Report - fittoday.ru

Report Overview

Submitted URL
fittoday.ru
IP
78.36.204.173
ASN
#12389 Rostelecom
Submitted
2024-04-18 09:36:47
Access
public
Website Title
Бодибилдинг для начинающих и продвинутых.
Final URL
fittoday.ru/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
sync.gonet-ads.com	unknown	2022-04-05	2023-02-03	2024-04-04	461 B	343 B	188.42.105.236
sync.dsp.solta.io	unknown	2022-07-19	2022-09-21	2024-04-18	457 B	248 B	217.199.220.73
s.ccsyncuuid.net	unknown	2023-02-28	2023-06-17	2024-04-11	464 B	0 B	0.0.0.0
a.utraff.com	39874	2016-09-27	2019-02-27	2024-04-15	452 B	1.0 kB	104.26.6.189
sync.dmp.otm-r.com	19534	2014-01-16	2017-02-03	2024-04-16	991 B	948 B	194.55.244.177
acint.net	22962	2014-02-06	2014-02-14	2024-04-17	4.4 kB	1.1 kB	193.3.184.131
pix.bumlam.com	92002	2015-08-10	2022-03-29	2024-04-17	1.5 kB	2.1 kB	31.172.81.172
mc.acint.net	unknown	2014-02-06	2024-01-29	2024-04-17	15 kB	4.1 kB	193.3.184.131
ssp.bestssp.com	90974	2016-05-05	2017-06-10	2024-04-18	541 B	456 B	83.222.96.170
sync.bumlam.com	3243	2015-08-10	2015-08-10	2024-04-18	2.5 kB	3.2 kB	31.172.81.160
sync.upravel.com	28097	2017-03-25	2017-05-29	2024-04-15	968 B	1.7 kB	88.198.16.238
fittoday.ru	unknown	unknown	No data	No data	10 kB	126 kB	78.36.204.173
sync.programmatica.com	unknown	2016-10-12	2022-12-17	2024-04-16	424 B	224 B	158.160.128.78
pixel.dsp.onetarget.ru	unknown	2019-04-18	2024-03-13	2024-04-17	462 B	728 B	130.193.53.230
kimberlite.io	166512	2017-03-16	2017-09-14	2024-04-17	456 B	761 B	217.199.220.44
ads.adlook.me	43352	2016-07-15	2018-11-28	2024-04-18	598 B	561 B	176.122.21.226
s.uuidksinc.net	3423	2015-05-05	2015-07-20	2024-04-15	463 B	322 B	185.98.54.153
exchange.buzzoola.com	18389	2010-08-11	2014-10-17	2024-04-17	1.9 kB	1.8 kB	176.9.158.88
match.new-programmatic.com	33613	2020-02-18	2020-02-18	2024-04-17	473 B	213 B	217.65.2.150
ssp.al-adtech.com	unknown	2024-01-16	2024-01-30	2024-04-16	424 B	668 B	45.139.25.122
cs.agency2.ru	unknown	2008-10-06	2022-04-29	2024-04-17	452 B	721 B	23.111.107.44
ssp.bidvol.com	31817	2019-09-24	2020-02-22	2024-04-17	439 B	716 B	65.109.111.89
yandex.st	46311	2009-09-14	2012-05-23	2024-02-25	312 B	16 kB	178.154.131.215
gw-iad-bid.ymmobi.com	unknown	2021-01-29	2023-10-14	2024-04-18	563 B	556 B	47.253.61.56
1e7a7eac-fd67-11ee-9b7b-002590c82436.n3.sync.bumlam.com	unknown	unknown	No data	No data	527 B	247 B	62.109.24.241
yastatic.net	72282	2013-11-28	2014-03-11	2024-04-17	1.1 kB	7.8 kB	178.154.131.215
www.acint.net	29072	2014-02-06	2014-02-14	2024-04-18	15 kB	40 kB	193.3.184.131
dm-eu.hybrid.ai	28847	2017-12-19	2021-01-25	2024-04-18	458 B	528 B	37.230.131.22
sync.adspend.space	unknown	2022-02-11	2022-10-20	2024-04-16	1.0 kB	1.3 kB	5.189.234.229
ssp-rtb.sape.ru	31166	2006-06-19	2016-02-02	2024-04-18	1.0 kB	1.4 kB	193.3.184.25
match.ohmy.bid	unknown	2022-06-09	2023-05-23	2024-04-18	497 B	437 B	167.235.9.235
adx.com.ru	43296	2017-05-19	2017-06-05	2024-04-15	450 B	324 B	83.222.116.186
nr.bidderstack.com	352019	2017-04-25	2019-02-11	2024-04-17	927 B	895 B	167.235.176.63

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-18	medium	ccsyncuuid.net	Sinkholed

ThreatFox

No alerts detected

JavaScript (22)

	URL	Size	First Seen	Last Seen
	fittoday.ru/js/tabs.js	4.2 kB	2024-04-18	2024-04-18
Pretty URL fittoday.ru/js/tabs.js IP 78.36.204.173 ASN #12389 Rostelecom Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-18 11:36:54 Last Seen2024-04-18 11:36:55 Times Seen2 Hash 180437e970f88106b5a41c0bef043936 b24596aafa41af8e1815963ea0cbeec57f5426bb b3ac23fdc64802534dfea66b0ce8b71510922916557522d8f6df241a41b17b4c Loading...

	www.acint.net/mc/?dp=10&tc=1	0 B	2023-03-07	2024-05-01
Pretty URL www.acint.net/mc/?dp=10&tc=1 IP 193.3.184.131 ASN #50214 QWARTA LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-01 05:25:11 Times Seen37236735 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	fittoday.ru/	1.7 kB	2024-04-18	2024-04-18
Pretty URL fittoday.ru/ IP 78.36.204.173 ASN #12389 Rostelecom Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-18 11:36:54 Last Seen2024-04-18 11:36:54 Times Seen1 Hash bc218882a739774302f77fe98d322119 1428c29b164c2f0e2fa4545aa7d059f12b6605e5 860adda59d9238b04c4c25fa54b5d3d78c71d26baf65edf349a652ed45f553a7 Loading...

	fittoday.ru/	579 B	2024-04-18	2024-04-18
Pretty URL fittoday.ru/ IP 78.36.204.173 ASN #12389 Rostelecom Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-18 11:36:54 Last Seen2024-04-18 11:36:54 Times Seen1 Hash d927dac0ebc36d623a715494384974a4 9d59100dba76eee974f223550f7857164b7bddd8 6effe152bf16ecb589e1616838d7ed48db78306aa4fab02200e26ff4a0507143 Loading...

	fittoday.ru/	408 B	2024-04-18	2024-04-18
Pretty URL fittoday.ru/ IP 78.36.204.173 ASN #12389 Rostelecom Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-18 11:36:54 Last Seen2024-04-18 11:36:54 Times Seen1 Hash cbee7d669d40d151cca2a886bd520d6c b88d3de3a70a6dcc480d955e5701233206a6a0a6 225af7f2a8c52c4363822d160cf11797593ce9ce8892e7c9112afea71826733a Loading...

	www.acint.net/aci.js	31 kB	2024-01-12	2024-05-01
Pretty URL www.acint.net/aci.js IP 193.3.184.131 ASN #50214 QWARTA LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-12 02:40:42 Last Seen2024-05-01 00:42:36 Times Seen704 Hash e81f962d48edbcbedc89edfdb08d0b3c 324f1ffc62d43e229b192083b118b1ac4a5643c6 d9453129c16b0215069d80e4b526c0546b259fae8d615e1b3aa775a8d76bac57 Loading...

	fittoday.ru/	194 B	2024-04-18	2024-04-18
Pretty URL fittoday.ru/ IP 78.36.204.173 ASN #12389 Rostelecom Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-18 11:36:54 Last Seen2024-04-18 11:36:54 Times Seen1 Hash 8e98d9067c6c3b16ee1db9ef1e8329a7 102305836e7adcd05d89aa52bcc2088310d4f5a7 06e54425d0392fb4cdbc4299e818567adf75d760afe43bd7b067f5e3234f4d2f Loading...

	fittoday.ru/js/jquery-latest.pack.js	20 kB	2023-03-11	2024-04-18
Pretty URL fittoday.ru/js/jquery-latest.pack.js IP 78.36.204.173 ASN #12389 Rostelecom Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:12:34 Last Seen2024-04-18 11:36:55 Times Seen24 Hash 90369daf863a3184e5bb4150f2e567f7 e3fe78652cce43c562b276f129d5a1728e008787 5ea680349f3a0c6e19abfec2a322a40a04d5eac9f246dda701fdcc9b24a73d40 Loading...

	fittoday.ru/js/interface.js	11 kB	2024-04-18	2024-04-18
Pretty URL fittoday.ru/js/interface.js IP 78.36.204.173 ASN #12389 Rostelecom Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-18 11:36:54 Last Seen2024-04-18 11:36:55 Times Seen2 Hash 62c1ef4f608ea8844442a7f25ecf75a3 453cfa7f860207f4bdd0506e10b35806b6099214 6dd05d50765ae05eb34aecad9193d399689aee3d22a26316c0e6965872e150eb Loading...

	fittoday.ru/js/thumbnailviewer.js	7.7 kB	2024-04-18	2024-04-18
Pretty URL fittoday.ru/js/thumbnailviewer.js IP 78.36.204.173 ASN #12389 Rostelecom Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-18 11:36:54 Last Seen2024-04-18 11:36:54 Times Seen1 Hash 1caf8dfa225e0dc38c3a13c724773091 706c28f06c69ec743f2c7307da00069575f3ef05 e3f12246e8afb776d311fcb671948a3e2d84e94dbdde38a926a82b9ec20ef487 Loading...

	fittoday.ru/	250 B	2023-03-07	2024-05-01
Pretty URL fittoday.ru/ IP 78.36.204.173 ASN #12389 Rostelecom Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:42:22 Last Seen2024-05-01 00:42:36 Times Seen633 Hash 537357420024d824760d7686fbdf31fe 5e14660b667fdc602c82300ccf3253afc242e4bb ca2f5769fc415a62dd2cd8af83b9b64604715e602f6de4c7741f9992a7003a29 Loading...

	fittoday.ru/	542 B	2024-04-18	2024-04-18
Pretty URL fittoday.ru/ IP 78.36.204.173 ASN #12389 Rostelecom Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-18 11:36:54 Last Seen2024-04-18 11:36:54 Times Seen1 Hash dbae09889b12944425d5ab1be7026e4b c7ab366594ef3904b1d43bde70bc41330965a6fa cc384ec969d0d9d02a54148f641fca64e26627b6ea062d25753b1671713cc4d8 Loading...

	www.acint.net/oci.js?t=1713432982081	32 kB	2023-03-12	2024-05-01
Pretty URL www.acint.net/oci.js?t=1713432982081 IP 193.3.184.131 ASN #50214 QWARTA LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 19:09:04 Last Seen2024-05-01 00:42:38 Times Seen2087 Hash c3fa5133b6899a2abb39fb79ed94300f dc1d5c75420b38cd7509a783ed09345d0ff78ac4 66b141eb9ae44c86efc510844a71cf208c02d02abe03af3a7d8cc26736d3e19c Loading...

	yandex.st/share/share.js	54 kB	2023-03-07	2024-04-30
Pretty URL yandex.st/share/share.js IP 178.154.131.215 ASN #13238 YANDEX LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:03 Last Seen2024-04-30 23:50:28 Times Seen778 Hash db7132f94e4730c128b638f72b46c899 4af3ebc52a01e5becd92d3f3d59f21c019e62519 944979b576ee52348d5c63d35f566c11df26f70ed15d2ceba61180662a49b114 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 9f7419e31845effddaaae93ed6e556d0	15 kB	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 11:36:54 Last Seen2024-04-18 11:36:54 Times Seen1 Hash 9f7419e31845effddaaae93ed6e556d0 cd48a169461bb6e2d3d8ea3feeaa459ed7198262 599fc3a1b5988c542448ecd11f99ce70d715b5a766346d2c5b8341b53e8ac6d1 Loading...

	#2 Eval - a61ebff6ffe32d711c4dbabb3bdafdb7	33 kB	2023-03-11	2024-04-18
Pretty Observations First Seen2023-03-11 21:12:34 Last Seen2024-04-18 11:36:54 Times Seen14 Hash a61ebff6ffe32d711c4dbabb3bdafdb7 633d71ac876647ee6a5e98b9464ce031b2e8ba11 9965b289f85464a7512899b505e1d52f8a1cbd0b3a5dd1f6c6974039339f764f Loading...

	#3 Eval - a475f2341e85257336d391bafd29fd83	6.0 kB	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 11:36:54 Last Seen2024-04-18 11:36:54 Times Seen1 Hash a475f2341e85257336d391bafd29fd83 6d21e85212f05ba0c14d9765e600c9444cdcfb1d b9d55e2f587be8ef9be9fbfa5f8276af0059aa4cfca41ef8a6e9c93a21fa499e Loading...

