| unrestbad.com/zkncgdtm?adb=y&adb=y&cvnj=76&dev=r&key=5118301c4b66cafa8a94ae02d39381c3&kw=[%22a%22,%22little%22,%22snip%22,%22and%22,%22teaching%22,%22old%22,%22dogs%22,%22online%22,%22hd%22,%22subtitrat%22,%22fsonlinehd%22]&psid=www.filmeserialeonline.org,www.filmeserialeonline.org&refer=www.filmeserialeonline.org/episodul/a-little-snip-and-teaching-old-dogs/&res=14.29&scrHeight=864&scrWidth=1536&ship=&sub3=invoke_layer&tz=3&uuid=6c3a2b09-fd4a-4d5f-9b3d-c5cfd81b687d:1:1&v=24.5.6485 | 192.243.61.227 | | 1.8 kB |
URL unrestbad.com/zkncgdtm?adb=y&adb=y&cvnj=76&dev=r&key=5118301c4b66cafa8a94ae02d39381c3&kw=[%22a%22,%22little%22,%22snip%22,%22and%22,%22teaching%22,%22old%22,%22dogs%22,%22online%22,%22hd%22,%22subtitrat%22,%22fsonlinehd%22]&psid=www.filmeserialeonline.org,www.filmeserialeonline.org&refer=www.filmeserialeonline.org/episodul/a-little-snip-and-teaching-old-dogs/&res=14.29&scrHeight=864&scrWidth=1536&ship=&sub3=invoke_layer&tz=3&uuid=6c3a2b09-fd4a-4d5f-9b3d-c5cfd81b687d:1:1&v=24.5.6485 IP192.243.61.227:0 ASN#39572 DataWeb Global Group B.V.
File typeHTML document, ASCII text, with very long lines (1016) Hashc56a7520cb129a532e9cdb90ca8cc176 99b89b413ba84510413b014fad272b549e98f8e2 f26429b73b49bbc5cca4fe7e0d7011c5669e87fd7d4115b6b7d27e6a80150d8d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /zkncgdtm?adb=y&adb=y&cvnj=76&dev=r&key=5118301c4b66cafa8a94ae02d39381c3&kw=[%22a%22,%22little%22,%22snip%22,%22and%22,%22teaching%22,%22old%22,%22dogs%22,%22online%22,%22hd%22,%22subtitrat%22,%22fsonlinehd%22]&psid=www.filmeserialeonline.org,www.filmeserialeonline.org&refer=www.filmeserialeonline.org/episodul/a-little-snip-and-teaching-old-dogs/&res=14.29&scrHeight=864&scrWidth=1536&ship=&sub3=invoke_layer&tz=3&uuid=6c3a2b09-fd4a-4d5f-9b3d-c5cfd81b687d:1:1&v=24.5.6485 HTTP/1.1
Host: unrestbad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 19:46:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: u_pl=15092080; expires=Sat, 11 May 2024 19:46:39 GMT
ain=eyJhbGciOiJIUzI1NiJ9.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.tjmj5BKQCfgqKnJiRgbbylv7mQdvoJvD1gMgZPUvdcs; expires=Fri, 10 May 2024 19:47:39 GMT
uid_id2=6c3a2b09-fd4a-4d5f-9b3d-c5cfd81b687d:1:1; expires=Fri, 17 May 2024 19:46:39 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4f1de73f8ae3b3bc1cf44e1a1d28f57f
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| unrestbad.com/api/users?token=L3prbmNnZHRtP2FkYj15JmN2bmo9NzYmZGV2PXIma2V5PTUxMTgzMDFjNGI2NmNhZmE4YTk0YWUwMmQzOTM4MWMzJmt3PSU1QiUyMmElMjIlMkMlMjJsaXR0bGUlMjIlMkMlMjJzbmlwJTIyJTJDJTIyYW5kJTIyJTJDJTIydGVhY2hpbmclMjIlMkMlMjJvbGQlMjIlMkMlMjJkb2dzJTIyJTJDJTIyb25saW5lJTIyJTJDJTIyaGQlMjIlMkMlMjJzdWJ0aXRyYXQlMjIlMkMlMjJmc29ubGluZWhkJTIyJTVEJnBzaWQ9d3d3LmZpbG1lc2VyaWFsZW9ubGluZS5vcmclMkN3d3cuZmlsbWVzZXJpYWxlb25saW5lLm9yZyZwc3Q9MTcxNTM3MDQ1OSZyZWZlcj13d3cuZmlsbWVzZXJpYWxlb25saW5lLm9yZyUyRmVwaXNvZHVsJTJGYS1saXR0bGUtc25pcC1hbmQtdGVhY2hpbmctb2xkLWRvZ3MlMkYmcmVzPTE0LjI5JnJtdGM9dCZzY3JIZWlnaHQ9ODY0JnNjcldpZHRoPTE1MzYmc2hpcD0mc2h1PTRlN2M3M2ZlNGY4YzljMDgzZDA1NTdhMWI1ZjExZDZhYjljZjgzMWQxYmVlMmY2ZWM5ZTA4YzEyMDY5OGFkZWRjMWNkNzI3ZjA3NjA1M2U3M2U1MzI3MzkyZDA1MTk0YTRiNzYxMTNlMGVlODRmYTk5YTQ0NzRiMjhmZGNkZTYzMzhhODAwZDhiZThkZjA2YTU4NmIzMmZhM2I2NmQ1NDg0ODdlZDUxMTQ5MTRkZTMxNzQ5MjI4MDE4ZWJiMmUmc3ViMz1pbnZva2VfbGF5ZXImdHo9MyZ1dWlkPTZjM2EyYjA5LWZkNGEtNGQ1Zi05YjNkLWM1Y2ZkODFiNjg3ZCUzQTElM0ExJnY9MjQuNS42NDg1&uuid=6c3a2b09-fd4a-4d5f-9b3d-c5cfd81b687d%3A1%3A1&pii=&in=false | 192.243.61.227 | | 0 B |
URL unrestbad.com/api/users?token=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&uuid=6c3a2b09-fd4a-4d5f-9b3d-c5cfd81b687d%3A1%3A1&pii=&in=false IP192.243.61.227:0 ASN#39572 DataWeb Global Group B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /api/users?token=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&uuid=6c3a2b09-fd4a-4d5f-9b3d-c5cfd81b687d%3A1%3A1&pii=&in=false HTTP/1.1
Host: unrestbad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://unrestbad.com/api/users?token=L3prbmNnZHRtP2tleT0wZjIyYzFmZDYwOWYxM2NiNzk0N2M4Y2FiZmUxYTkwZCZzdWJtZXRyaWM9MTUwOTIwODA
Cookie: u_pl=15092080; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNTA5MjA4MCwiayI6IjUxMTgzMDFjNGI2NmNhZmE4YTk0YWUwMmQzOTM4MWMzIiwic2lkIjoid3d3LmZpbG1lc2VyaWFsZW9ubGluZS5vcmcsd3d3LmZpbG1lc2VyaWFsZW9ubGluZS5vcmciLCJpc2lkIjoyLCJhc2lkIjoxLCJ6aWQiOjE1OTA1OCwicGlkIjoxNDQzODAsImFuIjp0cnVlLCJsYW4iOnRydWUsImNpZCI6MSwiYWlkIjoyOCwicHQiOjQsInBrIjoiemtuY2dkdG0iLCJjcGtzIjp7IjI5IjoiNjZjMWNiZWM2NjM2MzQwM2I3N2EwOWYyODgxMTNiYzkifSwidCI6MX0sInUiOnsidSI6MSwiYXUiOjEsImQiOnsiaWQiOjc5OTU0MTk2LCJpZHMiOiIiLCJpYyI6ZmFsc2UsIm4iOiJEZXNrdG9wLEVtdWxhdG9yIiwidiI6IlVua25vd24iLCJtIjoiVW5rbm93biIsImYiOjEsImZuIjoiRGVza3RvcCIsIm9pZCI6MTgxMTAsIm9uIjoiTGludXgiLCJvdiI6IlVua25vd24iLCJiaWQiOjExNjY3MCwiYm4iOiJGaXJlZm94IiwiYnYiOiI5Ni4wIiwid3YiOmZhbHNlLCJlIjpmYWxzZSwiYWIiOnRydWV9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6dHJ1ZSwiciI6Ind3dy5maWxtZXNlcmlhbGVvbmxpbmUub3JnL2VwaXNvZHVsL2EtbGl0dGxlLXNuaXAtYW5kLXRlYWNoaW5nLW9sZC1kb2dzLyIsImFyIjpbXX19.tjmj5BKQCfgqKnJiRgbbylv7mQdvoJvD1gMgZPUvdcs; uid_id2=6c3a2b09-fd4a-4d5f-9b3d-c5cfd81b687d:1:1; cjs=t
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.21.6
Date: Fri, 10 May 2024 19:46:40 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Location: https://nylonnickel.xyz/c9b2l0k.php?key=725l9nmctij07aovqopa&SUB_ID_SHORT=39fb64fbb424ccf0ae18193fac09a2ab&COST_CPC=&PLACEMENT_ID=15092080&CAMPAIGN_ID=1036794&DEVICE_BRAND=Unknown&BROWSER_NAME=Firefox&USER_OS=Linux&USER_CARRIER=Blix%20Solutions&USERAGENT=Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0&REMOTE_LANGUAGE=11&BANNER_ID=2918465
Set-Cookie: uid_id2=6c3a2b09-fd4a-4d5f-9b3d-c5cfd81b687d:1:1; expires=Fri, 17 May 2024 19:46:40 GMT
pdhtkv=true; expires=Sat, 11 May 2024 19:46:40 GMT
uncs=1; expires=Sat, 11 May 2024 19:46:40 GMT
pdhtkv28=true; expires=Sat, 11 May 2024 19:46:40 GMT
uncs28=1; expires=Sat, 11 May 2024 19:46:40 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 00246defb22b9d18005eb57058691b86
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| unrestbad.com/favicon.ico | 172.240.127.234 | | 0 B |
URL unrestbad.com/favicon.ico IP172.240.127.234:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: unrestbad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://unrestbad.com/api/users?token=L3prbmNnZHRtP2tleT0wZjIyYzFmZDYwOWYxM2NiNzk0N2M4Y2FiZmUxYTkwZCZzdWJtZXRyaWM9MTUwOTIwODA
Cookie: u_pl=15092080; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNTA5MjA4MCwiayI6IjUxMTgzMDFjNGI2NmNhZmE4YTk0YWUwMmQzOTM4MWMzIiwic2lkIjoid3d3LmZpbG1lc2VyaWFsZW9ubGluZS5vcmcsd3d3LmZpbG1lc2VyaWFsZW9ubGluZS5vcmciLCJpc2lkIjoyLCJhc2lkIjoxLCJ6aWQiOjE1OTA1OCwicGlkIjoxNDQzODAsImFuIjp0cnVlLCJsYW4iOnRydWUsImNpZCI6MSwiYWlkIjoyOCwicHQiOjQsInBrIjoiemtuY2dkdG0iLCJjcGtzIjp7IjI5IjoiNjZjMWNiZWM2NjM2MzQwM2I3N2EwOWYyODgxMTNiYzkifSwidCI6MX0sInUiOnsidSI6MSwiYXUiOjEsImQiOnsiaWQiOjc5OTU0MTk2LCJpZHMiOiIiLCJpYyI6ZmFsc2UsIm4iOiJEZXNrdG9wLEVtdWxhdG9yIiwidiI6IlVua25vd24iLCJtIjoiVW5rbm93biIsImYiOjEsImZuIjoiRGVza3RvcCIsIm9pZCI6MTgxMTAsIm9uIjoiTGludXgiLCJvdiI6IlVua25vd24iLCJiaWQiOjExNjY3MCwiYm4iOiJGaXJlZm94IiwiYnYiOiI5Ni4wIiwid3YiOmZhbHNlLCJlIjpmYWxzZSwiYWIiOnRydWV9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6dHJ1ZSwiciI6Ind3dy5maWxtZXNlcmlhbGVvbmxpbmUub3JnL2VwaXNvZHVsL2EtbGl0dGxlLXNuaXAtYW5kLXRlYWNoaW5nLW9sZC1kb2dzLyIsImFyIjpbXX19.tjmj5BKQCfgqKnJiRgbbylv7mQdvoJvD1gMgZPUvdcs; uid_id2=6c3a2b09-fd4a-4d5f-9b3d-c5cfd81b687d:1:1; cjs=t
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 19:46:40 GMT
Content-Type: image/x-icon
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6bc0f727e1fb2d8ff5e935926a8e0c39
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| nylonnickel.xyz/c9b2l0k.php?key=725l9nmctij07aovqopa&SUB_ID_SHORT=39fb64fbb424ccf0ae18193fac09a2ab&COST_CPC=&PLACEMENT_ID=15092080&CAMPAIGN_ID=1036794&DEVICE_BRAND=Unknown&BROWSER_NAME=Firefox&USER_OS=Linux&USER_CARRIER=Blix%20Solutions&USERAGENT=Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0&REMOTE_LANGUAGE=11&BANNER_ID=2918465 | 192.64.81.118 | | 0 B |
URL nylonnickel.xyz/c9b2l0k.php?key=725l9nmctij07aovqopa&SUB_ID_SHORT=39fb64fbb424ccf0ae18193fac09a2ab&COST_CPC=&PLACEMENT_ID=15092080&CAMPAIGN_ID=1036794&DEVICE_BRAND=Unknown&BROWSER_NAME=Firefox&USER_OS=Linux&USER_CARRIER=Blix%20Solutions&USERAGENT=Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0&REMOTE_LANGUAGE=11&BANNER_ID=2918465 IP192.64.81.118:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c9b2l0k.php?key=725l9nmctij07aovqopa&SUB_ID_SHORT=39fb64fbb424ccf0ae18193fac09a2ab&COST_CPC=&PLACEMENT_ID=15092080&CAMPAIGN_ID=1036794&DEVICE_BRAND=Unknown&BROWSER_NAME=Firefox&USER_OS=Linux&USER_CARRIER=Blix%20Solutions&USERAGENT=Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0&REMOTE_LANGUAGE=11&BANNER_ID=2918465 HTTP/1.1
Host: nylonnickel.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://unrestbad.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.22.0
Date: Fri, 10 May 2024 19:46:40 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: uclick=us16cib4tl; expires=Sat, 11-May-2024 19:46:40 GMT; Max-Age=86400; path=/; secure; SameSite=none
uclickhash=us16cib4tl-us16cib4tl-fyyd-0-us8pwj-g5us0-g5pm3y-0751e0; expires=Sat, 11-May-2024 19:46:40 GMT; Max-Age=86400; path=/; secure; SameSite=none
Location: https://rqqlj.canopusacrux.com/?pl=4l9EZwXc2kSH_LKKjogwWA&click_id=46a54us16cib4tl5c0&sub_id=15092080
Strict-Transport-Security: max-age=31536000
|
|
| rqqlj.canopusacrux.com/?pl=4l9EZwXc2kSH_LKKjogwWA&click_id=46a54us16cib4tl5c0&sub_id=15092080 | 188.114.96.1 | | 0 B |
URL rqqlj.canopusacrux.com/?pl=4l9EZwXc2kSH_LKKjogwWA&click_id=46a54us16cib4tl5c0&sub_id=15092080 IP188.114.96.1:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?pl=4l9EZwXc2kSH_LKKjogwWA&click_id=46a54us16cib4tl5c0&sub_id=15092080 HTTP/1.1
Host: rqqlj.canopusacrux.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://unrestbad.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 10 May 2024 19:46:40 GMT
content-length: 0
location: https://rqqlj.check-tl-ver-294-2.com/space-robot/?pl=4l9EZwXc2kSH_LKKjogwWA&sm=space-robot&click_id=46a54us16cib4tl5c0&sub_id=15092080&nrid=e225833364fd4ec19c4787b8df8d2df5&hash=3A-me1HHx2M5iZCaQb_06Q&exp=1715370700
set-cookie: 4l9EZwXc2kSH_LKKjogwWA=1; max-age=345600; path=/; samesite=lax
__pl=2a4e3ecd-e270-4c78-b3a0-cb2a94eecd6e; expires=Sun, 10 May 2026 19:46:40 GMT; path=/; samesite=lax
__cap=1; max-age=3600; path=/; samesite=lax
cache-control: max-age=0, no-cache, no-store, must-revalidate
accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RMY2%2FnjYJVf8kPYFsofoMC4pODiYRwevrTHpnOHhGVzCJADZqtKms30kcD%2Bd9bkIRzzitkojzAiiC%2F46DlSWn8Gb67Rx7Lu7jSLaRjSGz%2Bfi5FBYZjxSLMgZOYdq9A4dMAJkySoK%2FR%2BU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881c6fcd7d0fb4f3-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| rqqlj.check-tl-ver-294-2.com/space-robot/?pl=4l9EZwXc2kSH_LKKjogwWA&sm=space-robot&click_id=46a54us16cib4tl5c0&sub_id=15092080&nrid=e225833364fd4ec19c4787b8df8d2df5&hash=3A-me1HHx2M5iZCaQb_06Q&exp=1715370700 | 188.114.97.1 | | 3.8 kB |
URL rqqlj.check-tl-ver-294-2.com/space-robot/?pl=4l9EZwXc2kSH_LKKjogwWA&sm=space-robot&click_id=46a54us16cib4tl5c0&sub_id=15092080&nrid=e225833364fd4ec19c4787b8df8d2df5&hash=3A-me1HHx2M5iZCaQb_06Q&exp=1715370700 IP188.114.97.1:0
File typeHTML document, Unicode text, UTF-8 text, with very long lines (474) Hash01041709ecf6a3f0b549820730593c03 55775e4279d24a34f601bf8180d9f280b8131e0d 51907b3319c05ec1c1a7466f4017f4dcc7b6dc59a29ed962bfd36572f223bb51
GET /space-robot/?pl=4l9EZwXc2kSH_LKKjogwWA&sm=space-robot&click_id=46a54us16cib4tl5c0&sub_id=15092080&nrid=e225833364fd4ec19c4787b8df8d2df5&hash=3A-me1HHx2M5iZCaQb_06Q&exp=1715370700 HTTP/1.1
Host: rqqlj.check-tl-ver-294-2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://unrestbad.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:41 GMT
content-type: text/html
last-modified: Tue, 23 Apr 2024 14:44:40 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=la8gPwP9Q%2BcImnFZbk2nkGS10pesOk9TGHeEFYRgBINWq2wI4Sw0XgPxER1EAiTuvfIC0nr4nylTgbwCn3GLW1xqSC8hYAWiPNmCOHl8FK4obeRbVIBE02uwYrRfqlSFkipTJIWaItj10eEFqToa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881c6fce3bfe56c0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 142.250.74.163 | | 16 kB |
URL fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP142.250.74.163:0
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0 Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://rqqlj.check-tl-ver-294-2.com
DNT: 1
Connection: keep-alive
Referer: https://rqqlj.check-tl-ver-294-2.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 May 2024 03:22:23 GMT
expires: Sat, 10 May 2025 03:22:23 GMT
cache-control: public, max-age=31536000
age: 59058
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| rqqlj.check-tl-ver-294-2.com/space-robot/assets/apple-touch-icon.png | 188.114.97.1 | | 23 kB |
URL rqqlj.check-tl-ver-294-2.com/space-robot/assets/apple-touch-icon.png IP188.114.97.1:0
File typePNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced Hashf500ba7eee0ae7d1ceb44236ac253165 0614de220ecadb48038ed894d91120ba102c8367 ba5a3083c38d71a2191ee7e614a96812d1f9d88bbfb360d3b61dbb1ffcd51de5
GET /space-robot/assets/apple-touch-icon.png HTTP/1.1
Host: rqqlj.check-tl-ver-294-2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rqqlj.check-tl-ver-294-2.com/space-robot/?pl=4l9EZwXc2kSH_LKKjogwWA&sm=space-robot&click_id=46a54us16cib4tl5c0&sub_id=15092080&nrid=e225833364fd4ec19c4787b8df8d2df5&hash=3A-me1HHx2M5iZCaQb_06Q&exp=1715370700
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 19:46:41 GMT
content-type: image/png
content-length: 23177
last-modified: Tue, 23 Apr 2024 14:44:40 GMT
