Report - verifytocontinue.com/go/02294bee-935d-41fe-9d56-b040a0531460

Report Overview

Submitted URL
verifytocontinue.com/go/02294bee-935d-41fe-9d56-b040a0531460
IP
64.190.63.222
ASN
#47846 SEDO GmbH
Submitted
2024-05-02 03:58:18
Access
public
Website Title
verifytocontinue.com - Dette nettstedet er til salgs! - verifytocontinue Ressurser og informasjon
Final URL
verifytocontinue.com/go/02294bee-935d-41fe-9d56-b040a0531460
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.google.com	7	1997-09-15	2015-05-10	2024-03-23	460 B	82 kB	142.250.74.164
afs.googleusercontent.com	12123	2008-11-17	2013-05-06	2024-05-01	995 B	2.1 kB	142.250.74.97
img.sedoparking.com	54200	2001-09-18	2013-04-23	2024-05-01	906 B	29 kB	205.234.175.175
verifytocontinue.com	unknown	2023-01-20	2023-01-26	2024-04-18	1.1 kB	25 kB	64.190.63.222
www.adsensecustomsearchads.com	unknown	2011-01-28	2015-09-02	2024-05-01	5.3 kB	94 kB	216.58.211.14

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-02	medium	verifytocontinue.com	Sinkholed
2024-05-02	medium	verifytocontinue.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (7)

	URL	Size	First Seen	Last Seen
	www.adsensecustomsearchads.com/afs/ads/i/iframe.html	1.3 kB	2023-04-05	2024-05-17
Pretty URL www.adsensecustomsearchads.com/afs/ads/i/iframe.html IP 216.58.211.14 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-05 04:36:39 Last Seen2024-05-17 06:25:30 Times Seen23400 Hash 33839cb72649c81ab58b763c95b4a163 0c9b62881e660fded013cee58439ae287690065a cdded269406c9b2b49a3066d12e75913abf338cdd7fa00e31fff299efef1cb76 Loading...

	www.adsensecustomsearchads.com/adsense/domains/caf.js	190 kB	2024-05-01	2024-05-09
Pretty URL www.adsensecustomsearchads.com/adsense/domains/caf.js IP 216.58.211.14 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-01 23:23:36 Last Seen2024-05-09 21:37:37 Times Seen429 Hash 05cdc16af5144421b57e90bb7829bf6f 2c5532ffeffb3aeb0433090bd6ebde249135e980 f0b42282a575a397fe85ec9e664f66017cac3dfc4254fddb8517ae922994fbfb Loading...

	verifytocontinue.com/go/02294bee-935d-41fe-9d56-b040a0531460	3.2 kB	2024-05-02	2024-05-02
Pretty URL verifytocontinue.com/go/02294bee-935d-41fe-9d56-b040a0531460 IP 64.190.63.222 ASN #47846 SEDO GmbH Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-02 05:58:18 Last Seen2024-05-02 05:58:18 Times Seen1 Hash 4e7e747c6c09975575e0a66ca6f7feb3 7f7fcce6e52ada2c8ac4d7361895716f7d4cb53c b24c9c8474e215cdccfb8daf81494ac85fa8c5f179f975e70fca927986398228 Loading...

	www.google.com/adsense/domains/caf.js?abp=1&YEr3CiF6AuQqLspNobyal3ji0SyqxBLn=true	190 kB	2024-05-01	2024-05-09
Pretty URL www.google.com/adsense/domains/caf.js?abp=1&YEr3CiF6AuQqLspNobyal3ji0SyqxBLn=true IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-01 21:38:38 Last Seen2024-05-09 21:37:10 Times Seen411 Hash 2722fef5dc6d3ad3e6e7868d8905377f 467bbfcc0d5d992c33099e865dfe80b7b38ebe8c 2204775d9e848b8021fddc76c58fdbbefa5cb3f6079bd6d1eaf493cf0cfa5971 Loading...

	verifytocontinue.com/go/02294bee-935d-41fe-9d56-b040a0531460	622 B	2023-03-07	2024-05-17
Pretty URL verifytocontinue.com/go/02294bee-935d-41fe-9d56-b040a0531460 IP 64.190.63.222 ASN #47846 SEDO GmbH Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:10:36 Last Seen2024-05-17 00:45:41 Times Seen7340 Hash 4ddc86a1d8ae00753cc792ab72a58071 b405fd8562e0d0582f25f4b7ac6d180d72e0e935 4a5f92285fc4b884f74fbf249d3c256136ae5f4c387ba90230f0f357322a6d8d Loading...

