Report - 1451.scenbe.com/match-1451/17009/31697430/1575814157/mf_fa866176-964d-4dd5-b182-1aeb9a4206e4/YXBpeDA3LW5vMm9wbG92ZS5jb20=

Report Overview

Visited public
2023-12-06 03:17:14
Tags
URL
1451.scenbe.com/match-1451/17009/31697430/1575814157/mf_fa866176-964d-4dd5-b182-1aeb9a4206e4/YXBpeDA3LW5vMm9wbG92ZS5jb20=
Finishing URL
ww9.scenbe.com/
IP / ASN
173.239.5.6
#27257 WEBAIR-INTERNET
Title
scenbe.com

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-12-05 06:14:20	477 B	12 kB	216.58.207.227
1451.scenbe.com	unknown	unknown	No data	No data	1.3 kB	1.1 kB	173.239.8.164
scenbe.com	unknown	2020-09-07	2021-02-01 22:34:46	2023-11-26 03:22:34	872 B	640 B	173.239.5.6
ww9.scenbe.com	unknown	2020-09-07	2022-06-05 15:01:41	2023-11-26 06:00:13	2.5 kB	16 kB	13.248.148.254
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-12-05 07:37:50	366 B	835 B	142.250.74.106
www.google.com	7	1997-09-15	2015-05-10 13:11:19	2023-11-19 18:48:38	3.8 kB	212 kB	142.250.74.132
c.parkingcrew.net	70582	2011-01-24	2017-01-29 20:17:16	2023-12-05 04:03:48	341 B	1.0 kB	185.53.178.30
d38psrni17bvxu.cloudfront.net	unknown	2008-04-25	2022-09-22 18:48:38	2023-12-05 10:53:49	406 B	12 kB	54.230.241.199
afs.googleusercontent.com	12123	2008-11-17	2013-05-06 21:11:00	2023-12-05 07:01:09	987 B	2.1 kB	142.250.74.97

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-12-06 03:17:05	medium	Client IP	173.239.5.6	ET ADWARE_PUP Win32/Zonebac Traffic Redirect

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (15)

	URL	From	Size	First Seen	Last Seen
	ww9.scenbe.com/	ScriptElement	968 B	2023-03-08	2025-05-09
Pretty URL ww9.scenbe.com/ IP 13.248.148.254 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 02:24 Last Seen2025-05-09 13:24 Times Seen73670 Hash c77554570ae0fa8e4fb31747dc213058 e989fbde07e6a68975c7a31e1d4df76afd90b96f c3f831fe1717c6d76a8950ac5e7dc88ceee7440d079b11584be5c6c5b3269e77 Loading...

	ww9.scenbe.com/	ScriptElement	738 B	2024-08-20	2024-08-20
Pretty URL ww9.scenbe.com/ IP 13.248.148.254 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:36 Last Seen2024-08-20 16:36 Times Seen1 Hash 8f15161def3e79c403647e85cdb5ee27 72152363344550606320ff4862702c1ed7d11438 3c149c2c9452060a8f89f2fe237aed2494ec207762a55393364e98a1655b1fda Loading...

	www.google.com/adsense/domains/caf.js	ScriptElement	150 kB	2023-11-08	2023-12-07
Pretty URL www.google.com/adsense/domains/caf.js IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-08 16:43 Last Seen2023-12-07 20:21 Times Seen497 Hash b4c8e8cf7cd78867a2a1d76b7c0733f7 92531acc59f45d7bd8a9be9e3f6ab3084a20183a df68d7cf0827398cab36ef26602c880f02166ac2829c44bf95d485da30b9ef71 Loading...

	ww9.scenbe.com/	ScriptElement	246 B	2024-08-20	2024-08-20
Pretty URL ww9.scenbe.com/ IP 13.248.148.254 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:36 Last Seen2024-08-20 16:36 Times Seen1 Hash d2613004ca98a97ae0a36e95daaef216 4057a5cb45a200d56fcaf5d7870c9b40823831e9 a43df2f512e42771561d63841195570eea1a3f7f50267e898e4f3b48b10ee558 Loading...

	ww9.scenbe.com/	ScriptElement	7.0 kB	2023-03-13	2024-08-21
Pretty URL ww9.scenbe.com/ IP 13.248.148.254 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 06:10 Last Seen2024-08-21 09:44 Times Seen6195 Hash 04b2b624f94797c26d17a57f399d9356 3143986e839c47a5c1eff03bd9df63ecc54dca9c 233b1cbfb295a0629bcf68a2a4198a62132f02ee1f061ada2ce7143bd5d2dabb Loading...