		Size	First Seen	Last Seen
	#1 Write - 60bfeef056ab18f341e11d45adc1ab75	96 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 11:36:54 Last Seen2024-04-18 11:36:54 Times Seen1 Hash 60bfeef056ab18f341e11d45adc1ab75 ff530bdcb5348015e5e2bf86c846dd0958c25ee7 cee864af0a460cff9d20d8b143e2efda250a2c499a5aa4e9c90e23f009bef2e9 Loading...

	#2 Write - 735dbd9939a2e0f2daf54dd741a6e44e	97 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 11:36:54 Last Seen2024-04-18 11:36:54 Times Seen1 Hash 735dbd9939a2e0f2daf54dd741a6e44e 2f12f6b1c7bceca26f212eae9ddafabaefa18cc7 08284a81c296dd65d7221be909f0b31a1cd89a4c9d2712a3489d8a980abbd9d7 Loading...

	#3 Write - 874ec7690f89254fa23642ea3f2df6ba	296 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 11:36:54 Last Seen2024-04-18 11:36:54 Times Seen1 Hash 874ec7690f89254fa23642ea3f2df6ba 428e6979f0373b0a8acecc8c57ba1b49a00a069e e565fdf4e0ab456b14ce3f918bed8d88ac011e9bb29884e1c098b6c5650ec03c Loading...

	#4 Write - 95f493a11316a3e0f2b4ad203c29f6cd	126 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 11:36:55 Last Seen2024-04-18 11:36:55 Times Seen1 Hash 95f493a11316a3e0f2b4ad203c29f6cd 9f0e857678b46064893336b4402ef08990abdfc6 d3af7db0486efead8914ed65976bd1f84bae304ef8f32132ed59abd5749a8918 Loading...

	#5 Write - c82e8f71c8b252d9ff056013e4a502e3	74 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 11:36:55 Last Seen2024-04-18 11:36:55 Times Seen1 Hash c82e8f71c8b252d9ff056013e4a502e3 47739d930e40ea7c8fc369710b4a31923a8b9713 19df7dd229175ffd3f7121c7b88d54ed2cfe2083f537867d51023be292bf38fc Loading...

HTTP Transactions (94)

URL IP Response Size

fittoday.ru/

78.36.204.173

7.5 kB

URL User Request GET
fittoday.ru/
IP
78.36.204.173:0
ASN
#12389 Rostelecom

File type
HTML document, Non-ISO extended-ASCII text, with very long lines (1056), with CRLF, LF line terminators
Size
7.5 kB (7461 bytes)
Hash
7fa9053d08e5a2243f5f398117112356
5c9d32d1f89685cbca3a27d6226770b2aebc7b14
8c85dbccd9f0330feabc81ced449ae516f80a23ac56aae812be8e0f9b26c9057

HTTP Headers

GET / HTTP/1.1
Host: fittoday.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 09:36:21 GMT
Content-Type: text/html; charset=windows-1251
Content-Encoding: gzip
Content-Length: 7461
Last-Modified: Thu, 18 Apr 2024 09:36:21 GMT
Expires: Tue, 18 Apr 2023 22:00:00 GMT
P3P: policyref="/w3c/p3p.xml", CP="UNI"
x-powered-by: PHP/5.2.17
Cache-control: no-cache, no-store,no-cache,must-revalidate, post-check=0,pre-check=0
Pragma: no-cache, no-cache
Set-Cookie: PHPSESSID=d679bc7a16766d2ff17b18e27305c7dd; path=/
SEDITIO=MDpfOjA6XzpsYXVyZWxz; expires=Mon, 17-Jun-2024 09:36:21 GMT
vary: Accept-Encoding,User-Agent

fittoday.ru/js/thumbnailviewer.css

78.36.204.173

200 OK

750 B

URL GET HTTP/1.1
fittoday.ru/js/thumbnailviewer.css
IP
78.36.204.173:80
ASN
#12389 Rostelecom

Requested by
http://fittoday.ru/

File type
ASCII text, with CRLF line terminators
Size
750 B (750 bytes)
Hash
08a6f0daba0da8b1f344f55807399735
64a1054656d7f0c5964fddccebc28cc7bdfca011
6c5d9ac6c03f6e63da6fdba19a5e52d13f2e7ccf8b07ada912755b0f370ac0e2

HTTP Headers

GET /js/thumbnailviewer.css HTTP/1.1
Host: fittoday.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://fittoday.ru/
Cookie: PHPSESSID=d679bc7a16766d2ff17b18e27305c7dd; SEDITIO=MDpfOjA6XzpsYXVyZWxz
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 09:36:21 GMT
Content-Type: text/css
Content-Length: 750
Accept-Ranges: bytes
Last-Modified: Wed, 16 Jan 2008 21:13:44 GMT
Expires: Thu, 17 Apr 2025 22:00:00 GMT

fittoday.ru/js/thumbnailviewer.js

78.36.204.173

200 OK

7.7 kB

URL GET HTTP/1.1
fittoday.ru/js/thumbnailviewer.js
IP
78.36.204.173:80
ASN
#12389 Rostelecom

Requested by
http://fittoday.ru/

File type
ISO-8859 text, with CRLF line terminators
Size
7.7 kB (7669 bytes)
Hash
4932096f149d8a60e0abaed95587bcd5
e0a6bbff963d0b914bd9a219e70c80fb6eab9bb5
e1f7d4f7fe2a9be3d92019cb3f658f331fa410d208e0e95bb79680008e9fe083

HTTP Headers

GET /js/thumbnailviewer.js HTTP/1.1
Host: fittoday.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://fittoday.ru/
Cookie: PHPSESSID=d679bc7a16766d2ff17b18e27305c7dd; SEDITIO=MDpfOjA6XzpsYXVyZWxz
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 09:36:21 GMT
Content-Type: application/x-javascript
Content-Length: 7669
Accept-Ranges: bytes
Last-Modified: Wed, 16 Jan 2008 21:13:46 GMT
Expires: Thu, 17 Apr 2025 22:00:00 GMT

fittoday.ru/js/tabs.js

78.36.204.173

200 OK

4.2 kB

URL GET HTTP/1.1
fittoday.ru/js/tabs.js
IP
78.36.204.173:80
ASN
#12389 Rostelecom

Requested by
http://fittoday.ru/

File type
JavaScript source, ASCII text, with very long lines (4211)
Size
4.2 kB (4212 bytes)
Hash
180437e970f88106b5a41c0bef043936
b24596aafa41af8e1815963ea0cbeec57f5426bb
b3ac23fdc64802534dfea66b0ce8b71510922916557522d8f6df241a41b17b4c

HTTP Headers

GET /js/tabs.js HTTP/1.1
Host: fittoday.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://fittoday.ru/
Cookie: PHPSESSID=d679bc7a16766d2ff17b18e27305c7dd; SEDITIO=MDpfOjA6XzpsYXVyZWxz
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 09:36:21 GMT
Content-Type: application/x-javascript
Content-Length: 4212
Accept-Ranges: bytes
Last-Modified: Wed, 16 Jan 2008 21:13:42 GMT
Expires: Thu, 17 Apr 2025 22:00:00 GMT

fittoday.ru/skins/laurels/css/bordo/style.css

78.36.204.173

200 OK

13 kB

URL GET HTTP/1.1
fittoday.ru/skins/laurels/css/bordo/style.css
IP
78.36.204.173:80
ASN
#12389 Rostelecom

Requested by
http://fittoday.ru/

File type
ISO-8859 text
Size
13 kB (13095 bytes)
Hash
ec47a1032a2d5d16877ebf63eaf76b2d
124a6c55cd8da99e651af84f2ed59fd8dff2602b
dd4ab1225643314ab1b5a06950dccf604ffc68a40723dbdace57ce22f933df7f

HTTP Headers

GET /skins/laurels/css/bordo/style.css HTTP/1.1
Host: fittoday.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://fittoday.ru/
Cookie: PHPSESSID=d679bc7a16766d2ff17b18e27305c7dd; SEDITIO=MDpfOjA6XzpsYXVyZWxz
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 09:36:21 GMT
Content-Type: text/css
Content-Length: 13095
Accept-Ranges: bytes
Last-Modified: Tue, 29 Jun 2010 19:58:38 GMT
Expires: Thu, 17 Apr 2025 22:00:00 GMT

fittoday.ru/js/tabs.css

78.36.204.173

200 OK

2.0 kB

URL GET HTTP/1.1
fittoday.ru/js/tabs.css
IP
78.36.204.173:80
ASN
#12389 Rostelecom

Requested by
http://fittoday.ru/

File type
ASCII text, with CRLF line terminators
Size
2.0 kB (1998 bytes)
Hash
d69be5e3d4c4eba42c673551a1deb5b4
2e7dbe10242785c9f6f448d5169acb04875ba70c
f84e069520999fd57d7f3e24c5102863a6e0eaa6c71610b1663ca1083ee1defb

HTTP Headers

GET /js/tabs.css HTTP/1.1
Host: fittoday.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://fittoday.ru/
Cookie: PHPSESSID=d679bc7a16766d2ff17b18e27305c7dd; SEDITIO=MDpfOjA6XzpsYXVyZWxz
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 09:36:21 GMT
Content-Type: text/css
Content-Length: 1998
Accept-Ranges: bytes
Last-Modified: Wed, 16 Jan 2008 21:13:40 GMT
Expires: Thu, 17 Apr 2025 22:00:00 GMT

fittoday.ru/js/interface.js

78.36.204.173

200 OK

11 kB

URL GET HTTP/1.1
fittoday.ru/js/interface.js
IP
78.36.204.173:80
ASN
#12389 Rostelecom

Requested by
http://fittoday.ru/

File type
JavaScript source, ASCII text, with very long lines (11177), with CRLF line terminators
Size
11 kB (11382 bytes)
Hash
62c1ef4f608ea8844442a7f25ecf75a3
453cfa7f860207f4bdd0506e10b35806b6099214
6dd05d50765ae05eb34aecad9193d399689aee3d22a26316c0e6965872e150eb

HTTP Headers

GET /js/interface.js HTTP/1.1
Host: fittoday.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://fittoday.ru/
Cookie: PHPSESSID=d679bc7a16766d2ff17b18e27305c7dd; SEDITIO=MDpfOjA6XzpsYXVyZWxz
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 09:36:21 GMT
Content-Type: application/x-javascript
Content-Length: 11382
Accept-Ranges: bytes
Last-Modified: Wed, 16 Jan 2008 21:13:32 GMT
Expires: Thu, 17 Apr 2025 22:00:00 GMT

fittoday.ru/js/jquery-latest.pack.js

78.36.204.173

200 OK

20 kB

URL GET HTTP/1.1
fittoday.ru/js/jquery-latest.pack.js
IP
78.36.204.173:80
ASN
#12389 Rostelecom

Requested by
http://fittoday.ru/

File type
JavaScript source, ASCII text, with very long lines (20460)
Size
20 kB (20461 bytes)
Hash
90369daf863a3184e5bb4150f2e567f7
e3fe78652cce43c562b276f129d5a1728e008787
5ea680349f3a0c6e19abfec2a322a40a04d5eac9f246dda701fdcc9b24a73d40

HTTP Headers

GET /js/jquery-latest.pack.js HTTP/1.1
Host: fittoday.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://fittoday.ru/
Cookie: PHPSESSID=d679bc7a16766d2ff17b18e27305c7dd; SEDITIO=MDpfOjA6XzpsYXVyZWxz
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 09:36:21 GMT
Content-Type: application/x-javascript
Content-Length: 20461
Accept-Ranges: bytes
Last-Modified: Wed, 16 Jan 2008 21:13:34 GMT
Expires: Thu, 17 Apr 2025 22:00:00 GMT

fittoday.ru/datas/users/1-main_pic02.jpg

78.36.204.173

200 OK

4.1 kB

URL GET HTTP/1.1
fittoday.ru/datas/users/1-main_pic02.jpg
IP
78.36.204.173:80
ASN
#12389 Rostelecom

Requested by
http://fittoday.ru/

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 128x128, components 3
Size
4.1 kB (4097 bytes)
Hash
3420eeb8e41ea031355979b6e354bc36
fbdd721346bdeedd8b712161b6c8f2dbe2c6f1f1
4c2bb81227334bd077f3365567e1505a237d92070f3aeea15abde9d993922638

HTTP Headers

GET /datas/users/1-main_pic02.jpg HTTP/1.1
Host: fittoday.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://fittoday.ru/
Cookie: PHPSESSID=d679bc7a16766d2ff17b18e27305c7dd; SEDITIO=MDpfOjA6XzpsYXVyZWxz
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 09:36:21 GMT
Content-Type: image/jpeg
Content-Length: 4097
Accept-Ranges: bytes
Last-Modified: Thu, 04 Jun 2015 01:24:37 GMT
Expires: Thu, 17 Apr 2025 22:00:00 GMT

fittoday.ru/skins/laurels/img/system/arrow-follow.gif

78.36.204.173

200 OK

124 B

URL GET HTTP/1.1
fittoday.ru/skins/laurels/img/system/arrow-follow.gif
IP
78.36.204.173:80
ASN
#12389 Rostelecom