	verifytocontinue.com/go/02294bee-935d-41fe-9d56-b040a0531460	5.5 kB	2024-01-10	2024-05-17
Pretty URL verifytocontinue.com/go/02294bee-935d-41fe-9d56-b040a0531460 IP 64.190.63.222 ASN #47846 SEDO GmbH Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-10 16:33:42 Last Seen2024-05-17 06:26:02 Times Seen7199 Hash 8dea1c8dd04f9474489541bca012175b ada487edd0cde69a3b8dc8fc0d15a393ac865e65 f1b4243e2948e50bd1024644673f303d9e5a14873f86ae05fd3e27b55009ddb1 Loading...

	www.adsensecustomsearchads.com/afs/ads?adsafe=low&adtest=off&psid=9330244380&channel=%2Cexp-0051%2Cauxa-control-1%2C12800794&client=dp-sedo85_3ph&r=m&hl=no&ivt=0&rpbu=https%3A%2F%2Fverifytocontinue.com%2Fcaf%2F%3Fses%3DY3JlPTE3MTQ2MjIyNzMmdGNpZD12ZXJpZnl0b2NvbnRpbnVlLmNvbTY2MzMwZjQxNmJlMTI4Ljc4MjM1NTI0JnRhc2s9c2VhcmNoJmRvbWFpbj12ZXJpZnl0b2NvbnRpbnVlLmNvbSZhX2lkPTMmc2Vzc2lvbj1ieUE4UEVWS2o0NlRxM2pBY2g0eQ%3D%3D&type=3&uiopt=false&swp=as-drid-2768786963050144&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301431%2C17301433%2C17301436&client_gdprApplies=1&format=r3%7Cs&nocache=371714622274027&num=0&output=afd_ads&domain_name=verifytocontinue.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1714622274035&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=999&frm=0&uio=--&cont=rb-default&drt=0&jsid=caf&jsv=629216002&rurl=https%3A%2F%2Fverifytocontinue.com%2Fgo%2F02294bee-935d-41fe-9d56-b040a0531460	850 B	2024-05-02	2024-05-02
Pretty URL www.adsensecustomsearchads.com/afs/ads?adsafe=low&adtest=off&psid=9330244380&channel=%2Cexp-0051%2Cauxa-control-1%2C12800794&client=dp-sedo85_3ph&r=m&hl=no&ivt=0&rpbu=https%3A%2F%2Fverifytocontinue.com%2Fcaf%2F%3Fses%3DY3JlPTE3MTQ2MjIyNzMmdGNpZD12ZXJpZnl0b2NvbnRpbnVlLmNvbTY2MzMwZjQxNmJlMTI4Ljc4MjM1NTI0JnRhc2s9c2VhcmNoJmRvbWFpbj12ZXJpZnl0b2NvbnRpbnVlLmNvbSZhX2lkPTMmc2Vzc2lvbj1ieUE4UEVWS2o0NlRxM2pBY2g0eQ%3D%3D&type=3&uiopt=false&swp=as-drid-2768786963050144&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301431%2C17301433%2C17301436&client_gdprApplies=1&format=r3%7Cs&nocache=371714622274027&num=0&output=afd_ads&domain_name=verifytocontinue.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1714622274035&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=999&frm=0&uio=--&cont=rb-default&drt=0&jsid=caf&jsv=629216002&rurl=https%3A%2F%2Fverifytocontinue.com%2Fgo%2F02294bee-935d-41fe-9d56-b040a0531460 IP 216.58.211.14 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-02 05:58:18 Last Seen2024-05-02 05:58:18 Times Seen1 Hash 7ec9db60c209bfa95e543b41701f3654 775cc77d981eb2e0d6809992a8bd8299af00f3d9 77e2081cb855621d0dea2994f45cbe34c41877d7d9164e42cbb0cbe71a0964ae Loading...

HTTP Transactions (14)

URL IP Response Size

img.sedoparking.com/templates/bg/arrows.png

205.234.175.175

200 OK

13 kB

URL GET HTTP/2
img.sedoparking.com/templates/bg/arrows.png
IP
205.234.175.175:443
ASN
#30081 CACHENETWORKS

Requested by
https://verifytocontinue.com/go/02294bee-935d-41fe-9d56-b040a0531460
Certificate
IssuerGlobalSign nv-sa
Subject*.cachefly.net
Fingerprint0F:4E:B2:D7:96:B9:94:D0:35:66:76:6C:4B:16:18:49:DE:42:80:71
ValidityMon, 13 Nov 2023 19:46:02 GMT - Sat, 14 Dec 2024 19:46:01 GMT

File type
PNG image data, 426 x 475, 8-bit/color RGBA, non-interlaced
Size
13 kB (12642 bytes)
Hash
6dc0bad9aa452ff871b282dabd47131e
01411e6726e033240caa3926141a6adbc18a2d73
3059fbd6cd3550047483dca4071c93e5cf4cc79ce8bafc4388166fbc5279644b

