Report - ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9

Report Overview

Visited public
2023-12-26 17:50:55
Tags
Submit Tags
URL
ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9
Finishing URL
ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9
IP / ASN
13.248.148.254
#16509 AMAZON-02
Title
utbidet-ugeas.biz

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
parking3.parklogic.com	unknown	2007-02-28	2023-05-10 12:50:24	2023-12-25 12:49:47	937 B	51 kB	45.79.244.209
www.adsensecustomsearchads.com	unknown	2011-01-28	2015-09-02 02:57:40	2023-12-26 09:48:18	3.5 kB	156 kB	216.58.211.14
d38psrni17bvxu.cloudfront.net	unknown	2008-04-25	2022-09-22 18:48:38	2023-12-25 23:40:28	414 B	12 kB	54.230.241.199
parking.parklogic.com	121827	2007-02-28	2015-10-23 03:38:08	2023-12-26 05:13:19	515 B	349 B	67.225.218.50
afs.googleusercontent.com	12123	2008-11-17	2013-05-06 21:11:00	2023-12-26 06:38:20	1.0 kB	2.1 kB	142.250.74.97
ww12.utbidet-ugeas.biz	unknown	2022-12-07	2023-12-07 17:09:45	2023-12-25 12:23:57	3.1 kB	14 kB	13.248.148.254
www.google.com	7	1997-09-15	2015-05-10 13:11:19	2023-12-09 10:58:51	354 B	55 kB	142.250.74.132

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-12-26 17:45:08	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-12-26 17:45:08	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (15)

	URL	From	Size	First Seen	Last Seen
	ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9	ScriptElement	968 B	2023-03-08	2025-07-13
Pretty URL ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9 IP 13.248.148.254 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 02:24 Last Seen2025-07-13 04:32 Times Seen105243 Hash c77554570ae0fa8e4fb31747dc213058 e989fbde07e6a68975c7a31e1d4df76afd90b96f c3f831fe1717c6d76a8950ac5e7dc88ceee7440d079b11584be5c6c5b3269e77 Loading...

	ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9	ScriptElement	653 B	2024-08-20	2024-08-20
Pretty URL ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9 IP 13.248.148.254 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 14:54 Last Seen2024-08-20 14:54 Times Seen1 Hash 8aee428f503c8e9d2af8b53773fbe7b4 e2794673684e2438fe34c82910672d6730280d3e ee5d3d0d057c24ff9b05d7b05da59d8f8c77a897fa9b579e89ec9ff8ab52235d Loading...

	www.adsensecustomsearchads.com/afs/ads?adtest=off&psid=1167268112&pcsa=false&channel=000001%2Cbucket102&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fww12.utbidet-ugeas.biz%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQxMDJ8fHx8fHw2NThiMTI2OTRlNzNkfHx8MTcwMzYxMzAzMy4zMjg4fGFkMjdiOGFiYTFkMmJmNDQxNjYwN2EyYzJkNzI2M2VmNWYwMDU3Nzh8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwzNTE5NzhmMTYyOWE1YzYzNGUxMTM1ODMxMWU5MDQ0ODk0YWU2NDUzfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2204919519437054&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301383&format=r3%7Cs&nocache=7831703612712303&num=0&output=afd_ads&domain_name=ww12.utbidet-ugeas.biz&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1703612712305&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=760&frm=0&cl=588056317&uio=--&cont=tc&drt=0&jsid=caf&jsv=588056317&rurl=http%3A%2F%2Fww12.utbidet-ugeas.biz%2Fd%2FN%3F02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9	ScriptElement	909 B	2024-08-20	2024-08-20
Pretty URL www.adsensecustomsearchads.com/afs/ads?adtest=off&psid=1167268112&pcsa=false&channel=000001%2Cbucket102&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fww12.utbidet-ugeas.biz%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQxMDJ8fHx8fHw2NThiMTI2OTRlNzNkfHx8MTcwMzYxMzAzMy4zMjg4fGFkMjdiOGFiYTFkMmJmNDQxNjYwN2EyYzJkNzI2M2VmNWYwMDU3Nzh8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwzNTE5NzhmMTYyOWE1YzYzNGUxMTM1ODMxMWU5MDQ0ODk0YWU2NDUzfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2204919519437054&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301383&format=r3%7Cs&nocache=7831703612712303&num=0&output=afd_ads&domain_name=ww12.utbidet-ugeas.biz&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1703612712305&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=760&frm=0&cl=588056317&uio=--&cont=tc&drt=0&jsid=caf&jsv=588056317&rurl=http%3A%2F%2Fww12.utbidet-ugeas.biz%2Fd%2FN%3F02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9 IP 216.58.211.14 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 14:54 Last Seen2024-08-20 14:54 Times Seen1 Hash 4a957169b88d2fc671ade4f526ad5fdc e98e1e0fc6b672b73243892092f69a63ee9dc682 5ff0f23886f47424cd2f933a4ee5c5232b3b7a15f7bfeff56067c218b083b7a4 Loading...

	www.adsensecustomsearchads.com/adsense/domains/caf.js	ScriptElement	150 kB	2023-12-11	2024-08-20
Pretty URL www.adsensecustomsearchads.com/adsense/domains/caf.js IP 216.58.211.14 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-11 21:56 Last Seen2024-08-20 16:05 Times Seen1131 Hash 0b5819b903639cc259c92636799d165a 550782cda3c88170ba2ffaf93383216608b6b583 c1ac1d06d35bfdf8b8db5d44948f808101fbb2a428e4308710987615c94fe775 Loading...

	www.google.com/adsense/domains/caf.js?abp=1	ScriptElement	150 kB	2023-12-13	2024-08-20
Pretty URL www.google.com/adsense/domains/caf.js?abp=1 IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-13 18:30 Last Seen2024-08-20 15:56 Times Seen2655 Hash abafa0849308459af6d9407e8113b991 ce0b4e1c84fdae81f302e3944ffabe95922cdba6 dba14e89fd4e3f93c81704e1dba22cb195387a59c91392a36e47a4dbbe75d798 Loading...

	ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9	ScriptElement	246 B	2024-08-20	2024-08-20
Pretty URL ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9 IP 13.248.148.254 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 14:54 Last Seen2024-08-20 14:54 Times Seen1 Hash 0ef61033fa2d4f9c1ec7bab40d354af8 d95b53020b377d213f4f824f17e69f5c1a6c986c 30a782b30ca224ac1372bf9934ff29053a8a9d2f92ff3012275bf3c41a1085d2 Loading...

	ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9	ScriptElement	7.0 kB	2023-03-13	2024-08-21
Pretty URL ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9 IP 13.248.148.254 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 06:10 Last Seen2024-08-21 09:44 Times Seen6195 Hash 04b2b624f94797c26d17a57f399d9356 3143986e839c47a5c1eff03bd9df63ecc54dca9c 233b1cbfb295a0629bcf68a2a4198a62132f02ee1f061ada2ce7143bd5d2dabb Loading...

	ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9	ScriptElement	1.1 kB	2024-08-20	2024-08-20
Pretty URL ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9 IP 13.248.148.254 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 14:54 Last Seen2024-08-20 14:54 Times Seen1 Hash 5a0e56adcd8c5491576a0c1497a5bbe0 1d04a00e9946c1219d333a197e3c42e10981e3ef 395ab895d28bf62fbbfb28394d940c0f7852c2067be9f99274a197d61ad390d0 Loading...

	ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9	ScriptElement	20 B	2023-03-12	2024-08-21
Pretty URL ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9 IP 13.248.148.254 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 13:00 Last Seen2024-08-21 09:44 Times Seen3983 Hash bb9472ed191ad69435d630c50e139a17 4efa10c70dbfe37ec4c8bb5a04b907c549de7e3d eec645c8d410f4d6accc5c4c3326bbff80fdd9d105e423ad50c5c87b22845492 Loading...

	ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9	ScriptElement	65 B	2023-05-10	2024-08-21
Pretty URL ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9 IP 13.248.148.254 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-10 12:50 Last Seen2024-08-21 09:35 Times Seen612 Hash 0b6a424fedf3c6831f280e735d3da127 3e4220834c4b66746dbf14c91758ad207fb29c9e 76a295f09b40f5b5cf4a40d6a5dbd1cc25dd4fa0f8fc7e5e0e1607fc7b43c2c0 Loading...

	ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9	ScriptElement	472 B	2023-03-13	2024-08-21
Pretty URL ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9 IP 13.248.148.254 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 06:13 Last Seen2024-08-21 09:44 Times Seen6016 Hash d31eefc1e54bdae9204297e4ae5b9cce fc49bf319586a623670a81c01d43bbd93b477fbb 2683a6247a15433dd269eaefbc7131b1326c7bc0146361913ea10ad8fa23bb14 Loading...

	ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9	ScriptElement	669 B	2024-08-20	2024-08-20
Pretty URL ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9 IP 13.248.148.254 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 14:54 Last Seen2024-08-20 14:54 Times Seen1 Hash 677cb2c6d6639da2e73f281bd55b2211 e644cb20cf26431494f38b11777f4c8e208de61e 2e739e0cbf976505bbcffa66aa4918ed2eb7bb411a95a55b7a9e59906f9a1654 Loading...

	ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9	ScriptElement	40 B	2023-08-09	2024-08-21
Pretty URL ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9 IP 13.248.148.254 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-09 10:52 Last Seen2024-08-21 09:42 Times Seen9104 Hash fca3e6a61d4a07440e4f10c4dbaad8e3 41480802bf872b2d15f9cbcadba025fe326eac03 dfe5c5e10934e7abf7903d4ede3b8fa091c11bef63d675808e6314ec763185ee Loading...

	parking3.parklogic.com/page/enhance.js?pcId=12&pId=1129&domain=utbidet-ugeas.biz	ScriptElement	2.0 kB	2023-12-21	2024-08-20
Pretty URL parking3.parklogic.com/page/enhance.js?pcId=12&pId=1129&domain=utbidet-ugeas.biz IP 45.79.244.209 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-21 11:51 Last Seen2024-08-20 15:22 Times Seen129 Hash ada31d09dce76463b3eba7d89697fc9e 7ef0c8e5c6854e84cb51f9821cfb6a76ea5ee359 30539685cabfc410bf2c6a440f039db89f902cbfc31dea93c15b17b3da112c58 Loading...

	ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9	ScriptElement	71 B	2023-03-08	2024-08-21
Pretty URL ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9 IP 13.248.148.254 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 02:23 Last Seen2024-08-21 09:44 Times Seen6209 Hash 1a5a5e1b6a26f57b95e3dd42f60612f4 b62a27e55a59b49084e682bd3c1588f6a40881ab 4066da16910907c7962da8e7011bf0cd62b6f2dcddb1911e3ea2de03ce3e1dc7 Loading...

