Report - scottrosetech.com/

Report Overview

Submitted URL
scottrosetech.com/
IP
199.115.115.119
ASN
#30633 LEASEWEB-USA-WDC
Submitted
2023-04-11 07:31:00
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
10

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
afs.googleusercontent.com	12123	2013-05-06	2023-04-11	966 B	2.3 kB	142.250.74.97
scottrosetech.com	unknown	No data	No data	1.6 kB	1.5 kB	5.79.79.212
ww1.scottrosetech.com	unknown	No data	No data	3.4 kB	28 kB	199.59.243.223
ocsp.pki.goog	175	2018-07-01	2023-04-10	2.0 kB	4.2 kB	216.58.211.3
www.google.com	7	2015-05-10	2023-04-10	3.6 kB	116 kB	142.250.74.164
partner.googleadservices.com	798	2012-10-03	2023-04-10	502 B	790 B	216.58.207.226

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator
2023-04-11	medium	scottrosetech.com/
2023-04-11	medium	ww1.scottrosetech.com/
2023-04-11	medium	ww1.scottrosetech.com/js/parking.2.104.1.js
2023-04-11	medium	ww1.scottrosetech.com/_fd
2023-04-11	medium	ww1.scottrosetech.com/_tr

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (6)

	URL	Size	First Seen	Last Seen
	ww1.scottrosetech.com/	375 B	2023-04-11	2023-04-11
Pretty URL ww1.scottrosetech.com/ IP 199.59.243.223 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-11 09:31:01 Last Seen2023-04-11 09:31:01 Times Seen1 Hash 92d4245c7f846c049ccd33004884a5d2 58951b776a7712b1cfb76c9dd1f7d06b5ce351f6 87affabef92caff1abd98a81376e41a5e1876e3374354c822200f2d2b26488e2 Loading...

	ww1.scottrosetech.com/js/parking.2.104.1.js	69 kB	2023-04-01	2023-04-19
Pretty URL ww1.scottrosetech.com/js/parking.2.104.1.js IP 199.59.243.223 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:26:26 Last Seen2023-04-19 18:19:24 Times Seen3503 Hash 9043a4bbd1e344df0adda5ffa46f7577 19a196a4b3ad633ad8b292bccf9d9d4afda9348a 2e74eb2b5a15b5b0a117ae97cdf08ae768f0886ebc2b58c1596a6ced8095a8f4 Loading...

	www.google.com/adsense/domains/caf.js	148 kB	2023-04-06	2023-04-12
Pretty URL www.google.com/adsense/domains/caf.js IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-06 15:50:05 Last Seen2023-04-12 16:37:06 Times Seen807 Hash bccfd8a3ccff5cec1cc4c31d0316477d b83a2f28e93f9dd0ff75215cb954ed8227dafbd2 209d3abdb8d56818cf54443b67d10ce10b77a56b4d295170dff45ad391d106f0 Loading...

	partner.googleadservices.com/gampad/cookie.js?domain=ww1.scottrosetech.com&client=dp-bodis30_3ph&product=SAS&callback=__sasCookie	408 B	2023-04-11	2023-04-11
Pretty URL partner.googleadservices.com/gampad/cookie.js?domain=ww1.scottrosetech.com&client=dp-bodis30_3ph&product=SAS&callback=__sasCookie IP 216.58.207.226 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 09:31:01 Last Seen2023-04-11 09:31:01 Times Seen1 Hash f2211bbd596433ba6233975f1319dca7 9f39bb73fc747d5bc1263095e86408d9df90c1ce ded33768136de27c4493b1404212fa21e16333e186939232aaa8e7aef045d44c Loading...