HTTP Headers

GET /templates/bg/arrows.png HTTP/1.1
Host: img.sedoparking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://verifytocontinue.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 02 May 2024 03:57:53 GMT
content-type: image/png
content-length: 12642
access-control-allow-origin: *
cache-control: max-age=604800
expires: Thu, 09 May 2024 03:57:53 GMT
x-cfhash: "6dc0bad9aa452ff871b282dabd47131e"
x-cff: B
last-modified: Mon, 11 Oct 2021 05:39:44 GMT
x-cf3: H
cf4age: 79148
x-cf-tsc: 1711643027
cf4ttl: 31456852.000
x-cf2: H
server: CFS 1124
x-cf-reqid: 12fb685a73acd3f4cbb8bcec0178fbaa
x-cf1: 11696:fB.arn1:cf:nom:cacheN.arn1-01:H
accept-ranges: bytes
X-Firefox-Spdy: h2

verifytocontinue.com/search/tsc.php?200=NTgyMTA2MTg4&21=OTEuOTAuNDIuMTU0&681=MTcxNDYyMjI3MzZlOGNjMmY4MzNlODlkZGU2ODg4ZjRiYmFkNDIwN2Fl&crc=e933a7578f6bb1ed2ce69eb1e7ee3e0061f3a1d9&cv=1

64.190.63.222

200 OK

0 B

URL GET HTTP/2
verifytocontinue.com/search/tsc.php?200=NTgyMTA2MTg4&21=OTEuOTAuNDIuMTU0&681=MTcxNDYyMjI3MzZlOGNjMmY4MzNlODlkZGU2ODg4ZjRiYmFkNDIwN2Fl&crc=e933a7578f6bb1ed2ce69eb1e7ee3e0061f3a1d9&cv=1
IP
64.190.63.222:443
ASN
#47846 SEDO GmbH

Requested by
https://verifytocontinue.com/go/02294bee-935d-41fe-9d56-b040a0531460
Certificate
IssuerDigiCert Inc
Subjectverifytocontinue.com
FingerprintF2:5D:4D:20:7F:65:B9:72:E5:DB:F6:8F:5D:F6:8E:8E:6F:55:72:8E
ValidityMon, 22 Apr 2024 00:00:00 GMT - Mon, 21 Apr 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /search/tsc.php?200=NTgyMTA2MTg4&21=OTEuOTAuNDIuMTU0&681=MTcxNDYyMjI3MzZlOGNjMmY4MzNlODlkZGU2ODg4ZjRiYmFkNDIwN2Fl&crc=e933a7578f6bb1ed2ce69eb1e7ee3e0061f3a1d9&cv=1 HTTP/1.1
Host: verifytocontinue.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://verifytocontinue.com/go/02294bee-935d-41fe-9d56-b040a0531460
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Thu, 02 May 2024 03:57:54 GMT
server: NginX
x-cache-miss-from: parking-7cbf88ff6b-tlz7g
x-powered-by: PHP/8.1.17
content-length: 0
X-Firefox-Spdy: h2

img.sedoparking.com/templates/logos/sedo_logo.png

205.234.175.175

200 OK

15 kB

URL GET HTTP/2
img.sedoparking.com/templates/logos/sedo_logo.png
IP
205.234.175.175:443
ASN
#30081 CACHENETWORKS

Requested by
https://verifytocontinue.com/go/02294bee-935d-41fe-9d56-b040a0531460
Certificate
IssuerGlobalSign nv-sa
Subject*.cachefly.net
Fingerprint0F:4E:B2:D7:96:B9:94:D0:35:66:76:6C:4B:16:18:49:DE:42:80:71
ValidityMon, 13 Nov 2023 19:46:02 GMT - Sat, 14 Dec 2024 19:46:01 GMT

File type
MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel
Size
15 kB (15086 bytes)
Hash
def00c11b1596db4efee6a9fbe64fc27
bd298981e6d8d7e4ffa18abcf687041f4246672d
95c427fa3143b1896faf42a6406686ce7602cb39052081bb32d12b51c9e047e4

HTTP Headers

GET /templates/logos/sedo_logo.png HTTP/1.1
Host: img.sedoparking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://verifytocontinue.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 02 May 2024 03:57:54 GMT
content-type: image/png
content-length: 15086
access-control-allow-origin: *
cache-control: max-age=604800
expires: Thu, 09 May 2024 03:57:54 GMT
x-cfhash: "def00c11b1596db4efee6a9fbe64fc27"
x-cff: B
last-modified: Mon, 11 Jan 2021 07:44:34 GMT
x-cf3: H
cf4age: 741679
x-cf-tsc: 1711642967
cf4ttl: 30794320.000
x-cf2: H
server: CFS 1124
x-cf-reqid: 6710682e6f5b591748c06f27491ae209
x-cf1: 11696:fB.arn1:cf:nom:cacheN.arn1-01:H
accept-ranges: bytes
X-Firefox-Spdy: h2

www.adsensecustomsearchads.com/afs/ads/i/iframe.html

216.58.211.14

200 OK

730 B

URL GET HTTP/2
www.adsensecustomsearchads.com/afs/ads/i/iframe.html
IP
216.58.211.14:443
ASN
#15169 GOOGLE