HTTP Transactions (17)

	URL	IP	Response	Size
	ww12.utbidet-ugeas.biz/	13.248.148.254		5.7 kB
URL ww12.utbidet-ugeas.biz/ IP 13.248.148.254:0 ASN #16509 AMAZON-02 File type HTML document, ASCII text, with very long lines (1200) Size 5.7 kB (5663 bytes) Hash 05950e20c7e6e31816a72603edf544fc 9a0a807eb06c9ae7ff1b9bc2a4b0d82bd624dc33 5b82924d260697da7738965955d29f4814b5802d43e7b2cf55c35009916a04b1 HTTP Headers `GET / HTTP/1.1 Host: ww12.utbidet-ugeas.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Date: Tue, 26 Dec 2023 17:50:33 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Server: nginx Vary: Accept-Encoding X-Buckets: bucket103 X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_VN0KPpoxrH4ym5BUOj7J3Lj7GEjYz5+Y2uKsQ+snJMnXzNTFd9YWFLfPNXgHjVyy0DKGxD+xCSBofTBTbzYbEQ== X-Template: tpl_CleanPeppermintBlack_twoclick X-Language: norwegian Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile Accept-CH-Lifetime: 30 X-Domain: utbidet-ugeas.biz X-Subdomain: ww12 Content-Encoding: gzip

	GET ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9	13.248.148.254		5.7 kB
URL User Request GET ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9 IP 13.248.148.254:0 ASN #16509 AMAZON-02 File type HTML document, ASCII text, with very long lines (1168) Size 5.7 kB (5651 bytes) Hash 7267537f5375767fd3f8f4f70114901c 79c558ea98a029db315fd287b4ea7d461636c7d3 4b7131735416c66e336e196aacc476cbd8bb51a96fcef05a957eba9e1db2675b HTTP Headers `GET /d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9 HTTP/1.1 Host: ww12.utbidet-ugeas.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Date: Tue, 26 Dec 2023 17:50:33 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Server: nginx Vary: Accept-Encoding X-Buckets: bucket102 X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_DuMvWxQWFRKFEEarWt6TGvfY4urIPWRjTx+AFiWD247FlwlQiCkdENg2b4dtl3cLBK0GI51mB0UzGoRmeHmeaA== X-Template: tpl_CleanPeppermintBlack_twoclick X-Language: norwegian Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile Accept-CH-Lifetime: 30 X-Domain: utbidet-ugeas.biz X-Subdomain: ww12 Content-Encoding: gzip

	GET www.google.com/adsense/domains/caf.js?abp=1	142.250.74.132	200 OK	54 kB
URL GET HTTP/1.1 www.google.com/adsense/domains/caf.js?abp=1 IP 142.250.74.132:80 ASN #15169 GOOGLE Requested by http://ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9 File type ASCII text, with very long lines (1888) Size 54 kB (54284 bytes) Hash abafa0849308459af6d9407e8113b991 ce0b4e1c84fdae81f302e3944ffabe95922cdba6 dba14e89fd4e3f93c81704e1dba22cb195387a59c91392a36e47a4dbbe75d798 HTTP Headers `GET /adsense/domains/caf.js?abp=1 HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://ww12.utbidet-ugeas.biz/ Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Accept-Ranges: bytes Vary: Accept-Encoding Content-Type: text/javascript; charset=UTF-8 Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui Cross-Origin-Resource-Policy: cross-origin Cross-Origin-Opener-Policy: same-origin; report-to="ads-afs-ui" Report-To: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]} Date: Tue, 26 Dec 2023 17:50:33 GMT Expires: Tue, 26 Dec 2023 17:50:33 GMT Cache-Control: private, max-age=3600 ETag: "4119344319494620179" X-Content-Type-Options: nosniff Link: <https://www.adsensecustomsearchads.com>; rel="preconnect" Content-Encoding: gzip Transfer-Encoding: chunked Server: sffe X-XSS-Protection: 0

	GET ww12.utbidet-ugeas.biz/track.php?domain=utbidet-ugeas.biz&toggle=browserjs&uid=MTcwMzYxMzAzMy4zMjE0OjQwNDI1YTJiMjQ2YzllYzJiMTBlYWQ1Y2IwMmJhODU4NGRjYmI3ZjRmYzY1N2RhOTc5NTFiNDIzNDFmOTk4Mjk6NjU4YjEyNjk0ZTc2Ng%3D%3D	13.248.148.254	200 OK	20 B
URL GET HTTP/1.1 ww12.utbidet-ugeas.biz/track.php?domain=utbidet-ugeas.biz&toggle=browserjs&uid=MTcwMzYxMzAzMy4zMjE0OjQwNDI1YTJiMjQ2YzllYzJiMTBlYWQ1Y2IwMmJhODU4NGRjYmI3ZjRmYzY1N2RhOTc5NTFiNDIzNDFmOTk4Mjk6NjU4YjEyNjk0ZTc2Ng%3D%3D IP 13.248.148.254:80 ASN #16509 AMAZON-02 Requested by http://ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9 File type gzip compressed data, max speed, from Unix Size 20 B (20 bytes) Hash a4745abc5e7fdb89cc6df3069f3c6e69 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf HTTP Headers GET /track.php?domain=utbidet-ugeas.biz&toggle=browserjs&uid=MTcwMzYxMzAzMy4zMjE0OjQwNDI1YTJiMjQ2YzllYzJiMTBlYWQ1Y2IwMmJhODU4NGRjYmI3ZjRmYzY1N2RhOTc5NTFiNDIzNDFmOTk4Mjk6NjU4YjEyNjk0ZTc2Ng%3D%3D HTTP/1.1 Host: ww12.utbidet-ugeas.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9 Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Tue, 26 Dec 2023 17:50:33 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Server: nginx Vary: Accept-Encoding X-Custom-Track: browserjs Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile Accept-CH-Lifetime: 30 Access-Control-Allow-Origin: * Content-Encoding: gzip`