	www.google.com/afs/ads?adtest=off&psid=9190190988&pcsa=false&channel=pid-bodis-gcontrol130%2Cpid-bodis-gcontrol97%2Cpid-bodis-gcontrol307%2Cpid-bodis-gcontrol152%2Cpid-bodis-gcontrol430&client=dp-bodis30_3ph&r=m&hl=en&rpbu=http%3A%2F%2Fww1.scottrosetech.com%3Fcaf%26&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2898040491288658&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003&format=r3&nocache=8041681198263087&num=0&output=afd_ads&domain_name=ww1.scottrosetech.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1681198263090&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1264&psh=79&frm=0&cl=521491932&uio=-&cont=rs&jsid=caf&jsv=521491932&rurl=http%3A%2F%2Fww1.scottrosetech.com%2F&referer=http%3A%2F%2Fscottrosetech.com%2F&adbw=master-1%3A1264	6.3 kB	2023-04-11	2023-04-11
Pretty URL www.google.com/afs/ads?adtest=off&psid=9190190988&pcsa=false&channel=pid-bodis-gcontrol130%2Cpid-bodis-gcontrol97%2Cpid-bodis-gcontrol307%2Cpid-bodis-gcontrol152%2Cpid-bodis-gcontrol430&client=dp-bodis30_3ph&r=m&hl=en&rpbu=http%3A%2F%2Fww1.scottrosetech.com%3Fcaf%26&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2898040491288658&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003&format=r3&nocache=8041681198263087&num=0&output=afd_ads&domain_name=ww1.scottrosetech.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1681198263090&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1264&psh=79&frm=0&cl=521491932&uio=-&cont=rs&jsid=caf&jsv=521491932&rurl=http%3A%2F%2Fww1.scottrosetech.com%2F&referer=http%3A%2F%2Fscottrosetech.com%2F&adbw=master-1%3A1264 IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-11 09:31:01 Last Seen2023-04-11 09:31:01 Times Seen1 Hash 12561b4d42d616dfbb1001016e05d567 2853af70d04754e4c8439cfcf23a67229c0ac31f d3bf6c653d81f5e12871b53d0e0f12764a4efd40f0e71e92d74a39b3aa180d6a Loading...

	www.google.com/adsense/domains/caf.js	148 kB	2023-04-06	2023-04-12
Pretty URL www.google.com/adsense/domains/caf.js IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-06 15:49:06 Last Seen2023-04-12 16:28:55 Times Seen714 Hash 3cd07944a833f189feeb7870cedd0b8a a72b1abfdd566c2a72ec85949778c2c9b902bc2e 1cc09846258fa585312e0a7290036ee238c8d235f7758f909b32e6958e2f5d76 Loading...

HTTP Transactions (24)

URL IP Response Size

scottrosetech.com/

5.79.79.212

478 B

URL
scottrosetech.com/
IP
5.79.79.212:0
ASN
#60781 LeaseWeb Netherlands B.V.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (478), with no line terminators
Size
478 B (478 bytes)
Hash
e149b78e6427b5e16452bd0147a1b184
1e444ee6ed56ad8c8c3117588360248f87b70eb3
80321391f714a9e80ac65867873bd8f0641456a4f7cf4cb487e2b0a5f8ad6d9d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: scottrosetech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 478
content-type: text/html; charset=utf-8
date: Tue, 11 Apr 2023 07:30:46 GMT
server: nginx
set-cookie: sid=c6a295cc-d83a-11ed-8cf5-94d82baf5f89; path=/; domain=.scottrosetech.com; expires=Sun, 29 Apr 2091 10:44:54 GMT; max-age=2147483647; HttpOnly

scottrosetech.com/favicon.ico

5.79.79.212

9 B

URL
scottrosetech.com/favicon.ico
IP
5.79.79.212:0
ASN
#60781 LeaseWeb Netherlands B.V.

File type
ASCII text, with no line terminators
Size
9 B (9 bytes)
Hash
d8f4a1993546cc4b850cde3599e27aec
094b763b4cfcc0b05e5d040581cd513c3ca08067
907ba78b4545338d3539683e63ecb51cf51c10adc9dabd86e92bd52339f298b9

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: scottrosetech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scottrosetech.com/
Cookie: sid=c6a295cc-d83a-11ed-8cf5-94d82baf5f89
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 9
date: Tue, 11 Apr 2023 07:30:46 GMT
server: nginx

scottrosetech.com/?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY4MTIwNTQ0NywiaWF0IjoxNjgxMTk4MjQ3LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydGFkMXBmcGdpbWpxdXJxajgyN29qaWYiLCJuYmYiOjE2ODExOTgyNDcsInRzIjoxNjgxMTk4MjQ3MDY4MjczfQ.Ytsv6v2CcHahX3ctNAg6kjM4L1-Enrrhio4knAjypiA&sid=c6a295cc-d83a-11ed-8cf5-94d82baf5f89

5.79.79.212

302 Found

11 B

URL User Request GET HTTP/1.1
scottrosetech.com/?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY4MTIwNTQ0NywiaWF0IjoxNjgxMTk4MjQ3LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydGFkMXBmcGdpbWpxdXJxajgyN29qaWYiLCJuYmYiOjE2ODExOTgyNDcsInRzIjoxNjgxMTk4MjQ3MDY4MjczfQ.Ytsv6v2CcHahX3ctNAg6kjM4L1-Enrrhio4knAjypiA&sid=c6a295cc-d83a-11ed-8cf5-94d82baf5f89
IP
5.79.79.212:80
ASN
#60781 LeaseWeb Netherlands B.V.

