cache-Control: private, max-age=3600
ETag: "7137048562612556788"
X-Content-Type-Options: nosniff
Link: <https://www.adsensecustomsearchads.com>; rel="preconnect"
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: sffe
X-XSS-Protection: 0

www.cidr.sh/search/tsc.php?200=NTM5NTc3NTYw&21=OTEuOTAuNDIuMTU0&681=MTcxNTM3MTAzMGY3M2QwNGJkZGEwMDg5MWY5NTFkMTNlYjA0MmFjMjdm&crc=99b69d0d54920be8413cb4fb9310b9fd21198898&cv=1

91.195.240.19

200 OK

0 B

URL GET HTTP/1.1
www.cidr.sh/search/tsc.php?200=NTM5NTc3NTYw&21=OTEuOTAuNDIuMTU0&681=MTcxNTM3MTAzMGY3M2QwNGJkZGEwMDg5MWY5NTFkMTNlYjA0MmFjMjdm&crc=99b69d0d54920be8413cb4fb9310b9fd21198898&cv=1
IP
91.195.240.19:80
ASN
#47846 SEDO GmbH

Requested by
http://www.cidr.sh/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /search/tsc.php?200=NTM5NTc3NTYw&21=OTEuOTAuNDIuMTU0&681=MTcxNTM3MTAzMGY3M2QwNGJkZGEwMDg5MWY5NTFkMTNlYjA0MmFjMjdm&crc=99b69d0d54920be8413cb4fb9310b9fd21198898&cv=1 HTTP/1.1
Host: www.cidr.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cidr.sh/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Fri, 10 May 2024 19:57:10 GMT
content-type: text/html; charset=UTF-8
content-length: 0
x-powered-by: PHP/8.1.17
x-cache-miss-from: parking-7cbf88ff6b-bsk5t
server: NginX

img.sedoparking.com/templates/logos/sedo_logo.png

205.234.175.175

200 OK

15 kB

URL GET HTTP/1.1
img.sedoparking.com/templates/logos/sedo_logo.png
IP
205.234.175.175:80
ASN
#30081 CACHENETWORKS

Requested by
http://www.cidr.sh/

File type
MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel
Size
15 kB (15086 bytes)
Hash
def00c11b1596db4efee6a9fbe64fc27
bd298981e6d8d7e4ffa18abcf687041f4246672d
95c427fa3143b1896faf42a6406686ce7602cb39052081bb32d12b51c9e047e4

HTTP Headers

GET /templates/logos/sedo_logo.png HTTP/1.1
Host: img.sedoparking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cidr.sh/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 19:57:10 GMT
Content-Type: image/png
Content-Length: 15086
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=604800
Expires: Fri, 17 May 2024 19:57:10 GMT
X-CFHash: "def00c11b1596db4efee6a9fbe64fc27"
X-CFF: B
Last-Modified: Mon, 11 Jan 2021 07:44:34 GMT
X-CF3: H
CF4Age: 21299
x-cf-tsc: 1711144658
CF4ttl: 31514700.000
X-CF2: H
Server: CFS 1124
X-CF-ReqID: 3cdfa0a6840659909850eb1300ea6e9f
X-CF1: 11696:fD.arn1:cf:nom:cacheN.arn1-01:H
Accept-Ranges: bytes

www.adsensecustomsearchads.com/afs/ads/i/iframe.html

216.58.211.14

200 OK

729 B

URL GET HTTP/2
www.adsensecustomsearchads.com/afs/ads/i/iframe.html
IP
216.58.211.14:443
ASN
#15169 GOOGLE

Requested by
http://www.cidr.sh/
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
Fingerprint15:D1:F9:FD:F4:47:59:FF:66:C1:EB:18:18:71:8F:7D:9A:38:20:14
ValidityTue, 16 Apr 2024 03:24:35 GMT - Tue, 09 Jul 2024 03:24:34 GMT

File type
HTML document, ASCII text, with very long lines (1559)
Size
729 B (729 bytes)
Hash
e82aa0ab063c0be9effaf4aff5913cbf
900623d6005113e018c23c01f98eaec6c735445a
50cecfc04ff983ef81af62762a9eb712e5386b55a884fb3cf4dc115fbc858df2

