scottrosetech.com/
5.79.79.212 478 B IP 5.79.79.212:0
ASN #60781 LeaseWeb Netherlands B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (478), with no line terminators
Hash e149b78e6427b5e16452bd0147a1b184
1e444ee6ed56ad8c8c3117588360248f87b70eb3
80321391f714a9e80ac65867873bd8f0641456a4f7cf4cb487e2b0a5f8ad6d9d
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: scottrosetech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 478
content-type: text/html; charset=utf-8
date: Tue, 11 Apr 2023 07:30:46 GMT
server: nginx
set-cookie: sid=c6a295cc-d83a-11ed-8cf5-94d82baf5f89; path=/; domain=.scottrosetech.com; expires=Sun, 29 Apr 2091 10:44:54 GMT; max-age=2147483647; HttpOnly
scottrosetech.com/favicon.ico
5.79.79.212 9 B URL scottrosetech.com/favicon.ico
IP 5.79.79.212:0
ASN #60781 LeaseWeb Netherlands B.V.
File type ASCII text, with no line terminators
Hash d8f4a1993546cc4b850cde3599e27aec
094b763b4cfcc0b05e5d040581cd513c3ca08067
907ba78b4545338d3539683e63ecb51cf51c10adc9dabd86e92bd52339f298b9
GET /favicon.ico HTTP/1.1
Host: scottrosetech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scottrosetech.com/
Cookie: sid=c6a295cc-d83a-11ed-8cf5-94d82baf5f89
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 9
date: Tue, 11 Apr 2023 07:30:46 GMT
server: nginx
scottrosetech.com/?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY4MTIwNTQ0NywiaWF0IjoxNjgxMTk4MjQ3LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydGFkMXBmcGdpbWpxdXJxajgyN29qaWYiLCJuYmYiOjE2ODExOTgyNDcsInRzIjoxNjgxMTk4MjQ3MDY4MjczfQ.Ytsv6v2CcHahX3ctNAg6kjM4L1-Enrrhio4knAjypiA&sid=c6a295cc-d83a-11ed-8cf5-94d82baf5f89
5.79.79.212302 Found 11 B URL User Request GET HTTP/1.1 scottrosetech.com/?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY4MTIwNTQ0NywiaWF0IjoxNjgxMTk4MjQ3LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydGFkMXBmcGdpbWpxdXJxajgyN29qaWYiLCJuYmYiOjE2ODExOTgyNDcsInRzIjoxNjgxMTk4MjQ3MDY4MjczfQ.Ytsv6v2CcHahX3ctNAg6kjM4L1-Enrrhio4knAjypiA&sid=c6a295cc-d83a-11ed-8cf5-94d82baf5f89
IP 5.79.79.212:80
ASN #60781 LeaseWeb Netherlands B.V.
File type ASCII text, with no line terminators
Hash 32682312d17c7cbf18e73594f5570319
60e22121bdd0bc71cdb2bae2a3aa577006b2eae9
e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47
GET /?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY4MTIwNTQ0NywiaWF0IjoxNjgxMTk4MjQ3LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydGFkMXBmcGdpbWpxdXJxajgyN29qaWYiLCJuYmYiOjE2ODExOTgyNDcsInRzIjoxNjgxMTk4MjQ3MDY4MjczfQ.Ytsv6v2CcHahX3ctNAg6kjM4L1-Enrrhio4knAjypiA&sid=c6a295cc-d83a-11ed-8cf5-94d82baf5f89 HTTP/1.1
Host: scottrosetech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scottrosetech.com/
Cookie: sid=c6a295cc-d83a-11ed-8cf5-94d82baf5f89
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 11
date: Tue, 11 Apr 2023 07:30:46 GMT
location: http://ww1.scottrosetech.com
server: nginx
set-cookie: sid=c6a295cc-d83a-11ed-8cf5-94d82baf5f89; path=/; domain=.scottrosetech.com; expires=Sun, 29 Apr 2091 10:44:54 GMT; max-age=2147483647; HttpOnly
199.59.243.223200 OK 704 B URL User Request GET HTTP/1.1 IP 199.59.243.223:80
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (923), with no line terminators
Hash c295d91ff042cb0bd78c7b5d13a98a82
e317aa1ef09fe67617a8c61235d927684315f08e
1b48529408e17fb536a48543321d68d294d1fac2bc34c08f51151096b1697b67
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: ww1.scottrosetech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://scottrosetech.com/
Connection: keep-alive
Cookie: sid=c6a295cc-d83a-11ed-8cf5-94d82baf5f89