File type
ASCII text, with no line terminators
Size
11 B (11 bytes)
Hash
32682312d17c7cbf18e73594f5570319
60e22121bdd0bc71cdb2bae2a3aa577006b2eae9
e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47

HTTP Headers

GET /?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY4MTIwNTQ0NywiaWF0IjoxNjgxMTk4MjQ3LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydGFkMXBmcGdpbWpxdXJxajgyN29qaWYiLCJuYmYiOjE2ODExOTgyNDcsInRzIjoxNjgxMTk4MjQ3MDY4MjczfQ.Ytsv6v2CcHahX3ctNAg6kjM4L1-Enrrhio4knAjypiA&sid=c6a295cc-d83a-11ed-8cf5-94d82baf5f89 HTTP/1.1
Host: scottrosetech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scottrosetech.com/
Cookie: sid=c6a295cc-d83a-11ed-8cf5-94d82baf5f89
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 11
date: Tue, 11 Apr 2023 07:30:46 GMT
location: http://ww1.scottrosetech.com
server: nginx
set-cookie: sid=c6a295cc-d83a-11ed-8cf5-94d82baf5f89; path=/; domain=.scottrosetech.com; expires=Sun, 29 Apr 2091 10:44:54 GMT; max-age=2147483647; HttpOnly

ww1.scottrosetech.com/

199.59.243.223

200 OK

704 B

URL User Request GET HTTP/1.1
ww1.scottrosetech.com/
IP
199.59.243.223:80
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (923), with no line terminators
Size
704 B (704 bytes)
Hash
c295d91ff042cb0bd78c7b5d13a98a82
e317aa1ef09fe67617a8c61235d927684315f08e
1b48529408e17fb536a48543321d68d294d1fac2bc34c08f51151096b1697b67

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: ww1.scottrosetech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://scottrosetech.com/
Connection: keep-alive
Cookie: sid=c6a295cc-d83a-11ed-8cf5-94d82baf5f89
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: openresty
Date: Tue, 11 Apr 2023 07:30:49 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: parking_session=47fcf95e-554d-39e9-ff20-19489a143016; expires=Tue, 11-Apr-2023 07:45:49 GMT; Max-Age=900; path=/; HttpOnly
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_jBGfgSZLr4c/F9eWwEcRqcquo5AYl34y0dCU42/19JhTgAA/zP8k1G7zgBNimk3mne8NvrfmALQqLLJ2feNu0A==
Accept-CH: sec-ch-prefers-color-scheme
Critical-CH: sec-ch-prefers-color-scheme
Vary: sec-ch-prefers-color-scheme
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Encoding: gzip

ww1.scottrosetech.com/js/parking.2.104.1.js

199.59.243.223

200 OK

22 kB

URL GET HTTP/1.1
ww1.scottrosetech.com/js/parking.2.104.1.js
IP
199.59.243.223:80
ASN
#16509 AMAZON-02

Requested by
http://ww1.scottrosetech.com/

File type
HTML document, ASCII text, with very long lines (65536), with no line terminators
Size
22 kB (22192 bytes)
Hash
c90bb88c05245a2d88ccf715f68f07fb
01d44c146ec4877eac9ceac21d18fd48388bdcdc
c6fba917f12371964e2826d512a6d7572f9a62dc530cd58a3a17a2b96dd96d07

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /js/parking.2.104.1.js HTTP/1.1
Host: ww1.scottrosetech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww1.scottrosetech.com/
Cookie: sid=c6a295cc-d83a-11ed-8cf5-94d82baf5f89; parking_session=47fcf95e-554d-39e9-ff20-19489a143016
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: openresty
Date: Tue, 11 Apr 2023 07:30:49 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 29 Mar 2023 20:48:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Encoding: gzip

ww1.scottrosetech.com/_fd

199.59.243.223

200 OK

2.1 kB

URL POST HTTP/1.1
ww1.scottrosetech.com/_fd
IP
199.59.243.223:80
ASN
#16509 AMAZON-02

Requested by
http://ww1.scottrosetech.com/

File type
ASCII text, with very long lines (4013), with no line terminators
Size
2.1 kB (2055 bytes)
Hash
787efb7a3f362be3f0d2e639e6625d27
f24ef176a9f1e1bd4eadf71cff6a1968ce584f31
97fbd721c7a455fd7051917fb73140070a853e7249e20a7171fd1eae9a849301