HTTP Headers

GET /afs/ads/i/iframe.html HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cidr.sh/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/html
content-security-policy: script-src 'nonce-qii40CkL6Ie1S5vIjHa7PA' 'report-sample' 'strict-dynamic' 'unsafe-eval' 'unsafe-inline' http: https:; object-src 'none'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui; base-uri 'none'
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
content-length: 729
date: Fri, 10 May 2024 19:57:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
last-modified: Tue, 12 Mar 2024 06:00:00 GMT
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.adsensecustomsearchads.com/afs/ads?adsafe=low&adtest=off&psid=3259787283&channel=exp-0051%2Cauxa-control-1%2C44786252&client=dp-sedo85_3ph&r=m&hl=no&ivt=0&rpbu=http%3A%2F%2Fwww.cidr.sh%2Fcaf%2F%3Fses%3DY3JlPTE3MTUzNzEwMzAmdGNpZD13d3cuY2lkci5zaDY2M2U3YzE2NGVjZGQxLjQyMTM3NDY0JnRhc2s9c2VhcmNoJmRvbWFpbj1jaWRyLnNoJmFfaWQ9MyZzZXNzaW9uPUc5T1VnUno0cW9wSVZqaHg1MXlO&type=3&uiopt=false&swp=as-drid-2280784292183247&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301437%2C17301439%2C17301442&client_gdprApplies=1&format=r3%7Cs&nocache=2951715371030761&num=0&output=afd_ads&domain_name=www.cidr.sh&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1715371030771&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=1146&frm=0&uio=--&cont=rb-default&drt=0&jsid=caf&jsv=631415066&rurl=http%3A%2F%2Fwww.cidr.sh%2F

216.58.211.14

200 OK

2.9 kB

URL GET HTTP/2
www.adsensecustomsearchads.com/afs/ads?adsafe=low&adtest=off&psid=3259787283&channel=exp-0051%2Cauxa-control-1%2C44786252&client=dp-sedo85_3ph&r=m&hl=no&ivt=0&rpbu=http%3A%2F%2Fwww.cidr.sh%2Fcaf%2F%3Fses%3DY3JlPTE3MTUzNzEwMzAmdGNpZD13d3cuY2lkci5zaDY2M2U3YzE2NGVjZGQxLjQyMTM3NDY0JnRhc2s9c2VhcmNoJmRvbWFpbj1jaWRyLnNoJmFfaWQ9MyZzZXNzaW9uPUc5T1VnUno0cW9wSVZqaHg1MXlO&type=3&uiopt=false&swp=as-drid-2280784292183247&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301437%2C17301439%2C17301442&client_gdprApplies=1&format=r3%7Cs&nocache=2951715371030761&num=0&output=afd_ads&domain_name=www.cidr.sh&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1715371030771&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=1146&frm=0&uio=--&cont=rb-default&drt=0&jsid=caf&jsv=631415066&rurl=http%3A%2F%2Fwww.cidr.sh%2F
IP
216.58.211.14:443
ASN
#15169 GOOGLE

Requested by
http://www.cidr.sh/
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
Fingerprint15:D1:F9:FD:F4:47:59:FF:66:C1:EB:18:18:71:8F:7D:9A:38:20:14
ValidityTue, 16 Apr 2024 03:24:35 GMT - Tue, 09 Jul 2024 03:24:34 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (13572)
Size
2.9 kB (2851 bytes)
Hash
0a46d3c16484893aa1855a430c652373
366cc3e4ae88c04cb79f47060772220ce231b3b0
e752ee343bfc51438cb619ae9c66fb9be1c06a396fe148a115803fa6b472895b

HTTP Headers

GET /afs/ads?adsafe=low&adtest=off&psid=3259787283&channel=exp-0051%2Cauxa-control-1%2C44786252&client=dp-sedo85_3ph&r=m&hl=no&ivt=0&rpbu=http%3A%2F%2Fwww.cidr.sh%2Fcaf%2F%3Fses%3DY3JlPTE3MTUzNzEwMzAmdGNpZD13d3cuY2lkci5zaDY2M2U3YzE2NGVjZGQxLjQyMTM3NDY0JnRhc2s9c2VhcmNoJmRvbWFpbj1jaWRyLnNoJmFfaWQ9MyZzZXNzaW9uPUc5T1VnUno0cW9wSVZqaHg1MXlO&type=3&uiopt=false&swp=as-drid-2280784292183247&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301437%2C17301439%2C17301442&client_gdprApplies=1&format=r3%7Cs&nocache=2951715371030761&num=0&output=afd_ads&domain_name=www.cidr.sh&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1715371030771&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=1146&frm=0&uio=--&cont=rb-default&drt=0&jsid=caf&jsv=631415066&rurl=http%3A%2F%2Fwww.cidr.sh%2F HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cidr.sh/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-disposition: inline
date: Fri, 10 May 2024 19:57:10 GMT
expires: Fri, 10 May 2024 19:57:10 GMT
cache-control: private, max-age=3600
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-hyP3loyQ9iUTgL8Fxb-xFA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
content-encoding: br
server: gws
content-length: 2851
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.adsensecustomsearchads.com/adsense/domains/caf.js