etag: "6627c958-5a89"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5881
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Rm75evQJ69QJJxcjy2XSX7lUIKzyByMwvaeFJ5%2Fq9jDlaQNFWWhtq4KctaYBJNTEHdA%2FyaKSF0IqW022HZOlUugRquktuFtWvO14jog51qyRmQEfLbznz3v%2B17uq%2BGfKGJSDxl3YmE33a%2Fpbo3%2Bb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c6fd10e6d0b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| rqqlj.check-tl-ver-294-2.com/space-robot/assets/favicon-16x16.png | 188.114.97.1 | | 1.2 kB |
URL rqqlj.check-tl-ver-294-2.com/space-robot/assets/favicon-16x16.png IP188.114.97.1:0
File typePNG image data, 16 x 16, 8-bit colormap, non-interlaced Hash9d35b617fd258f648c37812252297dd3 7e32fd007f1c6fe1466d15439173082c0fbe82da e8a768f8122da75777dc64b6d35e756a1848c4f330f293920c18480df085000a
GET /space-robot/assets/favicon-16x16.png HTTP/1.1
Host: rqqlj.check-tl-ver-294-2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rqqlj.check-tl-ver-294-2.com/space-robot/?pl=4l9EZwXc2kSH_LKKjogwWA&sm=space-robot&click_id=46a54us16cib4tl5c0&sub_id=15092080&nrid=e225833364fd4ec19c4787b8df8d2df5&hash=3A-me1HHx2M5iZCaQb_06Q&exp=1715370700
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 19:46:41 GMT
content-type: image/png
content-length: 1163
last-modified: Tue, 23 Apr 2024 14:44:40 GMT
etag: "6627c958-48b"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5881
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2F5kFSixkRHs9LEUb3%2FyPXZvb4%2FRDs6QFdyn7rdgV09t56D%2FgTmrEkRt7ZAE%2FIRJbHO8mfqemL2gX3H3oEEzUcQYujGq9mflo9AkLhfqwLM1cXLGpKJjdKExsya%2FyCvcmuFf8Y2b0qYvq07uKP6rM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c6fd10e720b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.gstatic.com/firebasejs/10.3.1/firebase-app-compat.js | 142.250.74.163 | | 9.3 kB |
URL www.gstatic.com/firebasejs/10.3.1/firebase-app-compat.js IP142.250.74.163:0
File typeJavaScript source, ASCII text, with very long lines (28368) Hash9900403b65514fad7df39a4e788a6e45 75f9ba061ef4e72bb23528c700f2a11c56d637e9 a202b2051ea9810cd9ba592b3f9418a89e2062f5c185e29e288080b28eb64fe5
GET /firebasejs/10.3.1/firebase-app-compat.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rqqlj.check-tl-ver-294-2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 9308
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 01:57:01 GMT
expires: Fri, 09 May 2025 01:57:01 GMT
cache-control: public, max-age=31536000
age: 150580
last-modified: Thu, 31 Aug 2023 15:20:38 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/firebasejs/10.3.1/firebase-messaging-compat.js | 142.250.74.163 | | 9.9 kB |
URL www.gstatic.com/firebasejs/10.3.1/firebase-messaging-compat.js IP142.250.74.163:0
File typeJavaScript source, ASCII text, with very long lines (38231) Hash0541b823dfaf39162ef84cf075c9951b e0934726455558cc1a59823efada9651e33aafaa 21f1d62f222007068c793f0947d98f4ccb7c1595adb68efeb783390fdd8b5522
GET /firebasejs/10.3.1/firebase-messaging-compat.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rqqlj.check-tl-ver-294-2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 9934
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 May 2024 02:03:17 GMT
expires: Sat, 10 May 2025 02:03:17 GMT
cache-control: public, max-age=31536000
age: 63804
last-modified: Thu, 31 Aug 2023 15:20:50 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fa.check-tl-ver-294-2.com/space-robot/assets/corner.png | 172.67.176.7 | | 300 B |
URL fa.check-tl-ver-294-2.com/space-robot/assets/corner.png IP172.67.176.7:0
File typePNG image data, 44 x 44, 8-bit colormap, non-interlaced Hashf66c38fa2cd7c50bd1989d41da28fb80 e1de333eca72647f3c1831083fe678cfa8fe9eab 3059be4046e0315ad1c0d1cb163d9daaf759bdf16e906e908842fac07e5608a2
GET /space-robot/assets/corner.png HTTP/1.1
Host: fa.check-tl-ver-294-2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fa.check-tl-ver-294-2.com/space-robot/?pl=4l9EZwXc2kSH_LKKjogwWA&sm=space-robot&click_id=46a54us16cib4tl5c0&sub_id=15092080&nrid=e225833364fd4ec19c4787b8df8d2df5&hash=3A-me1HHx2M5iZCaQb_06Q&exp=1715370700
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 19:46:41 GMT
content-type: image/png
content-length: 300
last-modified: Tue, 23 Apr 2024 14:44:40 GMT
etag: "6627c958-12c"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wFOL4LooEPVlfw1Rm6wQ5cgAAr86WnVAVECIfdQdOs4fRe0D6G8kN2eyYboImJe%2BfFiX7LQLzRgfyK6iWaL41g2jaMb6Oy6Vy75H3qsCmFaYYTBHtSY4eRheMLQsqTXSmWsd7Tl0b0hJeucs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c6fd299e5712e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fa.check-tl-ver-294-2.com/space-robot/assets/style.css?v=4 | 172.67.176.7 | | 17 kB |
URL fa.check-tl-ver-294-2.com/space-robot/assets/style.css?v=4 IP172.67.176.7:0
File typegzip compressed data, from Unix Hash16c856ad31986a50e8240a622b120317 f07f12459f1d56b94e9b624998ea74a3a0911e9f 598cecef92717033d06accf44549a083ef5a881a5f1c7b3837331fd4f04da26f
GET /space-robot/assets/style.css?v=4 HTTP/1.1
Host: fa.check-tl-ver-294-2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fa.check-tl-ver-294-2.com/space-robot/?pl=4l9EZwXc2kSH_LKKjogwWA&sm=space-robot&click_id=46a54us16cib4tl5c0&sub_id=15092080&nrid=e225833364fd4ec19c4787b8df8d2df5&hash=3A-me1HHx2M5iZCaQb_06Q&exp=1715370700
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 19:46:41 GMT
content-type: text/css
last-modified: Tue, 23 Apr 2024 14:44:40 GMT
etag: W/"6627c958-1986"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tDMUsK%2Fqwiv1pCbiBWGojdJk%2B3f6cfe1Ca90QiqzTA45%2FSkvw5%2FWyDh68Diz3hWAUFqaM9O5WZNsJiJv9UGi%2FUgGJ3WWz6DwW7X5E4eymDxWGoSWq4zv9pSsYu%2FY6KliljYxC3ya4zVSSzNn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c6fd299e4712e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fa.check-tl-ver-294-2.com/space-robot/assets/favicon-16x16.png | 172.67.176.7 | | 1.2 kB |
URL fa.check-tl-ver-294-2.com/space-robot/assets/favicon-16x16.png IP172.67.176.7:0
File typePNG image data, 16 x 16, 8-bit colormap, non-interlaced Hash9d35b617fd258f648c37812252297dd3 7e32fd007f1c6fe1466d15439173082c0fbe82da e8a768f8122da75777dc64b6d35e756a1848c4f330f293920c18480df085000a
GET /space-robot/assets/favicon-16x16.png HTTP/1.1
Host: fa.check-tl-ver-294-2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fa.check-tl-ver-294-2.com/space-robot/?pl=4l9EZwXc2kSH_LKKjogwWA&sm=space-robot&click_id=46a54us16cib4tl5c0&sub_id=15092080&nrid=e225833364fd4ec19c4787b8df8d2df5&hash=3A-me1HHx2M5iZCaQb_06Q&exp=1715370700
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 19:46:41 GMT
content-type: image/png
content-length: 1163
last-modified: Tue, 23 Apr 2024 14:44:40 GMT
etag: "6627c958-48b"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sMTL4%2Bbl42YVJYVpqZEOHBqtXAZS3uZAkdpqgA3h1GENWROci917x7vxYTW8oS7eT4%2FtZsPC6ugAJLun0XvtAaEnfvIxPuC9vG2ruVXhipQ%2BnnZ764bUs0W63ngS9OzNp%2FzAtJDQeNTD3wke"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c6fd3bb9a712e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.gstatic.com/firebasejs/10.3.1/firebase-app-compat.js | 142.250.74.163 | | 9.3 kB |
URL www.gstatic.com/firebasejs/10.3.1/firebase-app-compat.js IP142.250.74.163:0
File typeJavaScript source, ASCII text, with very long lines (28368) Hash9900403b65514fad7df39a4e788a6e45 75f9ba061ef4e72bb23528c700f2a11c56d637e9 a202b2051ea9810cd9ba592b3f9418a89e2062f5c185e29e288080b28eb64fe5
GET /firebasejs/10.3.1/firebase-app-compat.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fa.check-tl-ver-294-2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 9308
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 01:57:01 GMT
expires: Fri, 09 May 2025 01:57:01 GMT
cache-control: public, max-age=31536000
age: 150580
last-modified: Thu, 31 Aug 2023 15:20:38 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fa.check-tl-ver-294-2.com/space-robot/assets/apple-touch-icon.png | 172.67.176.7 | | 23 kB |
URL fa.check-tl-ver-294-2.com/space-robot/assets/apple-touch-icon.png IP172.67.176.7:0
File typePNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced Hashf500ba7eee0ae7d1ceb44236ac253165 0614de220ecadb48038ed894d91120ba102c8367 ba5a3083c38d71a2191ee7e614a96812d1f9d88bbfb360d3b61dbb1ffcd51de5
GET /space-robot/assets/apple-touch-icon.png HTTP/1.1
Host: fa.check-tl-ver-294-2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fa.check-tl-ver-294-2.com/space-robot/?pl=4l9EZwXc2kSH_LKKjogwWA&sm=space-robot&click_id=46a54us16cib4tl5c0&sub_id=15092080&nrid=e225833364fd4ec19c4787b8df8d2df5&hash=3A-me1HHx2M5iZCaQb_06Q&exp=1715370700
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 19:46:41 GMT
content-type: image/png
content-length: 23177
last-modified: Tue, 23 Apr 2024 14:44:40 GMT
etag: "6627c958-5a89"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=j%2BXtZrv%2Fezr1l09brnaPGGOsAfvIT5z8D8740%2FTEJdF%2Fhi9nrVJAHvGo%2FwB4DmPr7xJFwrp%2BScpF9LFMaSMt%2Bde7M8BT6ek1UjEYUb6Jm1KNrfVsKa%2FK2r6XV4h4iz6wsUz%2BHoTneHrNhLKE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c6fd3bb94712e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.gstatic.com/firebasejs/10.3.1/firebase-messaging-compat.js | 142.250.74.163 | | 9.9 kB |
URL www.gstatic.com/firebasejs/10.3.1/firebase-messaging-compat.js IP142.250.74.163:0
File typeJavaScript source, ASCII text, with very long lines (38231) Hash0541b823dfaf39162ef84cf075c9951b e0934726455558cc1a59823efada9651e33aafaa 21f1d62f222007068c793f0947d98f4ccb7c1595adb68efeb783390fdd8b5522
GET /firebasejs/10.3.1/firebase-messaging-compat.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fa.check-tl-ver-294-2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 9934
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 May 2024 02:03:17 GMT
expires: Sat, 10 May 2025 02:03:17 GMT
cache-control: public, max-age=31536000
age: 63804
last-modified: Thu, 31 Aug 2023 15:20:50 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fb.check-tl-ver-294-2.com/space-robot/?pl=4l9EZwXc2kSH_LKKjogwWA&sm=space-robot&click_id=46a54us16cib4tl5c0&sub_id=15092080&nrid=e225833364fd4ec19c4787b8df8d2df5&hash=3A-me1HHx2M5iZCaQb_06Q&exp=1715370700 | 172.67.176.7 | | 3.8 kB |
URL fb.check-tl-ver-294-2.com/space-robot/?pl=4l9EZwXc2kSH_LKKjogwWA&sm=space-robot&click_id=46a54us16cib4tl5c0&sub_id=15092080&nrid=e225833364fd4ec19c4787b8df8d2df5&hash=3A-me1HHx2M5iZCaQb_06Q&exp=1715370700 IP172.67.176.7:0
File typeHTML document, Unicode text, UTF-8 text, with very long lines (474) Hash01041709ecf6a3f0b549820730593c03 55775e4279d24a34f601bf8180d9f280b8131e0d 51907b3319c05ec1c1a7466f4017f4dcc7b6dc59a29ed962bfd36572f223bb51
GET /space-robot/?pl=4l9EZwXc2kSH_LKKjogwWA&sm=space-robot&click_id=46a54us16cib4tl5c0&sub_id=15092080&nrid=e225833364fd4ec19c4787b8df8d2df5&hash=3A-me1HHx2M5iZCaQb_06Q&exp=1715370700 HTTP/1.1
Host: fb.check-tl-ver-294-2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fa.check-tl-ver-294-2.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 19:46:42 GMT
content-type: text/html
last-modified: Tue, 23 Apr 2024 14:44:40 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=s559f1EJcQJlUYP728FsgUqm%2BgfSpWeE0nbjb8isoB%2FLrsR4ovKx2pwphoip4Z%2Bfz36DIdsfuUsMqLYT0VoDRRFyCfhV2gx9rvV05aeSvTFPe6qGKPsBYB%2B%2B7DDJ2Ba%2FCm3xRggDOrKoMGkA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881c6fd4ac9e712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 142.250.74.163 | | 16 kB |
URL fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP142.250.74.163:0
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0 Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fb.check-tl-ver-294-2.com
DNT: 1
Connection: keep-alive
Referer: https://fb.check-tl-ver-294-2.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 May 2024 03:22:23 GMT
expires: Sat, 10 May 2025 03:22:23 GMT
cache-control: public, max-age=31536000
age: 59059
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| cdnstatic.check-tl-ver-294-2.com/ps/config.js?id=4l9EZwXc2kSH_LKKjogwWA | 172.67.176.7 | | 29 kB |
URL cdnstatic.check-tl-ver-294-2.com/ps/config.js?id=4l9EZwXc2kSH_LKKjogwWA IP172.67.176.7:0
File typegzip compressed data, from Unix Hashb54f9843af0d8b45a8adf3879a5e34eb 69a1ef86a15deddc52164e0fdb994de26303efbe 88479996cb04137e5c71586ed4107dfbdb7a795cf84f88613b3675d54edc5206
GET /ps/config.js?id=4l9EZwXc2kSH_LKKjogwWA HTTP/1.1
Host: cdnstatic.check-tl-ver-294-2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rqqlj.check-tl-ver-294-2.com/
Cookie: __psu=5eb43ad3-f11c-4907-83b5-c70def7ebb2f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 19:46:41 GMT
content-type: application/javascript
cache-control: max-age=0, no-cache, no-store, must-revalidate
accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
content-encoding: gzip
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=64tj4zoLb9qK2BoJJ608s%2B%2Bmiu4go8ln%2BD%2BDkYUB4SSQ%2BVRvsU9Woy%2BS4exHcrpw70iN6ILvXHSUkj0RmB%2F59VxVljJxxdC5oI8damq%2Fyh39u1KiOWCIMf994u0hYm1CXm8yLP%2FPMlb07yMjDqYZm8EmoA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c6fd11822712e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fb.check-tl-ver-294-2.com/space-robot/assets/favicon-16x16.png | 172.67.176.7 | | 1.2 kB |
URL fb.check-tl-ver-294-2.com/space-robot/assets/favicon-16x16.png IP172.67.176.7:0
File typePNG image data, 16 x 16, 8-bit colormap, non-interlaced Hash9d35b617fd258f648c37812252297dd3 7e32fd007f1c6fe1466d15439173082c0fbe82da e8a768f8122da75777dc64b6d35e756a1848c4f330f293920c18480df085000a
GET /space-robot/assets/favicon-16x16.png HTTP/1.1
Host: fb.check-tl-ver-294-2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fb.check-tl-ver-294-2.com/space-robot/?pl=4l9EZwXc2kSH_LKKjogwWA&sm=space-robot&click_id=46a54us16cib4tl5c0&sub_id=15092080&nrid=e225833364fd4ec19c4787b8df8d2df5&hash=3A-me1HHx2M5iZCaQb_06Q&exp=1715370700