	www.google.com/afs/ads?adtest=off&psid=1167268112&pcsa=false&channel=000001%2Cbucket003&client=dp-teaminternet04_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fww9.scenbe.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMDN8fHx8fHw2NTZmZTdhZWFkMGI5fHx8MTcwMTgzMjYyMi43MjEzfDlhNjRhMjBlYzA4YjNiNzhhMTU1ODdiNzVhZGUzZTZkYjhjMzVhOTN8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fFpIQXRkR1ZoYldsdWRHVnlibVYwTURSZk0zQm98ZDgyZjM2MWZiZjFhMmNkYjk1Y2Y3NmRjNjczMTAzZDYzZWVlNTdiZHwwfDB8fDB8fHwwfDB8VzEwPXx8MXxXMTA9fDBkOGZjMmFhMTg5YWNiNTM2NzcwN2JiMTEyNmIyNDhiMmVlNDcxOWJ8MHxkcC10ZWFtaW50ZXJuZXQwNF8zcGh8MHwwfA%253D%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2541811284092968&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301157&format=r3%7Cs&nocache=9091701832629042&num=0&output=afd_ads&domain_name=ww9.scenbe.com&v=3&bsl=8&pac=0&u_his=4&u_tz=0&dt=1701832629044&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=760&frm=0&cl=579967862&uio=--&cont=tc&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Fww9.scenbe.com%2F&referer=http%3A%2F%2Fscenbe.com%2F	ScriptElement	935 B	2024-08-20	2024-08-20
Pretty URL www.google.com/afs/ads?adtest=off&psid=1167268112&pcsa=false&channel=000001%2Cbucket003&client=dp-teaminternet04_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fww9.scenbe.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMDN8fHx8fHw2NTZmZTdhZWFkMGI5fHx8MTcwMTgzMjYyMi43MjEzfDlhNjRhMjBlYzA4YjNiNzhhMTU1ODdiNzVhZGUzZTZkYjhjMzVhOTN8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fFpIQXRkR1ZoYldsdWRHVnlibVYwTURSZk0zQm98ZDgyZjM2MWZiZjFhMmNkYjk1Y2Y3NmRjNjczMTAzZDYzZWVlNTdiZHwwfDB8fDB8fHwwfDB8VzEwPXx8MXxXMTA9fDBkOGZjMmFhMTg5YWNiNTM2NzcwN2JiMTEyNmIyNDhiMmVlNDcxOWJ8MHxkcC10ZWFtaW50ZXJuZXQwNF8zcGh8MHwwfA%253D%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2541811284092968&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301157&format=r3%7Cs&nocache=9091701832629042&num=0&output=afd_ads&domain_name=ww9.scenbe.com&v=3&bsl=8&pac=0&u_his=4&u_tz=0&dt=1701832629044&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=760&frm=0&cl=579967862&uio=--&cont=tc&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Fww9.scenbe.com%2F&referer=http%3A%2F%2Fscenbe.com%2F IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:36 Last Seen2024-08-20 16:36 Times Seen1 Hash c04196f6aa49b365b94f0c88c04ab9f4 6203fa9daba0782d4b8b06794a51a6a39aaf2fef ce26928396125b82c105abac34eb913ed1b2cd9f5f501166f594c211e1225564 Loading...

	c.parkingcrew.net/scripts/sale_form.js	ScriptElement	761 B	2023-03-07	2025-05-09
Pretty URL c.parkingcrew.net/scripts/sale_form.js IP 185.53.178.30 ASN #19905 NEUSTAR-AS6 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-09 12:56 Times Seen6496 Hash 64f809e06446647e192fce8d1ec34e09 5b7ced07da42e205067afa88615317a277a4a82c f52cbd664986ad7ed6e71c448e2d31d1a16463e4d9b7bca0c6be278649ccc4f3 Loading...

	ww9.scenbe.com/	ScriptElement	1.3 kB	2024-08-20	2024-08-20
Pretty URL ww9.scenbe.com/ IP 13.248.148.254 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:36 Last Seen2024-08-20 16:36 Times Seen1 Hash 0151013abf4bfadb00522e755b3c59fe 21e829cecfae82fad75bdadd8ec21c38fe628f1d 4d1d5e54071aa9893fcf4543b54e1f43e6757c3403108a04ebf9aceb0e791386 Loading...

	ww9.scenbe.com/	ScriptElement	20 B	2023-03-12	2024-08-21
Pretty URL ww9.scenbe.com/ IP 13.248.148.254 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 13:00 Last Seen2024-08-21 09:44 Times Seen3983 Hash bb9472ed191ad69435d630c50e139a17 4efa10c70dbfe37ec4c8bb5a04b907c549de7e3d eec645c8d410f4d6accc5c4c3326bbff80fdd9d105e423ad50c5c87b22845492 Loading...

	ww9.scenbe.com/	ScriptElement	65 B	2023-03-12	2024-08-21
Pretty URL ww9.scenbe.com/ IP 13.248.148.254 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 13:04 Last Seen2024-08-21 09:32 Times Seen208 Hash 5687c58953daa7d86c22721da0ecbf73 9eba532fd3e5e230ca76909cc992d100a6a722e8 a35c912e2c5debd0a5be58aae4cff4fa81f8251ef23e4e79faca8db8084ebe42 Loading...

	www.google.com/adsense/domains/caf.js?abp=1	ScriptElement	150 kB	2023-11-09	2024-08-20
Pretty URL www.google.com/adsense/domains/caf.js?abp=1 IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-09 14:10 Last Seen2024-08-20 20:17 Times Seen2217 Hash 8a76c49bbeb49fa874cb415fe2b10d0c 76de9796dbe01e64d77fccd00d0b19cf382493b8 a1f85a8b9c0ae7e01a01780b44c447ebbadb5d856c6ff826e2cd9fe19f15135f Loading...

	ww9.scenbe.com/	ScriptElement	472 B	2023-03-13	2024-08-21
Pretty URL ww9.scenbe.com/ IP 13.248.148.254 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 06:13 Last Seen2024-08-21 09:44 Times Seen6016 Hash d31eefc1e54bdae9204297e4ae5b9cce fc49bf319586a623670a81c01d43bbd93b477fbb 2683a6247a15433dd269eaefbc7131b1326c7bc0146361913ea10ad8fa23bb14 Loading...

	ww9.scenbe.com/	ScriptElement	669 B	2024-08-20	2024-08-20
Pretty URL ww9.scenbe.com/ IP 13.248.148.254 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:36 Last Seen2024-08-20 16:36 Times Seen1 Hash 77c4726d50bd586940fd3ac738849ce3 a5ff7ef8f58d505c8d150ee635acfd8a5b932d3f c1b6b2db2d199a8c055e934115a34471a6597e7eba9ca123f1e1edd94d3511f2 Loading...