Requested by
https://verifytocontinue.com/go/02294bee-935d-41fe-9d56-b040a0531460
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
Fingerprint13:C7:40:78:3B:C5:3E:4C:BF:6E:15:DC:37:54:F1:48:24:A2:83:80
ValidityMon, 08 Apr 2024 06:40:27 GMT - Mon, 01 Jul 2024 06:40:26 GMT

File type
HTML document, ASCII text, with very long lines (1559)
Size
730 B (730 bytes)
Hash
b6e724246ddaded92f691bb4795e172f
05882bbb4bf1c1f029d9aa787da4fe69d146fac5
f6619c2a688cea0b481059d51485ec4b0690fa02f61196594a7c5a0965a70487

HTTP Headers

GET /afs/ads/i/iframe.html HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://verifytocontinue.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/html
content-security-policy: script-src 'nonce-xoJd8PzvjEO7zcY3JkkURQ' 'report-sample' 'strict-dynamic' 'unsafe-eval' 'unsafe-inline' http: https:; object-src 'none'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui; base-uri 'none'
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
content-length: 730
date: Thu, 02 May 2024 03:57:54 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
last-modified: Tue, 12 Mar 2024 06:00:00 GMT
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.adsensecustomsearchads.com/afs/ads?adsafe=low&adtest=off&psid=9330244380&channel=%2Cexp-0051%2Cauxa-control-1%2C12800794&client=dp-sedo85_3ph&r=m&hl=no&ivt=0&rpbu=https%3A%2F%2Fverifytocontinue.com%2Fcaf%2F%3Fses%3DY3JlPTE3MTQ2MjIyNzMmdGNpZD12ZXJpZnl0b2NvbnRpbnVlLmNvbTY2MzMwZjQxNmJlMTI4Ljc4MjM1NTI0JnRhc2s9c2VhcmNoJmRvbWFpbj12ZXJpZnl0b2NvbnRpbnVlLmNvbSZhX2lkPTMmc2Vzc2lvbj1ieUE4UEVWS2o0NlRxM2pBY2g0eQ%3D%3D&type=3&uiopt=false&swp=as-drid-2768786963050144&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301431%2C17301433%2C17301436&client_gdprApplies=1&format=r3%7Cs&nocache=371714622274027&num=0&output=afd_ads&domain_name=verifytocontinue.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1714622274035&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=999&frm=0&uio=--&cont=rb-default&drt=0&jsid=caf&jsv=629216002&rurl=https%3A%2F%2Fverifytocontinue.com%2Fgo%2F02294bee-935d-41fe-9d56-b040a0531460

216.58.211.14

200 OK

2.8 kB

URL GET HTTP/2
www.adsensecustomsearchads.com/afs/ads?adsafe=low&adtest=off&psid=9330244380&channel=%2Cexp-0051%2Cauxa-control-1%2C12800794&client=dp-sedo85_3ph&r=m&hl=no&ivt=0&rpbu=https%3A%2F%2Fverifytocontinue.com%2Fcaf%2F%3Fses%3DY3JlPTE3MTQ2MjIyNzMmdGNpZD12ZXJpZnl0b2NvbnRpbnVlLmNvbTY2MzMwZjQxNmJlMTI4Ljc4MjM1NTI0JnRhc2s9c2VhcmNoJmRvbWFpbj12ZXJpZnl0b2NvbnRpbnVlLmNvbSZhX2lkPTMmc2Vzc2lvbj1ieUE4UEVWS2o0NlRxM2pBY2g0eQ%3D%3D&type=3&uiopt=false&swp=as-drid-2768786963050144&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301431%2C17301433%2C17301436&client_gdprApplies=1&format=r3%7Cs&nocache=371714622274027&num=0&output=afd_ads&domain_name=verifytocontinue.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1714622274035&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=999&frm=0&uio=--&cont=rb-default&drt=0&jsid=caf&jsv=629216002&rurl=https%3A%2F%2Fverifytocontinue.com%2Fgo%2F02294bee-935d-41fe-9d56-b040a0531460
IP
216.58.211.14:443
ASN
#15169 GOOGLE

Requested by
https://verifytocontinue.com/go/02294bee-935d-41fe-9d56-b040a0531460
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
Fingerprint13:C7:40:78:3B:C5:3E:4C:BF:6E:15:DC:37:54:F1:48:24:A2:83:80
ValidityMon, 08 Apr 2024 06:40:27 GMT - Mon, 01 Jul 2024 06:40:26 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (13698)
Size
2.8 kB (2846 bytes)
Hash
b176ffb894ce4345760cf79588dea10c
faa17f842cd3db2fb76f54a7016673dc11931e35
f8fa4f342c90516d57bdeae1762227f539cd020d95b143b4e4a5a8e51e5df51b