Requested by
http://fittoday.ru/

File type
GIF image data, version 89a, 11 x 11
Size
124 B (124 bytes)
Hash
fd731e4a580f4e57bdb18448786d3386
fd24b44b52522d219ff0e4883e308436dbd5ff62
fab9cbba6007a99c806f4b35b324d38994502e9d5f41abe532005f478c78da54

HTTP Headers

GET /skins/laurels/img/system/arrow-follow.gif HTTP/1.1
Host: fittoday.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://fittoday.ru/
Cookie: PHPSESSID=d679bc7a16766d2ff17b18e27305c7dd; SEDITIO=MDpfOjA6XzpsYXVyZWxz
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 09:36:21 GMT
Content-Type: image/gif
Content-Length: 124
Accept-Ranges: bytes
Last-Modified: Wed, 16 Jan 2008 21:20:30 GMT
Expires: Thu, 17 Apr 2025 22:00:00 GMT

fittoday.ru/datas/users/1-main_pic03.jpg

78.36.204.173

200 OK

4.9 kB

URL GET HTTP/1.1
fittoday.ru/datas/users/1-main_pic03.jpg
IP
78.36.204.173:80
ASN
#12389 Rostelecom

Requested by
http://fittoday.ru/

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 128x128, components 3
Size
4.9 kB (4862 bytes)
Hash
253213bacf37cc1f024f88894f2bc7eb
69283c3a0032a5774600a5ed4f7dc3cb14a40380
f0eb37388c32ddbe7ab6cedd2fb1618d95feced6a5a72b747b85e0c86c519209

HTTP Headers

GET /datas/users/1-main_pic03.jpg HTTP/1.1
Host: fittoday.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://fittoday.ru/
Cookie: PHPSESSID=d679bc7a16766d2ff17b18e27305c7dd; SEDITIO=MDpfOjA6XzpsYXVyZWxz
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 09:36:21 GMT
Content-Type: image/jpeg
Content-Length: 4862
Accept-Ranges: bytes
Last-Modified: Thu, 04 Jun 2015 01:25:18 GMT
Expires: Thu, 17 Apr 2025 22:00:00 GMT

fittoday.ru/datas/users/1-main_pic01.jpg

78.36.204.173

200 OK

5.3 kB

URL GET HTTP/1.1
fittoday.ru/datas/users/1-main_pic01.jpg
IP
78.36.204.173:80
ASN
#12389 Rostelecom

Requested by
http://fittoday.ru/

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 128x128, components 3
Size
5.3 kB (5304 bytes)
Hash
62784d052f52fd83809a0932d840a1d6
8cdad48f4f16540bd8326d3534b20c5b1658e5cb
c01cd3a4ff9c2cb0cd93b6eee4afa80f727e2892ab2e3c5cb7df4599010755b8

HTTP Headers

GET /datas/users/1-main_pic01.jpg HTTP/1.1
Host: fittoday.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://fittoday.ru/
Cookie: PHPSESSID=d679bc7a16766d2ff17b18e27305c7dd; SEDITIO=MDpfOjA6XzpsYXVyZWxz
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 09:36:21 GMT
Content-Type: image/jpeg
Content-Length: 5304
Accept-Ranges: bytes
Last-Modified: Thu, 04 Jun 2015 01:24:20 GMT
Expires: Thu, 17 Apr 2025 22:00:00 GMT

fittoday.ru/js/loading.gif

78.36.204.173

200 OK

2.4 kB

URL GET HTTP/1.1
fittoday.ru/js/loading.gif
IP
78.36.204.173:80
ASN
#12389 Rostelecom

Requested by
http://fittoday.ru/

File type
GIF image data, version 89a, 126 x 22
Size
2.4 kB (2364 bytes)
Hash
c77ae44a51409e7c2183fff5dc25dffa
0df44b46b67c14a4e6705e2856cf5dc0f9ec709f
72a9e8bea3e7758cf264624f0cbccc7231c2f6ba7054e88f4e24c8206fbfb3a9

HTTP Headers

GET /js/loading.gif HTTP/1.1
Host: fittoday.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://fittoday.ru/
Cookie: PHPSESSID=d679bc7a16766d2ff17b18e27305c7dd; SEDITIO=MDpfOjA6XzpsYXVyZWxz
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 09:36:21 GMT
Content-Type: image/gif
Content-Length: 2364
Accept-Ranges: bytes
Last-Modified: Wed, 16 Jan 2008 21:13:36 GMT
Expires: Thu, 17 Apr 2025 22:00:00 GMT

fittoday.ru/skins/laurels/img/hid-back.gif

78.36.204.173

200 OK

391 B

URL GET HTTP/1.1
fittoday.ru/skins/laurels/img/hid-back.gif
IP
78.36.204.173:80
ASN
#12389 Rostelecom

Requested by
http://fittoday.ru/

File type
GIF image data, version 89a, 36 x 36
Size
391 B (391 bytes)
Hash
0fef16b396e098c047a188864de6bc4f
e14e91cf1d15abf49dcc4a577df5ad7e5a739eca
33f8a918d7d5f1afbb5293eacadf3467fed1859eced263dcc7996598a3c66b5e

HTTP Headers

GET /skins/laurels/img/hid-back.gif HTTP/1.1
Host: fittoday.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://fittoday.ru/skins/laurels/css/bordo/style.css
Cookie: PHPSESSID=d679bc7a16766d2ff17b18e27305c7dd; SEDITIO=MDpfOjA6XzpsYXVyZWxz
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 09:36:21 GMT
Content-Type: image/gif
Content-Length: 391
Accept-Ranges: bytes
Last-Modified: Wed, 16 Jan 2008 21:19:14 GMT
Expires: Thu, 17 Apr 2025 22:00:00 GMT

fittoday.ru/skins/laurels/img/nav_left.png

78.36.204.173

200 OK

504 B

URL GET HTTP/1.1
fittoday.ru/skins/laurels/img/nav_left.png
IP
78.36.204.173:80
ASN
#12389 Rostelecom

Requested by
http://fittoday.ru/

File type
PNG image data, 174 x 56, 8-bit/color RGB, non-interlaced
Size
504 B (504 bytes)
Hash
da34e2155dc50c057a3c45d6c811e1e2
b6c73d576b939ae35a6a28f6c11fa30ee8f092e8
e5995e61f3b3b085129fc8bf588b8720b234de754f7d0a18e2284d75a7d89350

HTTP Headers

GET /skins/laurels/img/nav_left.png HTTP/1.1
Host: fittoday.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://fittoday.ru/skins/laurels/css/bordo/style.css
Cookie: PHPSESSID=d679bc7a16766d2ff17b18e27305c7dd; SEDITIO=MDpfOjA6XzpsYXVyZWxz
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 09:36:21 GMT
Content-Type: image/png
Content-Length: 504
Accept-Ranges: bytes
Last-Modified: Mon, 23 Jun 2008 05:44:10 GMT
Expires: Thu, 17 Apr 2025 22:00:00 GMT

fittoday.ru/skins/laurels/img/logo.png

78.36.204.173

200 OK

6.6 kB

URL GET HTTP/1.1
fittoday.ru/skins/laurels/img/logo.png
IP
78.36.204.173:80
ASN
#12389 Rostelecom

Requested by
http://fittoday.ru/

File type
PNG image data, 238 x 51, 8-bit/color RGBA, non-interlaced
Size
6.6 kB (6598 bytes)
Hash
2a80f43c19188ff959d00b9bc2042e61
5d988fa870359b69a27ade3afaa0b70bc1286564
1267717d40bb8dcd262ce9f0c2682a01afffcbe9eb48c15b477898ea663c0125

HTTP Headers

GET /skins/laurels/img/logo.png HTTP/1.1
Host: fittoday.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://fittoday.ru/skins/laurels/css/bordo/style.css
Cookie: PHPSESSID=d679bc7a16766d2ff17b18e27305c7dd; SEDITIO=MDpfOjA6XzpsYXVyZWxz
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 09:36:21 GMT
Content-Type: image/png
Content-Length: 6598
Accept-Ranges: bytes
Last-Modified: Fri, 14 Mar 2008 07:10:00 GMT
Expires: Thu, 17 Apr 2025 22:00:00 GMT

fittoday.ru/skins/laurels/img/header.jpg

78.36.204.173

200 OK

6.1 kB

URL GET HTTP/1.1
fittoday.ru/skins/laurels/img/header.jpg
IP
78.36.204.173:80
ASN
#12389 Rostelecom

Requested by
http://fittoday.ru/

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 512x138, components 3
Size
6.1 kB (6072 bytes)
Hash
ff7c56cb822fadde877f3baf4576f422
2adc9c69e0da36b578c25ed0efef3842c3967b53
1da03e427785b488606898b8d6af793a9bceb327e4d2ecb4d5e4e2e136650eb2

HTTP Headers

GET /skins/laurels/img/header.jpg HTTP/1.1
Host: fittoday.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://fittoday.ru/skins/laurels/css/bordo/style.css
Cookie: PHPSESSID=d679bc7a16766d2ff17b18e27305c7dd; SEDITIO=MDpfOjA6XzpsYXVyZWxz
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 09:36:21 GMT
Content-Type: image/jpeg
Content-Length: 6072
Accept-Ranges: bytes
Last-Modified: Thu, 04 Jun 2015 01:23:44 GMT
Expires: Thu, 17 Apr 2025 22:00:00 GMT

fittoday.ru/skins/laurels/img/nav_righ.png

78.36.204.173

200 OK

353 B

URL GET HTTP/1.1
fittoday.ru/skins/laurels/img/nav_righ.png
IP
78.36.204.173:80
ASN
#12389 Rostelecom

Requested by
http://fittoday.ru/

File type
PNG image data, 20 x 56, 8-bit/color RGB, non-interlaced
Size
353 B (353 bytes)
Hash
4366d5e7bebb30b47aa45bc61f4f8005
82e82d8fd3ff1939308072bed06d84aff7f7e16a
1d961db369ae1601908ea36e53e323ab01c4d3b120427499ea93c0bbdf1fdac2

HTTP Headers

GET /skins/laurels/img/nav_righ.png HTTP/1.1
Host: fittoday.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://fittoday.ru/skins/laurels/css/bordo/style.css
Cookie: PHPSESSID=d679bc7a16766d2ff17b18e27305c7dd; SEDITIO=MDpfOjA6XzpsYXVyZWxz
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 09:36:21 GMT
Content-Type: image/png
Content-Length: 353
Accept-Ranges: bytes
Last-Modified: Mon, 23 Jun 2008 05:44:10 GMT
Expires: Thu, 17 Apr 2025 22:00:00 GMT

fittoday.ru/skins/laurels/img/light-top.gif

78.36.204.173

200 OK

392 B

URL GET HTTP/1.1
fittoday.ru/skins/laurels/img/light-top.gif
IP
78.36.204.173:80
ASN
#12389 Rostelecom

Requested by
http://fittoday.ru/

File type
GIF image data, version 89a, 36 x 36
Size
392 B (392 bytes)
Hash
271393217199e65a1e2a1a3ad2f2249f
988b3695ff2ab87414217fa06ed62ba9c5690e5d
c85be1c739bfc7ff740b270efb73bd8c35b0fa14b7d5549d64edf6e656de9aec

HTTP Headers

GET /skins/laurels/img/light-top.gif HTTP/1.1
Host: fittoday.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://fittoday.ru/skins/laurels/css/bordo/style.css
Cookie: PHPSESSID=d679bc7a16766d2ff17b18e27305c7dd; SEDITIO=MDpfOjA6XzpsYXVyZWxz
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 09:36:21 GMT
Content-Type: image/gif
Content-Length: 392
Accept-Ranges: bytes
Last-Modified: Wed, 16 Jan 2008 21:19:24 GMT
Expires: Thu, 17 Apr 2025 22:00:00 GMT

fittoday.ru/skins/laurels/img/label.png

78.36.204.173

200 OK

20 kB

URL GET HTTP/1.1
fittoday.ru/skins/laurels/img/label.png
IP
78.36.204.173:80
ASN
#12389 Rostelecom

Requested by
http://fittoday.ru/

File type
PNG image data, 150 x 135, 8-bit/color RGBA, non-interlaced
Size
20 kB (19496 bytes)
Hash
f94bfac790ef40e3c124d9b4963e6b81
514dfcc86c7f16694aab7ead8bec8ead8d224416
b9bd654ad62cecd45b9df2fb59db70139ee624cbdebc3e72ee7b39824890e2e6