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 19:46:42 GMT
content-type: image/png
content-length: 1163
last-modified: Tue, 23 Apr 2024 14:44:40 GMT
etag: "6627c958-48b"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5ms%2BiMNJkWWP4S1AqotPiBMxpP1HMaBQQtTgzBjHB9zC%2BQz3rF1Okio7vosUrQqqK8Mwto7uW6PrjCg93XYa3UI%2B4X6LmBRuaF9sYDRovT39bQSjTkxI8RSQAUeQEH3ib%2FYrN7aGFkc92BXE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c6fd69f48712e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.gstatic.com/firebasejs/10.3.1/firebase-messaging-compat.js | 142.250.74.163 | | 9.9 kB |
URL www.gstatic.com/firebasejs/10.3.1/firebase-messaging-compat.js IP142.250.74.163:0
File typeJavaScript source, ASCII text, with very long lines (38231) Hash0541b823dfaf39162ef84cf075c9951b e0934726455558cc1a59823efada9651e33aafaa 21f1d62f222007068c793f0947d98f4ccb7c1595adb68efeb783390fdd8b5522
GET /firebasejs/10.3.1/firebase-messaging-compat.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fb.check-tl-ver-294-2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 9934
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 May 2024 02:03:17 GMT
expires: Sat, 10 May 2025 02:03:17 GMT
cache-control: public, max-age=31536000
age: 63805
last-modified: Thu, 31 Aug 2023 15:20:50 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fb.check-tl-ver-294-2.com/space-robot/assets/apple-touch-icon.png | 172.67.176.7 | | 23 kB |
URL fb.check-tl-ver-294-2.com/space-robot/assets/apple-touch-icon.png IP172.67.176.7:0
File typePNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced Hashf500ba7eee0ae7d1ceb44236ac253165 0614de220ecadb48038ed894d91120ba102c8367 ba5a3083c38d71a2191ee7e614a96812d1f9d88bbfb360d3b61dbb1ffcd51de5
GET /space-robot/assets/apple-touch-icon.png HTTP/1.1
Host: fb.check-tl-ver-294-2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fb.check-tl-ver-294-2.com/space-robot/?pl=4l9EZwXc2kSH_LKKjogwWA&sm=space-robot&click_id=46a54us16cib4tl5c0&sub_id=15092080&nrid=e225833364fd4ec19c4787b8df8d2df5&hash=3A-me1HHx2M5iZCaQb_06Q&exp=1715370700
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 19:46:42 GMT
content-type: image/png
content-length: 23177
last-modified: Tue, 23 Apr 2024 14:44:40 GMT
etag: "6627c958-5a89"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=855RcNN5Us%2FMWecKDrejKjoLZd8XZsLXwzkopg5SC9oomegQR0eGymPvsohdRRh1AVLsgq87flyzPC2JMsFn3dQaTlRXwAUyXhiFvrpp5g06kk42Lch9GFeblln8VVoJSA7Aci0WubZjtF%2Fp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c6fd69f42712e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.highcpmgate.com/g0rcyaaab7?key=95e6f21cd393f59a1833b1034d8951ec | 172.240.127.234 | | 1.3 kB |
URL www.highcpmgate.com/g0rcyaaab7?key=95e6f21cd393f59a1833b1034d8951ec IP172.240.127.234:0
File typeHTML document, ASCII text, with very long lines (412) Hashf2e588adde81be9f080815f45c2fdb52 6bae58bafb68e0940e57a62177fa6f3f4e74e2f9 2e5369bfd26f7329caddf64193d49dd6c94f962ccc27c7dcc774730d51312459
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /g0rcyaaab7?key=95e6f21cd393f59a1833b1034d8951ec HTTP/1.1
Host: www.highcpmgate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 19:46:42 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: u_pl=23070551; expires=Sat, 11 May 2024 19:46:42 GMT
ain=eyJhbGciOiJIUzI1NiJ9.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.U2ebwFjEv1emnUSOTmNQTe-4rPP39OWIepgfVbZEwNQ; expires=Fri, 10 May 2024 19:47:42 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a7e4758b8e729bc1945293c7a1076218
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| www.highcpmgate.com/api/users?token=L2cwcmN5YWFhYjc_a2V5PTk1ZTZmMjFjZDM5M2Y1OWExODMzYjEwMzRkODk1MWVjJnBzdD0xNzE1MzcwNDYyJnJtdGM9dCZzaHU9ZDM4ZDRjYjE1YTE0MGRkNDk3MjFhMzRlYjA5NmZmYzQ2MzQ1Y2NlYzVjMTVkMmJiNDAxMTQ3MjJhNmYyMWJmOTMyNGIzYjUwNjRkODI2Yjk0N2JjOGRlZjlkN2QwYjhhMTA2MWYxY2ViM2I0ZWNkNGY0NTMwNjQ5OTk3Mjg2N2RiNTRlZGJhMTY5MGJiMGQxYzkxMzJlNDgwMmQ0MTFjYjk5ZWVmZDg0ZTcyMGI5MDNlZmJiMWI2MGMyYzY3M2Vh&uuid=&pii=&in=false | 172.240.108.76 | | 0 B |
URL www.highcpmgate.com/api/users?token=L2cwcmN5YWFhYjc_a2V5PTk1ZTZmMjFjZDM5M2Y1OWExODMzYjEwMzRkODk1MWVjJnBzdD0xNzE1MzcwNDYyJnJtdGM9dCZzaHU9ZDM4ZDRjYjE1YTE0MGRkNDk3MjFhMzRlYjA5NmZmYzQ2MzQ1Y2NlYzVjMTVkMmJiNDAxMTQ3MjJhNmYyMWJmOTMyNGIzYjUwNjRkODI2Yjk0N2JjOGRlZjlkN2QwYjhhMTA2MWYxY2ViM2I0ZWNkNGY0NTMwNjQ5OTk3Mjg2N2RiNTRlZGJhMTY5MGJiMGQxYzkxMzJlNDgwMmQ0MTFjYjk5ZWVmZDg0ZTcyMGI5MDNlZmJiMWI2MGMyYzY3M2Vh&uuid=&pii=&in=false IP172.240.108.76:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /api/users?token=L2cwcmN5YWFhYjc_a2V5PTk1ZTZmMjFjZDM5M2Y1OWExODMzYjEwMzRkODk1MWVjJnBzdD0xNzE1MzcwNDYyJnJtdGM9dCZzaHU9ZDM4ZDRjYjE1YTE0MGRkNDk3MjFhMzRlYjA5NmZmYzQ2MzQ1Y2NlYzVjMTVkMmJiNDAxMTQ3MjJhNmYyMWJmOTMyNGIzYjUwNjRkODI2Yjk0N2JjOGRlZjlkN2QwYjhhMTA2MWYxY2ViM2I0ZWNkNGY0NTMwNjQ5OTk3Mjg2N2RiNTRlZGJhMTY5MGJiMGQxYzkxMzJlNDgwMmQ0MTFjYjk5ZWVmZDg0ZTcyMGI5MDNlZmJiMWI2MGMyYzY3M2Vh&uuid=&pii=&in=false HTTP/1.1
Host: www.highcpmgate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.highcpmgate.com/api/users?token=L2cwcmN5YWFhYjc_a2V5PWE5NjljYTVjOWFkMjYxMTc2MmYxMWI3OWE1MjZlMmQyJnN1Ym1ldHJpYz0yMzA3MDU1MQ
Cookie: u_pl=23070551; ain=eyJhbGciOiJIUzI1NiJ9.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.U2ebwFjEv1emnUSOTmNQTe-4rPP39OWIepgfVbZEwNQ; cjs=t
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.21.6
Date: Fri, 10 May 2024 19:46:43 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Location: https://wifescamara.click/c9b2l0k.php?key=j9bvotykda242i8ilk8f&SUB_ID_SHORT=39f219f66bb31387c4be3664cbd12b19&COST_CPC=&PLACEMENT_ID=23070551&CAMPAIGN_ID=1030445&DEVICE_BRAND=Unknown&BROWSER_NAME=Firefox&USER_OS=Linux&USER_CARRIER=Blix%20Solutions&USERAGENT=Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0&REMOTE_LANGUAGE=11&BANNER_ID=2904296
Set-Cookie: iprc6be9293aa69eff0f124526bb45af15d1=5206192; expires=Sat, 11 May 2024 19:46:43 GMT
pdhtkv=true; expires=Sat, 11 May 2024 19:46:43 GMT
uncs=1; expires=Sat, 11 May 2024 19:46:43 GMT
pdhtkv28=true; expires=Sat, 11 May 2024 19:46:43 GMT
uncs28=1; expires=Sat, 11 May 2024 19:46:43 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7c62d8ac207b6fdbac488cb99ab71fee
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| wifescamara.click/c9b2l0k.php?key=j9bvotykda242i8ilk8f&SUB_ID_SHORT=39f219f66bb31387c4be3664cbd12b19&COST_CPC=&PLACEMENT_ID=23070551&CAMPAIGN_ID=1030445&DEVICE_BRAND=Unknown&BROWSER_NAME=Firefox&USER_OS=Linux&USER_CARRIER=Blix%20Solutions&USERAGENT=Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0&REMOTE_LANGUAGE=11&BANNER_ID=2904296 | 192.64.81.118 | | 0 B |
URL wifescamara.click/c9b2l0k.php?key=j9bvotykda242i8ilk8f&SUB_ID_SHORT=39f219f66bb31387c4be3664cbd12b19&COST_CPC=&PLACEMENT_ID=23070551&CAMPAIGN_ID=1030445&DEVICE_BRAND=Unknown&BROWSER_NAME=Firefox&USER_OS=Linux&USER_CARRIER=Blix%20Solutions&USERAGENT=Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0&REMOTE_LANGUAGE=11&BANNER_ID=2904296 IP192.64.81.118:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c9b2l0k.php?key=j9bvotykda242i8ilk8f&SUB_ID_SHORT=39f219f66bb31387c4be3664cbd12b19&COST_CPC=&PLACEMENT_ID=23070551&CAMPAIGN_ID=1030445&DEVICE_BRAND=Unknown&BROWSER_NAME=Firefox&USER_OS=Linux&USER_CARRIER=Blix%20Solutions&USERAGENT=Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0&REMOTE_LANGUAGE=11&BANNER_ID=2904296 HTTP/1.1
Host: wifescamara.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.highcpmgate.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.22.0
Date: Fri, 10 May 2024 19:46:44 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: uclick=us16ciirqd; expires=Sat, 11-May-2024 19:46:44 GMT; Max-Age=86400; path=/; secure; SameSite=none
uclickhash=us16ciirqd-us16ciirqd-uoxs-0-usa30-9rq5dz-9rq5bl-80d93e; expires=Sat, 11-May-2024 19:46:44 GMT; Max-Age=86400; path=/; secure; SameSite=none
Location: https://gzeao.canopusacrux.com/?pl=dR1J35fCDkibR45g1XXjgg&click_id=b720bus16ciirqd2fb&sub_id=23070551
Strict-Transport-Security: max-age=31536000
|
|
| gzeao.canopusacrux.com/?pl=dR1J35fCDkibR45g1XXjgg&click_id=b720bus16ciirqd2fb&sub_id=23070551 | 104.21.4.72 | | 0 B |
URL gzeao.canopusacrux.com/?pl=dR1J35fCDkibR45g1XXjgg&click_id=b720bus16ciirqd2fb&sub_id=23070551 IP104.21.4.72:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?pl=dR1J35fCDkibR45g1XXjgg&click_id=b720bus16ciirqd2fb&sub_id=23070551 HTTP/1.1
Host: gzeao.canopusacrux.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.highcpmgate.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 10 May 2024 19:46:44 GMT
content-length: 0
location: https://gzeao.check-tl-ver-94-1.com/allow-button/?pl=dR1J35fCDkibR45g1XXjgg&sm=allow-button&click_id=b720bus16ciirqd2fb&sub_id=23070551&nrid=25b5311e4c4d48f48b57eb18dc53f99c&hash=yj8r3rMeCDznCssOPlPSEQ&exp=1715370704
set-cookie: dR1J35fCDkibR45g1XXjgg=2; max-age=345600; path=/; samesite=lax
__pl=f8f0e8fc-9f75-4130-8758-6db46c88e713; expires=Sun, 10 May 2026 19:46:44 GMT; path=/; samesite=lax
__cap=1; max-age=3600; path=/; samesite=lax
cache-control: max-age=0, no-cache, no-store, must-revalidate
accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ECYGxzMGHsjYXWdLMtwc51ZndAtcLQ0DYjWsYld1VsSAiXf3ZccsrNpItXo91AcObLYNIE%2FM2EuY9udDNV6XxMvNhvSU%2FICaSo02MrkhkmJPYRZoQ%2BWbjPOB5HN8RHwO5gRhPXY8Q8PN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881c6fe2497b5696-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| gzeao.check-tl-ver-94-1.com/allow-button/assets/trls.js | 172.67.147.142 | | 1.6 kB |
URL gzeao.check-tl-ver-94-1.com/allow-button/assets/trls.js IP172.67.147.142:0
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (362), with CRLF line terminators Hashd4a23c4124d49f909abaef62a8bf47a5 e7b26553db1400d07f1b12137053ebe7b066972f 3efcd61ce47244f47b15c9f5d5749f79b2ddd57e51ebf995267ab02d4dcf2180
GET /allow-button/assets/trls.js HTTP/1.1
Host: gzeao.check-tl-ver-94-1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gzeao.check-tl-ver-94-1.com/allow-button/?pl=dR1J35fCDkibR45g1XXjgg&sm=allow-button&click_id=b720bus16ciirqd2fb&sub_id=23070551&nrid=25b5311e4c4d48f48b57eb18dc53f99c&hash=yj8r3rMeCDznCssOPlPSEQ&exp=1715370704
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 19:46:44 GMT
content-type: application/javascript
last-modified: Tue, 23 Apr 2024 14:44:40 GMT
etag: W/"6627c958-1e6a"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bB9t3WbW2srcOmlRJABIdY8txbQwRPWMal0cK5W19bziYONp50A87kdi%2FRqB4ew1P9VlwwhW1auDAPjrfVkcmZP150eW7liqtU41vld77y4YzzFKkAUx3AKSLxizu2Zsk0taMO2uTWB3%2FBBFhXo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c6fe488abb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| gzeao.check-tl-ver-94-1.com/shared-js/assets/static-pl.js?v=2 | 172.67.147.142 | | 1.7 kB |
URL gzeao.check-tl-ver-94-1.com/shared-js/assets/static-pl.js?v=2 IP172.67.147.142:0
File typeJavaScript source, ASCII text, with CRLF line terminators Hash7224243dd0b18bb2508a1d77d4b2a0b2 bd833c24aa241861316053fd8bd46a1bef3d343f 920aa94a10634fc23234b5e4f55c428f6311fc7811d3591792381678cb492659
GET /shared-js/assets/static-pl.js?v=2 HTTP/1.1
Host: gzeao.check-tl-ver-94-1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gzeao.check-tl-ver-94-1.com/allow-button/?pl=dR1J35fCDkibR45g1XXjgg&sm=allow-button&click_id=b720bus16ciirqd2fb&sub_id=23070551&nrid=25b5311e4c4d48f48b57eb18dc53f99c&hash=yj8r3rMeCDznCssOPlPSEQ&exp=1715370704
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 19:46:44 GMT
content-type: application/javascript
last-modified: Tue, 23 Apr 2024 14:44:40 GMT
etag: W/"6627c958-dee"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3450
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=abk75uUFvJ3dQ8uGsjcW8fnWqHj56s6jRZTfFeRl%2FU8h7VuGYtxnh9ZU1VKzgiUuxTgPnMrKT7IcpIY46d1gew35%2BdgdJdfnRkZKORpMooNFUsaScSmAeYKPIP5NUVgl6Xelqel5OlhbFHg5SOk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c6fe498b7b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.gstatic.com/firebasejs/10.3.1/firebase-app-compat.js | 142.250.74.163 | | 9.3 kB |
URL www.gstatic.com/firebasejs/10.3.1/firebase-app-compat.js IP142.250.74.163:0
File typeJavaScript source, ASCII text, with very long lines (28368) Hash9900403b65514fad7df39a4e788a6e45 75f9ba061ef4e72bb23528c700f2a11c56d637e9 a202b2051ea9810cd9ba592b3f9418a89e2062f5c185e29e288080b28eb64fe5
GET /firebasejs/10.3.1/firebase-app-compat.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gzeao.check-tl-ver-94-1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 9308
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 01:57:01 GMT
expires: Fri, 09 May 2025 01:57:01 GMT
cache-control: public, max-age=31536000
age: 150583
last-modified: Thu, 31 Aug 2023 15:20:38 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/firebasejs/10.3.1/firebase-messaging-compat.js | 142.250.74.163 | | 9.9 kB |
URL www.gstatic.com/firebasejs/10.3.1/firebase-messaging-compat.js IP142.250.74.163:0
File typeJavaScript source, ASCII text, with very long lines (38231) Hash0541b823dfaf39162ef84cf075c9951b e0934726455558cc1a59823efada9651e33aafaa 21f1d62f222007068c793f0947d98f4ccb7c1595adb68efeb783390fdd8b5522
GET /firebasejs/10.3.1/firebase-messaging-compat.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gzeao.check-tl-ver-94-1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 9934
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 May 2024 02:03:17 GMT
expires: Sat, 10 May 2025 02:03:17 GMT
cache-control: public, max-age=31536000
age: 63807
last-modified: Thu, 31 Aug 2023 15:20:50 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ha.check-tl-ver-94-1.com/allow-button/?pl=dR1J35fCDkibR45g1XXjgg&sm=allow-button&click_id=b720bus16ciirqd2fb&sub_id=23070551&nrid=25b5311e4c4d48f48b57eb18dc53f99c&hash=yj8r3rMeCDznCssOPlPSEQ&exp=1715370704 | 172.67.147.142 | | 23 kB |