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Tue, 11 Apr 2023 07:30:49 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: parking_session=47fcf95e-554d-39e9-ff20-19489a143016; expires=Tue, 11-Apr-2023 07:45:49 GMT; Max-Age=900; path=/; HttpOnly
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_jBGfgSZLr4c/F9eWwEcRqcquo5AYl34y0dCU42/19JhTgAA/zP8k1G7zgBNimk3mne8NvrfmALQqLLJ2feNu0A==
Accept-CH: sec-ch-prefers-color-scheme
Critical-CH: sec-ch-prefers-color-scheme
Vary: sec-ch-prefers-color-scheme
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Encoding: gzip
ww1.scottrosetech.com/js/parking.2.104.1.js
199.59.243.223200 OK 22 kB URL GET HTTP/1.1 ww1.scottrosetech.com/js/parking.2.104.1.js
IP 199.59.243.223:80
Requested by http://ww1.scottrosetech.com/
File type HTML document, ASCII text, with very long lines (65536), with no line terminators
Hash c90bb88c05245a2d88ccf715f68f07fb
01d44c146ec4877eac9ceac21d18fd48388bdcdc
c6fba917f12371964e2826d512a6d7572f9a62dc530cd58a3a17a2b96dd96d07
Analyzer Verdict Alert fortinet Malware
GET /js/parking.2.104.1.js HTTP/1.1
Host: ww1.scottrosetech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww1.scottrosetech.com/
Cookie: sid=c6a295cc-d83a-11ed-8cf5-94d82baf5f89; parking_session=47fcf95e-554d-39e9-ff20-19489a143016
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Tue, 11 Apr 2023 07:30:49 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 29 Mar 2023 20:48:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Encoding: gzip
ww1.scottrosetech.com/_fd
199.59.243.223200 OK 2.1 kB URL POST HTTP/1.1 ww1.scottrosetech.com/_fd
IP 199.59.243.223:80
Requested by http://ww1.scottrosetech.com/
File type ASCII text, with very long lines (4013), with no line terminators
Hash 787efb7a3f362be3f0d2e639e6625d27
f24ef176a9f1e1bd4eadf71cff6a1968ce584f31
97fbd721c7a455fd7051917fb73140070a853e7249e20a7171fd1eae9a849301
Analyzer Verdict Alert fortinet Malware
POST /_fd HTTP/1.1
Host: ww1.scottrosetech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ww1.scottrosetech.com/
Content-Type: application/json
Origin: http://ww1.scottrosetech.com
Connection: keep-alive
Cookie: sid=c6a295cc-d83a-11ed-8cf5-94d82baf5f89; parking_session=47fcf95e-554d-39e9-ff20-19489a143016
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/1.1 200 OK
Server: openresty
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 11 Apr 2023 07:30:49 GMT
X-Version: 2.104.1
Set-Cookie: parking_session=47fcf95e-554d-39e9-ff20-19489a143016; expires=Tue, 11-Apr-2023 07:45:49 GMT; Max-Age=900; path=/; httponly
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Encoding: gzip
ww1.scottrosetech.com/px.gif?ch=1&rn=8.998486314140955
199.59.243.223200 OK 42 B URL GET HTTP/1.1 ww1.scottrosetech.com/px.gif?ch=1&rn=8.998486314140955
IP 199.59.243.223:80
Requested by http://ww1.scottrosetech.com/
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /px.gif?ch=1&rn=8.998486314140955 HTTP/1.1
Host: ww1.scottrosetech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww1.scottrosetech.com/
Cookie: sid=c6a295cc-d83a-11ed-8cf5-94d82baf5f89; parking_session=47fcf95e-554d-39e9-ff20-19489a143016
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Tue, 11 Apr 2023 07:30:49 GMT
Content-Type: image/gif
Content-Length: 42
Last-Modified: Wed, 15 Sep 2021 19:38:30 GMT
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Accept-Ranges: bytes
ww1.scottrosetech.com/px.gif?ch=2&rn=8.998486314140955
199.59.243.223200 OK 42 B URL GET HTTP/1.1 ww1.scottrosetech.com/px.gif?ch=2&rn=8.998486314140955