HTTP Headers

GET /afs/ads?adsafe=low&adtest=off&psid=9330244380&channel=%2Cexp-0051%2Cauxa-control-1%2C12800794&client=dp-sedo85_3ph&r=m&hl=no&ivt=0&rpbu=https%3A%2F%2Fverifytocontinue.com%2Fcaf%2F%3Fses%3DY3JlPTE3MTQ2MjIyNzMmdGNpZD12ZXJpZnl0b2NvbnRpbnVlLmNvbTY2MzMwZjQxNmJlMTI4Ljc4MjM1NTI0JnRhc2s9c2VhcmNoJmRvbWFpbj12ZXJpZnl0b2NvbnRpbnVlLmNvbSZhX2lkPTMmc2Vzc2lvbj1ieUE4UEVWS2o0NlRxM2pBY2g0eQ%3D%3D&type=3&uiopt=false&swp=as-drid-2768786963050144&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301431%2C17301433%2C17301436&client_gdprApplies=1&format=r3%7Cs&nocache=371714622274027&num=0&output=afd_ads&domain_name=verifytocontinue.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1714622274035&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=999&frm=0&uio=--&cont=rb-default&drt=0&jsid=caf&jsv=629216002&rurl=https%3A%2F%2Fverifytocontinue.com%2Fgo%2F02294bee-935d-41fe-9d56-b040a0531460 HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://verifytocontinue.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-disposition: inline
date: Thu, 02 May 2024 03:57:54 GMT
expires: Thu, 02 May 2024 03:57:54 GMT
cache-control: private, max-age=3600
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-yshqVaK0iEvCPPsmkYgdGw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
content-encoding: br
server: gws
content-length: 2846
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.adsensecustomsearchads.com/adsense/domains/caf.js

216.58.211.14

200 OK

86 kB

URL GET HTTP/3
www.adsensecustomsearchads.com/adsense/domains/caf.js
IP
216.58.211.14:443
ASN
#15169 GOOGLE

Requested by
https://www.adsensecustomsearchads.com/afs/ads?adsafe=low&adtest=off&psid=9330244380&channel=%2Cexp-0051%2Cauxa-control-1%2C12800794&client=dp-sedo85_3ph&r=m&hl=no&ivt=0&rpbu=https%3A%2F%2Fverifytocontinue.com%2Fcaf%2F%3Fses%3DY3JlPTE3MTQ2MjIyNzMmdGNpZD12ZXJpZnl0b2NvbnRpbnVlLmNvbTY2MzMwZjQxNmJlMTI4Ljc4MjM1NTI0JnRhc2s9c2VhcmNoJmRvbWFpbj12ZXJpZnl0b2NvbnRpbnVlLmNvbSZhX2lkPTMmc2Vzc2lvbj1ieUE4UEVWS2o0NlRxM2pBY2g0eQ%3D%3D&type=3&uiopt=false&swp=as-drid-2768786963050144&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301431%2C17301433%2C17301436&client_gdprApplies=1&format=r3%7Cs&nocache=371714622274027&num=0&output=afd_ads&domain_name=verifytocontinue.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1714622274035&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=999&frm=0&uio=--&cont=rb-default&drt=0&jsid=caf&jsv=629216002&rurl=https%3A%2F%2Fverifytocontinue.com%2Fgo%2F02294bee-935d-41fe-9d56-b040a0531460
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
Fingerprint13:C7:40:78:3B:C5:3E:4C:BF:6E:15:DC:37:54:F1:48:24:A2:83:80
ValidityMon, 08 Apr 2024 06:40:27 GMT - Mon, 01 Jul 2024 06:40:26 GMT

File type
gzip compressed data, max compression
Size
86 kB (85535 bytes)
Hash
329bb9aac1b3026b0f092bb5f20a09b5
b56c3a52cf50e5191c5eb3c331d64936ed47b12f
2d6ccadfb3bc273f1c032889e1f8c00af72daf82b0eb770223b93af9fceec508

HTTP Headers

GET /adsense/domains/caf.js HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.adsensecustomsearchads.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Thu, 02 May 2024 03:57:54 GMT
expires: Thu, 02 May 2024 03:57:54 GMT
cache-control: private, max-age=3600
etag: "8198968192214571772"
x-content-type-options: nosniff
link: <https://www.adsensecustomsearchads.com>; rel="preconnect"
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/adsense/domains/caf.js?abp=1&YEr3CiF6AuQqLspNobyal3ji0SyqxBLn=true