216.58.211.14

200 OK

74 kB

URL GET HTTP/3
www.adsensecustomsearchads.com/adsense/domains/caf.js
IP
216.58.211.14:443
ASN
#15169 GOOGLE

Requested by
https://www.adsensecustomsearchads.com/afs/ads?adsafe=low&adtest=off&psid=3259787283&channel=exp-0051%2Cauxa-control-1%2C44786252&client=dp-sedo85_3ph&r=m&hl=no&ivt=0&rpbu=http%3A%2F%2Fwww.cidr.sh%2Fcaf%2F%3Fses%3DY3JlPTE3MTUzNzEwMzAmdGNpZD13d3cuY2lkci5zaDY2M2U3YzE2NGVjZGQxLjQyMTM3NDY0JnRhc2s9c2VhcmNoJmRvbWFpbj1jaWRyLnNoJmFfaWQ9MyZzZXNzaW9uPUc5T1VnUno0cW9wSVZqaHg1MXlO&type=3&uiopt=false&swp=as-drid-2280784292183247&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301437%2C17301439%2C17301442&client_gdprApplies=1&format=r3%7Cs&nocache=2951715371030761&num=0&output=afd_ads&domain_name=www.cidr.sh&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1715371030771&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=1146&frm=0&uio=--&cont=rb-default&drt=0&jsid=caf&jsv=631415066&rurl=http%3A%2F%2Fwww.cidr.sh%2F
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
Fingerprint15:D1:F9:FD:F4:47:59:FF:66:C1:EB:18:18:71:8F:7D:9A:38:20:14
ValidityTue, 16 Apr 2024 03:24:35 GMT - Tue, 09 Jul 2024 03:24:34 GMT

File type
gzip compressed data, max compression
Size
74 kB (74479 bytes)
Hash
20687c331ec28f9f372c60468be95a69
e7a24070d3e04c72aaf747a526be2ca06969b4b2
8ef0781a571dcbd69dcb4135fee6ae1b60bfbc8bab8bc5dc15ba44580f490e70

HTTP Headers

GET /adsense/domains/caf.js HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.adsensecustomsearchads.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Fri, 10 May 2024 19:57:11 GMT
expires: Fri, 10 May 2024 19:57:11 GMT
cache-control: private, max-age=3600
etag: "6924056909190321256"
x-content-type-options: nosniff
link: <https://www.adsensecustomsearchads.com>; rel="preconnect"
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff

142.250.74.97

200 OK

174 B

URL GET HTTP/2
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://www.adsensecustomsearchads.com/afs/ads?adsafe=low&adtest=off&psid=3259787283&channel=exp-0051%2Cauxa-control-1%2C44786252&client=dp-sedo85_3ph&r=m&hl=no&ivt=0&rpbu=http%3A%2F%2Fwww.cidr.sh%2Fcaf%2F%3Fses%3DY3JlPTE3MTUzNzEwMzAmdGNpZD13d3cuY2lkci5zaDY2M2U3YzE2NGVjZGQxLjQyMTM3NDY0JnRhc2s9c2VhcmNoJmRvbWFpbj1jaWRyLnNoJmFfaWQ9MyZzZXNzaW9uPUc5T1VnUno0cW9wSVZqaHg1MXlO&type=3&uiopt=false&swp=as-drid-2280784292183247&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301437%2C17301439%2C17301442&client_gdprApplies=1&format=r3%7Cs&nocache=2951715371030761&num=0&output=afd_ads&domain_name=www.cidr.sh&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1715371030771&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=1146&frm=0&uio=--&cont=rb-default&drt=0&jsid=caf&jsv=631415066&rurl=http%3A%2F%2Fwww.cidr.sh%2F
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint7B:64:D0:4F:29:87:0A:A8:90:15:F1:9F:B6:8F:FB:D6:AC:D2:76:56
ValidityTue, 16 Apr 2024 04:13:47 GMT - Tue, 09 Jul 2024 04:13:46 GMT

File type
SVG Scalable Vector Graphics image
Size
174 B (174 bytes)
Hash
11b3089d616633ca6b73b57aa877eeb4
07632f63e06b30d9b63c97177d3a8122629bda9b
809fb4619d2a2f1a85dbda8cc69a7f1659215212d708a098d62150eee57070c1