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

POST /_fd HTTP/1.1
Host: ww1.scottrosetech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ww1.scottrosetech.com/
Content-Type: application/json
Origin: http://ww1.scottrosetech.com
Connection: keep-alive
Cookie: sid=c6a295cc-d83a-11ed-8cf5-94d82baf5f89; parking_session=47fcf95e-554d-39e9-ff20-19489a143016
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/1.1 200 OK
Server: openresty
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 11 Apr 2023 07:30:49 GMT
X-Version: 2.104.1
Set-Cookie: parking_session=47fcf95e-554d-39e9-ff20-19489a143016; expires=Tue, 11-Apr-2023 07:45:49 GMT; Max-Age=900; path=/; httponly
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Encoding: gzip

ww1.scottrosetech.com/px.gif?ch=1&rn=8.998486314140955

199.59.243.223

200 OK

42 B

URL GET HTTP/1.1
ww1.scottrosetech.com/px.gif?ch=1&rn=8.998486314140955
IP
199.59.243.223:80
ASN
#16509 AMAZON-02

Requested by
http://ww1.scottrosetech.com/

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /px.gif?ch=1&rn=8.998486314140955 HTTP/1.1
Host: ww1.scottrosetech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww1.scottrosetech.com/
Cookie: sid=c6a295cc-d83a-11ed-8cf5-94d82baf5f89; parking_session=47fcf95e-554d-39e9-ff20-19489a143016
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: openresty
Date: Tue, 11 Apr 2023 07:30:49 GMT
Content-Type: image/gif
Content-Length: 42
Last-Modified: Wed, 15 Sep 2021 19:38:30 GMT
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Accept-Ranges: bytes

ww1.scottrosetech.com/px.gif?ch=2&rn=8.998486314140955

199.59.243.223

200 OK

42 B

URL GET HTTP/1.1
ww1.scottrosetech.com/px.gif?ch=2&rn=8.998486314140955
IP
199.59.243.223:80
ASN
#16509 AMAZON-02

Requested by
http://ww1.scottrosetech.com/

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /px.gif?ch=2&rn=8.998486314140955 HTTP/1.1
Host: ww1.scottrosetech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww1.scottrosetech.com/
Cookie: sid=c6a295cc-d83a-11ed-8cf5-94d82baf5f89; parking_session=47fcf95e-554d-39e9-ff20-19489a143016
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: openresty
Date: Tue, 11 Apr 2023 07:30:49 GMT
Content-Type: image/gif
Content-Length: 42
Last-Modified: Wed, 15 Sep 2021 19:38:30 GMT
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Accept-Ranges: bytes

ocsp.pki.goog/gts1c3

216.58.211.3

472 B

URL
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
bd9d4974b4febd981e86663becbaf26a
8bc54dde3e6bb8a7e125b0aacb08b84f1b9dae8d
81e3fc5f07ece3851428fdfa695bfde590d78f3b45ed93e69b9554c803eb6851

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Apr 2023 07:30:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ww1.scottrosetech.com/favicon.ico

199.59.243.223

200 OK

0 B

URL GET HTTP/1.1
ww1.scottrosetech.com/favicon.ico
IP
199.59.243.223:80
ASN
#16509 AMAZON-02

Requested by
http://ww1.scottrosetech.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: ww1.scottrosetech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww1.scottrosetech.com/
Cookie: sid=c6a295cc-d83a-11ed-8cf5-94d82baf5f89; parking_session=47fcf95e-554d-39e9-ff20-19489a143016
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: openresty
Date: Tue, 11 Apr 2023 07:30:49 GMT
Content-Type: image/x-icon
Content-Length: 0
Last-Modified: Wed, 15 Sep 2021 19:38:30 GMT
Connection: keep-alive
ETag: "61424bb6-0"
x-backend-server: ip-10-201-16-117.ec2.internal
Accept-Ranges: bytes

www.google.com/adsense/domains/caf.js

142.250.74.164

200 OK

54 kB

URL GET HTTP/2
www.google.com/adsense/domains/caf.js
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
http://ww1.scottrosetech.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint32:55:D3:30:01:87:C1:43:56:A2:49:7D:77:5F:E1:F2:3C:04:60:E7
ValidityMon, 20 Mar 2023 08:26:32 GMT - Mon, 12 Jun 2023 08:26:31 GMT