142.250.74.164

200 OK

82 kB

URL GET HTTP/2
www.google.com/adsense/domains/caf.js?abp=1&YEr3CiF6AuQqLspNobyal3ji0SyqxBLn=true
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://verifytocontinue.com/go/02294bee-935d-41fe-9d56-b040a0531460
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintF3:75:C9:48:E6:A5:11:C7:87:C8:8D:9A:C4:16:F8:09:4E:88:7C:5A
ValidityMon, 08 Apr 2024 07:33:48 GMT - Mon, 01 Jul 2024 07:33:47 GMT

File type
gzip compressed data, max compression
Size
82 kB (81586 bytes)
Hash
56a374a2db6050ebf6b7b906cb70dbfd
f157a24054dda5f6097cd4c0f1e38c9146d9628d
957a851d7e6938c6805b63c77f38291d28a9690d2f101bce9ad5d7e950d65ef9

HTTP Headers

GET /adsense/domains/caf.js?abp=1&YEr3CiF6AuQqLspNobyal3ji0SyqxBLn=true HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://verifytocontinue.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Thu, 02 May 2024 03:57:53 GMT
expires: Thu, 02 May 2024 03:57:53 GMT
cache-control: private, max-age=3600
etag: "7664028437327203187"
x-content-type-options: nosniff
link: <https://www.adsensecustomsearchads.com>; rel="preconnect"
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%231967D2

142.250.74.97

200 OK

273 B

URL GET HTTP/2
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%231967D2
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://www.adsensecustomsearchads.com/afs/ads?adsafe=low&adtest=off&psid=9330244380&channel=%2Cexp-0051%2Cauxa-control-1%2C12800794&client=dp-sedo85_3ph&r=m&hl=no&ivt=0&rpbu=https%3A%2F%2Fverifytocontinue.com%2Fcaf%2F%3Fses%3DY3JlPTE3MTQ2MjIyNzMmdGNpZD12ZXJpZnl0b2NvbnRpbnVlLmNvbTY2MzMwZjQxNmJlMTI4Ljc4MjM1NTI0JnRhc2s9c2VhcmNoJmRvbWFpbj12ZXJpZnl0b2NvbnRpbnVlLmNvbSZhX2lkPTMmc2Vzc2lvbj1ieUE4UEVWS2o0NlRxM2pBY2g0eQ%3D%3D&type=3&uiopt=false&swp=as-drid-2768786963050144&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301431%2C17301433%2C17301436&client_gdprApplies=1&format=r3%7Cs&nocache=371714622274027&num=0&output=afd_ads&domain_name=verifytocontinue.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1714622274035&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=999&frm=0&uio=--&cont=rb-default&drt=0&jsid=caf&jsv=629216002&rurl=https%3A%2F%2Fverifytocontinue.com%2Fgo%2F02294bee-935d-41fe-9d56-b040a0531460
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintD1:64:F1:6B:AC:65:FC:D3:5F:42:54:08:AE:BC:0A:AC:D1:EA:88:2C
ValidityMon, 08 Apr 2024 07:27:47 GMT - Mon, 01 Jul 2024 07:27:46 GMT

File type
SVG Scalable Vector Graphics image
Size
273 B (273 bytes)
Hash
6751e07e0f93bd43ab90822f4b2eb62a
d1d0c6f0b4697b0a4e61ffbf171e8c60eac7c832
ff563f41765da081fe9fd40e8bb33a623df033b10050a8ae8c1b46e15107d8f1

HTTP Headers

GET /ad_icons/standard/publisher_icon_image/search.svg?c=%231967D2 HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.adsensecustomsearchads.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 273
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:24:27 GMT
expires: Fri, 03 May 2024 01:24:27 GMT
cache-control: public, max-age=82800
last-modified: Thu, 20 Jul 2023 22:48:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
age: 5608
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff

142.250.74.97

200 OK

174 B

URL GET HTTP/2
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://www.adsensecustomsearchads.com/afs/ads?adsafe=low&adtest=off&psid=9330244380&channel=%2Cexp-0051%2Cauxa-control-1%2C12800794&client=dp-sedo85_3ph&r=m&hl=no&ivt=0&rpbu=https%3A%2F%2Fverifytocontinue.com%2Fcaf%2F%3Fses%3DY3JlPTE3MTQ2MjIyNzMmdGNpZD12ZXJpZnl0b2NvbnRpbnVlLmNvbTY2MzMwZjQxNmJlMTI4Ljc4MjM1NTI0JnRhc2s9c2VhcmNoJmRvbWFpbj12ZXJpZnl0b2NvbnRpbnVlLmNvbSZhX2lkPTMmc2Vzc2lvbj1ieUE4UEVWS2o0NlRxM2pBY2g0eQ%3D%3D&type=3&uiopt=false&swp=as-drid-2768786963050144&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301431%2C17301433%2C17301436&client_gdprApplies=1&format=r3%7Cs&nocache=371714622274027&num=0&output=afd_ads&domain_name=verifytocontinue.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1714622274035&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=999&frm=0&uio=--&cont=rb-default&drt=0&jsid=caf&jsv=629216002&rurl=https%3A%2F%2Fverifytocontinue.com%2Fgo%2F02294bee-935d-41fe-9d56-b040a0531460
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintD1:64:F1:6B:AC:65:FC:D3:5F:42:54:08:AE:BC:0A:AC:D1:EA:88:2C
ValidityMon, 08 Apr 2024 07:27:47 GMT - Mon, 01 Jul 2024 07:27:46 GMT