IP 199.59.243.223:80
Requested by http://ww1.scottrosetech.com/
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /px.gif?ch=2&rn=8.998486314140955 HTTP/1.1
Host: ww1.scottrosetech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww1.scottrosetech.com/
Cookie: sid=c6a295cc-d83a-11ed-8cf5-94d82baf5f89; parking_session=47fcf95e-554d-39e9-ff20-19489a143016
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Tue, 11 Apr 2023 07:30:49 GMT
Content-Type: image/gif
Content-Length: 42
Last-Modified: Wed, 15 Sep 2021 19:38:30 GMT
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
216.58.211.3 472 B IP 216.58.211.3:0
Hash bd9d4974b4febd981e86663becbaf26a
8bc54dde3e6bb8a7e125b0aacb08b84f1b9dae8d
81e3fc5f07ece3851428fdfa695bfde590d78f3b45ed93e69b9554c803eb6851
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Apr 2023 07:30:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ww1.scottrosetech.com/favicon.ico
199.59.243.223200 OK 0 B URL GET HTTP/1.1 ww1.scottrosetech.com/favicon.ico
IP 199.59.243.223:80
Requested by http://ww1.scottrosetech.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: ww1.scottrosetech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww1.scottrosetech.com/
Cookie: sid=c6a295cc-d83a-11ed-8cf5-94d82baf5f89; parking_session=47fcf95e-554d-39e9-ff20-19489a143016
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Tue, 11 Apr 2023 07:30:49 GMT
Content-Type: image/x-icon
Content-Length: 0
Last-Modified: Wed, 15 Sep 2021 19:38:30 GMT
Connection: keep-alive
ETag: "61424bb6-0"
x-backend-server: ip-10-201-16-117.ec2.internal
Accept-Ranges: bytes
www.google.com/adsense/domains/caf.js
142.250.74.164200 OK 54 kB URL GET HTTP/2 www.google.com/adsense/domains/caf.js
IP 142.250.74.164:443
Requested by http://ww1.scottrosetech.com/
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint32:55:D3:30:01:87:C1:43:56:A2:49:7D:77:5F:E1:F2:3C:04:60:E7
ValidityMon, 20 Mar 2023 08:26:32 GMT - Mon, 12 Jun 2023 08:26:31 GMT
Hash 0888df367769dd0cd5fc536a054f3b77
a159505e7025431462eeee1188e323ddd8cffc20
aca70ef4c49ee857041a299ef4a3b8e5e521efe2d5b00cc2dd97a20815aaec26
GET /adsense/domains/caf.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ww1.scottrosetech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Tue, 11 Apr 2023 07:30:49 GMT
expires: Tue, 11 Apr 2023 07:30:49 GMT
cache-control: private, max-age=3600
etag: "1682913448459385544"
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3 472 B IP 216.58.211.3:0
Hash 781bf7440faafb81908d80251f6fd593
8940d7b4098d15717149c5895bfe1f391bfb7dd0
8438550969b8e210433f2afb9427972e79b9c0505ff38ab60ca0e48c04230144
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Apr 2023 07:30:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=ww1.scottrosetech.com&client=dp-bodis30_3ph&product=SAS&callback=__sasCookie
216.58.207.226200 OK 243 B URL GET HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=ww1.scottrosetech.com&client=dp-bodis30_3ph&product=SAS&callback=__sasCookie
IP 216.58.207.226:443
Requested by http://ww1.scottrosetech.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.googleadservices.com
FingerprintBB:4C:F1:93:30:6E:E2:2F:8F:BE:5D:63:30:E3:52:49:63:DE:D3:2C
ValidityMon, 20 Mar 2023 08:24:17 GMT - Mon, 12 Jun 2023 08:24:16 GMT
File type ASCII text, with very long lines (374), with no line terminators
Hash cf27449ffb4fb347b49087bc6c5ca727
88c173b59bc185826c5b18edc863c9ddefb939f4
064210295521ef47d23419a7af995d903dbc5e172d3c8ae75dfc730ef752e99e