	GET parking3.parklogic.com/page/enhance.js?pcId=12&pId=1129&domain=utbidet-ugeas.biz	45.79.244.209	200 OK	2.0 kB
URL GET HTTP/1.1 parking3.parklogic.com/page/enhance.js?pcId=12&pId=1129&domain=utbidet-ugeas.biz IP 45.79.244.209:443 ASN #63949 Linode, LLC Requested by http://ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9 Certificate IssuerSectigo Limited Subject.parklogic.com FingerprintD2:96:70:5E:83:A7:30:EF:05:87:20:AD:05:88:37:B5:E5:2E:0B:2F ValidityMon, 19 Dec 2022 00:00:00 GMT - Fri, 19 Jan 2024 23:59:59 GMT File type HTML document, ASCII text, with very long lines (734) Size 2.0 kB (2033 bytes) Hash ada31d09dce76463b3eba7d89697fc9e 7ef0c8e5c6854e84cb51f9821cfb6a76ea5ee359 30539685cabfc410bf2c6a440f039db89f902cbfc31dea93c15b17b3da112c58 HTTP Headers `GET /page/enhance.js?pcId=12&pId=1129&domain=utbidet-ugeas.biz HTTP/1.1 Host: parking3.parklogic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://ww12.utbidet-ugeas.biz/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK date: Tue, 26 Dec 2023 17:50:33 GMT server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.5.38 x-powered-by: PHP/5.5.38 transfer-encoding: chunked content-type: text/javascript;charset=UTF-8 connection: close`