File type
SVG Scalable Vector Graphics image
Size
174 B (174 bytes)
Hash
11b3089d616633ca6b73b57aa877eeb4
07632f63e06b30d9b63c97177d3a8122629bda9b
809fb4619d2a2f1a85dbda8cc69a7f1659215212d708a098d62150eee57070c1

HTTP Headers

GET /ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.adsensecustomsearchads.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 174
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 00:07:48 GMT
expires: Thu, 02 May 2024 23:07:48 GMT
cache-control: public, max-age=82800
age: 13807
last-modified: Thu, 02 Nov 2023 22:48:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=kycdv7z6hq2u&aqid=Qg8zZr71C72uiM0PwauZ-Ag&psid=9330244380&pbt=bs&adbx=406.66668701171875&adby=134.64999389648438&adbh=554&adbw=467&adbah=178%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo85_3ph&errv=629216002&csala=15%7C0%7C806%7C66%7C44&lle=0&ifv=1&hpt=0

216.58.211.14

204 No Content

0 B

URL GET HTTP/3
www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=kycdv7z6hq2u&aqid=Qg8zZr71C72uiM0PwauZ-Ag&psid=9330244380&pbt=bs&adbx=406.66668701171875&adby=134.64999389648438&adbh=554&adbw=467&adbah=178%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo85_3ph&errv=629216002&csala=15%7C0%7C806%7C66%7C44&lle=0&ifv=1&hpt=0
IP
216.58.211.14:443
ASN
#15169 GOOGLE

Requested by
https://verifytocontinue.com/go/02294bee-935d-41fe-9d56-b040a0531460
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
Fingerprint13:C7:40:78:3B:C5:3E:4C:BF:6E:15:DC:37:54:F1:48:24:A2:83:80
ValidityMon, 08 Apr 2024 06:40:27 GMT - Mon, 01 Jul 2024 06:40:26 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=kycdv7z6hq2u&aqid=Qg8zZr71C72uiM0PwauZ-Ag&psid=9330244380&pbt=bs&adbx=406.66668701171875&adby=134.64999389648438&adbh=554&adbw=467&adbah=178%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo85_3ph&errv=629216002&csala=15%7C0%7C806%7C66%7C44&lle=0&ifv=1&hpt=0 HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://verifytocontinue.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-B4nY_hvA7HyERnO6T90H_w' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Thu, 02 May 2024 03:57:56 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=ofj2yb8g085l&aqid=Qg8zZr71C72uiM0PwauZ-Ag&pbt=bs&adbx=490&adby=807.6500244140625&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo85_3ph&errv=629216002&csala=5%7C0%7C816%7C66%7C44&lle=0&ifv=1&hpt=0

216.58.211.14

204 No Content

0 B

URL GET HTTP/3
www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=ofj2yb8g085l&aqid=Qg8zZr71C72uiM0PwauZ-Ag&pbt=bs&adbx=490&adby=807.6500244140625&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo85_3ph&errv=629216002&csala=5%7C0%7C816%7C66%7C44&lle=0&ifv=1&hpt=0
IP
216.58.211.14:443
ASN
#15169 GOOGLE

Requested by
https://verifytocontinue.com/go/02294bee-935d-41fe-9d56-b040a0531460
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
Fingerprint13:C7:40:78:3B:C5:3E:4C:BF:6E:15:DC:37:54:F1:48:24:A2:83:80
ValidityMon, 08 Apr 2024 06:40:27 GMT - Mon, 01 Jul 2024 06:40:26 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=ofj2yb8g085l&aqid=Qg8zZr71C72uiM0PwauZ-Ag&pbt=bs&adbx=490&adby=807.6500244140625&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo85_3ph&errv=629216002&csala=5%7C0%7C816%7C66%7C44&lle=0&ifv=1&hpt=0 HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://verifytocontinue.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-zDbhKd7LcnoNb6z_bOLZPw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Thu, 02 May 2024 03:57:56 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=scpv2eaxidvp&aqid=Qg8zZr71C72uiM0PwauZ-Ag&psid=9330244380&pbt=bv&adbx=406.66668701171875&adby=134.64999389648438&adbh=554&adbw=467&adbah=178%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo85_3ph&errv=629216002&csala=15%7C0%7C806%7C66%7C44&lle=0&ifv=1&hpt=0