GET /gampad/cookie.js?domain=ww1.scottrosetech.com&client=dp-bodis30_3ph&product=SAS&callback=__sasCookie HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ww1.scottrosetech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 11 Apr 2023 07:30:49 GMT
server: cafe
cache-control: private
content-length: 243
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/afs/ads?adtest=off&psid=9190190988&pcsa=false&channel=pid-bodis-gcontrol130%2Cpid-bodis-gcontrol97%2Cpid-bodis-gcontrol307%2Cpid-bodis-gcontrol152%2Cpid-bodis-gcontrol430&client=dp-bodis30_3ph&r=m&hl=en&rpbu=http%3A%2F%2Fww1.scottrosetech.com%3Fcaf%26&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2898040491288658&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003&format=r3&nocache=8041681198263087&num=0&output=afd_ads&domain_name=ww1.scottrosetech.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1681198263090&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1264&psh=79&frm=0&cl=521491932&uio=-&cont=rs&jsid=caf&jsv=521491932&rurl=http%3A%2F%2Fww1.scottrosetech.com%2F&referer=http%3A%2F%2Fscottrosetech.com%2F&adbw=master-1%3A1264
142.250.74.164200 OK 2.1 kB URL GET HTTP/3 www.google.com/afs/ads?adtest=off&psid=9190190988&pcsa=false&channel=pid-bodis-gcontrol130%2Cpid-bodis-gcontrol97%2Cpid-bodis-gcontrol307%2Cpid-bodis-gcontrol152%2Cpid-bodis-gcontrol430&client=dp-bodis30_3ph&r=m&hl=en&rpbu=http%3A%2F%2Fww1.scottrosetech.com%3Fcaf%26&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2898040491288658&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003&format=r3&nocache=8041681198263087&num=0&output=afd_ads&domain_name=ww1.scottrosetech.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1681198263090&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1264&psh=79&frm=0&cl=521491932&uio=-&cont=rs&jsid=caf&jsv=521491932&rurl=http%3A%2F%2Fww1.scottrosetech.com%2F&referer=http%3A%2F%2Fscottrosetech.com%2F&adbw=master-1%3A1264
IP 142.250.74.164:443
Requested by http://ww1.scottrosetech.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBC:12:A9:4C:44:2A:9A:A2:F3:90:FC:9B:BD:52:91:4C:61:A4:7C:CD
ValidityMon, 20 Mar 2023 08:22:16 GMT - Mon, 12 Jun 2023 08:22:15 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5453)
Hash 7488963c9aba8ea7dce40e9141f97333
3ef7deb1603458c00196f856121c642e00b597de
a0f849f67605a41ed886c0fc4fb3d0577aaebcc03966aa50ffce120b55055446
GET /afs/ads?adtest=off&psid=9190190988&pcsa=false&channel=pid-bodis-gcontrol130%2Cpid-bodis-gcontrol97%2Cpid-bodis-gcontrol307%2Cpid-bodis-gcontrol152%2Cpid-bodis-gcontrol430&client=dp-bodis30_3ph&r=m&hl=en&rpbu=http%3A%2F%2Fww1.scottrosetech.com%3Fcaf%26&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2898040491288658&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003&format=r3&nocache=8041681198263087&num=0&output=afd_ads&domain_name=ww1.scottrosetech.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1681198263090&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1264&psh=79&frm=0&cl=521491932&uio=-&cont=rs&jsid=caf&jsv=521491932&rurl=http%3A%2F%2Fww1.scottrosetech.com%2F&referer=http%3A%2F%2Fscottrosetech.com%2F&adbw=master-1%3A1264 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.google.com
Connection: keep-alive
Referer: http://ww1.scottrosetech.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/html; charset=UTF-8
content-disposition: inline
date: Tue, 11 Apr 2023 07:30:49 GMT
expires: Tue, 11 Apr 2023 07:30:49 GMT
cache-control: private, max-age=3600