File type
data
Size
54 kB (54451 bytes)
Hash
0888df367769dd0cd5fc536a054f3b77
a159505e7025431462eeee1188e323ddd8cffc20
aca70ef4c49ee857041a299ef4a3b8e5e521efe2d5b00cc2dd97a20815aaec26

HTTP Headers

GET /adsense/domains/caf.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ww1.scottrosetech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Tue, 11 Apr 2023 07:30:49 GMT
expires: Tue, 11 Apr 2023 07:30:49 GMT
cache-control: private, max-age=3600
etag: "1682913448459385544"
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

472 B

URL
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
781bf7440faafb81908d80251f6fd593
8940d7b4098d15717149c5895bfe1f391bfb7dd0
8438550969b8e210433f2afb9427972e79b9c0505ff38ab60ca0e48c04230144

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Apr 2023 07:30:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

partner.googleadservices.com/gampad/cookie.js?domain=ww1.scottrosetech.com&client=dp-bodis30_3ph&product=SAS&callback=__sasCookie

216.58.207.226

200 OK

243 B

URL GET HTTP/2
partner.googleadservices.com/gampad/cookie.js?domain=ww1.scottrosetech.com&client=dp-bodis30_3ph&product=SAS&callback=__sasCookie
IP
216.58.207.226:443
ASN
#15169 GOOGLE

Requested by
http://ww1.scottrosetech.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleadservices.com
FingerprintBB:4C:F1:93:30:6E:E2:2F:8F:BE:5D:63:30:E3:52:49:63:DE:D3:2C
ValidityMon, 20 Mar 2023 08:24:17 GMT - Mon, 12 Jun 2023 08:24:16 GMT

File type
ASCII text, with very long lines (374), with no line terminators
Size
243 B (243 bytes)
Hash
cf27449ffb4fb347b49087bc6c5ca727
88c173b59bc185826c5b18edc863c9ddefb939f4
064210295521ef47d23419a7af995d903dbc5e172d3c8ae75dfc730ef752e99e

HTTP Headers

GET /gampad/cookie.js?domain=ww1.scottrosetech.com&client=dp-bodis30_3ph&product=SAS&callback=__sasCookie HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ww1.scottrosetech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 11 Apr 2023 07:30:49 GMT
server: cafe
cache-control: private
content-length: 243
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.com/afs/ads?adtest=off&psid=9190190988&pcsa=false&channel=pid-bodis-gcontrol130%2Cpid-bodis-gcontrol97%2Cpid-bodis-gcontrol307%2Cpid-bodis-gcontrol152%2Cpid-bodis-gcontrol430&client=dp-bodis30_3ph&r=m&hl=en&rpbu=http%3A%2F%2Fww1.scottrosetech.com%3Fcaf%26&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2898040491288658&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003&format=r3&nocache=8041681198263087&num=0&output=afd_ads&domain_name=ww1.scottrosetech.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1681198263090&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1264&psh=79&frm=0&cl=521491932&uio=-&cont=rs&jsid=caf&jsv=521491932&rurl=http%3A%2F%2Fww1.scottrosetech.com%2F&referer=http%3A%2F%2Fscottrosetech.com%2F&adbw=master-1%3A1264

142.250.74.164

200 OK

2.1 kB

URL GET HTTP/3
www.google.com/afs/ads?adtest=off&psid=9190190988&pcsa=false&channel=pid-bodis-gcontrol130%2Cpid-bodis-gcontrol97%2Cpid-bodis-gcontrol307%2Cpid-bodis-gcontrol152%2Cpid-bodis-gcontrol430&client=dp-bodis30_3ph&r=m&hl=en&rpbu=http%3A%2F%2Fww1.scottrosetech.com%3Fcaf%26&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2898040491288658&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003&format=r3&nocache=8041681198263087&num=0&output=afd_ads&domain_name=ww1.scottrosetech.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1681198263090&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1264&psh=79&frm=0&cl=521491932&uio=-&cont=rs&jsid=caf&jsv=521491932&rurl=http%3A%2F%2Fww1.scottrosetech.com%2F&referer=http%3A%2F%2Fscottrosetech.com%2F&adbw=master-1%3A1264
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
http://ww1.scottrosetech.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBC:12:A9:4C:44:2A:9A:A2:F3:90:FC:9B:BD:52:91:4C:61:A4:7C:CD
ValidityMon, 20 Mar 2023 08:22:16 GMT - Mon, 12 Jun 2023 08:22:15 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5453)
Size
2.1 kB (2098 bytes)
Hash
7488963c9aba8ea7dce40e9141f97333
3ef7deb1603458c00196f856121c642e00b597de
a0f849f67605a41ed886c0fc4fb3d0577aaebcc03966aa50ffce120b55055446