HTTP Headers

GET /skins/laurels/img/label.png HTTP/1.1
Host: fittoday.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://fittoday.ru/skins/laurels/css/bordo/style.css
Cookie: PHPSESSID=d679bc7a16766d2ff17b18e27305c7dd; SEDITIO=MDpfOjA6XzpsYXVyZWxz
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 09:36:21 GMT
Content-Type: image/png
Content-Length: 19496
Accept-Ranges: bytes
Last-Modified: Thu, 31 Jan 2008 06:52:52 GMT
Expires: Thu, 17 Apr 2025 22:00:00 GMT

yandex.st/share/share.js

178.154.131.215

200 OK

15 kB

URL GET HTTP/1.1
yandex.st/share/share.js
IP
178.154.131.215:80
ASN
#13238 YANDEX LLC

Requested by
http://fittoday.ru/

File type
Unicode text, UTF-8 text, with very long lines (32058)
Size
15 kB (15399 bytes)
Hash
db7132f94e4730c128b638f72b46c899
4af3ebc52a01e5becd92d3f3d59f21c019e62519
944979b576ee52348d5c63d35f566c11df26f70ed15d2ceba61180662a49b114

HTTP Headers

GET /share/share.js HTTP/1.1
Host: yandex.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://fittoday.ru/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Thu, 18 Apr 2024 09:36:21 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=5
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=216013
Content-Encoding: gzip
Etag: W/"db7132f94e4730c128b638f72b46c899"
Expires: Sat, 20 Apr 2024 21:35:06 GMT
Last-Modified: Wed, 24 Oct 2018 16:00:42 GMT
NEL: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
Report-To: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
Strict-Transport-Security: max-age=43200000; includeSubDomains;
Timing-Allow-Origin: *
Vary: Accept-Encoding
X-Nginx-Request-Id: a4af48c8df27c35d

fittoday.ru/skins/laurels/img/light-bot.gif

78.36.204.173

200 OK

518 B

URL GET HTTP/1.1
fittoday.ru/skins/laurels/img/light-bot.gif
IP
78.36.204.173:80
ASN
#12389 Rostelecom

Requested by
http://fittoday.ru/

File type
GIF image data, version 89a, 36 x 36
Size
518 B (518 bytes)
Hash
73c5ce6a2c6b7c78b602d85d55b470bd
23c8697a4ecfc1ddc532f5b2c8cd4c175503f6a0
f9910b1960f616e0924b082a7ae83f0efb52e4bbb99e70b69d96bc345c83993c

HTTP Headers

GET /skins/laurels/img/light-bot.gif HTTP/1.1
Host: fittoday.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://fittoday.ru/skins/laurels/css/bordo/style.css
Cookie: PHPSESSID=d679bc7a16766d2ff17b18e27305c7dd; SEDITIO=MDpfOjA6XzpsYXVyZWxz
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 09:36:21 GMT
Content-Type: image/gif
Content-Length: 518
Accept-Ranges: bytes
Last-Modified: Wed, 16 Jan 2008 21:19:22 GMT
Expires: Thu, 17 Apr 2025 22:00:00 GMT

fittoday.ru/skins/laurels/img/submit-l_2.png

78.36.204.173

200 OK

449 B

URL GET HTTP/1.1
fittoday.ru/skins/laurels/img/submit-l_2.png
IP
78.36.204.173:80
ASN
#12389 Rostelecom

Requested by
http://fittoday.ru/

File type
PNG image data, 260 x 26, 8-bit colormap, non-interlaced
Size
449 B (449 bytes)
Hash
7984618c0c1c599c001c217495a257db
e4b1e97463d24c3d0719ff1a0677c52a127c4203
535cd71bc1b2abb77024e3c988d289f895ad8fbaa28ac734a200498d69d3c05f

HTTP Headers

GET /skins/laurels/img/submit-l_2.png HTTP/1.1
Host: fittoday.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://fittoday.ru/skins/laurels/css/bordo/style.css
Cookie: PHPSESSID=d679bc7a16766d2ff17b18e27305c7dd; SEDITIO=MDpfOjA6XzpsYXVyZWxz
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 09:36:21 GMT
Content-Type: image/png
Content-Length: 449
Accept-Ranges: bytes
Last-Modified: Wed, 16 Jan 2008 21:20:04 GMT
Expires: Thu, 17 Apr 2025 22:00:00 GMT

yastatic.net/share/static/b-share.png

178.154.131.215

200 OK

602 B

URL GET HTTP/1.1
yastatic.net/share/static/b-share.png
IP
178.154.131.215:80
ASN
#13238 YANDEX LLC

Requested by
http://fittoday.ru/

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced
Size
602 B (602 bytes)
Hash
4f7b8153f79fc567b6834a6f77fd250a
28ac7dee60e93a7b65f22acb5bc7e6be434c14e4
c2db8add50cf14389b01044904e84590d1abc551cdca9d1f31dc11a690a495af

HTTP Headers

GET /share/static/b-share.png HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://fittoday.ru/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Thu, 18 Apr 2024 09:36:21 GMT
Content-Type: image/png
Content-Length: 602
Connection: keep-alive
Keep-Alive: timeout=5
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=216009
Etag: "4f7b8153f79fc567b6834a6f77fd250a"
Expires: Sat, 20 Apr 2024 21:34:21 GMT
Last-Modified: Wed, 24 Oct 2018 16:00:42 GMT
NEL: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
Report-To: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
Strict-Transport-Security: max-age=43200000; includeSubDomains;
Timing-Allow-Origin: *
Vary: Accept-Encoding
X-Nginx-Request-Id: 5efab46368d1c18f
Accept-Ranges: bytes

yastatic.net/share/static/b-share-icon.png

178.154.131.215

200 OK

4.6 kB

URL GET HTTP/1.1
yastatic.net/share/static/b-share-icon.png
IP
178.154.131.215:80
ASN
#13238 YANDEX LLC

Requested by
http://fittoday.ru/

File type
PNG image data, 16 x 493, 8-bit colormap, non-interlaced
Size
4.6 kB (4637 bytes)
Hash
24bc3d4a0d287d95c0fb2ec150c1776e
53b50aca31779f1d2082384c113cb8bd12392dca
4518d4c73cc79f597d32c09c25b38ef44da466f502c31e2023d1005f2f899713

HTTP Headers

GET /share/static/b-share-icon.png HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://fittoday.ru/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Thu, 18 Apr 2024 09:36:21 GMT
Content-Type: image/png
Content-Length: 4637
Connection: keep-alive
Keep-Alive: timeout=5
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=216009
Etag: "24bc3d4a0d287d95c0fb2ec150c1776e"
Expires: Sat, 20 Apr 2024 21:34:04 GMT
Last-Modified: Wed, 24 Oct 2018 16:00:42 GMT
NEL: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
Report-To: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
Strict-Transport-Security: max-age=43200000; includeSubDomains;
Timing-Allow-Origin: *
Vary: Accept-Encoding
X-Nginx-Request-Id: f7bd947a94b01593
Accept-Ranges: bytes

yastatic.net/share/static/b-share-popup_down__tail.png

178.154.131.215

200 OK

305 B

URL GET HTTP/1.1
yastatic.net/share/static/b-share-popup_down__tail.png
IP
178.154.131.215:80
ASN
#13238 YANDEX LLC

Requested by
http://fittoday.ru/

File type
PNG image data, 21 x 10, 8-bit colormap, non-interlaced
Size
305 B (305 bytes)
Hash
aa51277c3fccebc88a582e9c81e1424e
03d854b65d4452908a7983a032069b90cbf326b1
23aca3eb9d500bc7291222cb8b42c2b4587c14e93e2d677aeaf6ffd7a97d8036

HTTP Headers

GET /share/static/b-share-popup_down__tail.png HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://fittoday.ru/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Thu, 18 Apr 2024 09:36:21 GMT
Content-Type: image/png
Content-Length: 305
Connection: keep-alive
Keep-Alive: timeout=5
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=216009
Etag: "aa51277c3fccebc88a582e9c81e1424e"
Expires: Sat, 20 Apr 2024 21:31:37 GMT
Last-Modified: Wed, 24 Oct 2018 16:00:42 GMT
NEL: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
Report-To: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
Strict-Transport-Security: max-age=43200000; includeSubDomains;
Timing-Allow-Origin: *
Vary: Accept-Encoding
X-Nginx-Request-Id: 45e132768bc8f35c
Accept-Ranges: bytes

fittoday.ru/skins/laurels/img/footer-top.gif

78.36.204.173

200 OK

644 B

URL GET HTTP/1.1
fittoday.ru/skins/laurels/img/footer-top.gif
IP
78.36.204.173:80
ASN
#12389 Rostelecom

Requested by
http://fittoday.ru/

File type
GIF image data, version 89a, 36 x 50
Size
644 B (644 bytes)
Hash
edd2c28e4bd85cb31fe344457b90467a
7b817b2f019fce0429e5e5be4d29e5a7a142f2cb
0302990d63378dbfbe7994a9c04a3cfd64fa4194a0248ff954485347205996ce

HTTP Headers

GET /skins/laurels/img/footer-top.gif HTTP/1.1
Host: fittoday.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://fittoday.ru/skins/laurels/css/bordo/style.css
Cookie: PHPSESSID=d679bc7a16766d2ff17b18e27305c7dd; SEDITIO=MDpfOjA6XzpsYXVyZWxz
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 09:36:21 GMT
Content-Type: image/gif
Content-Length: 644
Accept-Ranges: bytes
Last-Modified: Wed, 16 Jan 2008 21:18:58 GMT
Expires: Thu, 17 Apr 2025 22:00:00 GMT

www.acint.net/aci.js

193.3.184.131

200 OK

8.8 kB

URL GET HTTP/2
www.acint.net/aci.js
IP
193.3.184.131:443
ASN
#50214 QWARTA LLC

Requested by
http://fittoday.ru/
Certificate
IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT

File type
JavaScript source, ASCII text, with very long lines (31112), with no line terminators
Size
8.8 kB (8760 bytes)
Hash
e81f962d48edbcbedc89edfdb08d0b3c
324f1ffc62d43e229b192083b118b1ac4a5643c6
d9453129c16b0215069d80e4b526c0546b259fae8d615e1b3aa775a8d76bac57

HTTP Headers

GET /aci.js HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://fittoday.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty
date: Thu, 18 Apr 2024 09:36:21 GMT
content-type: application/x-javascript
content-length: 8760
last-modified: Wed, 17 Jan 2024 22:00:10 GMT
etag: "65a84dea-2238"
content-encoding: gzip
expires: Thu, 18 Apr 2024 21:36:21 GMT
cache-control: max-age=43200
X-Firefox-Spdy: h2

fittoday.ru/favicon.ico

78.36.204.173

200 OK

1.0 kB

URL GET HTTP/1.1
fittoday.ru/favicon.ico
IP
78.36.204.173:80
ASN
#12389 Rostelecom

Requested by
http://fittoday.ru/

File type
GIF image data, version 89a, 16 x 16
Size
1.0 kB (1034 bytes)
Hash
7f23ecbf39d9dccea22fb4787dc72aae
4ec2d437a9bd7177b3d5ba47330f6eb72bce6696
d615a75fcbe56c087d0b09f1cb527a4a39bd7ba3460e1278c875044922ec8b41

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: fittoday.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://fittoday.ru/
Cookie: PHPSESSID=d679bc7a16766d2ff17b18e27305c7dd; SEDITIO=MDpfOjA6XzpsYXVyZWxz
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 09:36:22 GMT
Content-Type: image/x-icon
Content-Length: 1034
Accept-Ranges: bytes
Last-Modified: Tue, 05 Aug 2008 07:00:32 GMT
Expires: Thu, 17 Apr 2025 22:00:00 GMT

www.acint.net/hit/?v=0.7.0&uid=ce9ce236-23cf-40f2-9c8c-509c73232946&dp=10&tz=%2B00%3A00&nc=595340&u=http%3A%2F%2Ffittoday.ru%2F&r=&rs=1280x1024&t=%D0%91%D0%BE%D0%B4%D0%B8%D0%B1%D0%B8%D0%BB%D0%B4%D0%B8%D0%BD%D0%B3%20%D0%B4%D0%BB%D1%8F%20%D0%BD%D0%B0%D1%87%D0%B8%D0%BD%D0%B0%D1%8E%D1%89%D0%B8%D1%85%20%D0%B8%20%D0%BF%D1%80%D0%BE%D0%B4%D0%B2%D0%B8%D0%BD%D1%83%D1%82%D1%8B%D1%85.&oE=1&oP=1&dT=2024-04-18T09%3A36%3A22.075&fu=43e1083b-c0b4-4ad1-9580-1c9aa02148f1