	GET www.adsensecustomsearchads.com/afs/ads?adtest=off&psid=1167268112&pcsa=false&channel=000001%2Cbucket102&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fww12.utbidet-ugeas.biz%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQxMDJ8fHx8fHw2NThiMTI2OTRlNzNkfHx8MTcwMzYxMzAzMy4zMjg4fGFkMjdiOGFiYTFkMmJmNDQxNjYwN2EyYzJkNzI2M2VmNWYwMDU3Nzh8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwzNTE5NzhmMTYyOWE1YzYzNGUxMTM1ODMxMWU5MDQ0ODk0YWU2NDUzfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2204919519437054&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301383&format=r3%7Cs&nocache=7831703612712303&num=0&output=afd_ads&domain_name=ww12.utbidet-ugeas.biz&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1703612712305&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=760&frm=0&cl=588056317&uio=--&cont=tc&drt=0&jsid=caf&jsv=588056317&rurl=http%3A%2F%2Fww12.utbidet-ugeas.biz%2Fd%2FN%3F02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9	216.58.211.14	200 OK	2.9 kB
URL GET HTTP/2 www.adsensecustomsearchads.com/afs/ads?adtest=off&psid=1167268112&pcsa=false&channel=000001%2Cbucket102&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fww12.utbidet-ugeas.biz%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQxMDJ8fHx8fHw2NThiMTI2OTRlNzNkfHx8MTcwMzYxMzAzMy4zMjg4fGFkMjdiOGFiYTFkMmJmNDQxNjYwN2EyYzJkNzI2M2VmNWYwMDU3Nzh8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwzNTE5NzhmMTYyOWE1YzYzNGUxMTM1ODMxMWU5MDQ0ODk0YWU2NDUzfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2204919519437054&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301383&format=r3%7Cs&nocache=7831703612712303&num=0&output=afd_ads&domain_name=ww12.utbidet-ugeas.biz&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1703612712305&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=760&frm=0&cl=588056317&uio=--&cont=tc&drt=0&jsid=caf&jsv=588056317&rurl=http%3A%2F%2Fww12.utbidet-ugeas.biz%2Fd%2FN%3F02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9 IP 216.58.211.14:443 ASN #15169 GOOGLE Requested by http://ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9 Certificate IssuerGoogle Trust Services LLC Subjectmisc-sni.google.com FingerprintCC:43:B8:B1:97:47:17:A9:AD:50:52:49:F8:17:A6:48:24:6F:9D:79 ValidityMon, 20 Nov 2023 08:03:51 GMT - Mon, 12 Feb 2024 08:03:50 GMT File type HTML document, Unicode text, UTF-8 text, with very long lines (13941) Size 2.9 kB (2933 bytes) Hash f0fcae7dcbb5f7bb4377b840db5b4188 4c0764be37be5b5342393bd094ae242aedfdf68f edd47e86baff566c86abd5d8d70a8f44675b42a6192afb2fd0e150510f473498 HTTP Headers GET /afs/ads?adtest=off&psid=1167268112&pcsa=false&channel=000001%2Cbucket102&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fww12.utbidet-ugeas.biz%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQxMDJ8fHx8fHw2NThiMTI2OTRlNzNkfHx8MTcwMzYxMzAzMy4zMjg4fGFkMjdiOGFiYTFkMmJmNDQxNjYwN2EyYzJkNzI2M2VmNWYwMDU3Nzh8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwzNTE5NzhmMTYyOWE1YzYzNGUxMTM1ODMxMWU5MDQ0ODk0YWU2NDUzfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2204919519437054&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301383&format=r3%7Cs&nocache=7831703612712303&num=0&output=afd_ads&domain_name=ww12.utbidet-ugeas.biz&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1703612712305&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=760&frm=0&cl=588056317&uio=--&cont=tc&drt=0&jsid=caf&jsv=588056317&rurl=http%3A%2F%2Fww12.utbidet-ugeas.biz%2Fd%2FN%3F02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9 HTTP/1.1 Host: www.adsensecustomsearchads.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://ww12.utbidet-ugeas.biz/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: text/html; charset=UTF-8 content-disposition: inline date: Tue, 26 Dec 2023 17:50:33 GMT expires: Tue, 26 Dec 2023 17:50:33 GMT cache-control: private, max-age=3600 content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-wQEtWy9gQtqoC98KliRvew' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other cross-origin-opener-policy: same-origin-allow-popups; report-to="gws" report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]} content-encoding: br server: gws content-length: 2933 x-xss-protection: 0 set-cookie: CONSENT=PENDING+017; expires=Thu, 25-Dec-2025 17:50:33 GMT; path=/; domain=.adsensecustomsearchads.com; Secure p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info." alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET d38psrni17bvxu.cloudfront.net/themes/cleanPeppermintBlack_657d9013/img/arrows.png	54.230.241.199	200 OK	11 kB
URL GET HTTP/1.1 d38psrni17bvxu.cloudfront.net/themes/cleanPeppermintBlack_657d9013/img/arrows.png IP 54.230.241.199:80 ASN #16509 AMAZON-02 Requested by http://ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9 File type PNG image data, 1500 x 600, 8-bit colormap, non-interlaced Size 11 kB (11375 bytes) Hash 0cb2e5165dc9324eb462199f04e1ffa9 9e0f89847ec8a98d98a6020bc5c4ed32b7a48bf8 67dff0aad873050f12609885f2264417ccdd0d438311000a704c89f0865f7865 HTTP Headers `GET /themes/cleanPeppermintBlack_657d9013/img/arrows.png HTTP/1.1 Host: d38psrni17bvxu.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://ww12.utbidet-ugeas.biz/ Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: image/png Content-Length: 11375 Connection: keep-alive Server: nginx Date: Tue, 26 Dec 2023 17:26:18 GMT Last-Modified: Thu, 23 Jun 2022 10:44:43 GMT Accept-Ranges: bytes ETag: "62b4441b-2c6f" X-Cache: Hit from cloudfront Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: ThVx10ta2uSLUPjSjvqVtDoHbGqFPCDqeZichvKx0XMsiq-Ak_bgVw== Age: 1456`

	GET parking.parklogic.com/page/scribe.php?pcId=12&domain=utbidet-ugeas.biz&pId=1129&usid=null&utid=null&query=null&domainJs=ww12.utbidet-ugeas.biz&path=/d/N&ss=true&lp=1	67.225.218.50	200 OK	46 B
URL GET HTTP/1.1 parking.parklogic.com/page/scribe.php?pcId=12&domain=utbidet-ugeas.biz&pId=1129&usid=null&utid=null&query=null&domainJs=ww12.utbidet-ugeas.biz&path=/d/N&ss=true&lp=1 IP 67.225.218.50:80 ASN #32244 LIQUIDWEB Requested by http://ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9 File type ASCII text Size 46 B (46 bytes) Hash 36eba86075a759bc37a25c2e842ebd31 20ca2d556b4ed88dcd899ff817393deb49eee9e0 a0e6977c7b3d49f1c34882915d14ffb7f282510753c6ca662db4cfdd53b792ff HTTP Headers GET /page/scribe.php?pcId=12&domain=utbidet-ugeas.biz&pId=1129&usid=null&utid=null&query=null&domainJs=ww12.utbidet-ugeas.biz&path=/d/N&ss=true&lp=1 HTTP/1.1 Host: parking.parklogic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://ww12.utbidet-ugeas.biz/ Origin: http://ww12.utbidet-ugeas.biz DNT: 1 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Tue, 26 Dec 2023 17:50:34 GMT Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 X-Powered-By: PHP/5.4.16 Access-Control-Allow-Origin: * Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Transfer-Encoding: chunked Content-Type: text/html; charset=UTF-8`