URL ha.check-tl-ver-94-1.com/allow-button/?pl=dR1J35fCDkibR45g1XXjgg&sm=allow-button&click_id=b720bus16ciirqd2fb&sub_id=23070551&nrid=25b5311e4c4d48f48b57eb18dc53f99c&hash=yj8r3rMeCDznCssOPlPSEQ&exp=1715370704 IP172.67.147.142:0
File typeHTML document, ASCII text, with very long lines (10169) Hash80f93dbb557a8864dc665d0ce557af58 963f36ccd9c2e63967ea3a66d051a8b4b7e08ab6 ee4d53ba73ffa074d944eae12df6386888e842ce4ca82d0ca6d6779256257f3b
GET /allow-button/?pl=dR1J35fCDkibR45g1XXjgg&sm=allow-button&click_id=b720bus16ciirqd2fb&sub_id=23070551&nrid=25b5311e4c4d48f48b57eb18dc53f99c&hash=yj8r3rMeCDznCssOPlPSEQ&exp=1715370704 HTTP/1.1
Host: ha.check-tl-ver-94-1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gzeao.check-tl-ver-94-1.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 19:46:45 GMT
content-type: text/html
last-modified: Tue, 23 Apr 2024 14:44:40 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PjTNWhLLX23kf%2Fkp5I3m7bRV56VtILW61LKMvDgwueOAQBvdjS6zvgvAHN4vbGa23C41glXvio3LmCYbAoO8aQkQuZIbYvhfQdkXlcgLB5Sw4j5HdQgCJEczZ%2Fbutk7ukFTngfkA4q2VWXk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881c6fe75bdeb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| rqqlj.check-tl-ver-294-2.com/space-robot/assets/style.css?v=4 | 188.114.97.1 | | 40 kB |
URL rqqlj.check-tl-ver-294-2.com/space-robot/assets/style.css?v=4 IP188.114.97.1:0
File typegzip compressed data, from Unix Hash92fc884306878dbf6704327221b543c7 5d330d3f2ae5477f465eba13ca62e8b5e8df48e5 33f6cb7574524ca5531fc86e2f4ffe0cb54a3109b3dd547a9a79d36da758430c
GET /space-robot/assets/style.css?v=4 HTTP/1.1
Host: rqqlj.check-tl-ver-294-2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rqqlj.check-tl-ver-294-2.com/space-robot/?pl=4l9EZwXc2kSH_LKKjogwWA&sm=space-robot&click_id=46a54us16cib4tl5c0&sub_id=15092080&nrid=e225833364fd4ec19c4787b8df8d2df5&hash=3A-me1HHx2M5iZCaQb_06Q&exp=1715370700
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 19:46:41 GMT
content-type: text/css
last-modified: Tue, 23 Apr 2024 14:44:40 GMT
etag: W/"6627c958-1986"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 3235
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ny%2FZPWDuHxN%2B6ATuTafSV1dmShQSLvZk2ppHOxyXfGMNV9GRynKC47liysXqeBWcltIBxYEk59rw62oE0mBuMsm6Yg949mUmfUAVzOeeYhKSEhR1D78ZwXEaPHz2ysQ988JPWj6fuAWwYhL4rZlk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c6fcfad240b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.gstatic.com/firebasejs/10.3.1/firebase-messaging-compat.js | 142.250.74.163 | | 9.9 kB |
URL www.gstatic.com/firebasejs/10.3.1/firebase-messaging-compat.js IP142.250.74.163:0
File typeJavaScript source, ASCII text, with very long lines (38231) Hash0541b823dfaf39162ef84cf075c9951b e0934726455558cc1a59823efada9651e33aafaa 21f1d62f222007068c793f0947d98f4ccb7c1595adb68efeb783390fdd8b5522
GET /firebasejs/10.3.1/firebase-messaging-compat.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ha.check-tl-ver-94-1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 9934
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 May 2024 02:03:17 GMT
expires: Sat, 10 May 2025 02:03:17 GMT
cache-control: public, max-age=31536000
age: 63808
last-modified: Thu, 31 Aug 2023 15:20:50 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| glugherg.net/sftouch?userId=0080582895fc46bbeb3c9fbd6a414e7d&z=6662145&p_rid=dfd0df1d-4d35-4ee8-b843-c85b0eec3f28&p_src=sf&branchId=0&rb=nHa_9m7YbyGcAjVFHAwHfeRbWlm72m8_wE0BdPX356c6Es_wgsUutJxYO6u_7Vky7LTdgzsOPqxKfdMr-PIBr0t9r6omrlrRAV5So-_UNZXLEW5xg9tWXwtNQ5J5NO2Z73t25f7pLW947mA_G1oSe6uhY12RJXZ9IuBxeXTvkiLYE2YiReAGcgAk5bh-jMNBBo3yfyGeJ9yM9D0IAQpJqEXOaF7Fa0J-y5wCKExFnvc= | 139.45.197.237 | | 2 B |
URL glugherg.net/sftouch?userId=0080582895fc46bbeb3c9fbd6a414e7d&z=6662145&p_rid=dfd0df1d-4d35-4ee8-b843-c85b0eec3f28&p_src=sf&branchId=0&rb=nHa_9m7YbyGcAjVFHAwHfeRbWlm72m8_wE0BdPX356c6Es_wgsUutJxYO6u_7Vky7LTdgzsOPqxKfdMr-PIBr0t9r6omrlrRAV5So-_UNZXLEW5xg9tWXwtNQ5J5NO2Z73t25f7pLW947mA_G1oSe6uhY12RJXZ9IuBxeXTvkiLYE2YiReAGcgAk5bh-jMNBBo3yfyGeJ9yM9D0IAQpJqEXOaF7Fa0J-y5wCKExFnvc= IP139.45.197.237:0
File typeASCII text, with no line terminators Hash444bcb3a3fcf8389296c49467f27e1d6 7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /sftouch?userId=0080582895fc46bbeb3c9fbd6a414e7d&z=6662145&p_rid=dfd0df1d-4d35-4ee8-b843-c85b0eec3f28&p_src=sf&branchId=0&rb=nHa_9m7YbyGcAjVFHAwHfeRbWlm72m8_wE0BdPX356c6Es_wgsUutJxYO6u_7Vky7LTdgzsOPqxKfdMr-PIBr0t9r6omrlrRAV5So-_UNZXLEW5xg9tWXwtNQ5J5NO2Z73t25f7pLW947mA_G1oSe6uhY12RJXZ9IuBxeXTvkiLYE2YiReAGcgAk5bh-jMNBBo3yfyGeJ9yM9D0IAQpJqEXOaF7Fa0J-y5wCKExFnvc= HTTP/1.1
Host: glugherg.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glugherg.net
DNT: 1
Connection: keep-alive
Referer: https://glugherg.net/4/6662145
Cookie: OAID=0080582895fc46bbeb3c9fbd6a414e7d; oaidts=1715370405
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 19:46:45 GMT
content-type: text/plain
content-length: 2
x-trace-id: 400312fa5add90a8812f5eaf8ff5ab23
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://glugherg.net
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| my.rtmark.net/img.gif?f=merge&userId=0080582895fc46bbeb3c9fbd6a414e7d&z=6662145&p_rid=dfd0df1d-4d35-4ee8-b843-c85b0eec3f28&p_src=sf | 139.45.195.8 | | 43 B |
URL my.rtmark.net/img.gif?f=merge&userId=0080582895fc46bbeb3c9fbd6a414e7d&z=6662145&p_rid=dfd0df1d-4d35-4ee8-b843-c85b0eec3f28&p_src=sf IP139.45.195.8:0
File typeGIF image data, version 89a, 1 x 1 Hashb4491705564909da7f9eaf749dbbfbb1 279315d507855c6a4351e1e2c2f39dd9cd2fccd8 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /img.gif?f=merge&userId=0080582895fc46bbeb3c9fbd6a414e7d&z=6662145&p_rid=dfd0df1d-4d35-4ee8-b843-c85b0eec3f28&p_src=sf HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glugherg.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 19:46:46 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=0080582895fc46bbeb3c9fbd6a414e7d; expires=Sat, 10 May 2025 19:46:46 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| glugherg.net/favicon.ico | 139.45.197.237 | | 0 B |
IP139.45.197.237:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: glugherg.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glugherg.net/4/6662145
Cookie: OAID=0080582895fc46bbeb3c9fbd6a414e7d; oaidts=1715370405
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Fri, 10 May 2024 19:46:46 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
pragma: public
cache-control: max-age=315360000, public, must-revalidate, proxy-revalidate
X-Firefox-Spdy: h2
|
|
| glugherg.net/?z=6662145&syncedCookie=true&rhd=false | 139.45.197.237 | 302 Found | 0 B |
URL User Request POST HTTP/2glugherg.net/?z=6662145&syncedCookie=true&rhd=false IP139.45.197.237:443
CertificateIssuerLet's Encrypt Subjectglugherg.net Fingerprint32:41:21:37:65:99:C2:A0:C3:78:74:04:E3:8D:18:A9:B6:60:97:57 ValiditySun, 14 Apr 2024 05:10:47 GMT - Sat, 13 Jul 2024 05:10:46 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /?z=6662145&syncedCookie=true&rhd=false HTTP/1.1
Host: glugherg.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 520
Origin: https://glugherg.net
DNT: 1
Connection: keep-alive
Referer: https://glugherg.net/afu.php?zoneid=6662145&var=6662145&rid=XXz4jyvWNyEJSqRKY8d18w%3D%3D&rhd=false&ab2r=0&sf=1
Cookie: OAID=0080582895fc46bbeb3c9fbd6a414e7d; oaidts=1715370405
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Fri, 10 May 2024 19:46:46 GMT
content-length: 0
location: https://track-us.byte-builders.net/pop/imp?auth=ekma1m&c=ic22Hjh8E1Gs1GB9VWRBuKNNo1U1egOvQ8O6PilqxFuUzvy-6LsrEyryyfvEuPBe3YJ_V79lkCXivU-rcbbccGh9vNeBCfUu3gLFjo0PGgBw5U54rGTszgsVR442diol-8tTQTJkuWPpopNExxIcgpFgu0kdEhwOYDPOQyo4DvyDiAeJfWzgn7VXyHG_7VN-2RFYd0bCJucE1axjLVlDh3k1A6xmD1e2Wvf4_ESqjiklxi9cimpyZre1Kmg6oW_FBd1WCO1pLphYtVfwc62DGU-YuC63Arg0hRMaUPjKnG7PXPJ5od0SOw-Btf2q39DWwBPJrJHvkvk8d-1Q5IwORUnRmsgkVARKNFAIykckL8xSjJH7ZBGnd8jVdL07jgPnGywKSsLOYBnDpu3-dXpIznFYqy19qAIt6gitw5g8MrzBo6pBMMEMaFNgatBlmu5DJ7DZdAwb1nyMcHRd0lBiHfXXXFiNbPKa7YzBk9USF90WQLh4DYcRXE1eWzwC7boFbZTeN4jIEK5nmVkHDkLSqUg-rkORSaPc0_e56JzcdQOAWIhvpkx1OmucKI1mFLIY9dkNu8Acx5tlMhwSn_p5F6pXbAdkfxMvQgJMSZO7bZr9T5PnHaO2mSgSfUtvnvJmMYmf8g
x-trace-id: 8aa9e4ca05204e340676a9657a438976
link: <https://track-us.byte-builders.net>; rel="preconnect dns-prefetch",<https://yonmewon.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
referrer-policy: no-referrer
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://glugherg.net
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=0080582895fc46bbeb3c9fbd6a414e7d; expires=Sat, 10 May 2025 19:46:46 GMT; path=/; secure; SameSite=None
oaidts=1715370405; expires=Sat, 10 May 2025 19:46:46 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Fri, 17 May 2024 19:46:46 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| track-us.byte-builders.net/pop/imp?auth=ekma1m&c=ic22Hjh8E1Gs1GB9VWRBuKNNo1U1egOvQ8O6PilqxFuUzvy-6LsrEyryyfvEuPBe3YJ_V79lkCXivU-rcbbccGh9vNeBCfUu3gLFjo0PGgBw5U54rGTszgsVR442diol-8tTQTJkuWPpopNExxIcgpFgu0kdEhwOYDPOQyo4DvyDiAeJfWzgn7VXyHG_7VN-2RFYd0bCJucE1axjLVlDh3k1A6xmD1e2Wvf4_ESqjiklxi9cimpyZre1Kmg6oW_FBd1WCO1pLphYtVfwc62DGU-YuC63Arg0hRMaUPjKnG7PXPJ5od0SOw-Btf2q39DWwBPJrJHvkvk8d-1Q5IwORUnRmsgkVARKNFAIykckL8xSjJH7ZBGnd8jVdL07jgPnGywKSsLOYBnDpu3-dXpIznFYqy19qAIt6gitw5g8MrzBo6pBMMEMaFNgatBlmu5DJ7DZdAwb1nyMcHRd0lBiHfXXXFiNbPKa7YzBk9USF90WQLh4DYcRXE1eWzwC7boFbZTeN4jIEK5nmVkHDkLSqUg-rkORSaPc0_e56JzcdQOAWIhvpkx1OmucKI1mFLIY9dkNu8Acx5tlMhwSn_p5F6pXbAdkfxMvQgJMSZO7bZr9T5PnHaO2mSgSfUtvnvJmMYmf8g | 88.214.195.96 | 302 Found | 0 B |
URL User Request GET HTTP/1.1track-us.byte-builders.net/pop/imp?auth=ekma1m&c=ic22Hjh8E1Gs1GB9VWRBuKNNo1U1egOvQ8O6PilqxFuUzvy-6LsrEyryyfvEuPBe3YJ_V79lkCXivU-rcbbccGh9vNeBCfUu3gLFjo0PGgBw5U54rGTszgsVR442diol-8tTQTJkuWPpopNExxIcgpFgu0kdEhwOYDPOQyo4DvyDiAeJfWzgn7VXyHG_7VN-2RFYd0bCJucE1axjLVlDh3k1A6xmD1e2Wvf4_ESqjiklxi9cimpyZre1Kmg6oW_FBd1WCO1pLphYtVfwc62DGU-YuC63Arg0hRMaUPjKnG7PXPJ5od0SOw-Btf2q39DWwBPJrJHvkvk8d-1Q5IwORUnRmsgkVARKNFAIykckL8xSjJH7ZBGnd8jVdL07jgPnGywKSsLOYBnDpu3-dXpIznFYqy19qAIt6gitw5g8MrzBo6pBMMEMaFNgatBlmu5DJ7DZdAwb1nyMcHRd0lBiHfXXXFiNbPKa7YzBk9USF90WQLh4DYcRXE1eWzwC7boFbZTeN4jIEK5nmVkHDkLSqUg-rkORSaPc0_e56JzcdQOAWIhvpkx1OmucKI1mFLIY9dkNu8Acx5tlMhwSn_p5F6pXbAdkfxMvQgJMSZO7bZr9T5PnHaO2mSgSfUtvnvJmMYmf8g IP88.214.195.96:443
CertificateIssuerGlobalSign nv-sa Subject*.byte-builders.net Fingerprint6F:B4:9C:42:54:FC:D7:2A:62:1E:E5:FB:CD:C9:09:F7:FA:EE:2B:90 ValidityFri, 17 Nov 2023 08:37:05 GMT - Tue, 17 Dec 2024 12:20:06 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pop/imp?auth=ekma1m&c=ic22Hjh8E1Gs1GB9VWRBuKNNo1U1egOvQ8O6PilqxFuUzvy-6LsrEyryyfvEuPBe3YJ_V79lkCXivU-rcbbccGh9vNeBCfUu3gLFjo0PGgBw5U54rGTszgsVR442diol-8tTQTJkuWPpopNExxIcgpFgu0kdEhwOYDPOQyo4DvyDiAeJfWzgn7VXyHG_7VN-2RFYd0bCJucE1axjLVlDh3k1A6xmD1e2Wvf4_ESqjiklxi9cimpyZre1Kmg6oW_FBd1WCO1pLphYtVfwc62DGU-YuC63Arg0hRMaUPjKnG7PXPJ5od0SOw-Btf2q39DWwBPJrJHvkvk8d-1Q5IwORUnRmsgkVARKNFAIykckL8xSjJH7ZBGnd8jVdL07jgPnGywKSsLOYBnDpu3-dXpIznFYqy19qAIt6gitw5g8MrzBo6pBMMEMaFNgatBlmu5DJ7DZdAwb1nyMcHRd0lBiHfXXXFiNbPKa7YzBk9USF90WQLh4DYcRXE1eWzwC7boFbZTeN4jIEK5nmVkHDkLSqUg-rkORSaPc0_e56JzcdQOAWIhvpkx1OmucKI1mFLIY9dkNu8Acx5tlMhwSn_p5F6pXbAdkfxMvQgJMSZO7bZr9T5PnHaO2mSgSfUtvnvJmMYmf8g HTTP/1.1
Host: track-us.byte-builders.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.14.0 (Ubuntu)
Date: Fri, 10 May 2024 19:46:46 GMT
Content-Length: 0
Connection: keep-alive
Location: https://fairspin-h.click/67828/1389?l=3863¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03&utm_medium=67828&utm_source=55&utm_term=6662145&utm_content=54175¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w
|
|
| fairspin-h.click/67828/1389?l=3863¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03&utm_medium=67828&utm_source=55&utm_term=6662145&utm_content=54175¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w | 3.69.185.50 | 302 Found | 1.6 kB |
URL User Request GET HTTP/1.1fairspin-h.click/67828/1389?l=3863¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03&utm_medium=67828&utm_source=55&utm_term=6662145&utm_content=54175¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w IP3.69.185.50:443
CertificateIssuerLet's Encrypt Subjectfairspin-h.click Fingerprint04:DA:BE:F5:43:6C:0F:8E:25:E1:F8:C6:31:34:C3:8B:E6:77:06:15 ValidityMon, 15 Apr 2024 08:59:42 GMT - Sun, 14 Jul 2024 08:59:41 GMT
File typeHTML document, ASCII text, with very long lines (711) Hash8803b6bc20125c77c78b49334c168c4e 372b4f3bd340c6e74bf55fb76542b9f2e6b2c384 f5d2ffb5c3c6e85cb638c5aea40dd6eefb5ade852f24a7048789fffd46e38816
GET /67828/1389?l=3863¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03&utm_medium=67828&utm_source=55&utm_term=6662145&utm_content=54175¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w HTTP/1.1
Host: fairspin-h.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Date: Fri, 10 May 2024 19:46:47 GMT
Location: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Set-Cookie: 2b30eb962003529aa1d435285d39b1c0=MTgzNTA5OTg1; path=/; secure; httponly; samesite=lax
|
|
| ocsp.r2m03.amazontrust.com/ | 143.204.53.97 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP143.204.53.97:0
Hash1848831acba0056ae19774a258f4b0da fae2e9a4a020d08ac82c5149b5d4f7d405631c7d bf5224849baaaaa9b15d14bf9cfe07b9291291c5406d8cb4bd7b7d1469f05127
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Fri, 10 May 2024 19:46:47 GMT
Last-Modified: Fri, 10 May 2024 18:26:52 GMT
Server: ECAcc (ska/F73A)
X-Cache: Miss from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: BN0Ux3VjZ8wUXMkMGJ_fuvbdjUFJhIbYc7jiaVu4vH4mBzbpNAT0gQ==
Age: 4796