HTTP Headers

GET /afs/ads?adtest=off&psid=9190190988&pcsa=false&channel=pid-bodis-gcontrol130%2Cpid-bodis-gcontrol97%2Cpid-bodis-gcontrol307%2Cpid-bodis-gcontrol152%2Cpid-bodis-gcontrol430&client=dp-bodis30_3ph&r=m&hl=en&rpbu=http%3A%2F%2Fww1.scottrosetech.com%3Fcaf%26&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2898040491288658&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003&format=r3&nocache=8041681198263087&num=0&output=afd_ads&domain_name=ww1.scottrosetech.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1681198263090&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1264&psh=79&frm=0&cl=521491932&uio=-&cont=rs&jsid=caf&jsv=521491932&rurl=http%3A%2F%2Fww1.scottrosetech.com%2F&referer=http%3A%2F%2Fscottrosetech.com%2F&adbw=master-1%3A1264 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.google.com
Connection: keep-alive
Referer: http://ww1.scottrosetech.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/html; charset=UTF-8
content-disposition: inline
date: Tue, 11 Apr 2023 07:30:49 GMT
expires: Tue, 11 Apr 2023 07:30:49 GMT
cache-control: private, max-age=3600
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-Xsv_38Sv1RaeuFKBuH-l3Q' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
content-encoding: br
server: gws
content-length: 2098
x-xss-protection: 0
set-cookie: CONSENT=PENDING+919; expires=Thu, 10-Apr-2025 07:30:49 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

ocsp.pki.goog/gts1c3

216.58.211.3

472 B

URL
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
781bf7440faafb81908d80251f6fd593
8940d7b4098d15717149c5895bfe1f391bfb7dd0
8438550969b8e210433f2afb9427972e79b9c0505ff38ab60ca0e48c04230144

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Apr 2023 07:30:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

472 B

URL
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a68a8914fc5c02fcdf02dbdb4a6a870f
b3915a84f8a02d329f72ec498d9c65f6000fd129
978402fa295fe341b7c363d4717545502fceb77a948ee253962dba8bd72dade4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Apr 2023 07:30:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/adsense/domains/caf.js

142.250.74.164

200 OK

54 kB

URL GET HTTP/2
www.google.com/adsense/domains/caf.js
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
http://ww1.scottrosetech.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint32:55:D3:30:01:87:C1:43:56:A2:49:7D:77:5F:E1:F2:3C:04:60:E7
ValidityMon, 20 Mar 2023 08:26:32 GMT - Mon, 12 Jun 2023 08:26:31 GMT

File type
ASCII text, with very long lines (2193)
Size
54 kB (54244 bytes)
Hash
485dc904264da783e82d667e724214de
df0888150105d1f9ff70bf4060f936f3c4383b45
2414c5d89b0dfd76abea93542880891dd6937c8a6f95df2a102f9db2baa45683

HTTP Headers

GET /adsense/domains/caf.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
Alt-Used: www.google.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Tue, 11 Apr 2023 07:30:50 GMT
expires: Tue, 11 Apr 2023 07:30:50 GMT
cache-control: private, max-age=3600
etag: "953786019220193827"
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

ocsp.pki.goog/gts1c3

216.58.211.3

472 B

URL
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a68a8914fc5c02fcdf02dbdb4a6a870f
b3915a84f8a02d329f72ec498d9c65f6000fd129
978402fa295fe341b7c363d4717545502fceb77a948ee253962dba8bd72dade4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Apr 2023 07:30:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/call_to_action_arrow.svg?c=%23ffffff

142.250.74.97

200 OK

278 B

URL GET HTTP/2
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/call_to_action_arrow.svg?c=%23ffffff
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/afs/ads?adtest=off&psid=9190190988&pcsa=false&channel=pid-bodis-gcontrol130%2Cpid-bodis-gcontrol97%2Cpid-bodis-gcontrol307%2Cpid-bodis-gcontrol152%2Cpid-bodis-gcontrol430&client=dp-bodis30_3ph&r=m&hl=en&rpbu=http%3A%2F%2Fww1.scottrosetech.com%3Fcaf%26&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2898040491288658&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003&format=r3&nocache=8041681198263087&num=0&output=afd_ads&domain_name=ww1.scottrosetech.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1681198263090&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1264&psh=79&frm=0&cl=521491932&uio=-&cont=rs&jsid=caf&jsv=521491932&rurl=http%3A%2F%2Fww1.scottrosetech.com%2F&referer=http%3A%2F%2Fscottrosetech.com%2F&adbw=master-1%3A1264
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint8E:EA:87:FA:FF:46:6E:7F:92:1B:9F:3C:2C:8E:4D:FD:4F:C8:3D:0E
ValidityMon, 20 Mar 2023 08:25:52 GMT - Mon, 12 Jun 2023 08:25:51 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (306)
Size
278 B (278 bytes)
Hash
bb7fc36f627255dd4783f849dca0932e
80e89ef8f3c2c8ee982523757fce214ea7323a69
735f48c2876099e6a731c65fc46ec1ec133c316e0997d04eb0ee246741bee647