	ww9.scenbe.com/	ScriptElement	40 B	2023-08-09	2024-08-21
Pretty URL ww9.scenbe.com/ IP 13.248.148.254 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-09 10:52 Last Seen2024-08-21 09:42 Times Seen9104 Hash fca3e6a61d4a07440e4f10c4dbaad8e3 41480802bf872b2d15f9cbcadba025fe326eac03 dfe5c5e10934e7abf7903d4ede3b8fa091c11bef63d675808e6314ec763185ee Loading...

	ww9.scenbe.com/	ScriptElement	71 B	2023-03-08	2024-08-21
Pretty URL ww9.scenbe.com/ IP 13.248.148.254 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 02:23 Last Seen2024-08-21 09:44 Times Seen6209 Hash 1a5a5e1b6a26f57b95e3dd42f60612f4 b62a27e55a59b49084e682bd3c1588f6a40881ab 4066da16910907c7962da8e7011bf0cd62b6f2dcddb1911e3ea2de03ce3e1dc7 Loading...

HTTP Transactions (22)

URL IP Response Size

1451.scenbe.com/match-1451/17009/31697430/1575814157/mf_fa866176-964d-4dd5-b182-1aeb9a4206e4/YXBpeDA3LW5vMm9wbG92ZS5jb20=

173.239.8.164

145 B

URL
1451.scenbe.com/match-1451/17009/31697430/1575814157/mf_fa866176-964d-4dd5-b182-1aeb9a4206e4/YXBpeDA3LW5vMm9wbG92ZS5jb20=
IP
173.239.8.164:0
ASN
#27257 WEBAIR-INTERNET

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
145 B (145 bytes)
Hash
ca35f86083c327b09ec3df0adfe284e7
bd680276bffaf6fdb304657003d51a74b5c2f998
84c1fdfe0e68e2ed14b46fd867e91688936072ad51471ea9fa0c7616480ab912

HTTP Headers

GET /match-1451/17009/31697430/1575814157/mf_fa866176-964d-4dd5-b182-1aeb9a4206e4/YXBpeDA3LW5vMm9wbG92ZS5jb20= HTTP/1.1
Host: 1451.scenbe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Moved Temporarily
Server: nginx/1.20.1
Date: Wed, 06 Dec 2023 03:16:58 GMT
Content-Type: text/html
Content-Length: 145
Connection: keep-alive
Location: http://1451.scenbe.com/

1451.scenbe.com/

173.239.8.164

244 B

URL
1451.scenbe.com/
IP
173.239.8.164:0
ASN
#27257 WEBAIR-INTERNET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Size
244 B (244 bytes)
Hash
108837239bd00692dd5c0e471ed47376
c72796523a86f8f5bb803cc6064d0dfe4659145e
8742e4fadb16fc1971d44d7fe54af4a4cec83e1bb2c5bbf243cdbb2e975d6203

HTTP Headers

GET / HTTP/1.1
Host: 1451.scenbe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Wed, 06 Dec 2023 03:16:58 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip

1451.scenbe.com/favicon.ico

173.239.8.164

114 B

URL
1451.scenbe.com/favicon.ico
IP
173.239.8.164:0
ASN
#27257 WEBAIR-INTERNET

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
114 B (114 bytes)
Hash
932da5a430ff6db1bc48425b567d56fa
e7e88023dbbc6346d354ffe9fb7db957888c2299
10174434dbe479c08b32ce3b42b70e7c6336647d29e4393483158d590d35c325

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: 1451.scenbe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://1451.scenbe.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: nginx/1.20.1
Date: Wed, 06 Dec 2023 03:16:59 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip

scenbe.com/

173.239.5.6

151 B

URL
scenbe.com/
IP
173.239.5.6:0
ASN
#27257 WEBAIR-INTERNET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Size
151 B (151 bytes)
Hash
4bdfb6adbe2bed7be49df4e4bcafbc1b
a46242ef06ad7f794f5d66878008b809cd4d006f
1ad2c48573909d6aa518751adc85372bd22f3dd5b2a35c15f2ab0f48452b747a

Detections

NIDS	Severity	Alert
suricata	medium	ET ADWARE_PUP Win32/Zonebac Traffic Redirect

HTTP Headers

POST / HTTP/1.1
Host: scenbe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded
Content-Length: 12
Origin: http://1451.scenbe.com
DNT: 1
Connection: keep-alive
Referer: http://1451.scenbe.com/
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Wed, 06 Dec 2023 03:16:59 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip

scenbe.com/favicon.ico

173.239.5.6

114 B

URL
scenbe.com/favicon.ico
IP
173.239.5.6:0
ASN
#27257 WEBAIR-INTERNET

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
114 B (114 bytes)
Hash
932da5a430ff6db1bc48425b567d56fa
e7e88023dbbc6346d354ffe9fb7db957888c2299
10174434dbe479c08b32ce3b42b70e7c6336647d29e4393483158d590d35c325

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: scenbe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://scenbe.com/
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: nginx/1.20.1
Date: Wed, 06 Dec 2023 03:16:59 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip

ww9.scenbe.com/

13.248.148.254

200 OK

6.3 kB

URL User Request GET HTTP/1.1
ww9.scenbe.com/
IP
13.248.148.254:80
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1348)
Size
6.3 kB (6311 bytes)
Hash
c3a00a26383f6f15a98ef0618829f6e7
74854f2f7185e29a5801d04505b3d7957d06366d
46b66964aa2f2d4aad9de9c23b1113f1f255810b31a46949cb6c748f1b675ec1