HTTP Headers

GET /ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.adsensecustomsearchads.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 174
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 May 2024 15:08:10 GMT
expires: Sat, 11 May 2024 14:08:10 GMT
cache-control: public, max-age=82800
age: 17341
last-modified: Thu, 02 Nov 2023 22:48:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%231967d2

142.250.74.97

200 OK

272 B

URL GET HTTP/2
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%231967d2
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://www.adsensecustomsearchads.com/afs/ads?adsafe=low&adtest=off&psid=3259787283&channel=exp-0051%2Cauxa-control-1%2C44786252&client=dp-sedo85_3ph&r=m&hl=no&ivt=0&rpbu=http%3A%2F%2Fwww.cidr.sh%2Fcaf%2F%3Fses%3DY3JlPTE3MTUzNzEwMzAmdGNpZD13d3cuY2lkci5zaDY2M2U3YzE2NGVjZGQxLjQyMTM3NDY0JnRhc2s9c2VhcmNoJmRvbWFpbj1jaWRyLnNoJmFfaWQ9MyZzZXNzaW9uPUc5T1VnUno0cW9wSVZqaHg1MXlO&type=3&uiopt=false&swp=as-drid-2280784292183247&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301437%2C17301439%2C17301442&client_gdprApplies=1&format=r3%7Cs&nocache=2951715371030761&num=0&output=afd_ads&domain_name=www.cidr.sh&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1715371030771&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=1146&frm=0&uio=--&cont=rb-default&drt=0&jsid=caf&jsv=631415066&rurl=http%3A%2F%2Fwww.cidr.sh%2F
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint7B:64:D0:4F:29:87:0A:A8:90:15:F1:9F:B6:8F:FB:D6:AC:D2:76:56
ValidityTue, 16 Apr 2024 04:13:47 GMT - Tue, 09 Jul 2024 04:13:46 GMT

File type
SVG Scalable Vector Graphics image
Size
272 B (272 bytes)
Hash
a6ad6e65373db8c1b1f154c4c83f8ce5
84cc007d6d682c589e1e1f87482a5278830f3000
920a378947204498c122722933b3a4b67788a2b6fade8bd0d47cf830eeee0563

HTTP Headers

GET /ad_icons/standard/publisher_icon_image/search.svg?c=%231967d2 HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.adsensecustomsearchads.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 272
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 May 2024 15:44:19 GMT
expires: Sat, 11 May 2024 14:44:19 GMT
cache-control: public, max-age=82800
age: 15172
last-modified: Thu, 20 Jul 2023 22:48:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=tlpm21fasrs5&aqid=Fnw-ZrD2N7-sxdwPpKGC-Ag&psid=3259787283&pbt=bs&adbx=392&adby=413.04998779296875&adbh=553&adbw=496&adbah=178%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo85_3ph&errv=631415066&csala=18%7C0%7C736%7C90%7C72&lle=0&ifv=1&hpt=0

216.58.211.14

204 No Content

0 B

URL GET HTTP/3
www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=tlpm21fasrs5&aqid=Fnw-ZrD2N7-sxdwPpKGC-Ag&psid=3259787283&pbt=bs&adbx=392&adby=413.04998779296875&adbh=553&adbw=496&adbah=178%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo85_3ph&errv=631415066&csala=18%7C0%7C736%7C90%7C72&lle=0&ifv=1&hpt=0
IP
216.58.211.14:443
ASN
#15169 GOOGLE

Requested by
http://www.cidr.sh/
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
Fingerprint15:D1:F9:FD:F4:47:59:FF:66:C1:EB:18:18:71:8F:7D:9A:38:20:14
ValidityTue, 16 Apr 2024 03:24:35 GMT - Tue, 09 Jul 2024 03:24:34 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=tlpm21fasrs5&aqid=Fnw-ZrD2N7-sxdwPpKGC-Ag&psid=3259787283&pbt=bs&adbx=392&adby=413.04998779296875&adbh=553&adbw=496&adbah=178%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo85_3ph&errv=631415066&csala=18%7C0%7C736%7C90%7C72&lle=0&ifv=1&hpt=0 HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cidr.sh/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-awc-U9F0vGPUlsyFJI4mTQ' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Fri, 10 May 2024 19:57:13 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=ghtcid5u878x&aqid=Fnw-ZrD2N7-sxdwPpKGC-Ag&pbt=bs&adbx=490&adby=986.0499877929688&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo85_3ph&errv=631415066&csala=6%7C0%7C748%7C90%7C72&lle=0&ifv=1&hpt=0