193.3.184.131

200 OK

43 B

URL GET HTTP/2
www.acint.net/hit/?v=0.7.0&uid=ce9ce236-23cf-40f2-9c8c-509c73232946&dp=10&tz=%2B00%3A00&nc=595340&u=http%3A%2F%2Ffittoday.ru%2F&r=&rs=1280x1024&t=%D0%91%D0%BE%D0%B4%D0%B8%D0%B1%D0%B8%D0%BB%D0%B4%D0%B8%D0%BD%D0%B3%20%D0%B4%D0%BB%D1%8F%20%D0%BD%D0%B0%D1%87%D0%B8%D0%BD%D0%B0%D1%8E%D1%89%D0%B8%D1%85%20%D0%B8%20%D0%BF%D1%80%D0%BE%D0%B4%D0%B2%D0%B8%D0%BD%D1%83%D1%82%D1%8B%D1%85.&oE=1&oP=1&dT=2024-04-18T09%3A36%3A22.075&fu=43e1083b-c0b4-4ad1-9580-1c9aa02148f1
IP
193.3.184.131:443
ASN
#50214 QWARTA LLC

Requested by
http://fittoday.ru/
Certificate
IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /hit/?v=0.7.0&uid=ce9ce236-23cf-40f2-9c8c-509c73232946&dp=10&tz=%2B00%3A00&nc=595340&u=http%3A%2F%2Ffittoday.ru%2F&r=&rs=1280x1024&t=%D0%91%D0%BE%D0%B4%D0%B8%D0%B1%D0%B8%D0%BB%D0%B4%D0%B8%D0%BD%D0%B3%20%D0%B4%D0%BB%D1%8F%20%D0%BD%D0%B0%D1%87%D0%B8%D0%BD%D0%B0%D1%8E%D1%89%D0%B8%D1%85%20%D0%B8%20%D0%BF%D1%80%D0%BE%D0%B4%D0%B2%D0%B8%D0%BD%D1%83%D1%82%D1%8B%D1%85.&oE=1&oP=1&dT=2024-04-18T09%3A36%3A22.075&fu=43e1083b-c0b4-4ad1-9580-1c9aa02148f1 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://fittoday.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
set-cookie: aid=fwAAAmYg6Zan/Cy1nCRUAkr7eGasjUmWgBBFPeAKsKqfh0q2; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2

www.acint.net/mc/?dp=10

193.3.184.131

302 Found

154 B

URL GET HTTP/2
www.acint.net/mc/?dp=10
IP
193.3.184.131:443
ASN
#50214 QWARTA LLC

Requested by
http://fittoday.ru/
Certificate
IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
154 B (154 bytes)
Hash
cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319

HTTP Headers

GET /mc/?dp=10 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://fittoday.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
server: openresty
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: text/html
content-length: 154
location: /mc/?dp=10&tc=1
set-cookie: test_cookie=CheckForPermission; path=/; Secure; SameSite=None; domain=.acint.net; expires=Thu, 18-Apr-24 09:46:22 GMT
aid=fwAAB2Yg6ZaqgSzMn1vJAhkc5RHNpHlUrCTPE5sKABvIvVKI; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2

a.utraff.com/sync?ssp=8&id=0700007F96E92066CC2C81AA02C95B9F

104.26.6.189

204 No Content

0 B

URL GET HTTP/2
a.utraff.com/sync?ssp=8&id=0700007F96E92066CC2C81AA02C95B9F
IP
104.26.6.189:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerGoogle Trust Services LLC
Subjectutraff.com
Fingerprint33:5E:E6:D1:25:D0:06:4F:AC:56:7F:BD:6C:A7:DD:31:72:25:35:57
ValiditySat, 06 Apr 2024 06:57:44 GMT - Fri, 05 Jul 2024 06:57:43 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sync?ssp=8&id=0700007F96E92066CC2C81AA02C95B9F HTTP/1.1
Host: a.utraff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: text/plain
set-cookie: preutid=1; Expires=Sat, 18 May 2024 12:36:22 GMT; Domain=.itraff.net; SameSite=None; Secure; Path=/
preutid=1; Expires=Sat, 18 May 2024 12:36:22 GMT; Domain=.utraff.com; SameSite=None; Secure; Path=/
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uXTMX%2BGnvjmJaT%2Bknb1BP8itv1s6vg%2F1RfiyFqaOu%2BYrzgPHZpHlqMMGhfRiBV9romJ5YdC41f3uKR8%2FRcel%2BOdO60lbnXd5pHT7SmTWzTnASpKGLe5uEQnmgEbIqw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8763ab8b48300b41-OSL
X-Firefox-Spdy: h2

dm-eu.hybrid.ai/match?id=106&vid=0700007F96E92066CC2C81AA02C95B9F

37.230.131.22

204 No Content

0 B

URL GET HTTP/2
dm-eu.hybrid.ai/match?id=106&vid=0700007F96E92066CC2C81AA02C95B9F
IP
37.230.131.22:443
ASN
#200197 Hybrid Adtech Sp.z.o.o.

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerSectigo Limited
Subject*.hybrid.ai
Fingerprint40:F9:88:C5:EF:2B:26:9C:61:DC:CC:ED:B1:67:03:F4:E2:CC:B7:C8
ValidityThu, 14 Sep 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match?id=106&vid=0700007F96E92066CC2C81AA02C95B9F HTTP/1.1
Host: dm-eu.hybrid.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Thu, 18 Apr 2024 09:36:22 GMT
cache-control: no-cache, no-store
pragma: no-cache
expires: -1
set-cookie: vid=a522213a413793196846; Expires=Fri, 18 Apr 2025 09:36:21 GMT; Domain=.hybrid.ai; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC"
x-mode: 574
x-xss-protection: 1; mode=block
access-control-allow-origin: https://www.acint.net
access-control-allow-credentials: true
server: Hybrid Web Server
X-Firefox-Spdy: h2

s.uuidksinc.net/match/396/?remote_uid=0700007F96E92066CC2C81AA02C95B9F

185.98.54.153

302 Found

0 B

URL GET HTTP/2
s.uuidksinc.net/match/396/?remote_uid=0700007F96E92066CC2C81AA02C95B9F
IP
185.98.54.153:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subjectuuidksinc.net
Fingerprint60:4F:7E:0B:93:FF:04:3B:02:AF:A2:9C:5C:5D:D8:F5:78:B9:39:3A
ValidityFri, 08 Mar 2024 23:20:32 GMT - Thu, 06 Jun 2024 23:20:31 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match/396/?remote_uid=0700007F96E92066CC2C81AA02C95B9F HTTP/1.1
Host: s.uuidksinc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: nginx/1.23.2
date: Thu, 18 Apr 2024 09:36:22 GMT
content-length: 0
location: https://www.acint.net/match?dp=127&euid=wXEHo04O8LIYQeWJE4SR
set-cookie: jcsuuid=wXEHo04O8LIYQeWJE4SR; expires=Fri, 18 Apr 2025 09:36:22 GMT; domain=uuidksinc.net; path=/; secure; SameSite=None
X-Firefox-Spdy: h2

sync.adspend.space/sape?uid=0700007F96E92066CC2C81AA02C95B9F

5.189.234.229

302 Found

149 B

URL GET HTTP/2
sync.adspend.space/sape?uid=0700007F96E92066CC2C81AA02C95B9F
IP
5.189.234.229:443
ASN
#50340 OOO Network of data-centers Selectel

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subject*.adspend.space
FingerprintFC:E5:0A:51:9B:74:9C:B3:34:C6:4C:96:12:40:41:FB:85:A4:B5:1A
ValidityThu, 22 Feb 2024 13:02:14 GMT - Wed, 22 May 2024 13:02:13 GMT

File type
HTML document, ASCII text
Size
149 B (149 bytes)
Hash
3a1b10f5fcfcceff423051415ece9889
93bbe344485a6387528b138c7c3acbdfb3e20b0a
c9cd0536f73b72272b4a6b96b9830c74d1170c7824ad8bc6cce9e5f05374d8c9

HTTP Headers

GET /sape?uid=0700007F96E92066CC2C81AA02C95B9F HTTP/1.1
Host: sync.adspend.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: nginx/1.22.1
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: text/html; charset=utf-8
content-length: 149
location: https://sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3Dd543ad9e-5223-48b4-9fda-f864fca9560e
set-cookie: as-user=d543ad9e-5223-48b4-9fda-f864fca9560e; Path=/; Max-Age=31536000; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

sync.dmp.otm-r.com/match/sape?id=0700007F96E92066CC2C81AA02C95B9F

194.55.244.177

302 Found

96 B

URL GET HTTP/2
sync.dmp.otm-r.com/match/sape?id=0700007F96E92066CC2C81AA02C95B9F
IP
194.55.244.177:443
ASN
#34959 Kviktel LLC

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerGlobalSign nv-sa
Subject*.dmp.otm-r.com
FingerprintC6:A2:9D:82:0D:D1:C1:2D:A4:ED:7F:05:13:52:5B:94:6B:10:58:D6
ValidityMon, 19 Jun 2023 10:50:51 GMT - Sat, 20 Jul 2024 10:50:50 GMT

File type
HTML document, ASCII text
Size
96 B (96 bytes)
Hash
96d6fc1b39388a52a066739a7691c3f6
c49aa9ed1d597332f96eaedfd0bdd7e88fb42392
3b1f722064f786a28e2f702a14718c6e52f9b27e85e4d735dd5c832ee4885f81

HTTP Headers

GET /match/sape?id=0700007F96E92066CC2C81AA02C95B9F HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: nginx/1.23.2
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: text/html; charset=utf-8
content-length: 96
access-control-allow-origin: *
location: /match/sape?id=0700007F96E92066CC2C81AA02C95B9F&otcm_check=1713432982
set-cookie: mpid=NjYyMGU5OTYwMTE2YjZmZQ==; Path=/; Domain=otm-r.com; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2

ssp-rtb.sape.ru/rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D

193.3.184.25

302 Moved Temporarily

142 B

URL GET HTTP/1.1
ssp-rtb.sape.ru/rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D
IP
193.3.184.25:443
ASN
#50214 QWARTA LLC

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subject*.sape.ru
Fingerprint73:95:22:E3:B6:12:3E:90:3A:10:10:DC:38:ED:28:2D:82:7B:EB:E2
ValidityWed, 10 Apr 2024 03:20:28 GMT - Tue, 09 Jul 2024 03:20:27 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Thu, 18 Apr 2024 09:36:22 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
P3P: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Location: https://acint.net/match?dp=14&euid=5003420A96E920666300B17402EF0806
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Set-Cookie: sspuid=CkIDUGYg6ZZ0sQBjBgjvAnx/WJDGm4cbuSdw1gnWN0Fi0r4y; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.ssp-rtb.sape.ru; path=/; Secure; SameSite=None

www.acint.net/oci.js?t=1713432982081

193.3.184.131

200 OK

15 kB

URL GET HTTP/2
www.acint.net/oci.js?t=1713432982081
IP
193.3.184.131:443
ASN
#50214 QWARTA LLC

Requested by
http://fittoday.ru/
Certificate
IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT

File type
gzip compressed data, max speed, from Unix
Size
15 kB (15064 bytes)
Hash
0f5e8a04fd72cbcd0a7885f6cccf4a75
24be4880e7f2abe4edbdebf0a6521966a573a57f
eb667d1b4128d528709a880d898ac845f6e5a857e8bd6e2fef9387af37eaaef8

HTTP Headers

GET /oci.js?t=1713432982081 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://fittoday.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: application/x-javascript
last-modified: Wed, 17 Jan 2024 22:00:10 GMT
etag: W/"65a84dea-7dac"
content-encoding: gzip
X-Firefox-Spdy: h2

exchange.buzzoola.com/cookiesync/dsp/sape-banner?uid=0700007F96E92066CC2C81AA02C95B9F&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D126

176.9.158.88

307 Temporary Redirect

269 B

URL GET HTTP/2
exchange.buzzoola.com/cookiesync/dsp/sape-banner?uid=0700007F96E92066CC2C81AA02C95B9F&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D126
IP
176.9.158.88:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerSectigo Limited
Subject*.buzzoola.com
FingerprintE6:7F:94:98:CF:E4:CF:88:C7:8C:FC:16:A3:D7:D0:10:4E:EC:AB:F1
ValidityMon, 04 Sep 2023 00:00:00 GMT - Fri, 04 Oct 2024 23:59:59 GMT

File type
HTML document, ASCII text
Size
269 B (269 bytes)
Hash
14d587d9aa1d9fbd73c1020e5ac121a3
ac92a57f7e0feebb1e88d3089748e6fb216a7ef7
53620314f8e187987fffe657a0359c873957f2d8fd90edb97fb038a35ecb3c8e