	GET ww12.utbidet-ugeas.biz/track.php?domain=utbidet-ugeas.biz&caf=1&toggle=answercheck&answer=yes&uid=MTcwMzYxMzAzMy4zMjE0OjQwNDI1YTJiMjQ2YzllYzJiMTBlYWQ1Y2IwMmJhODU4NGRjYmI3ZjRmYzY1N2RhOTc5NTFiNDIzNDFmOTk4Mjk6NjU4YjEyNjk0ZTc2Ng%3D%3D	13.248.148.254	200 OK	20 B
URL GET HTTP/1.1 ww12.utbidet-ugeas.biz/track.php?domain=utbidet-ugeas.biz&caf=1&toggle=answercheck&answer=yes&uid=MTcwMzYxMzAzMy4zMjE0OjQwNDI1YTJiMjQ2YzllYzJiMTBlYWQ1Y2IwMmJhODU4NGRjYmI3ZjRmYzY1N2RhOTc5NTFiNDIzNDFmOTk4Mjk6NjU4YjEyNjk0ZTc2Ng%3D%3D IP 13.248.148.254:80 ASN #16509 AMAZON-02 Requested by http://ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9 File type gzip compressed data, max speed, from Unix Size 20 B (20 bytes) Hash a4745abc5e7fdb89cc6df3069f3c6e69 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf HTTP Headers GET /track.php?domain=utbidet-ugeas.biz&caf=1&toggle=answercheck&answer=yes&uid=MTcwMzYxMzAzMy4zMjE0OjQwNDI1YTJiMjQ2YzllYzJiMTBlYWQ1Y2IwMmJhODU4NGRjYmI3ZjRmYzY1N2RhOTc5NTFiNDIzNDFmOTk4Mjk6NjU4YjEyNjk0ZTc2Ng%3D%3D HTTP/1.1 Host: ww12.utbidet-ugeas.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9 Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Tue, 26 Dec 2023 17:50:34 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Server: nginx Vary: Accept-Encoding X-Custom-Track: answercheck Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile Accept-CH-Lifetime: 30 Access-Control-Allow-Origin: * Content-Encoding: gzip`

	GET afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff	142.250.74.97	200 OK	174 B
URL GET HTTP/2 afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff IP 142.250.74.97:443 ASN #15169 GOOGLE Requested by https://www.adsensecustomsearchads.com/afs/ads?adtest=off&psid=1167268112&pcsa=false&channel=000001%2Cbucket102&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fww12.utbidet-ugeas.biz%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQxMDJ8fHx8fHw2NThiMTI2OTRlNzNkfHx8MTcwMzYxMzAzMy4zMjg4fGFkMjdiOGFiYTFkMmJmNDQxNjYwN2EyYzJkNzI2M2VmNWYwMDU3Nzh8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwzNTE5NzhmMTYyOWE1YzYzNGUxMTM1ODMxMWU5MDQ0ODk0YWU2NDUzfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2204919519437054&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301383&format=r3%7Cs&nocache=7831703612712303&num=0&output=afd_ads&domain_name=ww12.utbidet-ugeas.biz&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1703612712305&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=760&frm=0&cl=588056317&uio=--&cont=tc&drt=0&jsid=caf&jsv=588056317&rurl=http%3A%2F%2Fww12.utbidet-ugeas.biz%2Fd%2FN%3F02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9 Certificate IssuerGoogle Trust Services LLC Subject.googleusercontent.com Fingerprint17:E3:6E:DB:3C:C4:0E:B4:6D:D3:55:1A:70:F8:0B:23:86:54:69:D8 ValidityMon, 20 Nov 2023 08:08:31 GMT - Mon, 12 Feb 2024 08:08:30 GMT File type SVG Scalable Vector Graphics image Size 174 B (174 bytes) Hash 11b3089d616633ca6b73b57aa877eeb4 07632f63e06b30d9b63c97177d3a8122629bda9b 809fb4619d2a2f1a85dbda8cc69a7f1659215212d708a098d62150eee57070c1 HTTP Headers `GET /ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff HTTP/1.1 Host: afs.googleusercontent.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.adsensecustomsearchads.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers" report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]} content-length: 174 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 26 Dec 2023 11:15:52 GMT expires: Wed, 27 Dec 2023 10:15:52 GMT cache-control: public, max-age=82800 age: 23682 last-modified: Thu, 02 Nov 2023 22:48:00 GMT content-type: image/svg+xml vary: Accept-Encoding alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%23ffffff	142.250.74.97	200 OK	270 B
URL GET HTTP/2 afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%23ffffff IP 142.250.74.97:443 ASN #15169 GOOGLE Requested by https://www.adsensecustomsearchads.com/afs/ads?adtest=off&psid=1167268112&pcsa=false&channel=000001%2Cbucket102&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fww12.utbidet-ugeas.biz%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQxMDJ8fHx8fHw2NThiMTI2OTRlNzNkfHx8MTcwMzYxMzAzMy4zMjg4fGFkMjdiOGFiYTFkMmJmNDQxNjYwN2EyYzJkNzI2M2VmNWYwMDU3Nzh8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwzNTE5NzhmMTYyOWE1YzYzNGUxMTM1ODMxMWU5MDQ0ODk0YWU2NDUzfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2204919519437054&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301383&format=r3%7Cs&nocache=7831703612712303&num=0&output=afd_ads&domain_name=ww12.utbidet-ugeas.biz&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1703612712305&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=760&frm=0&cl=588056317&uio=--&cont=tc&drt=0&jsid=caf&jsv=588056317&rurl=http%3A%2F%2Fww12.utbidet-ugeas.biz%2Fd%2FN%3F02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9 Certificate IssuerGoogle Trust Services LLC Subject.googleusercontent.com Fingerprint17:E3:6E:DB:3C:C4:0E:B4:6D:D3:55:1A:70:F8:0B:23:86:54:69:D8 ValidityMon, 20 Nov 2023 08:08:31 GMT - Mon, 12 Feb 2024 08:08:30 GMT File type SVG Scalable Vector Graphics image Size 270 B (270 bytes) Hash 8959ddcd9712196961d93f58064ed655 62ab1e38e7e9fbf58a04381b76c2d96a9c829f24 17c7a89bf169c2ee400e31b042cea68513f06b9cd7d1e8990dbec800f0d771c7 HTTP Headers `GET /ad_icons/standard/publisher_icon_image/search.svg?c=%23ffffff HTTP/1.1 Host: afs.googleusercontent.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.adsensecustomsearchads.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers" report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]} content-length: 270 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 26 Dec 2023 14:13:57 GMT expires: Wed, 27 Dec 2023 13:13:57 GMT cache-control: public, max-age=82800 age: 12997 last-modified: Thu, 20 Jul 2023 22:48:00 GMT content-type: image/svg+xml vary: Accept-Encoding alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET parking3.parklogic.com/page/images/pe262/hero_nc.svg	45.79.244.209	200 OK	48 kB
URL GET HTTP/1.1 parking3.parklogic.com/page/images/pe262/hero_nc.svg IP 45.79.244.209:443 ASN #63949 Linode, LLC Requested by http://ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9 Certificate IssuerSectigo Limited Subject.parklogic.com FingerprintD2:96:70:5E:83:A7:30:EF:05:87:20:AD:05:88:37:B5:E5:2E:0B:2F ValidityMon, 19 Dec 2022 00:00:00 GMT - Fri, 19 Jan 2024 23:59:59 GMT File type SVG Scalable Vector Graphics image Size 48 kB (48097 bytes) Hash 5a2c392e7acdf6e9de6e00129500503c c8d0f80381e4ce180b5eb3c4c98539907292a7bb 878da09a057ec8f1775cdc522e5f7ec44966df547a87a9c29826ba114833c24b HTTP Headers `GET /page/images/pe262/hero_nc.svg HTTP/1.1 Host: parking3.parklogic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://ww12.utbidet-ugeas.biz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK date: Tue, 26 Dec 2023 17:50:34 GMT server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.5.38 last-modified: Mon, 08 Mar 2021 23:04:00 GMT etag: "bbe1-5bd0e72fe1800" accept-ranges: bytes content-length: 48097 content-type: image/svg+xml connection: close`