216.58.211.14

204 No Content

0 B

URL GET HTTP/3
www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=scpv2eaxidvp&aqid=Qg8zZr71C72uiM0PwauZ-Ag&psid=9330244380&pbt=bv&adbx=406.66668701171875&adby=134.64999389648438&adbh=554&adbw=467&adbah=178%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo85_3ph&errv=629216002&csala=15%7C0%7C806%7C66%7C44&lle=0&ifv=1&hpt=0
IP
216.58.211.14:443
ASN
#15169 GOOGLE

Requested by
https://verifytocontinue.com/go/02294bee-935d-41fe-9d56-b040a0531460
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
Fingerprint13:C7:40:78:3B:C5:3E:4C:BF:6E:15:DC:37:54:F1:48:24:A2:83:80
ValidityMon, 08 Apr 2024 06:40:27 GMT - Mon, 01 Jul 2024 06:40:26 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=scpv2eaxidvp&aqid=Qg8zZr71C72uiM0PwauZ-Ag&psid=9330244380&pbt=bv&adbx=406.66668701171875&adby=134.64999389648438&adbh=554&adbw=467&adbah=178%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo85_3ph&errv=629216002&csala=15%7C0%7C806%7C66%7C44&lle=0&ifv=1&hpt=0 HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://verifytocontinue.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-vWmfSIymQFzPE4OZjfcqaA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Thu, 02 May 2024 03:57:56 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=svgwaudvlkag&aqid=Qg8zZr71C72uiM0PwauZ-Ag&pbt=bv&adbx=490&adby=807.6500244140625&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo85_3ph&errv=629216002&csala=5%7C0%7C816%7C66%7C44&lle=0&ifv=1&hpt=0

216.58.211.14

204 No Content

0 B

URL GET HTTP/3
www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=svgwaudvlkag&aqid=Qg8zZr71C72uiM0PwauZ-Ag&pbt=bv&adbx=490&adby=807.6500244140625&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo85_3ph&errv=629216002&csala=5%7C0%7C816%7C66%7C44&lle=0&ifv=1&hpt=0
IP
216.58.211.14:443
ASN
#15169 GOOGLE

Requested by
https://verifytocontinue.com/go/02294bee-935d-41fe-9d56-b040a0531460
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
Fingerprint13:C7:40:78:3B:C5:3E:4C:BF:6E:15:DC:37:54:F1:48:24:A2:83:80
ValidityMon, 08 Apr 2024 06:40:27 GMT - Mon, 01 Jul 2024 06:40:26 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /afs/gen_204?client=dp-sedo85_3ph&output=uds_ads_only&zx=svgwaudvlkag&aqid=Qg8zZr71C72uiM0PwauZ-Ag&pbt=bv&adbx=490&adby=807.6500244140625&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo85_3ph&errv=629216002&csala=5%7C0%7C816%7C66%7C44&lle=0&ifv=1&hpt=0 HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://verifytocontinue.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-SDdwyXnkltA1Bypylbm3Aw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Thu, 02 May 2024 03:57:56 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

verifytocontinue.com/go/02294bee-935d-41fe-9d56-b040a0531460

64.190.63.222

200 OK

24 kB

URL User Request GET HTTP/2
verifytocontinue.com/go/02294bee-935d-41fe-9d56-b040a0531460
IP
64.190.63.222:443
ASN
#47846 SEDO GmbH

Certificate
IssuerDigiCert Inc
Subjectverifytocontinue.com
FingerprintF2:5D:4D:20:7F:65:B9:72:E5:DB:F6:8F:5D:F6:8E:8E:6F:55:72:8E
ValidityMon, 22 Apr 2024 00:00:00 GMT - Mon, 21 Apr 2025 23:59:59 GMT

File type

Size
24 kB (23812 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /go/02294bee-935d-41fe-9d56-b040a0531460 HTTP/1.1
Host: verifytocontinue.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Thu, 02 May 2024 03:57:53 GMT
expires: Mon, 26 Jul 1997 05:00:00 GMT
last-modified: Thu, 02 May 2024 03:57:53 GMT
pragma: no-cache
server: NginX
vary: Accept-Encoding
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANnylWw2vLY4hUn9w06zQKbhKBfvjFUCsdFlb6TdQhxb9RXWXuI4t31c+o8fYOv/s8q1LGPga3DE1L/tHU4LENMCAwEAAQ==_ZdDoWbSLyDKWfRZupieDiGJ2tlCtZYDxlQ4pfqykXPYGoN/E8kgxxM1Y2a1JFi4AzDizFAA6KfrW/uia5/0eOw==
x-cache-miss-from: parking-7cbf88ff6b-tlz7g
x-powered-by: PHP/8.1.17
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (7)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (14)

URL GET HTTP/2

IP

ASN

Requested by