HTTP Headers

GET /cookiesync/dsp/sape-banner?uid=0700007F96E92066CC2C81AA02C95B9F&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D126 HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 307 Temporary Redirect
server: nginx
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: text/html; charset=utf-8
content-length: 269
location: /cookiesync/dsp/sape-banner?set_buzzoola_cookie=t&uid=0700007F96E92066CC2C81AA02C95B9F&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D126
set-cookie: uuid=32b290db-22f3-40a4-78fa-cd4b36f1d20d; Path=/; Domain=buzzoola.com; Expires=Sat, 18 May 2024 09:36:22 GMT; Max-Age=2592000; Secure; SameSite=None
serverid: TODO
X-Firefox-Spdy: h2

sync.gonet-ads.com/match/sape.js?id=0700007F96E92066CC2C81AA02C95B9F

188.42.105.236

200 OK

43 B

URL GET HTTP/2
sync.gonet-ads.com/match/sape.js?id=0700007F96E92066CC2C81AA02C95B9F
IP
188.42.105.236:443
ASN
#7979 SERVERS-COM

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerSectigo Limited
Subject*.gonet-ads.com
Fingerprint2B:BE:BF:75:0A:67:AA:2D:FA:0A:7F:92:F4:37:AE:9B:DD:47:68:2D
ValidityWed, 07 Jun 2023 00:00:00 GMT - Tue, 11 Jun 2024 23:59:59 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7

HTTP Headers

GET /match/sape.js?id=0700007F96E92066CC2C81AA02C95B9F HTTP/1.1
Host: sync.gonet-ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2

sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3Dd543ad9e-5223-48b4-9fda-f864fca9560e

5.189.234.229

302 Found

102 B

URL GET HTTP/2
sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3Dd543ad9e-5223-48b4-9fda-f864fca9560e
IP
5.189.234.229:443
ASN
#50340 OOO Network of data-centers Selectel

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subject*.adspend.space
FingerprintFC:E5:0A:51:9B:74:9C:B3:34:C6:4C:96:12:40:41:FB:85:A4:B5:1A
ValidityThu, 22 Feb 2024 13:02:14 GMT - Wed, 22 May 2024 13:02:13 GMT

File type
HTML document, ASCII text
Size
102 B (102 bytes)
Hash
af05219d3ada2101367df5e0884032a6
bd121e20c9fec887890ee492e237c734e86bea4e
a64b8d1272e1035e8c3b357c1eb5698d51232f5b56c7baa36e3f2ebc3badb53d

HTTP Headers

GET /check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3Dd543ad9e-5223-48b4-9fda-f864fca9560e HTTP/1.1
Host: sync.adspend.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: as-user=d543ad9e-5223-48b4-9fda-f864fca9560e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
server: nginx/1.22.1
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: text/html; charset=utf-8
content-length: 102
location: https://www.acint.net/match?dp=98&euid=d543ad9e-5223-48b4-9fda-f864fca9560e
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: PUT, GET, POST, OPTIONS
access-control-allow-headers: Content-Type, authorization
access-control-max-age: 1728000
X-Firefox-Spdy: h2

sync.upravel.com/sape/sync

88.198.16.238

302 Found

0 B

URL GET HTTP/2
sync.upravel.com/sape/sync
IP
88.198.16.238:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerGlobalSign nv-sa
Subject*.upravel.com
Fingerprint4C:ED:03:57:58:43:18:2C:CC:41:F3:3B:19:72:75:BD:29:C1:04:08
ValiditySat, 29 Apr 2023 07:48:21 GMT - Thu, 30 May 2024 07:48:20 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sape/sync HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: nginx
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: image/png
content-length: 0
location: https://sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
set-cookie: session_tptc=1713432982455;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
session_tptc-legacy=1713432982455;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2

www.acint.net/match?dp=127&euid=wXEHo04O8LIYQeWJE4SR

193.3.184.131

302 Found

154 B

URL GET HTTP/2
www.acint.net/match?dp=127&euid=wXEHo04O8LIYQeWJE4SR
IP
193.3.184.131:443
ASN
#50214 QWARTA LLC

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
154 B (154 bytes)
Hash
cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319

HTTP Headers

GET /match?dp=127&euid=wXEHo04O8LIYQeWJE4SR HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: aid=fwAAB2Yg6ZaqgSzMn1vJAhkc5RHNpHlUrCTPE5sKABvIvVKI; test_cookie=CheckForPermission; cSyncDp14v6=1713432982; cSyncDp17v2=1713432982; cSyncDp45v5=1713432982; cSyncDp53v5=1713432982; cSyncDp62v2=1713432982; cSyncDp67v3=1713432982; cSyncDp68v3=1713432982; cSyncDp71v2=1713432982; cSyncDp80v2=1713432982; cSyncDp85v2=1713432982; cSyncDp95v4=1713432982; cSyncDp98v3=1713432982; cSyncDp104v2=1713432982; cSyncDp107v2=1713432982; cSyncDp110v3=1713432982; cSyncDp125v4=1713432982; cSyncDp126v3=1713432982; cSyncDp127v2=1713432982; cSyncDp129v2=1713432982; cSyncDp136v3=1713432982; cSyncDp146v2=1713432982; cSyncDp148v2=1713432982; cSyncDp149v3=1713432982; cSyncDp151v2=1713432982; cSyncDp251v1=1713432982; cSyncDp186v2=1713432982; cSyncDp217v2=1713432982; cSyncDp235v2=1713432982; cSyncDp239v2=1713432982; cSyncDp243v2=1713432982; cSyncDp260v2=1713432982; cSyncDp244v2=1713432982; cSyncDp248v2=1713432982; cSyncDp261v1=1713432982; cSyncDp289v2=1713432982; cSyncDp293v1=1713432982; cSyncDp296v2=1713432982
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
server: openresty
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: text/html
content-length: 154
location: https://ssp-rtb.sape.ru/rmatch?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D$%7BUSER_ID%7D&dp=14
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
set-cookie: cSyncDp14v4=1713432982; expires=Sat, 18-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

match.new-programmatic.com/userbind?src=sape&id=0700007F96E92066CC2C81AA02C95B9F

217.65.2.150

204 No Content

0 B

URL GET HTTP/1.1
match.new-programmatic.com/userbind?src=sape&id=0700007F96E92066CC2C81AA02C95B9F
IP
217.65.2.150:443
ASN
#3175 Citytelecom LLC

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subjectnew-programmatic.com
FingerprintDC:66:9C:C9:66:1A:E4:EF:2D:CF:20:88:F1:EB:C8:72:0E:CE:CD:2D
ValidityThu, 04 Apr 2024 19:59:41 GMT - Wed, 03 Jul 2024 19:59:40 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /userbind?src=sape&id=0700007F96E92066CC2C81AA02C95B9F HTTP/1.1
Host: match.new-programmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 204 No Content
Server: nginx/1.22.1
Date: Thu, 18 Apr 2024 09:36:22 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin

www.acint.net/oci/?v=0.7.0&uid=ce9ce236-23cf-40f2-9c8c-509c73232946&dp=10&tz=%2B00%3A00&nc=789281&oid=9ff350b615091c0f6cbf094af0928028

193.3.184.131

200 OK

43 B

URL GET HTTP/2
www.acint.net/oci/?v=0.7.0&uid=ce9ce236-23cf-40f2-9c8c-509c73232946&dp=10&tz=%2B00%3A00&nc=789281&oid=9ff350b615091c0f6cbf094af0928028
IP
193.3.184.131:443
ASN
#50214 QWARTA LLC

Requested by
http://fittoday.ru/
Certificate
IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /oci/?v=0.7.0&uid=ce9ce236-23cf-40f2-9c8c-509c73232946&dp=10&tz=%2B00%3A00&nc=789281&oid=9ff350b615091c0f6cbf094af0928028 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://fittoday.ru/
Cookie: aid=fwAAB2Yg6ZaqgSzMn1vJAhkc5RHNpHlUrCTPE5sKABvIvVKI; test_cookie=CheckForPermission; cSyncDp14v6=1713432982; cSyncDp17v2=1713432982; cSyncDp45v5=1713432982; cSyncDp53v5=1713432982; cSyncDp62v2=1713432982; cSyncDp67v3=1713432982; cSyncDp68v3=1713432982; cSyncDp71v2=1713432982; cSyncDp80v2=1713432982; cSyncDp85v2=1713432982; cSyncDp95v4=1713432982; cSyncDp98v3=1713432982; cSyncDp104v2=1713432982; cSyncDp107v2=1713432982; cSyncDp110v3=1713432982; cSyncDp125v4=1713432982; cSyncDp126v3=1713432982; cSyncDp127v2=1713432982; cSyncDp129v2=1713432982; cSyncDp136v3=1713432982; cSyncDp146v2=1713432982; cSyncDp148v2=1713432982; cSyncDp149v3=1713432982; cSyncDp151v2=1713432982; cSyncDp251v1=1713432982; cSyncDp186v2=1713432982; cSyncDp217v2=1713432982; cSyncDp235v2=1713432982; cSyncDp239v2=1713432982; cSyncDp243v2=1713432982; cSyncDp260v2=1713432982; cSyncDp244v2=1713432982; cSyncDp248v2=1713432982; cSyncDp261v1=1713432982; cSyncDp289v2=1713432982; cSyncDp293v1=1713432982; cSyncDp296v2=1713432982
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

sync.dmp.otm-r.com/match/sape?id=0700007F96E92066CC2C81AA02C95B9F&otcm_check=1713432982

194.55.244.177

302 Found

94 B

URL GET HTTP/2
sync.dmp.otm-r.com/match/sape?id=0700007F96E92066CC2C81AA02C95B9F&otcm_check=1713432982
IP
194.55.244.177:443
ASN
#34959 Kviktel LLC

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerGlobalSign nv-sa
Subject*.dmp.otm-r.com
FingerprintC6:A2:9D:82:0D:D1:C1:2D:A4:ED:7F:05:13:52:5B:94:6B:10:58:D6
ValidityMon, 19 Jun 2023 10:50:51 GMT - Sat, 20 Jul 2024 10:50:50 GMT

File type
HTML document, ASCII text
Size
94 B (94 bytes)
Hash
d85391b731b58a52bd1d47c152a8cb26
829ba1106fcc31bee07b882084d817f3841ba3fd
3f056887136ee16d64071696fd86bc86276d53d112596accb455b2a54de00835

HTTP Headers

GET /match/sape?id=0700007F96E92066CC2C81AA02C95B9F&otcm_check=1713432982 HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: mpid=NjYyMGU5OTYwMTE2YjZmZQ==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
server: nginx/1.23.2
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: text/html; charset=utf-8
content-length: 94
access-control-allow-origin: *
location: https://www.acint.net/match?dp=68&euid=NjYyMGU5OTYwMTE2YjZmZQ%3D%3D
set-cookie: mpid=NjYyMGU5OTYwMTE2YjZmZQ==; Path=/; Domain=otm-r.com; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2

acint.net/match?dp=14&euid=5003420A96E920666300B17402EF0806

193.3.184.131

200 OK

43 B

URL GET HTTP/2
acint.net/match?dp=14&euid=5003420A96E920666300B17402EF0806
IP
193.3.184.131:443
ASN
#50214 QWARTA LLC

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=14&euid=5003420A96E920666300B17402EF0806 HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: aid=fwAAB2Yg6ZaqgSzMn1vJAhkc5RHNpHlUrCTPE5sKABvIvVKI; test_cookie=CheckForPermission; cSyncDp14v6=1713432982; cSyncDp17v2=1713432982; cSyncDp45v5=1713432982; cSyncDp53v5=1713432982; cSyncDp62v2=1713432982; cSyncDp67v3=1713432982; cSyncDp68v3=1713432982; cSyncDp71v2=1713432982; cSyncDp80v2=1713432982; cSyncDp85v2=1713432982; cSyncDp95v4=1713432982; cSyncDp98v3=1713432982; cSyncDp104v2=1713432982; cSyncDp107v2=1713432982; cSyncDp110v3=1713432982; cSyncDp125v4=1713432982; cSyncDp126v3=1713432982; cSyncDp127v2=1713432982; cSyncDp129v2=1713432982; cSyncDp136v3=1713432982; cSyncDp146v2=1713432982; cSyncDp148v2=1713432982; cSyncDp149v3=1713432982; cSyncDp151v2=1713432982; cSyncDp251v1=1713432982; cSyncDp186v2=1713432982; cSyncDp217v2=1713432982; cSyncDp235v2=1713432982; cSyncDp239v2=1713432982; cSyncDp243v2=1713432982; cSyncDp260v2=1713432982; cSyncDp244v2=1713432982; cSyncDp248v2=1713432982; cSyncDp261v1=1713432982; cSyncDp289v2=1713432982; cSyncDp293v1=1713432982; cSyncDp296v2=1713432982
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

match.ohmy.bid/cm?ssp=sape&redirect_url=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D217%26euid%3D%7Buid%7D