HTTP Headers

GET / HTTP/1.1
Host: ww9.scenbe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 03:17:02 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-Buckets: bucket003
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_WqaPnBYPxxiwsFl8HHiWQKnB7Xh/xWhH7HTVHqdwzaXWaCli7ytBw3L/J+gTetTnUkCor7DTXmGPtjasx4mqqQ==
X-Template: tpl_CleanPeppermintBlack_twoclick
X-Language: norwegian
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
X-Domain: scenbe.com
X-Subdomain: ww9
Content-Encoding: gzip

ww9.scenbe.com/

76.223.26.96

200 OK

6.2 kB

URL User Request GET HTTP/1.1
ww9.scenbe.com/
IP
76.223.26.96:80
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1348)
Size
6.2 kB (6244 bytes)
Hash
e9548275d52b614661bca14f0b2cebc1
0cb272e56903cee3e9f7b55616dfb1460c92a663
5a69cacbda4a5c7935d4dec7d06ab3a6d08514db9b5a76d77266de2e7f14fb8f

HTTP Headers

GET / HTTP/1.1
Host: ww9.scenbe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://scenbe.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 03:17:02 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-Buckets: bucket003
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_WqaPnBYPxxiwsFl8HHiWQKnB7Xh/xWhH7HTVHqdwzaXWaCli7ytBw3L/J+gTetTnUkCor7DTXmGPtjasx4mqqQ==
X-Template: tpl_CleanPeppermintBlack_twoclick
X-Language: norwegian
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
X-Domain: scenbe.com
X-Subdomain: ww9
Content-Encoding: gzip

fonts.googleapis.com/css?family=Port+Lligat+Slab

142.250.74.106

200 OK

298 B

URL GET HTTP/1.1
fonts.googleapis.com/css?family=Port+Lligat+Slab
IP
142.250.74.106:80
ASN
#15169 GOOGLE

Requested by
http://ww9.scenbe.com/

File type
ASCII text
Size
298 B (298 bytes)
Hash
89c2539339eababc5c00e5d7efac4161
465ae4f0056658c272af47422607373a8313defe
daae8cb312b7bd0131d2c218255061eb8299a93f7711098fbaa5b3717e7268bc

HTTP Headers

GET /css?family=Port+Lligat+Slab HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ww9.scenbe.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Wed, 06 Dec 2023 03:17:02 GMT
Date: Wed, 06 Dec 2023 03:17:02 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

www.google.com/adsense/domains/caf.js?abp=1

142.250.74.132

200 OK

54 kB

URL GET HTTP/1.1
www.google.com/adsense/domains/caf.js?abp=1
IP
142.250.74.132:80
ASN
#15169 GOOGLE

Requested by
http://ww9.scenbe.com/

File type
ASCII text, with very long lines (1888)
Size
54 kB (54355 bytes)
Hash
8a76c49bbeb49fa874cb415fe2b10d0c
76de9796dbe01e64d77fccd00d0b19cf382493b8
a1f85a8b9c0ae7e01a01780b44c447ebbadb5d856c6ff826e2cd9fe19f15135f

HTTP Headers

GET /adsense/domains/caf.js?abp=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ww9.scenbe.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Type: text/javascript; charset=UTF-8
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="ads-afs-ui"
Report-To: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
Date: Wed, 06 Dec 2023 03:17:02 GMT
Expires: Wed, 06 Dec 2023 03:17:02 GMT
Cache-Control: private, max-age=3600
ETag: "3100330882123301848"
X-Content-Type-Options: nosniff
Link: <https://www.adsensecustomsearchads.com>; rel="preconnect"
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: sffe
X-XSS-Protection: 0

c.parkingcrew.net/scripts/sale_form.js

185.53.178.30

200 OK

761 B

URL GET HTTP/1.1
c.parkingcrew.net/scripts/sale_form.js
IP
185.53.178.30:80
ASN
#19905 NEUSTAR-AS6

Requested by
http://ww9.scenbe.com/

File type
ASCII text
Size
761 B (761 bytes)
Hash
64f809e06446647e192fce8d1ec34e09
5b7ced07da42e205067afa88615317a277a4a82c
f52cbd664986ad7ed6e71c448e2d31d1a16463e4d9b7bca0c6be278649ccc4f3

HTTP Headers

GET /scripts/sale_form.js HTTP/1.1
Host: c.parkingcrew.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ww9.scenbe.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 06 Dec 2023 03:17:02 GMT
Content-Type: application/javascript
Content-Length: 761
Connection: keep-alive
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
ETag: "5ebab1f0-2f9"
Accept-Ranges: bytes

ww9.scenbe.com/track.php?domain=scenbe.com&toggle=browserjs&uid=MTcwMTgzMjYyMi43MDg4Ojg4ODI3Mzg0NWE4NWQ0YTIxMWQwMDczYjA3MTNjY2FiMWFmYzdlZGE2YWIwNjZjNDVkYTcwODQ0NmVjZTgyOTI6NjU2ZmU3YWVhZDBlNA%3D%3D

76.223.26.96

200 OK

20 B

URL GET HTTP/1.1
ww9.scenbe.com/track.php?domain=scenbe.com&toggle=browserjs&uid=MTcwMTgzMjYyMi43MDg4Ojg4ODI3Mzg0NWE4NWQ0YTIxMWQwMDczYjA3MTNjY2FiMWFmYzdlZGE2YWIwNjZjNDVkYTcwODQ0NmVjZTgyOTI6NjU2ZmU3YWVhZDBlNA%3D%3D
IP
76.223.26.96:80
ASN
#16509 AMAZON-02

Requested by
http://ww9.scenbe.com/

File type
gzip compressed data, max speed, from Unix\012- data
Size
20 B (20 bytes)
Hash
a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf

HTTP Headers

GET /track.php?domain=scenbe.com&toggle=browserjs&uid=MTcwMTgzMjYyMi43MDg4Ojg4ODI3Mzg0NWE4NWQ0YTIxMWQwMDczYjA3MTNjY2FiMWFmYzdlZGE2YWIwNjZjNDVkYTcwODQ0NmVjZTgyOTI6NjU2ZmU3YWVhZDBlNA%3D%3D HTTP/1.1
Host: ww9.scenbe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ww9.scenbe.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 03:17:02 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-Custom-Track: browserjs
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Access-Control-Allow-Origin: *
Content-Encoding: gzip

fonts.gstatic.com/s/portlligatslab/v25/LDIpaoiQNgArA8kR7ulhZ8P_NYOsg70R9g.woff2

216.58.207.227

200 OK

12 kB

URL GET HTTP/1.1
fonts.gstatic.com/s/portlligatslab/v25/LDIpaoiQNgArA8kR7ulhZ8P_NYOsg70R9g.woff2
IP
216.58.207.227:80
ASN
#15169 GOOGLE

Requested by
http://ww9.scenbe.com/

File type
Web Open Font Format (Version 2), TrueType, length 11476, version 1.0\012- data
Size
12 kB (11476 bytes)
Hash
99f10b7c2173e99a630fa2248997106d
2ccc42406a7cefef4fd03a03b5949598d7c6efca
0399db86a4efaac36817553cb0ec6272041be953f4f9548f977e3a099643b47e

HTTP Headers

GET /s/portlligatslab/v25/LDIpaoiQNgArA8kR7ulhZ8P_NYOsg70R9g.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ww9.scenbe.com
DNT: 1
Connection: keep-alive
Referer: http://fonts.googleapis.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 11476
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 30 Nov 2023 07:06:38 GMT
Expires: Fri, 29 Nov 2024 07:06:38 GMT
Cache-Control: public, max-age=31536000
Age: 504625
Last-Modified: Thu, 24 Aug 2023 21:01:43 GMT
Content-Type: font/woff2

ww9.scenbe.com/ls.php?t=656fe7ae&token=0d8fc2aa189acb5367707bb1126b248b2ee4719b

76.223.26.96

201 Created

16 B

URL GET HTTP/1.1
ww9.scenbe.com/ls.php?t=656fe7ae&token=0d8fc2aa189acb5367707bb1126b248b2ee4719b
IP
76.223.26.96:80
ASN
#16509 AMAZON-02

Requested by
http://ww9.scenbe.com/

File type
JSON data\012- , ASCII text, with no line terminators
Size
16 B (16 bytes)
Hash
7363e85fe9edee6f053a4b319588c086
a15e2127145548437173fc17f3e980e3f3dee2d0
c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97

HTTP Headers

GET /ls.php?t=656fe7ae&token=0d8fc2aa189acb5367707bb1126b248b2ee4719b HTTP/1.1
Host: ww9.scenbe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ww9.scenbe.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 201 Created
Date: Wed, 06 Dec 2023 03:17:03 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
X-Log-Success: 656fe7af70ffd03e606c0634
Charset: utf-8
Access-Control-Allow-Origin: 
Access-Control-Allow-Methods: POST, OPTIONS
Access-Control-Max-Age: 86400
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_DXsQGVSOE2iu/sKwh9VBBqdTN3USg7TWPxFo+JLeuQNDo/9BrxxAum0XP2LGapQcrrarP/xaSLZDcavgzGp3bA==

ww9.scenbe.com/favicon.ico

76.223.26.96

200 OK

0 B

URL GET HTTP/1.1
ww9.scenbe.com/favicon.ico
IP
76.223.26.96:80
ASN
#16509 AMAZON-02

Requested by
http://ww9.scenbe.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: ww9.scenbe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ww9.scenbe.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 03:17:03 GMT
Content-Type: image/x-icon
Content-Length: 0
Connection: keep-alive
Server: nginx
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
ETag: "5ebab1f0-0"
Accept-Ranges: bytes

d38psrni17bvxu.cloudfront.net/themes/cleanPeppermintBlack_657d9013/img/arrows.png

54.230.241.199

200 OK

11 kB

URL GET HTTP/1.1
d38psrni17bvxu.cloudfront.net/themes/cleanPeppermintBlack_657d9013/img/arrows.png
IP
54.230.241.199:80
ASN
#16509 AMAZON-02

Requested by
http://ww9.scenbe.com/

File type
PNG image data, 1500 x 600, 8-bit colormap, non-interlaced\012- data
Size
11 kB (11375 bytes)
Hash
0cb2e5165dc9324eb462199f04e1ffa9
9e0f89847ec8a98d98a6020bc5c4ed32b7a48bf8
67dff0aad873050f12609885f2264417ccdd0d438311000a704c89f0865f7865

HTTP Headers

GET /themes/cleanPeppermintBlack_657d9013/img/arrows.png HTTP/1.1
Host: d38psrni17bvxu.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ww9.scenbe.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 11375
Connection: keep-alive
Server: nginx
Date: Tue, 05 Dec 2023 17:26:06 GMT
Last-Modified: Thu, 23 Jun 2022 10:44:43 GMT
Accept-Ranges: bytes
ETag: "62b4441b-2c6f"
X-Cache: Hit from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: o_fauzwLGvL0dPUxnTMiO2zd6I9TV39lKYHvIoLTIeHeTvahzPlJZA==
Age: 35457

www.google.com/afs/ads?adtest=off&psid=1167268112&pcsa=false&channel=000001%2Cbucket003&client=dp-teaminternet04_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fww9.scenbe.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMDN8fHx8fHw2NTZmZTdhZWFkMGI5fHx8MTcwMTgzMjYyMi43MjEzfDlhNjRhMjBlYzA4YjNiNzhhMTU1ODdiNzVhZGUzZTZkYjhjMzVhOTN8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fFpIQXRkR1ZoYldsdWRHVnlibVYwTURSZk0zQm98ZDgyZjM2MWZiZjFhMmNkYjk1Y2Y3NmRjNjczMTAzZDYzZWVlNTdiZHwwfDB8fDB8fHwwfDB8VzEwPXx8MXxXMTA9fDBkOGZjMmFhMTg5YWNiNTM2NzcwN2JiMTEyNmIyNDhiMmVlNDcxOWJ8MHxkcC10ZWFtaW50ZXJuZXQwNF8zcGh8MHwwfA%253D%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2541811284092968&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301157&format=r3%7Cs&nocache=9091701832629042&num=0&output=afd_ads&domain_name=ww9.scenbe.com&v=3&bsl=8&pac=0&u_his=4&u_tz=0&dt=1701832629044&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=760&frm=0&cl=579967862&uio=--&cont=tc&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Fww9.scenbe.com%2F&referer=http%3A%2F%2Fscenbe.com%2F