	GET ww12.utbidet-ugeas.biz/favicon.ico	13.248.148.254	200 OK	0 B
URL GET HTTP/1.1 ww12.utbidet-ugeas.biz/favicon.ico IP 13.248.148.254:80 ASN #16509 AMAZON-02 Requested by http://ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: ww12.utbidet-ugeas.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9 Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Tue, 26 Dec 2023 17:50:35 GMT Content-Type: image/x-icon Content-Length: 0 Connection: keep-alive Server: nginx Last-Modified: Tue, 12 May 2020 14:25:52 GMT ETag: "5ebab1f0-0" Accept-Ranges: bytes`

	GET www.adsensecustomsearchads.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=7l7zp29g4q5a&aqid=aRKLZb2dNbGBxdwP-MyG2AE&psid=1167268112&pbt=bs&adbx=375&adby=238&adbh=496&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=588056317&csala=33%7C0%7C529%7C67%7C231&lle=0&ifv=1&hpt=1	216.58.211.14	204 No Content	0 B
URL GET HTTP/3 www.adsensecustomsearchads.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=7l7zp29g4q5a&aqid=aRKLZb2dNbGBxdwP-MyG2AE&psid=1167268112&pbt=bs&adbx=375&adby=238&adbh=496&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=588056317&csala=33%7C0%7C529%7C67%7C231&lle=0&ifv=1&hpt=1 IP 216.58.211.14:443 ASN #15169 GOOGLE Requested by http://ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9 Certificate IssuerGoogle Trust Services LLC Subjectmisc-sni.google.com FingerprintCC:43:B8:B1:97:47:17:A9:AD:50:52:49:F8:17:A6:48:24:6F:9D:79 ValidityMon, 20 Nov 2023 08:03:51 GMT - Mon, 12 Feb 2024 08:03:50 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=7l7zp29g4q5a&aqid=aRKLZb2dNbGBxdwP-MyG2AE&psid=1167268112&pbt=bs&adbx=375&adby=238&adbh=496&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=588056317&csala=33%7C0%7C529%7C67%7C231&lle=0&ifv=1&hpt=1 HTTP/1.1 Host: www.adsensecustomsearchads.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://ww12.utbidet-ugeas.biz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 204 No Content content-type: text/html; charset=UTF-8 content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-3fmBFOFDeKtVSDecVptFVw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other cross-origin-opener-policy: same-origin-allow-popups; report-to="gws" report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]} date: Tue, 26 Dec 2023 17:50:36 GMT server: gws content-length: 0 x-xss-protection: 0 x-frame-options: SAMEORIGIN set-cookie: CONSENT=PENDING+889; expires=Thu, 25-Dec-2025 17:50:36 GMT; path=/; domain=.adsensecustomsearchads.com; Secure p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info." alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	GET www.adsensecustomsearchads.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=7u56hzlo2qnw&aqid=aRKLZb2dNbGBxdwP-MyG2AE&psid=1167268112&pbt=bv&adbx=375&adby=238&adbh=496&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=588056317&csala=33%7C0%7C529%7C67%7C231&lle=0&ifv=1&hpt=1	216.58.211.14	204 No Content	0 B
URL GET HTTP/3 www.adsensecustomsearchads.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=7u56hzlo2qnw&aqid=aRKLZb2dNbGBxdwP-MyG2AE&psid=1167268112&pbt=bv&adbx=375&adby=238&adbh=496&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=588056317&csala=33%7C0%7C529%7C67%7C231&lle=0&ifv=1&hpt=1 IP 216.58.211.14:443 ASN #15169 GOOGLE Requested by http://ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9 Certificate IssuerGoogle Trust Services LLC Subjectmisc-sni.google.com FingerprintCC:43:B8:B1:97:47:17:A9:AD:50:52:49:F8:17:A6:48:24:6F:9D:79 ValidityMon, 20 Nov 2023 08:03:51 GMT - Mon, 12 Feb 2024 08:03:50 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=7u56hzlo2qnw&aqid=aRKLZb2dNbGBxdwP-MyG2AE&psid=1167268112&pbt=bv&adbx=375&adby=238&adbh=496&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=588056317&csala=33%7C0%7C529%7C67%7C231&lle=0&ifv=1&hpt=1 HTTP/1.1 Host: www.adsensecustomsearchads.