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-Xsv_38Sv1RaeuFKBuH-l3Q' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
content-encoding: br
server: gws
content-length: 2098
x-xss-protection: 0
set-cookie: CONSENT=PENDING+919; expires=Thu, 10-Apr-2025 07:30:49 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
216.58.211.3 472 B IP 216.58.211.3:0
Hash 781bf7440faafb81908d80251f6fd593
8940d7b4098d15717149c5895bfe1f391bfb7dd0
8438550969b8e210433f2afb9427972e79b9c0505ff38ab60ca0e48c04230144
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Apr 2023 07:30:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3 472 B IP 216.58.211.3:0
Hash a68a8914fc5c02fcdf02dbdb4a6a870f
b3915a84f8a02d329f72ec498d9c65f6000fd129
978402fa295fe341b7c363d4717545502fceb77a948ee253962dba8bd72dade4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Apr 2023 07:30:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/adsense/domains/caf.js
142.250.74.164200 OK 54 kB URL GET HTTP/2 www.google.com/adsense/domains/caf.js
IP 142.250.74.164:443
Requested by http://ww1.scottrosetech.com/
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint32:55:D3:30:01:87:C1:43:56:A2:49:7D:77:5F:E1:F2:3C:04:60:E7
ValidityMon, 20 Mar 2023 08:26:32 GMT - Mon, 12 Jun 2023 08:26:31 GMT
File type ASCII text, with very long lines (2193)
Hash 485dc904264da783e82d667e724214de
df0888150105d1f9ff70bf4060f936f3c4383b45
2414c5d89b0dfd76abea93542880891dd6937c8a6f95df2a102f9db2baa45683
GET /adsense/domains/caf.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
Alt-Used: www.google.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Tue, 11 Apr 2023 07:30:50 GMT
expires: Tue, 11 Apr 2023 07:30:50 GMT
cache-control: private, max-age=3600
etag: "953786019220193827"
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
216.58.211.3 472 B IP 216.58.211.3:0
Hash a68a8914fc5c02fcdf02dbdb4a6a870f
b3915a84f8a02d329f72ec498d9c65f6000fd129
978402fa295fe341b7c363d4717545502fceb77a948ee253962dba8bd72dade4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Apr 2023 07:30:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/call_to_action_arrow.svg?c=%23ffffff
142.250.74.97200 OK 278 B URL GET HTTP/2 afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/call_to_action_arrow.svg?c=%23ffffff
IP 142.250.74.97:443
Requested by https://www.google.com/afs/ads?adtest=off&psid=9190190988&pcsa=false&channel=pid-bodis-gcontrol130%2Cpid-bodis-gcontrol97%2Cpid-bodis-gcontrol307%2Cpid-bodis-gcontrol152%2Cpid-bodis-gcontrol430&client=dp-bodis30_3ph&r=m&hl=en&rpbu=http%3A%2F%2Fww1.scottrosetech.com%3Fcaf%26&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2898040491288658&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003&format=r3&nocache=8041681198263087&num=0&output=afd_ads&domain_name=ww1.scottrosetech.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1681198263090&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1264&psh=79&frm=0&cl=521491932&uio=-&cont=rs&jsid=caf&jsv=521491932&rurl=http%3A%2F%2Fww1.scottrosetech.com%2F&referer=http%3A%2F%2Fscottrosetech.com%2F&adbw=master-1%3A1264
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint8E:EA:87:FA:FF:46:6E:7F:92:1B:9F:3C:2C:8E:4D:FD:4F:C8:3D:0E
ValidityMon, 20 Mar 2023 08:25:52 GMT - Mon, 12 Jun 2023 08:25:51 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (306)
Hash bb7fc36f627255dd4783f849dca0932e
80e89ef8f3c2c8ee982523757fce214ea7323a69
735f48c2876099e6a731c65fc46ec1ec133c316e0997d04eb0ee246741bee647
GET /ad_icons/standard/publisher_icon_image/call_to_action_arrow.svg?c=%23ffffff HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 278