167.235.9.235

302 Found

0 B

URL GET HTTP/2
match.ohmy.bid/cm?ssp=sape&redirect_url=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D217%26euid%3D%7Buid%7D
IP
167.235.9.235:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subjectmatch.ohmy.bid
Fingerprint93:CC:18:6B:4E:10:D1:20:7F:8C:75:21:78:30:60:00:A2:B6:B0:39
ValiditySat, 23 Mar 2024 20:09:13 GMT - Fri, 21 Jun 2024 20:09:12 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cm?ssp=sape&redirect_url=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D217%26euid%3D%7Buid%7D HTTP/1.1
Host: match.ohmy.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: nginx
date: Thu, 18 Apr 2024 09:36:22 GMT
content-length: 0
bidder: bid-10 1.1531.0cf371f1
location: https://mc.acint.net/match?dp=217&euid=f0085313-0f2f-4683-8e15-b4d029867fba
set-cookie: uid=f0085313-0f2f-4683-8e15-b4d029867fba.6620e996.7234d397a9cbe093; domain=.ohmy.bid; path=/; expires=Sat, 18-May-2024 09:36:22 GMT; SameSite=None; Secure;
access-control-allow-credentials: true
X-Firefox-Spdy: h2

pix.bumlam.com/sync/sape/check?sspuid=0700007F96E92066CC2C81AA02C95B9F

31.172.81.172

302 Found

0 B

URL GET HTTP/1.1
pix.bumlam.com/sync/sape/check?sspuid=0700007F96E92066CC2C81AA02C95B9F
IP
31.172.81.172:443
ASN
#44066 firstcolo GmbH

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subject*.bumlam.com
Fingerprint9F:E0:4A:B3:57:B0:3C:3E:13:7F:9F:FF:82:A2:91:87:45:9F:A4:7F
ValidityThu, 28 Mar 2024 09:09:43 GMT - Wed, 26 Jun 2024 09:09:42 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sync/sape/check?sspuid=0700007F96E92066CC2C81AA02C95B9F HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Server: nginx
Date: Thu, 18 Apr 2024 09:36:22 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://sync.bumlam.com/?src=sape

pixel.dsp.onetarget.ru/sape/pixel?id=0700007F96E92066CC2C81AA02C95B9F

130.193.53.230

302 Found

0 B

URL GET HTTP/2
pixel.dsp.onetarget.ru/sape/pixel?id=0700007F96E92066CC2C81AA02C95B9F
IP
130.193.53.230:443
ASN
#200350 Yandex.Cloud LLC

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subjectpixel.dsp.onetarget.ru
FingerprintC3:A5:98:2E:46:6A:1A:4F:85:6D:4A:FE:11:88:B1:D1:5F:AE:43:DD
ValidityFri, 15 Mar 2024 12:44:47 GMT - Thu, 13 Jun 2024 12:44:46 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sape/pixel?id=0700007F96E92066CC2C81AA02C95B9F HTTP/1.1
Host: pixel.dsp.onetarget.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Thu, 18 Apr 2024 09:36:22 GMT
content-length: 0
location: https://x01.aidata.io/0.gif?pid=5813217&id=011e00bf-fe81-44a2-9ebf-571a5fb64f47
set-cookie: USER_ID=011e00bf-fe81-44a2-9ebf-571a5fb64f47;max-age=2147483647;Secure;HttpOnly;SameSite=None
SAPE_USER_ID=0700007F96E92066CC2C81AA02C95B9F;max-age=30758400;Secure;HttpOnly;SameSite=None
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-max-age: 1728000
X-Firefox-Spdy: h2

exchange.buzzoola.com/cookiesync/dsp/sape-banner?set_buzzoola_cookie=t&uid=0700007F96E92066CC2C81AA02C95B9F&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D126

176.9.158.88

302 Found

156 B

URL GET HTTP/2
exchange.buzzoola.com/cookiesync/dsp/sape-banner?set_buzzoola_cookie=t&uid=0700007F96E92066CC2C81AA02C95B9F&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D126
IP
176.9.158.88:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerSectigo Limited
Subject*.buzzoola.com
FingerprintE6:7F:94:98:CF:E4:CF:88:C7:8C:FC:16:A3:D7:D0:10:4E:EC:AB:F1
ValidityMon, 04 Sep 2023 00:00:00 GMT - Fri, 04 Oct 2024 23:59:59 GMT

File type
HTML document, ASCII text
Size
156 B (156 bytes)
Hash
b2d33a3c90ee1851e8ad75c1a50ca8ab
c728ce7af0375b4d914bd4689db4781c8c24b60a
f06f3b4042b17dcfda1da753a173827e1dd7e7860621a8029a74712159e9bbbd

HTTP Headers

GET /cookiesync/dsp/sape-banner?set_buzzoola_cookie=t&uid=0700007F96E92066CC2C81AA02C95B9F&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D126 HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: uuid=32b290db-22f3-40a4-78fa-cd4b36f1d20d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
server: nginx
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: text/html; charset=utf-8
content-length: 156
location: https://mc.acint.net/rmatch?dp=126&euid=32b290db-22f3-40a4-78fa-cd4b36f1d20d&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D126
serverid: TODO
X-Firefox-Spdy: h2

sync.dsp.solta.io/match/sape?id=0700007F96E92066CC2C81AA02C95B9F

217.199.220.73

200 OK

43 B

URL GET HTTP/2
sync.dsp.solta.io/match/sape?id=0700007F96E92066CC2C81AA02C95B9F
IP
217.199.220.73:443
ASN
#61400 Start LLC

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerGlobalSign nv-sa
Subject*.dsp.solta.io
Fingerprint6D:7F:91:92:30:E1:6A:A0:9B:86:49:7A:21:7F:5B:A4:23:8F:92:BC
ValidityWed, 02 Aug 2023 16:38:38 GMT - Mon, 02 Sep 2024 16:38:37 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7

HTTP Headers

GET /match/sape?id=0700007F96E92066CC2C81AA02C95B9F HTTP/1.1
Host: sync.dsp.solta.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2

ssp-rtb.sape.ru/rmatch?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D$%7BUSER_ID%7D&dp=14

193.3.184.25

302 Moved Temporarily

142 B

URL GET HTTP/1.1
ssp-rtb.sape.ru/rmatch?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D$%7BUSER_ID%7D&dp=14
IP
193.3.184.25:443
ASN
#50214 QWARTA LLC

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subject*.sape.ru
Fingerprint73:95:22:E3:B6:12:3E:90:3A:10:10:DC:38:ED:28:2D:82:7B:EB:E2
ValidityWed, 10 Apr 2024 03:20:28 GMT - Tue, 09 Jul 2024 03:20:27 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /rmatch?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D$%7BUSER_ID%7D&dp=14 HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: sspuid=CkIDUGYg6ZZ0sQBjBgjvAnx/WJDGm4cbuSdw1gnWN0Fi0r4y
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Thu, 18 Apr 2024 09:36:22 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
P3P: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Location: https://acint.net/match?dp=14&euid=5003420A96E920666300B17402EF0806
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0

www.acint.net/match?dp=98&euid=d543ad9e-5223-48b4-9fda-f864fca9560e

193.3.184.131

200 OK

43 B

URL GET HTTP/2
www.acint.net/match?dp=98&euid=d543ad9e-5223-48b4-9fda-f864fca9560e
IP
193.3.184.131:443
ASN
#50214 QWARTA LLC

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=98&euid=d543ad9e-5223-48b4-9fda-f864fca9560e HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: aid=fwAAB2Yg6ZaqgSzMn1vJAhkc5RHNpHlUrCTPE5sKABvIvVKI; test_cookie=CheckForPermission; cSyncDp14v6=1713432982; cSyncDp17v2=1713432982; cSyncDp45v5=1713432982; cSyncDp53v5=1713432982; cSyncDp62v2=1713432982; cSyncDp67v3=1713432982; cSyncDp68v3=1713432982; cSyncDp71v2=1713432982; cSyncDp80v2=1713432982; cSyncDp85v2=1713432982; cSyncDp95v4=1713432982; cSyncDp98v3=1713432982; cSyncDp104v2=1713432982; cSyncDp107v2=1713432982; cSyncDp110v3=1713432982; cSyncDp125v4=1713432982; cSyncDp126v3=1713432982; cSyncDp127v2=1713432982; cSyncDp129v2=1713432982; cSyncDp136v3=1713432982; cSyncDp146v2=1713432982; cSyncDp148v2=1713432982; cSyncDp149v3=1713432982; cSyncDp151v2=1713432982; cSyncDp251v1=1713432982; cSyncDp186v2=1713432982; cSyncDp217v2=1713432982; cSyncDp235v2=1713432982; cSyncDp239v2=1713432982; cSyncDp243v2=1713432982; cSyncDp260v2=1713432982; cSyncDp244v2=1713432982; cSyncDp248v2=1713432982; cSyncDp261v1=1713432982; cSyncDp289v2=1713432982; cSyncDp293v1=1713432982; cSyncDp296v2=1713432982; cSyncDp14v4=1713432982
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0

88.198.16.238

302 Found

0 B

URL GET HTTP/2
sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
IP
88.198.16.238:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerGlobalSign nv-sa
Subject*.upravel.com
Fingerprint4C:ED:03:57:58:43:18:2C:CC:41:F3:3B:19:72:75:BD:29:C1:04:08
ValiditySat, 29 Apr 2023 07:48:21 GMT - Thu, 30 May 2024 07:48:20 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0 HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: session_tptc=1713432982455
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
server: nginx
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: image/png
content-length: 0
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: user_id=21c447f6-3324-4426-a264-4512c520c1f0;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
user_id-legacy=21c447f6-3324-4426-a264-4512c520c1f0;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
location: https://www.acint.net/rmatch?dp=71&euid=21c447f6-3324-4426-a264-4512c520c1f0&r=https%3A%2F%2Facint.net%2Fcmatch%3Fdp%3D71
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2

www.acint.net/match?dp=68&euid=NjYyMGU5OTYwMTE2YjZmZQ%3D%3D

193.3.184.131

200 OK

43 B

URL GET HTTP/2
www.acint.net/match?dp=68&euid=NjYyMGU5OTYwMTE2YjZmZQ%3D%3D
IP
193.3.184.131:443
ASN
#50214 QWARTA LLC

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=68&euid=NjYyMGU5OTYwMTE2YjZmZQ%3D%3D HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: aid=fwAAB2Yg6ZaqgSzMn1vJAhkc5RHNpHlUrCTPE5sKABvIvVKI; test_cookie=CheckForPermission; cSyncDp14v6=1713432982; cSyncDp17v2=1713432982; cSyncDp45v5=1713432982; cSyncDp53v5=1713432982; cSyncDp62v2=1713432982; cSyncDp67v3=1713432982; cSyncDp68v3=1713432982; cSyncDp71v2=1713432982; cSyncDp80v2=1713432982; cSyncDp85v2=1713432982; cSyncDp95v4=1713432982; cSyncDp98v3=1713432982; cSyncDp104v2=1713432982; cSyncDp107v2=1713432982; cSyncDp110v3=1713432982; cSyncDp125v4=1713432982; cSyncDp126v3=1713432982; cSyncDp127v2=1713432982; cSyncDp129v2=1713432982; cSyncDp136v3=1713432982; cSyncDp146v2=1713432982; cSyncDp148v2=1713432982; cSyncDp149v3=1713432982; cSyncDp151v2=1713432982; cSyncDp251v1=1713432982; cSyncDp186v2=1713432982; cSyncDp217v2=1713432982; cSyncDp235v2=1713432982; cSyncDp239v2=1713432982; cSyncDp243v2=1713432982; cSyncDp260v2=1713432982; cSyncDp244v2=1713432982; cSyncDp248v2=1713432982; cSyncDp261v1=1713432982; cSyncDp289v2=1713432982; cSyncDp293v1=1713432982; cSyncDp296v2=1713432982; cSyncDp14v4=1713432982
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

mc.acint.net/rmatch?dp=110&euid=5438f7e3a03e48c49c797161aa14ff75&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D110

193.3.184.131

302 Found

154 B

URL GET HTTP/2
mc.acint.net/rmatch?dp=110&euid=5438f7e3a03e48c49c797161aa14ff75&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D110
IP
193.3.184.131:443
ASN
#50214 QWARTA LLC

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
154 B (154 bytes)
Hash
cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319