216.58.211.14

204 No Content

0 B

URL GET HTTP/3
www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=ghtcid5u878x&aqid=Fnw-ZrD2N7-sxdwPpKGC-Ag&pbt=bs&adbx=490&adby=986.0499877929688&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo85_3ph&errv=631415066&csala=6%7C0%7C748%7C90%7C72&lle=0&ifv=1&hpt=0
IP
216.58.211.14:443
ASN
#15169 GOOGLE

Requested by
http://www.cidr.sh/
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
Fingerprint15:D1:F9:FD:F4:47:59:FF:66:C1:EB:18:18:71:8F:7D:9A:38:20:14
ValidityTue, 16 Apr 2024 03:24:35 GMT - Tue, 09 Jul 2024 03:24:34 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=ghtcid5u878x&aqid=Fnw-ZrD2N7-sxdwPpKGC-Ag&pbt=bs&adbx=490&adby=986.0499877929688&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo85_3ph&errv=631415066&csala=6%7C0%7C748%7C90%7C72&lle=0&ifv=1&hpt=0 HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cidr.sh/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-KJ4pu8Thf3CN3EdNRYmtPA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Fri, 10 May 2024 19:57:13 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: receive-cookie-deprecation=1; expires=Wed, 06-Nov-2024 19:57:13 GMT; path=/; Secure; HttpOnly; SameSite=none; Partitioned
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=ul8wsc8pcgm1&aqid=Fnw-ZrD2N7-sxdwPpKGC-Ag&pbt=bv&adbx=490&adby=986.0499877929688&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo85_3ph&errv=631415066&csala=6%7C0%7C748%7C90%7C72&lle=0&ifv=1&hpt=0

216.58.211.14

204 No Content

0 B

URL GET HTTP/3
www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=ul8wsc8pcgm1&aqid=Fnw-ZrD2N7-sxdwPpKGC-Ag&pbt=bv&adbx=490&adby=986.0499877929688&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo85_3ph&errv=631415066&csala=6%7C0%7C748%7C90%7C72&lle=0&ifv=1&hpt=0
IP
216.58.211.14:443
ASN
#15169 GOOGLE

Requested by
http://www.cidr.sh/
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
Fingerprint15:D1:F9:FD:F4:47:59:FF:66:C1:EB:18:18:71:8F:7D:9A:38:20:14
ValidityTue, 16 Apr 2024 03:24:35 GMT - Tue, 09 Jul 2024 03:24:34 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=ul8wsc8pcgm1&aqid=Fnw-ZrD2N7-sxdwPpKGC-Ag&pbt=bv&adbx=490&adby=986.0499877929688&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo85_3ph&errv=631415066&csala=6%7C0%7C748%7C90%7C72&lle=0&ifv=1&hpt=0 HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cidr.sh/
Cookie: receive-cookie-deprecation=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-_M89HntDVXDXmQ33gezVDw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Fri, 10 May 2024 19:57:13 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=sp2m0c19qv1q&aqid=Fnw-ZrD2N7-sxdwPpKGC-Ag&psid=3259787283&pbt=bv&adbx=392&adby=413.04998779296875&adbh=553&adbw=496&adbah=178%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo85_3ph&errv=631415066&csala=18%7C0%7C736%7C90%7C72&lle=0&ifv=1&hpt=0

216.58.211.14

204 No Content

0 B

URL GET HTTP/3
www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=sp2m0c19qv1q&aqid=Fnw-ZrD2N7-sxdwPpKGC-Ag&psid=3259787283&pbt=bv&adbx=392&adby=413.04998779296875&adbh=553&adbw=496&adbah=178%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo85_3ph&errv=631415066&csala=18%7C0%7C736%7C90%7C72&lle=0&ifv=1&hpt=0
IP
216.58.211.14:443
ASN
#15169 GOOGLE

Requested by
http://www.cidr.sh/
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
Fingerprint15:D1:F9:FD:F4:47:59:FF:66:C1:EB:18:18:71:8F:7D:9A:38:20:14
ValidityTue, 16 Apr 2024 03:24:35 GMT - Tue, 09 Jul 2024 03:24:34 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=sp2m0c19qv1q&aqid=Fnw-ZrD2N7-sxdwPpKGC-Ag&psid=3259787283&pbt=bv&adbx=392&adby=413.04998779296875&adbh=553&adbw=496&adbah=178%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo85_3ph&errv=631415066&csala=18%7C0%7C736%7C90%7C72&lle=0&ifv=1&hpt=0 HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cidr.sh/
Cookie: receive-cookie-deprecation=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-TPqWjT47DVVT5Ot_qCOmjg' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Fri, 10 May 2024 19:57:13 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (7)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (18)

URL User Request GET HTTP/1.1

IP

ASN

File type