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/logo/logo_4.svg | 18.153.231.205 | 200 OK | 794 B |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/logo/logo_4.svg IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hashad8d92a0eb34e4f0a2c2c9c470b81718 765742be6ebed2106ab8fc18b7db65628ac33be9 b7d1e1f0ae0e827e73a6e43af5801b55efff7e62d1e203467ba853b36f5fe4c0
GET /uploads/landings/3-screens-slot-6514839815026/img/logo/logo_4.svg HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:48 GMT
content-type: image/svg+xml
content-length: 794
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: "65e6d7f4-31a"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/logo/logo_9.svg | 18.153.231.205 | 200 OK | 865 B |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/logo/logo_9.svg IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hashd6d0f0026d24d4454b39a1028a5652ca f6f70fe137ee19c208b0e181480a816a969c4e09 e9061faf3079385ea77b43f93511c7dc7797b3841a61a847edecd0033627f698
GET /uploads/landings/3-screens-slot-6514839815026/img/logo/logo_9.svg HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:48 GMT
content-type: image/svg+xml
content-length: 865
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: "65e6d7f4-361"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/logo.svg | 18.153.231.205 | 200 OK | 8.9 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/logo.svg IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typegzip compressed data, from Unix Hash8d07219c6759f644e56b16b8ecb22667 6b3c2ff660cc438a28767989296b453d88900799 80fb26db77e2a3eb213fd713fbf613c2ff8fb09c34ac736cb0b4e475fc317e68
GET /uploads/landings/3-screens-slot-6514839815026/img/logo.svg HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:47 GMT
content-type: image/svg+xml
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-1bef"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/slots/game_1.jpg | 18.153.231.205 | 200 OK | 20 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/slots/game_1.jpg IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typegzip compressed data, from Unix Hashc990ec2ec14889a78fd4f4e7269ad066 a9c37c0c90e660b1040feaeeaf29a8d244837aae 6b1afe4e649867cd6d03ce2f3f576b88c7b03caf796af5bfbfed2d5411be85fb
GET /uploads/landings/3-screens-slot-6514839815026/img/slots/game_1.jpg HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:47 GMT
content-type: image/jpeg
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-4bd5"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/slots/game_6.png | 18.153.231.205 | 200 OK | 22 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/slots/game_6.png IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typegzip compressed data, from Unix Hashd9169f60c18df84fb2e3e2103763fdd7 2557e66468e445cf06fdf9e03333fedd80f2536b 20e9967c50003ae60bc5ffb3cf492fe7551889f4da6f2e5199f57d73bcb32464
GET /uploads/landings/3-screens-slot-6514839815026/img/slots/game_6.png HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:47 GMT
content-type: image/png
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-51b9"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/slots/game_2.jpg | 18.153.231.205 | 200 OK | 115 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/slots/game_2.jpg IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typegzip compressed data, from Unix Size115 kB (115199 bytes) Hashbf4c7f750504d8e5798e76bc23bdf7cc 7d6b856ab32d00b4ddd56a6efcf8bdf4301b7a88 d3bfffcfb53affaed86fe31c9f681f259447afbadedf8c49fdd3ef5b9e9c7c89
GET /uploads/landings/3-screens-slot-6514839815026/img/slots/game_2.jpg HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:47 GMT
content-type: image/jpeg
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-59ec"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/logo/logo_2.svg | 18.153.231.205 | 200 OK | 93 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/logo/logo_2.svg IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typegzip compressed data, from Unix Hash227c396f3c59fb379fc04871d56e3f72 d423fff44c3b49e9c0973fa51be1718f58a29eaf bb802617de9e76e5544db5109ee21e0774009017a16682e8335c8448264a2ac4
GET /uploads/landings/3-screens-slot-6514839815026/img/logo/logo_2.svg HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:48 GMT
content-type: image/svg+xml
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-6c6"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/slots/game_3.jpg | 18.153.231.205 | 200 OK | 110 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/slots/game_3.jpg IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typegzip compressed data, from Unix Size110 kB (109610 bytes) Hash3c4c6816f76e7f9d6d556aa251a85131 fb44999719d0cc4f76c10ce540f7b1b140f7a365 b66983f727375eb309fbf2e632954da27215323bb8697efa106be8638ab92b72
GET /uploads/landings/3-screens-slot-6514839815026/img/slots/game_3.jpg HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:47 GMT
content-type: image/jpeg
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-452b"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/logo/logo_7.svg | 18.153.231.205 | 200 OK | 109 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/logo/logo_7.svg IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typegzip compressed data, from Unix Size109 kB (108761 bytes) Hashdf0750eee0eae17ab3f067a5cc4e3038 3b22d33c0c2e67d133478e4d3899ff48bd1a8109 9d06ab1b2c83dd16c70914ec97d69399e8f6cd53f6a42b76041186eb2332a65e
GET /uploads/landings/3-screens-slot-6514839815026/img/logo/logo_7.svg HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:48 GMT
content-type: image/svg+xml
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-5b84"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/assets/Montserrat-SemiBold-fb6ce0e0.woff2 | 18.153.231.205 | 200 OK | 92 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/assets/Montserrat-SemiBold-fb6ce0e0.woff2 IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 91624, version 1.0 Hash50643fb8630473f52c0daeb083bffba2 545f444e057d636f96ea9843cb19b0c239134283 fb6ce0e09a4d71eafeb589ac8badfbebd816b2bbb009cdc08f3ab72655ab45dd
GET /uploads/landings/3-screens-slot-6514839815026/assets/Montserrat-SemiBold-fb6ce0e0.woff2 HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/assets/index-1b41d556.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:48 GMT
content-type: font/woff2
content-length: 91624
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: "65e6d7f4-165e8"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/slots/jane.png?v=1 | 18.153.231.205 | 200 OK | 182 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/slots/jane.png?v=1 IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typegzip compressed data, from Unix Size182 kB (182438 bytes) Hashbedd95a10cfa821d957cc7056e787a6a d509cf09c705ce809f42e6fd8c8bd958e011b3ef 4f18f2af032f176d414d57d4d69de51e311003cdb64922c36158186e3bc1ce07
GET /uploads/landings/3-screens-slot-6514839815026/img/slots/jane.png?v=1 HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:47 GMT
content-type: image/png
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-1509f"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fairspin.io/api/v1/configuration | 172.66.40.68 | 200 OK | 0 B |
URL GET HTTP/2fairspin.io/api/v1/configuration IP172.66.40.68:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerCloudflare, Inc. Subjectfairspin.io Fingerprint42:70:33:D5:87:B0:D6:44:11:86:E3:56:64:8B:E2:C7:11:37:26:0F ValidityMon, 26 Jun 2023 00:00:00 GMT - Tue, 25 Jun 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/configuration HTTP/1.1
Host: fairspin.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://smarttds.cloud/
Origin: https://smarttds.cloud
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:48 GMT
content-length: 0
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 1800
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=d7_qKjDWxGIqJdeMoOgmhql5zNcfa0CRv0vznQ0Dk2Q-1715370408-1.0.1.1-4RXIniqmO91Efk9Dl_3pGt8x505sjHPydGJcKpGN6jeBn00ga7wBHSiRcA.tWj7npNsJivMQzfsLtPBLduOJpQ; path=/; expires=Fri, 10-May-24 20:16:48 GMT; domain=.fairspin.io; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 881c6ffc897b7127-OSL
X-Firefox-Spdy: h2
|
|
| fa.check-tl-ver-294-2.com/shared-js/assets/static-pl.js?v=2 | 172.67.176.7 | | 93 kB |
URL fa.check-tl-ver-294-2.com/shared-js/assets/static-pl.js?v=2 IP172.67.176.7:0
File typeJavaScript source, ASCII text, with CRLF line terminators Hash7224243dd0b18bb2508a1d77d4b2a0b2 bd833c24aa241861316053fd8bd46a1bef3d343f 920aa94a10634fc23234b5e4f55c428f6311fc7811d3591792381678cb492659
GET /shared-js/assets/static-pl.js?v=2 HTTP/1.1
Host: fa.check-tl-ver-294-2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fa.check-tl-ver-294-2.com/space-robot/?pl=4l9EZwXc2kSH_LKKjogwWA&sm=space-robot&click_id=46a54us16cib4tl5c0&sub_id=15092080&nrid=e225833364fd4ec19c4787b8df8d2df5&hash=3A-me1HHx2M5iZCaQb_06Q&exp=1715370700
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 19:46:41 GMT
content-type: application/javascript
last-modified: Tue, 23 Apr 2024 14:44:40 GMT
etag: W/"6627c958-dee"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1607
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OVhxm%2FOxduuTLySifxkbjrHtc0QS6%2FXmoyZRu6MKnehRtRpfZqja%2FWd92ENtR9o3mAJ%2B4QjuYICqIWcXy4mmurA%2BdaS959Dc6F0dwogEhgHXS%2B8HYf6pARSO1dQ54hOWc2lNPuJFZMYtThNI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c6fd2aa02712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.google.com/recaptcha/api.js?onload=vueRecaptchaApiLoaded&render=explicit&hl= | 142.250.74.164 | 200 OK | 1.1 kB |
URL GET HTTP/2www.google.com/recaptcha/api.js?onload=vueRecaptchaApiLoaded&render=explicit&hl= IP142.250.74.164:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintC6:A2:DC:31:5A:53:FA:DD:55:71:A3:F4:DD:43:3D:16:71:B8:B3:99 ValidityTue, 16 Apr 2024 04:20:32 GMT - Tue, 09 Jul 2024 04:20:31 GMT
Hash5455b36a32e009de878fedcceb8050a4 e7ba1727d61c532e7f0658be337b78f42e6876af 5ce48901f81da5ca7b37eae496cf48066dae5c59b1bbe8278a41450657cf4fb2
GET /recaptcha/api.js?onload=vueRecaptchaApiLoaded&render=explicit&hl= HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Fri, 10 May 2024 19:46:48 GMT
date: Fri, 10 May 2024 19:46:48 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/slots/game_5.jpg | 18.153.231.205 | 200 OK | 22 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/slots/game_5.jpg IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typegzip compressed data, from Unix Hashff442befd80af619910f4976ae2fa7e9 e55a36476aa50439013f117095480b14b4d18caa c04b829ca7f0784f24b6ac4e727746acb021d024628eb8fe7ed86b619ce77175
GET /uploads/landings/3-screens-slot-6514839815026/img/slots/game_5.jpg HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:47 GMT
content-type: image/jpeg
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-5245"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js | 142.250.74.35 | 200 OK | 204 kB |
URL GET HTTP/2www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js IP142.250.74.35:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeJavaScript source, ASCII text, with very long lines (632) Size204 kB (204445 bytes) Hashadd520996e437bff5d081315da187fbf 2e489fe16f3712bf36df00b03a8a5af8fa8d4b42 922b951591d52d44aa7015ebc95cab08192aa435b64f9016673ac5da1124a8b4
GET /recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://smarttds.cloud
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 204445
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 16:12:34 GMT
expires: Tue, 06 May 2025 16:12:34 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 05 May 2024 20:00:16 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 358455
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/styles__ltr.css | 142.250.74.35 | 200 OK | 25 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/styles__ltr.css IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=vjbW55W42X033PfTdVf6Ft4q&k=6LfW3hgoAAAAAHj6u5ZT8A10DhcTJ9bqQaheVZII CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeASCII text, with very long lines (56412), with no line terminators Hash2c00b9f417b688224937053cd0c284a5 17b4c18ebc129055dd25f214c3f11e03e9df2d82 1e754b107428162c65a26d399b66db3daaea09616bf8620d9de4bc689ce48eed
GET /recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24617
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 19:34:32 GMT
expires: Tue, 06 May 2025 19:34:32 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 05 May 2024 20:00:16 GMT
content-type: text/css
vary: Accept-Encoding
age: 346337
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js | 142.250.74.35 | 200 OK | 204 kB |
URL GET HTTP/2www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js IP142.250.74.35:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeJavaScript source, ASCII text, with very long lines (632) Size204 kB (204445 bytes) Hashadd520996e437bff5d081315da187fbf 2e489fe16f3712bf36df00b03a8a5af8fa8d4b42 922b951591d52d44aa7015ebc95cab08192aa435b64f9016673ac5da1124a8b4
GET /recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 204445
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 16:12:34 GMT
expires: Tue, 06 May 2025 16:12:34 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 05 May 2024 20:00:16 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 358455
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fa.check-tl-ver-294-2.com/space-robot/assets/trls.js | 172.67.176.7 | | 65 kB |
URL fa.check-tl-ver-294-2.com/space-robot/assets/trls.js IP172.67.176.7:0
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (357), with CRLF line terminators Hash7f5c725b2c23b9687fa08d162a17427a 94973f1227871750d2ef13a367ce691f1a062527 c9611ce748d6c7c99d3f374a0b687db2e2428fc5ec9c4e7ae71b2e4305ac60e3
GET /space-robot/assets/trls.js HTTP/1.1