142.250.74.132

200 OK

3.0 kB

URL GET HTTP/2
www.google.com/afs/ads?adtest=off&psid=1167268112&pcsa=false&channel=000001%2Cbucket003&client=dp-teaminternet04_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fww9.scenbe.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMDN8fHx8fHw2NTZmZTdhZWFkMGI5fHx8MTcwMTgzMjYyMi43MjEzfDlhNjRhMjBlYzA4YjNiNzhhMTU1ODdiNzVhZGUzZTZkYjhjMzVhOTN8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fFpIQXRkR1ZoYldsdWRHVnlibVYwTURSZk0zQm98ZDgyZjM2MWZiZjFhMmNkYjk1Y2Y3NmRjNjczMTAzZDYzZWVlNTdiZHwwfDB8fDB8fHwwfDB8VzEwPXx8MXxXMTA9fDBkOGZjMmFhMTg5YWNiNTM2NzcwN2JiMTEyNmIyNDhiMmVlNDcxOWJ8MHxkcC10ZWFtaW50ZXJuZXQwNF8zcGh8MHwwfA%253D%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2541811284092968&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301157&format=r3%7Cs&nocache=9091701832629042&num=0&output=afd_ads&domain_name=ww9.scenbe.com&v=3&bsl=8&pac=0&u_his=4&u_tz=0&dt=1701832629044&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=760&frm=0&cl=579967862&uio=--&cont=tc&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Fww9.scenbe.com%2F&referer=http%3A%2F%2Fscenbe.com%2F
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
http://ww9.scenbe.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintB0:8E:97:10:7E:30:90:F6:42:A1:32:63:5C:78:27:D3:A8:F1:05:D1
ValidityMon, 23 Oct 2023 11:24:57 GMT - Mon, 15 Jan 2024 11:24:56 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (14180)
Size
3.0 kB (2989 bytes)
Hash
646c212fe22c8d80154a38892d134189
51098e6abd725d7d8db053ebd7fc3c3d2180512e
cfb5b2ce664b3411cf786b5272f2f846c61f3a451fb838d699e7c31c8746f66e

HTTP Headers

GET /afs/ads?adtest=off&psid=1167268112&pcsa=false&channel=000001%2Cbucket003&client=dp-teaminternet04_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fww9.scenbe.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMDN8fHx8fHw2NTZmZTdhZWFkMGI5fHx8MTcwMTgzMjYyMi43MjEzfDlhNjRhMjBlYzA4YjNiNzhhMTU1ODdiNzVhZGUzZTZkYjhjMzVhOTN8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fFpIQXRkR1ZoYldsdWRHVnlibVYwTURSZk0zQm98ZDgyZjM2MWZiZjFhMmNkYjk1Y2Y3NmRjNjczMTAzZDYzZWVlNTdiZHwwfDB8fDB8fHwwfDB8VzEwPXx8MXxXMTA9fDBkOGZjMmFhMTg5YWNiNTM2NzcwN2JiMTEyNmIyNDhiMmVlNDcxOWJ8MHxkcC10ZWFtaW50ZXJuZXQwNF8zcGh8MHwwfA%253D%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2541811284092968&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301157&format=r3%7Cs&nocache=9091701832629042&num=0&output=afd_ads&domain_name=ww9.scenbe.com&v=3&bsl=8&pac=0&u_his=4&u_tz=0&dt=1701832629044&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=760&frm=0&cl=579967862&uio=--&cont=tc&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Fww9.scenbe.com%2F&referer=http%3A%2F%2Fscenbe.com%2F HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://ww9.scenbe.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-disposition: inline
date: Wed, 06 Dec 2023 03:17:03 GMT
expires: Wed, 06 Dec 2023 03:17:03 GMT
cache-control: private, max-age=3600
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-jb5618gyKIwoM4wSPt-4iQ' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
content-encoding: br
server: gws
content-length: 2989
x-xss-protection: 0
set-cookie: CONSENT=PENDING+027; expires=Fri, 05-Dec-2025 03:17:03 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ww9.scenbe.com/track.php?domain=scenbe.com&caf=1&toggle=answercheck&answer=yes&uid=MTcwMTgzMjYyMi43MDg4Ojg4ODI3Mzg0NWE4NWQ0YTIxMWQwMDczYjA3MTNjY2FiMWFmYzdlZGE2YWIwNjZjNDVkYTcwODQ0NmVjZTgyOTI6NjU2ZmU3YWVhZDBlNA%3D%3D

76.223.26.96

200 OK

20 B

URL GET HTTP/1.1
ww9.scenbe.com/track.php?domain=scenbe.com&caf=1&toggle=answercheck&answer=yes&uid=MTcwMTgzMjYyMi43MDg4Ojg4ODI3Mzg0NWE4NWQ0YTIxMWQwMDczYjA3MTNjY2FiMWFmYzdlZGE2YWIwNjZjNDVkYTcwODQ0NmVjZTgyOTI6NjU2ZmU3YWVhZDBlNA%3D%3D
IP
76.223.26.96:80
ASN
#16509 AMAZON-02