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
date: Mon, 10 Apr 2023 13:29:56 GMT
expires: Tue, 11 Apr 2023 12:29:56 GMT
cache-control: public, max-age=82800
age: 64854
last-modified: Tue, 09 Feb 2021 14:15:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3 472 B IP 216.58.211.3:0
Hash a68a8914fc5c02fcdf02dbdb4a6a870f
b3915a84f8a02d329f72ec498d9c65f6000fd129
978402fa295fe341b7c363d4717545502fceb77a948ee253962dba8bd72dade4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Apr 2023 07:30:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ww1.scottrosetech.com/_tr
199.59.243.223200 OK 22 B URL POST HTTP/1.1 ww1.scottrosetech.com/_tr
IP 199.59.243.223:80
Requested by http://ww1.scottrosetech.com/
File type ASCII text, with no line terminators
Hash 5cfde9b47de2d84bd26fc473632647c0
fd53c70631b6068328be57daec71bd94bf004d41
47fd05ef74fef5da03fa22483e63fc977cad8e026ae41dadbbcc3745907f306b
Analyzer Verdict Alert fortinet Malware
POST /_tr HTTP/1.1
Host: ww1.scottrosetech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ww1.scottrosetech.com/
Content-Type: application/json
Content-Length: 1657
Origin: http://ww1.scottrosetech.com
Connection: keep-alive
Cookie: sid=c6a295cc-d83a-11ed-8cf5-94d82baf5f89; parking_session=47fcf95e-554d-39e9-ff20-19489a143016; __gsas=ID=20e6d86cfa13b07c:T=1681198249:S=ALNI_MZO1U3vUf9NymxjclPZaqvayx5YNg
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 11 Apr 2023 07:30:50 GMT
X-Version: 2.104.1
Set-Cookie: parking_session=47fcf95e-554d-39e9-ff20-19489a143016; expires=Tue, 11-Apr-2023 07:45:50 GMT; Max-Age=900; path=/; httponly
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Encoding: gzip
www.google.com/afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=3nnoodmu4sk7&aqid=qQw1ZNOoNoy9Y5iEl_gN&psid=9190190988&pbt=bs&adbx=290&adby=145&adbh=481&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=521491932&csala=14%7C0%7C297%7C50%7C187&lle=0&llm=1000&ifv=1&usr=1
142.250.74.164204 No Content 0 B URL GET HTTP/3 www.google.com/afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=3nnoodmu4sk7&aqid=qQw1ZNOoNoy9Y5iEl_gN&psid=9190190988&pbt=bs&adbx=290&adby=145&adbh=481&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=521491932&csala=14%7C0%7C297%7C50%7C187&lle=0&llm=1000&ifv=1&usr=1
IP 142.250.74.164:443
Requested by http://ww1.scottrosetech.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBC:12:A9:4C:44:2A:9A:A2:F3:90:FC:9B:BD:52:91:4C:61:A4:7C:CD
ValidityMon, 20 Mar 2023 08:22:16 GMT - Mon, 12 Jun 2023 08:22:15 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=3nnoodmu4sk7&aqid=qQw1ZNOoNoy9Y5iEl_gN&psid=9190190988&pbt=bs&adbx=290&adby=145&adbh=481&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=521491932&csala=14%7C0%7C297%7C50%7C187&lle=0&llm=1000&ifv=1&usr=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.google.com
Connection: keep-alive
Referer: http://ww1.scottrosetech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-Qjs_7IMfHyaqdJLR2mwLBw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
date: Tue, 11 Apr 2023 07:30:51 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: NID=511=ZKzSm8-YKGVQ2InnijY3n1W71buKrhUhjGyFXiY9GQ1qMiPw2ksbPPvyZwR2Z-ZK0DEL-JhxKOgzfcvEriXERU1pm4ivzMrMWZgjELtqPodnZqpOe9m4wxuCgz-rOwqXp21p06gK_Ce1093gd_VD269xmHBulk88U0gaW9nRz0E; expires=Wed, 11-Oct-2023 07:30:51 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+791; expires=Thu, 10-Apr-2025 07:30:51 GMT; path=/; domain=.google.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=rz8cafyromsn&aqid=qQw1ZNOoNoy9Y5iEl_gN&psid=9190190988&pbt=bv&adbx=290&adby=145&adbh=481&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=521491932&csala=14%7C0%7C297%7C50%7C187&lle=0&llm=1000&ifv=1&usr=1