Host: fa.check-tl-ver-294-2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fa.check-tl-ver-294-2.com/space-robot/?pl=4l9EZwXc2kSH_LKKjogwWA&sm=space-robot&click_id=46a54us16cib4tl5c0&sub_id=15092080&nrid=e225833364fd4ec19c4787b8df8d2df5&hash=3A-me1HHx2M5iZCaQb_06Q&exp=1715370700
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 19:46:41 GMT
content-type: application/javascript
last-modified: Tue, 23 Apr 2024 14:44:40 GMT
etag: W/"6627c958-2f4d"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RlYQKILN1GIKOWZRdbrJhkV1%2FeLG8jUTQQJKgTGAf6cBuosoCPyVl6IT3E%2Br%2BmWyDFRW33VAIWN3TDuvkk40wHR2XFpqBiRqlumJcK9GlxY3IkjvwGIFS4JXzCddEcrL2FpB7HOYVfZdALCP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c6fd299e0712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.google.com/recaptcha/api2/webworker.js?hl=en&v=vjbW55W42X033PfTdVf6Ft4q | 142.250.74.164 | 200 OK | 2.3 kB |
URL GET HTTP/3www.google.com/recaptcha/api2/webworker.js?hl=en&v=vjbW55W42X033PfTdVf6Ft4q IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfW3hgoAAAAAHj6u5ZT8A10DhcTJ9bqQaheVZII&co=aHR0cHM6Ly9zbWFydHRkcy5jbG91ZDo0NDM.&hl=en&v=vjbW55W42X033PfTdVf6Ft4q&size=normal&cb=isy87dd8a56e CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
Hashc6706c47fb76abfef475b22947d327c1 fb80906ec3634f828b62d6545ad9bd62fb937ac4 bb43b0c7e62a11decbc66d012ab27a3dbb95aac8266fd51637d84d7355197ea8
GET /recaptcha/api2/webworker.js?hl=en&v=vjbW55W42X033PfTdVf6Ft4q HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfW3hgoAAAAAHj6u5ZT8A10DhcTJ9bqQaheVZII&co=aHR0cHM6Ly9zbWFydHRkcy5jbG91ZDo0NDM.&hl=en&v=vjbW55W42X033PfTdVf6Ft4q&size=normal&cb=isy87dd8a56e
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Fri, 10 May 2024 19:46:49 GMT
date: Fri, 10 May 2024 19:46:49 GMT
cache-control: private, max-age=300
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fa.check-tl-ver-294-2.com/space-robot/assets/main.js?v=3 | 172.67.176.7 | | 206 kB |
URL fa.check-tl-ver-294-2.com/space-robot/assets/main.js?v=3 IP172.67.176.7:0
File typeJavaScript source, ASCII text, with very long lines (2745) Size206 kB (205471 bytes) Hash01c51ed0a287b5ddf6793778cfa3a72c ebd2613cd806b8e080f556b0d254c0f7a6c738a9 4c0224d810d4f0ac617ddd4ab215e0084aeec230d8944780a129c0046de2dad5
GET /space-robot/assets/main.js?v=3 HTTP/1.1
Host: fa.check-tl-ver-294-2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fa.check-tl-ver-294-2.com/space-robot/?pl=4l9EZwXc2kSH_LKKjogwWA&sm=space-robot&click_id=46a54us16cib4tl5c0&sub_id=15092080&nrid=e225833364fd4ec19c4787b8df8d2df5&hash=3A-me1HHx2M5iZCaQb_06Q&exp=1715370700
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 19:46:41 GMT
content-type: application/javascript
last-modified: Tue, 23 Apr 2024 14:44:40 GMT
etag: W/"6627c958-1255"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C4nGAlAUakBB%2BLYGaJoU0HHYRO6SfyRsOZAbdEnXlBp5MYRe2fqXBQjs7QABxWK3o6%2F8hw%2BkZ0lVv72xX15Bz1RJBKk%2FXS8bCxBMiS5kUJvowLcUNWB3nsCuRMMcwdofVjG7Miefc2btMw3X"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c6fd299f4712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.google.com/js/bg/EghGp72f3L_y9HVk4Nn8Vk_BAMWB9fGIEzP3DzvQDW8.js | 142.250.74.164 | 200 OK | 7.4 kB |
URL GET HTTP/3www.google.com/js/bg/EghGp72f3L_y9HVk4Nn8Vk_BAMWB9fGIEzP3DzvQDW8.js IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfW3hgoAAAAAHj6u5ZT8A10DhcTJ9bqQaheVZII&co=aHR0cHM6Ly9zbWFydHRkcy5jbG91ZDo0NDM.&hl=en&v=vjbW55W42X033PfTdVf6Ft4q&size=normal&cb=isy87dd8a56e CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File typeJavaScript source, ASCII text, with very long lines (17542) Hash7c111ad0cbb18935696bc8bb0846ec26 a9c77f0678ff71a4032e787999ada733e7da10cf 120846a7bd9fdcbff2f47564e0d9fc564fc100c581f5f1881333f70f3bd00d6f
GET /js/bg/EghGp72f3L_y9HVk4Nn8Vk_BAMWB9fGIEzP3DzvQDW8.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfW3hgoAAAAAHj6u5ZT8A10DhcTJ9bqQaheVZII&co=aHR0cHM6Ly9zbWFydHRkcy5jbG91ZDo0NDM.&hl=en&v=vjbW55W42X033PfTdVf6Ft4q&size=normal&cb=isy87dd8a56e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 7438
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 May 2024 01:06:37 GMT
expires: Sat, 10 May 2025 01:06:37 GMT
cache-control: public, max-age=31536000
age: 67212
last-modified: Mon, 29 Apr 2024 11:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/styles__ltr.css | 142.250.74.35 | 200 OK | 25 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/styles__ltr.css IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=vjbW55W42X033PfTdVf6Ft4q&k=6LfW3hgoAAAAAHj6u5ZT8A10DhcTJ9bqQaheVZII CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeASCII text, with very long lines (56412), with no line terminators Hash2c00b9f417b688224937053cd0c284a5 17b4c18ebc129055dd25f214c3f11e03e9df2d82 1e754b107428162c65a26d399b66db3daaea09616bf8620d9de4bc689ce48eed
GET /recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24617
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 19:34:32 GMT
expires: Tue, 06 May 2025 19:34:32 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 05 May 2024 20:00:16 GMT
content-type: text/css
vary: Accept-Encoding
age: 346338
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/top_section/diamond1.png | 18.153.231.205 | 200 OK | 208 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/top_section/diamond1.png IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typePNG image data, 111 x 103, 8-bit colormap, non-interlaced Size208 kB (208340 bytes) Hashba66287c5cf200124352814c13616827 974d81b187131856e7e7f7a7c70c5fe1a7f62c69 9bc07d5186235f7e49864294b8727dad7090ec01db09fef32f12d9a3d3243696
GET /uploads/landings/3-screens-slot-6514839815026/img/top_section/diamond1.png HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:47 GMT
content-type: image/png
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-f20"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/vantages/cashback.png | 18.153.231.205 | 200 OK | 15 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/vantages/cashback.png IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typegzip compressed data, from Unix Hashaee4e857ed396005950348a7124685f4 4e203a7d21fe3e55714d75c57d4596a83d6c5199 10b672e7c978156f1411d542841d34c5721dd56d1011a73619eeb3c539bf9a5a
GET /uploads/landings/3-screens-slot-6514839815026/img/vantages/cashback.png HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:47 GMT
content-type: image/png
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-ed6"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/slots/diamond.png | 18.153.231.205 | 200 OK | 3.8 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/slots/diamond.png IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typePNG image data, 119 x 118, 8-bit colormap, non-interlaced Hashea3fc024d179ea7eaf88fce2a5502c89 00fbeaf0ec12b2e42c9c9d4f1b0e54465165c7e3 204d88bc3e61f246fc372291d7320de0e8c6fdce24669b87e25f55285cb262e3
GET /uploads/landings/3-screens-slot-6514839815026/img/slots/diamond.png HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:47 GMT
content-type: image/png
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-ecf"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/form_section/diamond_2.png | 18.153.231.205 | 200 OK | 5.0 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/form_section/diamond_2.png IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typePNG image data, 110 x 107, 8-bit colormap, non-interlaced Hash88b5349793df14c948239d3ffcbb8201 e1d3de4b0342e5ecfd3359caeba57c49291e025a f4e484610f3e1886cf26a3d2fe78993b035c10359947b5b3d6f35955c7cb3c14
GET /uploads/landings/3-screens-slot-6514839815026/img/form_section/diamond_2.png HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:48 GMT
content-type: image/png
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-1383"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/top_section/coin1.png | 18.153.231.205 | 200 OK | 5.7 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/top_section/coin1.png IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typePNG image data, 176 x 192, 8-bit colormap, non-interlaced Hash09d296ce7c398d7685cd6aa1521ddefd 52adf6251d355269faff16db7a4ab8bb93327289 8b2ddf3eff4ff693e696da60fed3a394f743c9cc4bb307c04e19b1ff2f453c62
GET /uploads/landings/3-screens-slot-6514839815026/img/top_section/coin1.png HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:47 GMT
content-type: image/png
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-1612"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/form_section/coin.png | 18.153.231.205 | 200 OK | 6.1 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/form_section/coin.png IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typePNG image data, 170 x 171, 8-bit colormap, non-interlaced Hasha6e15dea1c5be2833593f5da05a97e3b c27d21f7e3d69357fc8dabed08c7fb910a0569c7 8cbe2e8106a6f4ca40cab113fa3de62b99abf96c438dcaaa5fcc5a37334c2cd2
GET /uploads/landings/3-screens-slot-6514839815026/img/form_section/coin.png HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:48 GMT
content-type: image/png
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-17a6"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/form_section/diamond_3.png | 18.153.231.205 | 200 OK | 3.4 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/form_section/diamond_3.png IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typePNG image data, 109 x 113, 8-bit colormap, non-interlaced Hash616ac30debb9a8c17eda19542ca63bd7 6dfa83877ec272c848ade1fd52871b4e42c9e3a6 1b436f0a9304b56cb592c068450075e3cc1c3bc45147fccf91ee90bf8e8f3eaa
GET /uploads/landings/3-screens-slot-6514839815026/img/form_section/diamond_3.png HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:48 GMT
content-type: image/png
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-d59"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/favicon.png | 18.153.231.205 | 200 OK | 1.6 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/favicon.png IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typePNG image data, 32 x 32, 8-bit colormap, non-interlaced Hash7d66baf1cac9bb3a2ed2165ae440d3c4 bdbda3e89b2d0c58a1caaeff0f596ade33592783 6258f944f3ed18a6fd9a98fca784deff65e3585802830df1a90f94f0066e8d81
GET /uploads/landings/3-screens-slot-6514839815026/favicon.png HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:47 GMT
content-type: image/png
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-61e"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/vantages/games.svg | 18.153.231.205 | 200 OK | 789 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/vantages/games.svg IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Size789 kB (788814 bytes) Hash1739ca77d13c9db44ad51acd619397a0 dc2c90ba0989e7ff471aedaaa409214495b69aa6 15aa9100d359a8e3507f7934bfc96701274211e3b304399528454cf27f83f518
GET /uploads/landings/3-screens-slot-6514839815026/img/vantages/games.svg HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:47 GMT
content-type: image/svg+xml
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-c094e"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/logo/logo_10.svg | 18.153.231.205 | 200 OK | 1.2 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/logo/logo_10.svg IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hashe5111a7e5d8adb005449942c48cfc9f2 b54f7c86fa89ff50c5542e55944145bf499652c4 7884a2feddeda9a64292d7887d0add605736f4fad42e7583ab676a7579310e13
GET /uploads/landings/3-screens-slot-6514839815026/img/logo/logo_10.svg HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:48 GMT
content-type: image/svg+xml
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-4a1"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/assets/Inter-ExtraBold-5e083152.woff2 | 18.153.231.205 | 200 OK | 100 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/assets/Inter-ExtraBold-5e083152.woff2 IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 100088, version 1.0 Size100 kB (100088 bytes) Hash4600d64ad5006f3a506fdffd38c14f94 6d909e8d5bc2e842a5048f6b0627f0e31720171b 5e0831528b5cafdbd1d72797594650031d8ef86ec62bd9c3ce5163103850f822
GET /uploads/landings/3-screens-slot-6514839815026/assets/Inter-ExtraBold-5e083152.woff2 HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/assets/index-1b41d556.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:48 GMT
content-type: font/woff2
content-length: 100088
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:39 GMT
etag: "65e6d7f3-186f8"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/assets/index-1b41d556.css | 18.153.231.205 | 200 OK | 147 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/assets/index-1b41d556.css IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size147 kB (146610 bytes) Hash0d8025863d6d37a924d1efd53d0e2246 883c6d2a16d16818ad07a4b747028e768ca4fb36 1b41d556e0b988a8b5250fa68d0d0a9507872e7724c6cc1afabd442b8e73a7fa
GET /uploads/landings/3-screens-slot-6514839815026/assets/index-1b41d556.css HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:47 GMT
content-type: text/css
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:39 GMT
etag: W/"65e6d7f3-23cb2"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/slots/coin.png | 18.153.231.205 | 200 OK | 4.7 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/slots/coin.png IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typePNG image data, 151 x 164, 8-bit colormap, non-interlaced Hash695d6be78300a2eaab69e7d32a49303d 3352e520e2da57f36ad135acaecd79a39406c931 e773d9d25b08922aafef56ce19687e91fe93780803e705dfeb816d0329d5e385
GET /uploads/landings/3-screens-slot-6514839815026/img/slots/coin.png HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:47 GMT