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://ww12.utbidet-ugeas.biz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 204 No Content content-type: text/html; charset=UTF-8 content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-RD6HcPnDtin6-VSv6TVFuQ' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other cross-origin-opener-policy: same-origin-allow-popups; report-to="gws" report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]} date: Tue, 26 Dec 2023 17:50:36 GMT server: gws content-length: 0 x-xss-protection: 0 x-frame-options: SAMEORIGIN set-cookie: CONSENT=PENDING+260; expires=Thu, 25-Dec-2025 17:50:36 GMT; path=/; domain=.adsensecustomsearchads.com; Secure p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info." alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	GET www.adsensecustomsearchads.com/adsense/domains/caf.js	216.58.211.14	200 OK	150 kB
URL GET HTTP/3 www.adsensecustomsearchads.com/adsense/domains/caf.js IP 216.58.211.14:443 ASN #15169 GOOGLE Requested by https://www.adsensecustomsearchads.com/afs/ads?adtest=off&psid=1167268112&pcsa=false&channel=000001%2Cbucket102&client=dp-teaminternet09_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fww12.utbidet-ugeas.biz%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQxMDJ8fHx8fHw2NThiMTI2OTRlNzNkfHx8MTcwMzYxMzAzMy4zMjg4fGFkMjdiOGFiYTFkMmJmNDQxNjYwN2EyYzJkNzI2M2VmNWYwMDU3Nzh8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwzNTE5NzhmMTYyOWE1YzYzNGUxMTM1ODMxMWU5MDQ0ODk0YWU2NDUzfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2204919519437054&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301383&format=r3%7Cs&nocache=7831703612712303&num=0&output=afd_ads&domain_name=ww12.utbidet-ugeas.biz&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1703612712305&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=760&frm=0&cl=588056317&uio=--&cont=tc&drt=0&jsid=caf&jsv=588056317&rurl=http%3A%2F%2Fww12.utbidet-ugeas.biz%2Fd%2FN%3F02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9 Certificate IssuerGoogle Trust Services LLC Subjectmisc-sni.google.com FingerprintCC:43:B8:B1:97:47:17:A9:AD:50:52:49:F8:17:A6:48:24:6F:9D:79 ValidityMon, 20 Nov 2023 08:03:51 GMT - Mon, 12 Feb 2024 08:03:50 GMT File type ASCII text, with very long lines (1888) Size 150 kB (149504 bytes) Hash 0b5819b903639cc259c92636799d165a 550782cda3c88170ba2ffaf93383216608b6b583 c1ac1d06d35bfdf8b8db5d44948f808101fbb2a428e4308710987615c94fe775 HTTP Headers `GET /adsense/domains/caf.js HTTP/1.1 Host: www.adsensecustomsearchads.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.adsensecustomsearchads.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK accept-ranges: bytes vary: Accept-Encoding content-type: text/javascript; charset=UTF-8 content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="ads-afs-ui" report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]} date: Tue, 26 Dec 2023 17:50:34 GMT expires: Tue, 26 Dec 2023 17:50:34 GMT cache-control: private, max-age=3600 etag: "11568107927487638084" x-content-type-options: nosniff link: <https://www.adsensecustomsearchads.com>; rel="preconnect" content-encoding: gzip server: sffe x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	GET ww12.utbidet-ugeas.biz/ls.php?t=658b1269&token=351978f1629a5c634e11358311e9044894ae6453	0.0.0.0		0 B
URL GET ww12.utbidet-ugeas.biz/ls.php?t=658b1269&token=351978f1629a5c634e11358311e9044894ae6453 IP 0.0.0.0:0 ASN #0 Requested by http://ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /ls.php?t=658b1269&token=351978f1629a5c634e11358311e9044894ae6453 HTTP/1.1 Host: ww12.utbidet-ugeas.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://ww12.utbidet-ugeas.biz/d/N?02ECE9C976ECE9C976C2E9E576ECE905137C1B63E0EDE909DEE986FF58DDC7FE40DCD8E725899BBF1F8F8CE9268D8AA256DDE9 Pragma: no-cache Cache-Control: no-cache`

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (15)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by