HTTP Headers

GET /ad_icons/standard/publisher_icon_image/call_to_action_arrow.svg?c=%23ffffff HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 278
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
date: Mon, 10 Apr 2023 13:29:56 GMT
expires: Tue, 11 Apr 2023 12:29:56 GMT
cache-control: public, max-age=82800
age: 64854
last-modified: Tue, 09 Feb 2021 14:15:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

472 B

URL
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a68a8914fc5c02fcdf02dbdb4a6a870f
b3915a84f8a02d329f72ec498d9c65f6000fd129
978402fa295fe341b7c363d4717545502fceb77a948ee253962dba8bd72dade4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Apr 2023 07:30:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ww1.scottrosetech.com/_tr

199.59.243.223

200 OK

22 B

URL POST HTTP/1.1
ww1.scottrosetech.com/_tr
IP
199.59.243.223:80
ASN
#16509 AMAZON-02

Requested by
http://ww1.scottrosetech.com/

File type
ASCII text, with no line terminators
Size
22 B (22 bytes)
Hash
5cfde9b47de2d84bd26fc473632647c0
fd53c70631b6068328be57daec71bd94bf004d41
47fd05ef74fef5da03fa22483e63fc977cad8e026ae41dadbbcc3745907f306b

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

POST /_tr HTTP/1.1
Host: ww1.scottrosetech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ww1.scottrosetech.com/
Content-Type: application/json
Content-Length: 1657
Origin: http://ww1.scottrosetech.com
Connection: keep-alive
Cookie: sid=c6a295cc-d83a-11ed-8cf5-94d82baf5f89; parking_session=47fcf95e-554d-39e9-ff20-19489a143016; __gsas=ID=20e6d86cfa13b07c:T=1681198249:S=ALNI_MZO1U3vUf9NymxjclPZaqvayx5YNg
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: openresty
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 11 Apr 2023 07:30:50 GMT
X-Version: 2.104.1
Set-Cookie: parking_session=47fcf95e-554d-39e9-ff20-19489a143016; expires=Tue, 11-Apr-2023 07:45:50 GMT; Max-Age=900; path=/; httponly
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Encoding: gzip

www.google.com/afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=3nnoodmu4sk7&aqid=qQw1ZNOoNoy9Y5iEl_gN&psid=9190190988&pbt=bs&adbx=290&adby=145&adbh=481&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=521491932&csala=14%7C0%7C297%7C50%7C187&lle=0&llm=1000&ifv=1&usr=1

142.250.74.164

204 No Content

0 B

URL GET HTTP/3
www.google.com/afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=3nnoodmu4sk7&aqid=qQw1ZNOoNoy9Y5iEl_gN&psid=9190190988&pbt=bs&adbx=290&adby=145&adbh=481&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=521491932&csala=14%7C0%7C297%7C50%7C187&lle=0&llm=1000&ifv=1&usr=1
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
http://ww1.scottrosetech.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBC:12:A9:4C:44:2A:9A:A2:F3:90:FC:9B:BD:52:91:4C:61:A4:7C:CD
ValidityMon, 20 Mar 2023 08:22:16 GMT - Mon, 12 Jun 2023 08:22:15 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=3nnoodmu4sk7&aqid=qQw1ZNOoNoy9Y5iEl_gN&psid=9190190988&pbt=bs&adbx=290&adby=145&adbh=481&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=521491932&csala=14%7C0%7C297%7C50%7C187&lle=0&llm=1000&ifv=1&usr=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.google.com
Connection: keep-alive
Referer: http://ww1.scottrosetech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-Qjs_7IMfHyaqdJLR2mwLBw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
date: Tue, 11 Apr 2023 07:30:51 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: NID=511=ZKzSm8-YKGVQ2InnijY3n1W71buKrhUhjGyFXiY9GQ1qMiPw2ksbPPvyZwR2Z-ZK0DEL-JhxKOgzfcvEriXERU1pm4ivzMrMWZgjELtqPodnZqpOe9m4wxuCgz-rOwqXp21p06gK_Ce1093gd_VD269xmHBulk88U0gaW9nRz0E; expires=Wed, 11-Oct-2023 07:30:51 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+791; expires=Thu, 10-Apr-2025 07:30:51 GMT; path=/; domain=.google.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=rz8cafyromsn&aqid=qQw1ZNOoNoy9Y5iEl_gN&psid=9190190988&pbt=bv&adbx=290&adby=145&adbh=481&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=521491932&csala=14%7C0%7C297%7C50%7C187&lle=0&llm=1000&ifv=1&usr=1