Requested by
http://ww9.scenbe.com/

File type
gzip compressed data, max speed, from Unix\012- data
Size
20 B (20 bytes)
Hash
a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf

HTTP Headers

GET /track.php?domain=scenbe.com&caf=1&toggle=answercheck&answer=yes&uid=MTcwMTgzMjYyMi43MDg4Ojg4ODI3Mzg0NWE4NWQ0YTIxMWQwMDczYjA3MTNjY2FiMWFmYzdlZGE2YWIwNjZjNDVkYTcwODQ0NmVjZTgyOTI6NjU2ZmU3YWVhZDBlNA%3D%3D HTTP/1.1
Host: ww9.scenbe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ww9.scenbe.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 03:17:03 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-Custom-Track: answercheck
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Access-Control-Allow-Origin: *
Content-Encoding: gzip

afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff

142.250.74.97

200 OK

174 B

URL GET HTTP/2
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/afs/ads?adtest=off&psid=1167268112&pcsa=false&channel=000001%2Cbucket003&client=dp-teaminternet04_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fww9.scenbe.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMDN8fHx8fHw2NTZmZTdhZWFkMGI5fHx8MTcwMTgzMjYyMi43MjEzfDlhNjRhMjBlYzA4YjNiNzhhMTU1ODdiNzVhZGUzZTZkYjhjMzVhOTN8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fFpIQXRkR1ZoYldsdWRHVnlibVYwTURSZk0zQm98ZDgyZjM2MWZiZjFhMmNkYjk1Y2Y3NmRjNjczMTAzZDYzZWVlNTdiZHwwfDB8fDB8fHwwfDB8VzEwPXx8MXxXMTA9fDBkOGZjMmFhMTg5YWNiNTM2NzcwN2JiMTEyNmIyNDhiMmVlNDcxOWJ8MHxkcC10ZWFtaW50ZXJuZXQwNF8zcGh8MHwwfA%253D%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2541811284092968&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301157&format=r3%7Cs&nocache=9091701832629042&num=0&output=afd_ads&domain_name=ww9.scenbe.com&v=3&bsl=8&pac=0&u_his=4&u_tz=0&dt=1701832629044&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=760&frm=0&cl=579967862&uio=--&cont=tc&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Fww9.scenbe.com%2F&referer=http%3A%2F%2Fscenbe.com%2F
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE
ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Size
174 B (174 bytes)
Hash
11b3089d616633ca6b73b57aa877eeb4
07632f63e06b30d9b63c97177d3a8122629bda9b
809fb4619d2a2f1a85dbda8cc69a7f1659215212d708a098d62150eee57070c1

HTTP Headers

GET /ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 174
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 23:59:21 GMT
expires: Wed, 06 Dec 2023 22:59:21 GMT
cache-control: public, max-age=82800
last-modified: Thu, 02 Nov 2023 22:48:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
age: 11862
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%23ffffff

142.250.74.97

200 OK

270 B

URL GET HTTP/2
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%23ffffff
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/afs/ads?adtest=off&psid=1167268112&pcsa=false&channel=000001%2Cbucket003&client=dp-teaminternet04_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fww9.scenbe.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMDN8fHx8fHw2NTZmZTdhZWFkMGI5fHx8MTcwMTgzMjYyMi43MjEzfDlhNjRhMjBlYzA4YjNiNzhhMTU1ODdiNzVhZGUzZTZkYjhjMzVhOTN8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fFpIQXRkR1ZoYldsdWRHVnlibVYwTURSZk0zQm98ZDgyZjM2MWZiZjFhMmNkYjk1Y2Y3NmRjNjczMTAzZDYzZWVlNTdiZHwwfDB8fDB8fHwwfDB8VzEwPXx8MXxXMTA9fDBkOGZjMmFhMTg5YWNiNTM2NzcwN2JiMTEyNmIyNDhiMmVlNDcxOWJ8MHxkcC10ZWFtaW50ZXJuZXQwNF8zcGh8MHwwfA%253D%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2541811284092968&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301157&format=r3%7Cs&nocache=9091701832629042&num=0&output=afd_ads&domain_name=ww9.scenbe.com&v=3&bsl=8&pac=0&u_his=4&u_tz=0&dt=1701832629044&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=760&frm=0&cl=579967862&uio=--&cont=tc&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Fww9.scenbe.com%2F&referer=http%3A%2F%2Fscenbe.com%2F
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE
ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (390)
Size
270 B (270 bytes)
Hash
8959ddcd9712196961d93f58064ed655
62ab1e38e7e9fbf58a04381b76c2d96a9c829f24
17c7a89bf169c2ee400e31b042cea68513f06b9cd7d1e8990dbec800f0d771c7

HTTP Headers

GET /ad_icons/standard/publisher_icon_image/search.svg?c=%23ffffff HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 270
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 06 Dec 2023 00:49:05 GMT
expires: Wed, 06 Dec 2023 23:49:05 GMT
cache-control: public, max-age=82800
age: 8878
last-modified: Thu, 20 Jul 2023 22:48:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.com/afs/gen_204?client=dp-teaminternet04_3ph&output=uds_ads_only&zx=wjsr3zv9qh6e&aqid=r-dvZev1CMugjuwPxNeCqAE&psid=1167268112&pbt=bs&adbx=375&adby=94&adbh=496&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet04_3ph&errv=579967862&csala=14%7C0%7C363%7C150%7C74&lle=0&ifv=1&hpt=1