content-type: image/png
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-1252"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/top_section/bg.jpg | 18.153.231.205 | 200 OK | 82 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/top_section/bg.jpg IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x802, components 3 Hashf9c39a28801e328dfb5ffd95c106ed15 248f924f173bdddc49287a36af2b6a6bac2d2aae 80f254876fc14a021f81da342a776cb271767cf22b59ed8aab08bae4cba76bc6
GET /uploads/landings/3-screens-slot-6514839815026/img/top_section/bg.jpg HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/assets/index-1b41d556.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:48 GMT
content-type: image/jpeg
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-13ef5"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/assets/Montserrat-Regular-4d50f9bd.woff2 | 18.153.231.205 | 200 OK | 92 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/assets/Montserrat-Regular-4d50f9bd.woff2 IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 92140, version 1.0 Hashc9801bdcb4fbe2c27b04cd34056ab9ec 4bbc997943e7308cbe6d72f4df8ae0db7d19b345 4d50f9bd552e81720aa30ec81bf67852785d8bc7104dff5675b458825edeac8f
GET /uploads/landings/3-screens-slot-6514839815026/assets/Montserrat-Regular-4d50f9bd.woff2 HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/assets/index-1b41d556.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:48 GMT
content-type: font/woff2
content-length: 92140
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:39 GMT
etag: "65e6d7f3-167ec"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/assets/common-f4148500.js | 18.153.231.205 | 200 OK | 2.4 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/assets/common-f4148500.js IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typeUnicode text, UTF-8 text, with very long lines (2601), with no line terminators Hashe92c19e1a9cf8ac03eafa6980802cda6 a7a2bc192734c11a56074af49e9e005f912ef514 79ad4d7ab59a40ca8823387857f01fdea49ab95572fd0a962932d054c868b671
GET /uploads/landings/3-screens-slot-6514839815026/assets/common-f4148500.js HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/assets/index-3642a04c.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:47 GMT
content-type: application/javascript
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:39 GMT
etag: W/"65e6d7f3-939"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/form/email.svg | 18.153.231.205 | 200 OK | 631 B |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/form/email.svg IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash876e73db08a9b302ab1a928a57ad70b4 aea7f3c0ee2ae870eb5c205dcac4e1bf3a11b697 d74ca388d080b8a0411ee42f182094ac820b8897db1855ab2d4bf3fb4fbee43e
GET /uploads/landings/3-screens-slot-6514839815026/img/form/email.svg HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:48 GMT
content-type: image/svg+xml
content-length: 631
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: "65e6d7f4-277"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/top_section/main.png?v=1 | 18.153.231.205 | 200 OK | 201 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/top_section/main.png?v=1 IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typePNG image data, 955 x 787, 8-bit colormap, non-interlaced Size201 kB (201152 bytes) Hash8c92305246df62b8411a9d64a472c9f7 0cbc9c3e5dd9bdfdaad88300a29bf86fbe49f5ed dc8127a647f98ebb4046f5186cdc211b353eab1e75e85858951a856dc98b3212
GET /uploads/landings/3-screens-slot-6514839815026/img/top_section/main.png?v=1 HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:47 GMT
content-type: image/png
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-311c0"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/slots/game_4.jpg | 18.153.231.205 | 200 OK | 18 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/slots/game_4.jpg IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 239x149, components 3 Hash0a49c1d6cc088402c5909575da968c18 dea50081f9d9ea3f296b0dd76ad415c537c1faf1 e81645eb4cdb513dfa79663d666e6b0696e43354370ba166a7284bf2672d5b62
GET /uploads/landings/3-screens-slot-6514839815026/img/slots/game_4.jpg HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:47 GMT
content-type: image/jpeg
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-46b7"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/form_section/character_2.png?v=1 | 18.153.231.205 | 200 OK | 128 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/form_section/character_2.png?v=1 IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typePNG image data, 793 x 949, 8-bit colormap, non-interlaced Size128 kB (128477 bytes) Hash2a7b93158eb5fc01f6bcdfd3c19c6871 fdfedf265ecb9941ce3e43bc84d0c2386b2843f6 7643afdf6c46fed4246bcae9804d36a61db1952e49dfe8a9d6d245b2b7700c59
GET /uploads/landings/3-screens-slot-6514839815026/img/form_section/character_2.png?v=1 HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:48 GMT
content-type: image/png
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-1f5dd"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api2/bframe?hl=en&v=vjbW55W42X033PfTdVf6Ft4q&k=6LfW3hgoAAAAAHj6u5ZT8A10DhcTJ9bqQaheVZII | 142.250.74.164 | 200 OK | 7.4 kB |
URL GET HTTP/3www.google.com/recaptcha/api2/bframe?hl=en&v=vjbW55W42X033PfTdVf6Ft4q&k=6LfW3hgoAAAAAHj6u5ZT8A10DhcTJ9bqQaheVZII IP142.250.74.164:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File typeHTML document, ASCII text, with very long lines (7672), with no line terminators Hash62bfc8dc1beeeaec085b61432f9ef3ba 81e005e104ea045f2657a79c782f748a017cf838 b73b2dc5fa1d121a53be5b452bea02070c2633c4583333535f2f00772b7cb851
GET /recaptcha/api2/bframe?hl=en&v=vjbW55W42X033PfTdVf6Ft4q&k=6LfW3hgoAAAAAHj6u5ZT8A10DhcTJ9bqQaheVZII HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 10 May 2024 19:46:50 GMT
content-security-policy: script-src 'nonce-n23Sgu5r2KA0WSgumkv3xw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/logo/logo_3.svg | 18.153.231.205 | 200 OK | 19 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/logo/logo_3.svg IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash3d90e866119c0bec05ffebb7985f726d 53961fce4b14925d4a3d7453442a4f6e0baffab5 a7ac05184decb38f3081ad24b2af983fc5e5bab53260f64ec41119bf016b42dc
GET /uploads/landings/3-screens-slot-6514839815026/img/logo/logo_3.svg HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:48 GMT
content-type: image/svg+xml
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-4af9"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/assets/Montserrat-Light-e21e7ed7.woff2 | 18.153.231.205 | 200 OK | 91 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/assets/Montserrat-Light-e21e7ed7.woff2 IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 91192, version 1.0 Hashc69ceaa160f37024fbf34baedbad692f 25778854e65706ecb021a702d0dcd181fed4646c e21e7ed7d99fb24c423453dd68f626c40b03167a8b8f10baa9683b8558ae7533
GET /uploads/landings/3-screens-slot-6514839815026/assets/Montserrat-Light-e21e7ed7.woff2 HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/assets/index-1b41d556.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:48 GMT
content-type: font/woff2
content-length: 91192
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:39 GMT
etag: "65e6d7f3-16438"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/top_section/coin2.png | 18.153.231.205 | 200 OK | 8.1 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/top_section/coin2.png IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typePNG image data, 220 x 221, 8-bit colormap, non-interlaced Hashcafa0ed216d4ad5263842e133074a603 e6cc0fe7329434a997a2c6911d034c369314ceae cfa4195b463f9d0190be13cd78f770309c8fc0d64406e0b0fcd74b80b0f8a31f
GET /uploads/landings/3-screens-slot-6514839815026/img/top_section/coin2.png HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:47 GMT
content-type: image/png
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-1fa6"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/form_section/ic_3.png | 18.153.231.205 | 200 OK | 1.6 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/form_section/ic_3.png IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typePNG image data, 57 x 58, 8-bit colormap, non-interlaced Hash37fd6b0e1023e40d7e422238b4fec7ca b57f14138a5e8cae1d2be210d8588f264ed7e488 f46f8f3597b98e47aedabffc59d7e9e7a969165c2b9ec44a45dc2cc0162415ec
GET /uploads/landings/3-screens-slot-6514839815026/img/form_section/ic_3.png HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:48 GMT
content-type: image/png
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-63c"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 142.250.74.163 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP142.250.74.163:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfW3hgoAAAAAHj6u5ZT8A10DhcTJ9bqQaheVZII&co=aHR0cHM6Ly9zbWFydHRkcy5jbG91ZDo0NDM.&hl=en&v=vjbW55W42X033PfTdVf6Ft4q&size=normal&cb=isy87dd8a56e CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 05 May 2024 18:37:19 GMT
expires: Mon, 05 May 2025 18:37:19 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 436170
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/form_section/bg.jpg | 18.153.231.205 | 200 OK | 74 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/form_section/bg.jpg IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x814, components 3 Hashb9bb06da66530f1a78d294a840c3961c e7784d6e55374809f6725716c74eaf6e444c60f6 3de8a7353d914da8d7869ed447aa4ef390be835f16cede46f89863d0f2a71607
GET /uploads/landings/3-screens-slot-6514839815026/img/form_section/bg.jpg HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/assets/index-1b41d556.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:48 GMT
content-type: image/jpeg
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-120ed"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/logo/logo_5.svg | 18.153.231.205 | 200 OK | 2.1 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/logo/logo_5.svg IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash1b256539d55c498f024eace3261e16f4 68bbfc3dd89817b6baf98d106353bd6ebb086bb4 27590818b25507d6aebb3fe53ae38abce980d026e1fa38fce39b4387757cb688
GET /uploads/landings/3-screens-slot-6514839815026/img/logo/logo_5.svg HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:48 GMT
content-type: image/svg+xml
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-814"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/logo/logo_8.svg | 18.153.231.205 | 200 OK | 85 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/logo/logo_8.svg IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hashd5ae58a547d8da1489c5128e5a5b64a3 250f5bfd59a258519bcf3a7de828c5205ad17b29 b6f87ac0115dc4744b23d59a8a0a640739e3763c43dbea0f5fd46adb49159d83
GET /uploads/landings/3-screens-slot-6514839815026/img/logo/logo_8.svg HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:48 GMT
content-type: image/svg+xml
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-14db0"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/api2/logo_48.png | 142.250.74.35 | 200 OK | 2.2 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/api2/logo_48.png IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfW3hgoAAAAAHj6u5ZT8A10DhcTJ9bqQaheVZII&co=aHR0cHM6Ly9zbWFydHRkcy5jbG91ZDo0NDM.&hl=en&v=vjbW55W42X033PfTdVf6Ft4q&size=normal&cb=isy87dd8a56e CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typePNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced Hashef9941290c50cd3866e2ba6b793f010d 4736508c795667dcea21f8d864233031223b7832 1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 02:54:07 GMT
expires: Thu, 16 May 2024 02:54:07 GMT
cache-control: public, max-age=604800
age: 147162
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/vantages/rakeback__2.svg | 18.153.231.205 | 200 OK | 105 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/vantages/rakeback__2.svg IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Size105 kB (105250 bytes) Hashbe14f403358517cb81f5f5c7fd5f7b41 fce44b6f8b4b6243e03e84a35b789a088f522f63 3fab4e17bcf0cec054a976b3b9092f192d37e139c8348a7b2a1a862c21b279c1
GET /uploads/landings/3-screens-slot-6514839815026/img/vantages/rakeback__2.svg HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:47 GMT
content-type: image/svg+xml
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-19b22"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/form/eye.svg | 18.153.231.205 | 200 OK | 653 B |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/form/eye.svg IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash56ada5416b9843f1de388144c78cd128 b11db6a90868fb3b752c412695a903a88649ce59 47e60bdbc0e473f25f9bf63e965fb05a48f89bc4eff703ee6a7c998c1eaed7b2
GET /uploads/landings/3-screens-slot-6514839815026/img/form/eye.svg HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:48 GMT
content-type: image/svg+xml
content-length: 653
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: "65e6d7f4-28d"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/assets/Montserrat-Black-cc2e0c0d.woff2 | 18.153.231.205 | 200 OK | 91 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/assets/Montserrat-Black-cc2e0c0d.woff2 IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 91372, version 1.0 Hasha2d2c119a02f90df62f98fa4ab7fa150 96455aa78eb4b1751293014d5f8d46aceeb94540 cc2e0c0d004a69e95f9d06faa1e45da5411b9082d65500c35b4290130b159146
GET /uploads/landings/3-screens-slot-6514839815026/assets/Montserrat-Black-cc2e0c0d.woff2 HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/assets/index-1b41d556.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:48 GMT
content-type: font/woff2
content-length: 91372