142.250.74.164

204 No Content

0 B

URL GET HTTP/3
www.google.com/afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=rz8cafyromsn&aqid=qQw1ZNOoNoy9Y5iEl_gN&psid=9190190988&pbt=bv&adbx=290&adby=145&adbh=481&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=521491932&csala=14%7C0%7C297%7C50%7C187&lle=0&llm=1000&ifv=1&usr=1
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
http://ww1.scottrosetech.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBC:12:A9:4C:44:2A:9A:A2:F3:90:FC:9B:BD:52:91:4C:61:A4:7C:CD
ValidityMon, 20 Mar 2023 08:22:16 GMT - Mon, 12 Jun 2023 08:22:15 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=rz8cafyromsn&aqid=qQw1ZNOoNoy9Y5iEl_gN&psid=9190190988&pbt=bv&adbx=290&adby=145&adbh=481&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=521491932&csala=14%7C0%7C297%7C50%7C187&lle=0&llm=1000&ifv=1&usr=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.google.com
Connection: keep-alive
Referer: http://ww1.scottrosetech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-1f0vARS4cm3o2V5Hyg2ECg' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
date: Tue, 11 Apr 2023 07:30:52 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: NID=511=oyV4pOFXLOOM3BTOYB6OsnvjEgYpb2WGbXWaDZ3QUz5kGoEKiUiy2J0E3PlpC0oZBgFQQuRmHAQpZqZV9-CA3LT_w16SWAYo3bPH2eNhyIN55HduY4IA5KQ17mESouPLGwhFPXB9-VnvIH4uBQTp-uxPGwO6oKHdX_vMeFo7G8U; expires=Wed, 11-Oct-2023 07:30:52 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+708; expires=Thu, 10-Apr-2025 07:30:52 GMT; path=/; domain=.google.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%2302198b

142.250.74.97

200 OK

391 B

URL GET HTTP/2
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%2302198b
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/afs/ads?adtest=off&psid=9190190988&pcsa=false&channel=pid-bodis-gcontrol130%2Cpid-bodis-gcontrol97%2Cpid-bodis-gcontrol307%2Cpid-bodis-gcontrol152%2Cpid-bodis-gcontrol430&client=dp-bodis30_3ph&r=m&hl=en&rpbu=http%3A%2F%2Fww1.scottrosetech.com%3Fcaf%26&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2898040491288658&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003&format=r3&nocache=8041681198263087&num=0&output=afd_ads&domain_name=ww1.scottrosetech.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1681198263090&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1264&psh=79&frm=0&cl=521491932&uio=-&cont=rs&jsid=caf&jsv=521491932&rurl=http%3A%2F%2Fww1.scottrosetech.com%2F&referer=http%3A%2F%2Fscottrosetech.com%2F&adbw=master-1%3A1264
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint8E:EA:87:FA:FF:46:6E:7F:92:1B:9F:3C:2C:8E:4D:FD:4F:C8:3D:0E
ValidityMon, 20 Mar 2023 08:25:52 GMT - Mon, 12 Jun 2023 08:25:51 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (406), with no line terminators
Size
391 B (391 bytes)
Hash
e1ae130836687828838a9e2ab73d8287
fde3f359e382fb8dcfa7859b4ec5cf4cfd8d1143
802e77254159923c2c9eeb8b8b529bd42b70c877567833048945be670b431f0b

HTTP Headers

GET /ad_icons/standard/publisher_icon_image/search.svg?c=%2302198b HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 272
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
date: Mon, 10 Apr 2023 19:53:55 GMT
expires: Tue, 11 Apr 2023 18:53:55 GMT
cache-control: public, max-age=82800
age: 41815
last-modified: Thu, 19 Dec 2019 14:15:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (6)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (24)

URL

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL

IP

ASN