142.250.74.132

204 No Content

0 B

URL GET HTTP/3
www.google.com/afs/gen_204?client=dp-teaminternet04_3ph&output=uds_ads_only&zx=wjsr3zv9qh6e&aqid=r-dvZev1CMugjuwPxNeCqAE&psid=1167268112&pbt=bs&adbx=375&adby=94&adbh=496&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet04_3ph&errv=579967862&csala=14%7C0%7C363%7C150%7C74&lle=0&ifv=1&hpt=1
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
http://ww9.scenbe.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /afs/gen_204?client=dp-teaminternet04_3ph&output=uds_ads_only&zx=wjsr3zv9qh6e&aqid=r-dvZev1CMugjuwPxNeCqAE&psid=1167268112&pbt=bs&adbx=375&adby=94&adbh=496&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet04_3ph&errv=579967862&csala=14%7C0%7C363%7C150%7C74&lle=0&ifv=1&hpt=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://ww9.scenbe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-6MYaZRA6kuIiiF0rGy240g' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
date: Wed, 06 Dec 2023 03:17:05 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: NID=511=e5LbQSvaEzkO1nYGCfKDC1ELyHZpq8jIir2Uewwi6gsx8y80FQ6Kbef2x_8QMepdn14qgZBCP6JedVkMRvyJQbG2hejFAVomw5h95INHFsXry9gpSuC-MV7KTeFpJGHitCxqrGv51wd1Ixd6L01KROdSj0x4ctqlRQqjP3ClNJA; expires=Thu, 06-Jun-2024 03:17:05 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+140; expires=Fri, 05-Dec-2025 03:17:05 GMT; path=/; domain=.google.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/afs/gen_204?client=dp-teaminternet04_3ph&output=uds_ads_only&zx=fuj06sk5dvdu&aqid=r-dvZev1CMugjuwPxNeCqAE&psid=1167268112&pbt=bv&adbx=375&adby=94&adbh=496&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet04_3ph&errv=579967862&csala=14%7C0%7C363%7C150%7C74&lle=0&ifv=1&hpt=1

142.250.74.132

204 No Content

0 B

URL GET HTTP/3
www.google.com/afs/gen_204?client=dp-teaminternet04_3ph&output=uds_ads_only&zx=fuj06sk5dvdu&aqid=r-dvZev1CMugjuwPxNeCqAE&psid=1167268112&pbt=bv&adbx=375&adby=94&adbh=496&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet04_3ph&errv=579967862&csala=14%7C0%7C363%7C150%7C74&lle=0&ifv=1&hpt=1
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
http://ww9.scenbe.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /afs/gen_204?client=dp-teaminternet04_3ph&output=uds_ads_only&zx=fuj06sk5dvdu&aqid=r-dvZev1CMugjuwPxNeCqAE&psid=1167268112&pbt=bv&adbx=375&adby=94&adbh=496&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet04_3ph&errv=579967862&csala=14%7C0%7C363%7C150%7C74&lle=0&ifv=1&hpt=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://ww9.scenbe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-t15CSEPCbkDebnEdEaeLBQ' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
date: Wed, 06 Dec 2023 03:17:05 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: NID=511=ZFgMy2CjrZhNEGh13CVQT-TbSaV37pClaNbANaGHZ0QlQswgcEt5a1BU0wGsz6kfRePEIyuyNpDcekXDVv2OgmONIUktQaU5fRRMjdHhkLMBr1LC3CPoZ8zxVavvJGSelY9AiHXoA2H5iBKQGByuL7HidRetwdkxABcgRVLIj5A; expires=Thu, 06-Jun-2024 03:17:05 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+696; expires=Fri, 05-Dec-2025 03:17:05 GMT; path=/; domain=.google.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/adsense/domains/caf.js

142.250.74.132

200 OK

150 kB

URL GET HTTP/3
www.google.com/adsense/domains/caf.js
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/afs/ads?adtest=off&psid=1167268112&pcsa=false&channel=000001%2Cbucket003&client=dp-teaminternet04_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fww9.scenbe.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMDN8fHx8fHw2NTZmZTdhZWFkMGI5fHx8MTcwMTgzMjYyMi43MjEzfDlhNjRhMjBlYzA4YjNiNzhhMTU1ODdiNzVhZGUzZTZkYjhjMzVhOTN8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fFpIQXRkR1ZoYldsdWRHVnlibVYwTURSZk0zQm98ZDgyZjM2MWZiZjFhMmNkYjk1Y2Y3NmRjNjczMTAzZDYzZWVlNTdiZHwwfDB8fDB8fHwwfDB8VzEwPXx8MXxXMTA9fDBkOGZjMmFhMTg5YWNiNTM2NzcwN2JiMTEyNmIyNDhiMmVlNDcxOWJ8MHxkcC10ZWFtaW50ZXJuZXQwNF8zcGh8MHwwfA%253D%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2541811284092968&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301157&format=r3%7Cs&nocache=9091701832629042&num=0&output=afd_ads&domain_name=ww9.scenbe.com&v=3&bsl=8&pac=0&u_his=4&u_tz=0&dt=1701832629044&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=760&frm=0&cl=579967862&uio=--&cont=tc&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Fww9.scenbe.com%2F&referer=http%3A%2F%2Fscenbe.com%2F
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type
ASCII text, with very long lines (1888)
Size
150 kB (149565 bytes)
Hash
b4c8e8cf7cd78867a2a1d76b7c0733f7
92531acc59f45d7bd8a9be9e3f6ab3084a20183a
df68d7cf0827398cab36ef26602c880f02166ac2829c44bf95d485da30b9ef71

HTTP Headers

GET /adsense/domains/caf.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Wed, 06 Dec 2023 03:17:03 GMT
expires: Wed, 06 Dec 2023 03:17:03 GMT
cache-control: private, max-age=3600
etag: "5037305975280658679"
x-content-type-options: nosniff
link: <https://www.adsensecustomsearchads.com>; rel="preconnect"
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (15)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by