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: "65e6d7f4-164ec"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/logo/logo_1.svg | 18.153.231.205 | 200 OK | 2.3 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/logo/logo_1.svg IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash018978366f5be6f05f32059025a11ada 0a847ebfd79ce3996ac5ef6004ef6070adb038ce be9db5784f1fb55282fa5121785d8579e0836bb28577bcae58a0e1a8c84dfb7b
GET /uploads/landings/3-screens-slot-6514839815026/img/logo/logo_1.svg HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:48 GMT
content-type: image/svg+xml
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-8e1"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api2/anchor?ar=1&k=6LfW3hgoAAAAAHj6u5ZT8A10DhcTJ9bqQaheVZII&co=aHR0cHM6Ly9zbWFydHRkcy5jbG91ZDo0NDM.&hl=en&v=vjbW55W42X033PfTdVf6Ft4q&size=normal&cb=isy87dd8a56e | 142.250.74.164 | 200 OK | 47 kB |
URL GET HTTP/3www.google.com/recaptcha/api2/anchor?ar=1&k=6LfW3hgoAAAAAHj6u5ZT8A10DhcTJ9bqQaheVZII&co=aHR0cHM6Ly9zbWFydHRkcy5jbG91ZDo0NDM.&hl=en&v=vjbW55W42X033PfTdVf6Ft4q&size=normal&cb=isy87dd8a56e IP142.250.74.164:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File typeHTML document, ASCII text, with very long lines (38334) Hash0d6be86cbaf2afc2f3a1b4e59184a464 2c9554c595164d43094a1a5a608f7116761dafae 92de4b001f5fa36afd0281db8c026063fee54622b0f9d056c12cafaf784272d3
GET /recaptcha/api2/anchor?ar=1&k=6LfW3hgoAAAAAHj6u5ZT8A10DhcTJ9bqQaheVZII&co=aHR0cHM6Ly9zbWFydHRkcy5jbG91ZDo0NDM.&hl=en&v=vjbW55W42X033PfTdVf6Ft4q&size=normal&cb=isy87dd8a56e HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 10 May 2024 19:46:49 GMT
content-security-policy: script-src 'nonce-rt6_3b0S4-UiyBMjSSOM1Q' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/vantages/transactions.png | 18.153.231.205 | 200 OK | 3.8 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/vantages/transactions.png IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typePNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced Hashd5a0ef1280d4b4c6f10c352639123ea7 ae6a1811ab5487cc94498ab82361cee71f605257 19fa86194f50944a31a0d420164919fb8be02c9aad8061ce16b57b93d7dcd049
GET /uploads/landings/3-screens-slot-6514839815026/img/vantages/transactions.png HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:47 GMT
content-type: image/png
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-ef8"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/slots/bg.jpg | 18.153.231.205 | 200 OK | 90 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/slots/bg.jpg IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x640, components 3 Hash214682356bf80413cb57c730a4768f48 c08b5e96df88a02550a90e09621929ed96a576f0 b83e4d595851ac8c5e2e93c263112f2e926a2afb65bf87a7b3fd9ab556b157ac
GET /uploads/landings/3-screens-slot-6514839815026/img/slots/bg.jpg HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/assets/index-1b41d556.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:48 GMT
content-type: image/jpeg
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-15e63"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/form_section/ic_2.png | 18.153.231.205 | 200 OK | 1.7 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/form_section/ic_2.png IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typePNG image data, 58 x 58, 8-bit colormap, non-interlaced Hashf86e713e343dcd72df702e889bab4967 4295813c3ec9428ce48b42f7f0935b245c727397 757b6ffa1e3cbd14c43008c95fd43c3af32fd9ccba6650934872aa62a449515f
GET /uploads/landings/3-screens-slot-6514839815026/img/form_section/ic_2.png HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:48 GMT
content-type: image/png
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-6c1"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/slots/diamond_1.png | 18.153.231.205 | 200 OK | 6.3 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/slots/diamond_1.png IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typePNG image data, 128 x 126, 8-bit colormap, non-interlaced Hash7ef0bb56b5b2ecb3d4c35c007a8ef15b 3894bc14f0c720ba8e6139a0d325767dfc261fd8 be2e3a645d085ca984d549b1e5ac95f5a55e9e4765a6c94d53ee06a571501bf8
GET /uploads/landings/3-screens-slot-6514839815026/img/slots/diamond_1.png HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:47 GMT
content-type: image/png
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-18af"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/form_section/diamond_1.png | 18.153.231.205 | 200 OK | 5.1 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/form_section/diamond_1.png IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typePNG image data, 135 x 135, 8-bit colormap, non-interlaced Hash2b93a231d58f89d071092ae341c81fb6 dedb6377cbff2bb3d7740d83216b5a8ddb957c34 a6c8ddbfe89bbcb60302625bd9d429aa396d227c67941ecc9dbbfe7d384cf503
GET /uploads/landings/3-screens-slot-6514839815026/img/form_section/diamond_1.png HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:48 GMT
content-type: image/png
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-1404"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/vantages/transactions.svg | 18.153.231.205 | 200 OK | 126 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/vantages/transactions.svg IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Size126 kB (126329 bytes) Hashd929f1c6089f658b422e1ee875eda210 9a08e0398a078562ecb325eb911bb8f646b8792a 906d36d2b1d26ca0853a22db30e83590ad3b84042e865fe6f63c7a039840a179
GET /uploads/landings/3-screens-slot-6514839815026/img/vantages/transactions.svg HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:47 GMT
content-type: image/svg+xml
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-1ed79"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/logo/logo_6.svg | 18.153.231.205 | 200 OK | 1.1 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/logo/logo_6.svg IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash6ff4c51198e0004fde5270f96b8e46e2 bcd8e9aa51bf116d041d28937fcd02696e88297e 68ae9651ff634b55c94871ebc1e9530978f891271dd4efa9b560c88e78cd83ff
GET /uploads/landings/3-screens-slot-6514839815026/img/logo/logo_6.svg HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:48 GMT
content-type: image/svg+xml
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-471"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/form_section/character_1.png?v=1 | 18.153.231.205 | 200 OK | 118 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/form_section/character_1.png?v=1 IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typePNG image data, 594 x 710, 8-bit colormap, non-interlaced Size118 kB (118365 bytes) Hashcb74f72b96367a788716647fa975fbca ee2157dc7542f14dca5d2802d568521cf19ed3e7 a5b3fb45c720cbe672fec685d6ac6fb49852386db37c9823f990346297fa04ab
GET /uploads/landings/3-screens-slot-6514839815026/img/form_section/character_1.png?v=1 HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:48 GMT
content-type: image/png
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-1ce5d"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/assets/index-3642a04c.js | 18.153.231.205 | 200 OK | 447 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/assets/index-3642a04c.js IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
Size447 kB (446864 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/landings/3-screens-slot-6514839815026/assets/index-3642a04c.js HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:47 GMT
content-type: application/javascript
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:39 GMT
etag: W/"65e6d7f3-6d190"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/top_section/palm.png | 18.153.231.205 | 200 OK | 38 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/top_section/palm.png IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typePNG image data, 260 x 573, 8-bit colormap, non-interlaced Hash04b770ef8599938370bce50a55f1a687 5b621154b38d5359f98e043f9d1d550264f451b5 49f423476bc18308eaeb0474af35263db98a0e8ef805f8b2c922e61ba9e2e59b
GET /uploads/landings/3-screens-slot-6514839815026/img/top_section/palm.png HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:47 GMT
content-type: image/png
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-952c"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/top_section/diamond2.png | 18.153.231.205 | 200 OK | 4.1 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/top_section/diamond2.png IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typePNG image data, 120 x 120, 8-bit colormap, non-interlaced Hashd3df28a40e4fcdf2181db9a2a5a2a60d b83675ee2cd52575965aa21ace5db54ea4b6351c b83954452bcf66fe6f25aa0d169ccca45ebe06f7b1686fb0cf44709f46294268
GET /uploads/landings/3-screens-slot-6514839815026/img/top_section/diamond2.png HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:47 GMT
content-type: image/png
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-1009"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/form_section/ic_4.png | 18.153.231.205 | 200 OK | 878 B |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/form_section/ic_4.png IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typePNG image data, 58 x 58, 8-bit colormap, non-interlaced Hashc21cea1e0b156f209295cf0ba71d4fda eaffab87b2477e3bc805651c8c4e2adb555a58da 8bddfff8835eb99207c88364adab535b5865db9a7a73fbc275413f055a32a997
GET /uploads/landings/3-screens-slot-6514839815026/img/form_section/ic_4.png HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:48 GMT
content-type: image/png
content-length: 878
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: "65e6d7f4-36e"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/assets/Montserrat-Medium-c7964882.woff2 | 18.153.231.205 | 200 OK | 92 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/assets/Montserrat-Medium-c7964882.woff2 IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 91992, version 1.0 Hash0539a27483ec2db1fa4e01f61ef6c51f 48158e416297058245eaf8338566f3da2fa2d6c0 c79648825c6950fad23b8fd4ffa749cad49d525b644b4ed613d3ee4b676f56cc
GET /uploads/landings/3-screens-slot-6514839815026/assets/Montserrat-Medium-c7964882.woff2 HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/assets/index-1b41d556.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:48 GMT
content-type: font/woff2
content-length: 91992
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:39 GMT
etag: "65e6d7f3-16758"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= | 18.153.231.205 | 200 OK | 1.1 kB |
URL User Request GET HTTP/2smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= IP18.153.231.205:443
CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (1219), with no line terminators Hashd3c03ed735d3b8d7ac0f4e14117ea611 d0e25c0ed3c2612f3ebdedb4eaba372d7ff4032c 1b80b1f96de664d470874f1722e36991f3ffc3e61b6327fb534e2b2123761fd3
GET /r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:47 GMT
content-type: text/html; charset=UTF-8
server: nginx/1.24.0
cache-control: no-cache, private
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/vantages/rakeback.svg | 18.153.231.205 | 200 OK | 20 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/vantages/rakeback.svg IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash8c342bac90e4e6dfc6db604a4148fd92 5f2e76c2d8eafca247b841ec05462d82d58411a3 a8e79e4f2f2135bde37a8aa1149f3c7fbbb60bdbd6d2596209b10c94788905f6
GET /uploads/landings/3-screens-slot-6514839815026/img/vantages/rakeback.svg HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:47 GMT
content-type: image/svg+xml
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-4c68"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/form_section/ic_1.png | 18.153.231.205 | 200 OK | 2.0 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/img/form_section/ic_1.png IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typePNG image data, 58 x 58, 8-bit colormap, non-interlaced Hasha73465fe0e30b78c4a0e43f2dda1822f 369b8814afc6bfdd031e9b4c4c747760c994280d d1e343d6881dc1642a4f995ba038df8af692865dfd2e85f9c7a04a0794e9c2a1
GET /uploads/landings/3-screens-slot-6514839815026/img/form_section/ic_1.png HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:48 GMT
content-type: image/png
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:40 GMT
etag: W/"65e6d7f4-7fd"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/assets/Montserrat-Bold-f33d03d5.woff2 | 18.153.231.205 | 200 OK | 92 kB |
URL GET HTTP/2smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/assets/Montserrat-Bold-f33d03d5.woff2 IP18.153.231.205:443
Requested byhttps://smarttds.cloud/r/EJgj?track_id=247035253&pid=67828&geo=3143244&utm_source=55&utm_medium=67828&utm_campaign=fs_en_pop_visit_gambl_cpm_3_w&utm_term=6662145&utm_content=54175¶m1=ubidex¶m2=popup¶m3=cpm¶m4=2024-03¶m5=32fa5df5-44c3-4bdf-abb3-6ec472b9a0fb¶m6= CertificateIssuerAmazon Subjects.bonafides.team Fingerprint5D:D5:70:1E:8F:83:3B:B4:DB:5F:3D:74:45:F7:CA:61:85:AC:54:D6 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 92236, version 1.0 Hash25c02e7be3e7dcd51c2fedf848b4042f bf5aa25a8f14d17d3cf8b8c9697b12a4908bc94f f33d03d51ace62dac894b7860dd8dd2a789c000b5f4f85cc965913664c4d8b03
GET /uploads/landings/3-screens-slot-6514839815026/assets/Montserrat-Bold-f33d03d5.woff2 HTTP/1.1
Host: smarttds.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://smarttds.cloud/uploads/landings/3-screens-slot-6514839815026/assets/index-1b41d556.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 19:46:48 GMT
content-type: font/woff2
content-length: 92236
server: nginx/1.24.0
last-modified: Tue, 05 Mar 2024 08:29:39 GMT
etag: "65e6d7f3-1684c"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|