142.250.74.164204 No Content 0 B URL GET HTTP/3 www.google.com/afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=rz8cafyromsn&aqid=qQw1ZNOoNoy9Y5iEl_gN&psid=9190190988&pbt=bv&adbx=290&adby=145&adbh=481&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=521491932&csala=14%7C0%7C297%7C50%7C187&lle=0&llm=1000&ifv=1&usr=1
IP 142.250.74.164:443
Requested by http://ww1.scottrosetech.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBC:12:A9:4C:44:2A:9A:A2:F3:90:FC:9B:BD:52:91:4C:61:A4:7C:CD
ValidityMon, 20 Mar 2023 08:22:16 GMT - Mon, 12 Jun 2023 08:22:15 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=rz8cafyromsn&aqid=qQw1ZNOoNoy9Y5iEl_gN&psid=9190190988&pbt=bv&adbx=290&adby=145&adbh=481&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=521491932&csala=14%7C0%7C297%7C50%7C187&lle=0&llm=1000&ifv=1&usr=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.google.com
Connection: keep-alive
Referer: http://ww1.scottrosetech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-1f0vARS4cm3o2V5Hyg2ECg' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
date: Tue, 11 Apr 2023 07:30:52 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: NID=511=oyV4pOFXLOOM3BTOYB6OsnvjEgYpb2WGbXWaDZ3QUz5kGoEKiUiy2J0E3PlpC0oZBgFQQuRmHAQpZqZV9-CA3LT_w16SWAYo3bPH2eNhyIN55HduY4IA5KQ17mESouPLGwhFPXB9-VnvIH4uBQTp-uxPGwO6oKHdX_vMeFo7G8U; expires=Wed, 11-Oct-2023 07:30:52 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+708; expires=Thu, 10-Apr-2025 07:30:52 GMT; path=/; domain=.google.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%2302198b
142.250.74.97200 OK 391 B URL GET HTTP/2 afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%2302198b
IP 142.250.74.97:443
Requested by https://www.google.com/afs/ads?adtest=off&psid=9190190988&pcsa=false&channel=pid-bodis-gcontrol130%2Cpid-bodis-gcontrol97%2Cpid-bodis-gcontrol307%2Cpid-bodis-gcontrol152%2Cpid-bodis-gcontrol430&client=dp-bodis30_3ph&r=m&hl=en&rpbu=http%3A%2F%2Fww1.scottrosetech.com%3Fcaf%26&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2898040491288658&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003&format=r3&nocache=8041681198263087&num=0&output=afd_ads&domain_name=ww1.scottrosetech.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1681198263090&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1264&psh=79&frm=0&cl=521491932&uio=-&cont=rs&jsid=caf&jsv=521491932&rurl=http%3A%2F%2Fww1.scottrosetech.com%2F&referer=http%3A%2F%2Fscottrosetech.com%2F&adbw=master-1%3A1264
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint8E:EA:87:FA:FF:46:6E:7F:92:1B:9F:3C:2C:8E:4D:FD:4F:C8:3D:0E
ValidityMon, 20 Mar 2023 08:25:52 GMT - Mon, 12 Jun 2023 08:25:51 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (406), with no line terminators
Hash e1ae130836687828838a9e2ab73d8287
fde3f359e382fb8dcfa7859b4ec5cf4cfd8d1143
802e77254159923c2c9eeb8b8b529bd42b70c877567833048945be670b431f0b
GET /ad_icons/standard/publisher_icon_image/search.svg?c=%2302198b HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 272
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
date: Mon, 10 Apr 2023 19:53:55 GMT
expires: Tue, 11 Apr 2023 18:53:55 GMT
cache-control: public, max-age=82800
age: 41815
last-modified: Thu, 19 Dec 2019 14:15:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2