HTTP Headers

GET /rmatch?dp=110&euid=5438f7e3a03e48c49c797161aa14ff75&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D110 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: aid=fwAAB2Yg6ZaqgSzMn1vJAhkc5RHNpHlUrCTPE5sKABvIvVKI; test_cookie=CheckForPermission; cSyncDp14v6=1713432982; cSyncDp17v2=1713432982; cSyncDp45v5=1713432982; cSyncDp53v5=1713432982; cSyncDp62v2=1713432982; cSyncDp67v3=1713432982; cSyncDp68v3=1713432982; cSyncDp71v2=1713432982; cSyncDp80v2=1713432982; cSyncDp85v2=1713432982; cSyncDp95v4=1713432982; cSyncDp98v3=1713432982; cSyncDp104v2=1713432982; cSyncDp107v2=1713432982; cSyncDp110v3=1713432982; cSyncDp125v4=1713432982; cSyncDp126v3=1713432982; cSyncDp127v2=1713432982; cSyncDp129v2=1713432982; cSyncDp136v3=1713432982; cSyncDp146v2=1713432982; cSyncDp148v2=1713432982; cSyncDp149v3=1713432982; cSyncDp151v2=1713432982; cSyncDp251v1=1713432982; cSyncDp186v2=1713432982; cSyncDp217v2=1713432982; cSyncDp235v2=1713432982; cSyncDp239v2=1713432982; cSyncDp243v2=1713432982; cSyncDp260v2=1713432982; cSyncDp244v2=1713432982; cSyncDp248v2=1713432982; cSyncDp261v1=1713432982; cSyncDp289v2=1713432982; cSyncDp293v1=1713432982; cSyncDp296v2=1713432982; cSyncDp14v4=1713432982
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
server: openresty
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: text/html
content-length: 154
location: https://mc.acint.net/cmatch?dp=110
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

www.acint.net/match?dp=129&euid=gw2whqn592

193.3.184.131

200 OK

43 B

URL GET HTTP/2
www.acint.net/match?dp=129&euid=gw2whqn592
IP
193.3.184.131:443
ASN
#50214 QWARTA LLC

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=129&euid=gw2whqn592 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: aid=fwAAB2Yg6ZaqgSzMn1vJAhkc5RHNpHlUrCTPE5sKABvIvVKI; test_cookie=CheckForPermission; cSyncDp14v6=1713432982; cSyncDp17v2=1713432982; cSyncDp45v5=1713432982; cSyncDp53v5=1713432982; cSyncDp62v2=1713432982; cSyncDp67v3=1713432982; cSyncDp68v3=1713432982; cSyncDp71v2=1713432982; cSyncDp80v2=1713432982; cSyncDp85v2=1713432982; cSyncDp95v4=1713432982; cSyncDp98v3=1713432982; cSyncDp104v2=1713432982; cSyncDp107v2=1713432982; cSyncDp110v3=1713432982; cSyncDp125v4=1713432982; cSyncDp126v3=1713432982; cSyncDp127v2=1713432982; cSyncDp129v2=1713432982; cSyncDp136v3=1713432982; cSyncDp146v2=1713432982; cSyncDp148v2=1713432982; cSyncDp149v3=1713432982; cSyncDp151v2=1713432982; cSyncDp251v1=1713432982; cSyncDp186v2=1713432982; cSyncDp217v2=1713432982; cSyncDp235v2=1713432982; cSyncDp239v2=1713432982; cSyncDp243v2=1713432982; cSyncDp260v2=1713432982; cSyncDp244v2=1713432982; cSyncDp248v2=1713432982; cSyncDp261v1=1713432982; cSyncDp289v2=1713432982; cSyncDp293v1=1713432982; cSyncDp296v2=1713432982; cSyncDp14v4=1713432982
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D95%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D95%26euid%3D

83.222.96.170

302 Found

126 B

URL GET HTTP/2
ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D95%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D95%26euid%3D
IP
83.222.96.170:443
ASN
#42632 MnogoByte LLC

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerGlobalSign nv-sa
Subject*.bestssp.com
Fingerprint25:15:42:2E:1C:54:0F:74:CF:89:02:5A:5E:AC:98:DA:1C:34:B3:B3
ValidityMon, 24 Jul 2023 17:15:54 GMT - Sat, 24 Aug 2024 17:15:53 GMT

File type
HTML document, ASCII text
Size
126 B (126 bytes)
Hash
f7056142c8b06ac2cf837a21736a6ea2
e542377d83ba33ce3408b7bac6263b37237958f1
6595271f15e0787b7a63c8dbc128c8b2467e5cea59f70131c3f9ae4135e15462

HTTP Headers

GET /sspmatch?url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D95%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D95%26euid%3D HTTP/1.1
Host: ssp.bestssp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: nginx/1.22.0
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: text/html; charset=utf-8
content-length: 126
location: https://mc.acint.net/rmatch?dp=95&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D95&euid=FTEOAQTE
set-cookie: uid=FTEOAQTE; Expires=Sun, 16 Apr 2034 09:36:22 GMT
X-Firefox-Spdy: h2

kimberlite.io/rtb/sync/sape2?u=0700007F96E92066CC2C81AA02C95B9F

217.199.220.44

307 Temporary Redirect

0 B

URL GET HTTP/1.1
kimberlite.io/rtb/sync/sape2?u=0700007F96E92066CC2C81AA02C95B9F
IP
217.199.220.44:443
ASN
#61400 Start LLC

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerGlobalSign nv-sa
Subject*.kimberlite.io
Fingerprint27:9B:57:5F:3C:19:A5:31:A3:1B:E6:A4:8E:CF:2F:73:78:4E:46:C1
ValidityThu, 29 Feb 2024 12:20:14 GMT - Tue, 01 Apr 2025 12:20:13 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rtb/sync/sape2?u=0700007F96E92066CC2C81AA02C95B9F HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Thu, 18 Apr 2024 09:36:22 GMT
Content-Length: 0
Connection: keep-alive
cache-control: no-store
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: u=ZiDpllmiY8w~oVRRJjh7LIuHehVW8w-R-6hjqyQ; path=/; max-age=7776000; samesite=none; httponly; secure
as=OFrH4WYg6ZY; max-age=604800; samesite=none; httponly; secure
f=https%3A%2F%2Fwww.acint.net%2Frmatch%3Fdp%3D243%26euid%3DZiDpllmiY8w%26r%3Dhttps%253A%252F%252Facint.net%252Fcmatch%253Fdp%253D243; max-age=30; samesite=none; httponly; secure
n=1; max-age=30; samesite=none; httponly; secure
location: https://sm.rtb.mts.ru/p?ssp=toptraffic&id=ZiDpllmiY8w
referrer-policy: no-referrer
server-timing: app;srv=6;dur=0.0003

mc.acint.net/match?dp=217&euid=f0085313-0f2f-4683-8e15-b4d029867fba

193.3.184.131

200 OK

43 B

URL GET HTTP/2
mc.acint.net/match?dp=217&euid=f0085313-0f2f-4683-8e15-b4d029867fba
IP
193.3.184.131:443
ASN
#50214 QWARTA LLC

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=217&euid=f0085313-0f2f-4683-8e15-b4d029867fba HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: aid=fwAAB2Yg6ZaqgSzMn1vJAhkc5RHNpHlUrCTPE5sKABvIvVKI; test_cookie=CheckForPermission; cSyncDp14v6=1713432982; cSyncDp17v2=1713432982; cSyncDp45v5=1713432982; cSyncDp53v5=1713432982; cSyncDp62v2=1713432982; cSyncDp67v3=1713432982; cSyncDp68v3=1713432982; cSyncDp71v2=1713432982; cSyncDp80v2=1713432982; cSyncDp85v2=1713432982; cSyncDp95v4=1713432982; cSyncDp98v3=1713432982; cSyncDp104v2=1713432982; cSyncDp107v2=1713432982; cSyncDp110v3=1713432982; cSyncDp125v4=1713432982; cSyncDp126v3=1713432982; cSyncDp127v2=1713432982; cSyncDp129v2=1713432982; cSyncDp136v3=1713432982; cSyncDp146v2=1713432982; cSyncDp148v2=1713432982; cSyncDp149v3=1713432982; cSyncDp151v2=1713432982; cSyncDp251v1=1713432982; cSyncDp186v2=1713432982; cSyncDp217v2=1713432982; cSyncDp235v2=1713432982; cSyncDp239v2=1713432982; cSyncDp243v2=1713432982; cSyncDp260v2=1713432982; cSyncDp244v2=1713432982; cSyncDp248v2=1713432982; cSyncDp261v1=1713432982; cSyncDp289v2=1713432982; cSyncDp293v1=1713432982; cSyncDp296v2=1713432982; cSyncDp14v4=1713432982
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

adx.com.ru/sape-sync?uid=0700007F96E92066CC2C81AA02C95B9F

83.222.116.186

429 Too Many Requests

169 B

URL GET HTTP/2
adx.com.ru/sape-sync?uid=0700007F96E92066CC2C81AA02C95B9F
IP
83.222.116.186:443
ASN
#42632 MnogoByte LLC

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerGlobalSign nv-sa
Subject*.adx.com.ru
FingerprintB6:86:21:C8:F9:AF:00:9E:42:EC:E3:77:AC:A3:5B:2B:E7:C4:46:B3
ValidityFri, 26 May 2023 11:44:59 GMT - Wed, 26 Jun 2024 11:44:58 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
169 B (169 bytes)
Hash
3456231c174fb2d76d51f73b828635a7
49c43f133ee881851becd78c2e9e885ebaad005e
02a097cad2b1a9db6797fdb73c0dcd0d66d8ae7d4b5f906658bb45a502c2c106

HTTP Headers

GET /sape-sync?uid=0700007F96E92066CC2C81AA02C95B9F HTTP/1.1
Host: adx.com.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 429 Too Many Requests
server: nginx/1.22.0
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: text/html
content-length: 169
X-Firefox-Spdy: h2

ssp.al-adtech.com/api/sync/sape

45.139.25.122

302 Found

0 B

URL GET HTTP/1.1
ssp.al-adtech.com/api/sync/sape
IP
45.139.25.122:443
ASN
#34959 Kviktel LLC

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subject*.al-adtech.com
Fingerprint09:19:46:AF:0C:12:1A:6D:06:41:56:6B:AF:2F:C2:69:A3:3F:1A:37
ValidityMon, 15 Apr 2024 04:45:07 GMT - Sun, 14 Jul 2024 04:45:06 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /api/sync/sape HTTP/1.1
Host: ssp.al-adtech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Server: nginx/1.20.1
Date: Thu, 18 Apr 2024 09:36:22 GMT
Content-Length: 0
Connection: keep-alive
Vary: Origin
Access-Control-Allow-Origin: 
Access-Control-Allow-Credentials: true
Location: https://mc.acint.net/rmatch?dp=261&euid=cb518daa-ecba-4793-8043-4ac04dc857e8&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D261
Set-Cookie: afp_cookie=gAAAAABmIOmWamRXlt9RLezwB1FPoDe4943X42kCcuKQR9PWeVkyIDlPy0fChApePuv2cb8BeMSjjH1SBOhyfKZaEADgiJhP0CDNneHb4akY5Jf6tOjGFUXc40x2S5MP46GRJBx-Rf8qXtNOTLkxcy0ZhZr9RZDSovp6RzX-QDXsuCV6lZwXIWURMl6v4dx2EEdbXt7-2Q-RI7PL3Ibwu0MVvnvrcJ13jQ==$; expires=Sat, 18 May 2024 09:36:22 GMT; path=/; secure; SameSite=None

sync.programmatica.com/match/01

158.160.128.78

200 OK

43 B

URL GET HTTP/2
sync.programmatica.com/match/01
IP
158.160.128.78:443
ASN
#200350 Yandex.Cloud LLC

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subjectsync.programmatica.com
Fingerprint4A:E3:48:0E:7D:F3:3F:AA:D4:E0:E7:46:CC:AF:29:0A:F0:5A:C2:57
ValiditySun, 24 Mar 2024 10:21:50 GMT - Sat, 22 Jun 2024 10:21:49 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7

HTTP Headers

GET /match/01 HTTP/1.1
Host: sync.programmatica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

cs.agency2.ru/p?ssp=sp&uid=0700007F96E92066CC2C81AA02C95B9F

23.111.107.44

301 Moved Permanently

0 B

URL GET HTTP/1.1
cs.agency2.ru/p?ssp=sp&uid=0700007F96E92066CC2C81AA02C95B9F
IP
23.111.107.44:443
ASN
#39134 Edinaya Set Limited Liability Company

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subjectapi.agency2.ru
Fingerprint02:6A:FB:9D:0A:83:4C:93:CA:FA:19:3D:E7:2F:70:6A:A8:40:97:BE
ValiditySun, 14 Apr 2024 23:34:36 GMT - Sat, 13 Jul 2024 23:34:35 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /p?ssp=sp&uid=0700007F96E92066CC2C81AA02C95B9F HTTP/1.1
Host: cs.agency2.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Date: Thu, 18 Apr 2024 09:36:22 GMT
Content-Length: 0
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://www.acint.net/match?dp=186&euid=ebe6b608-5d7f-437f-a532-075c850d812a
Set-Cookie: uuid=ebe6b608-5d7f-437f-a532-075c850d812a; expires=Wed, 09 Apr 2025 09:36:22 GMT; domain=agency2.ru; path=/; secure; SameSite=None
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.107.44

mc.acint.net/rmatch?dp=126&euid=32b290db-22f3-40a4-78fa-cd4b36f1d20d&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D126

193.3.184.131

302 Found

154 B

URL GET HTTP/2
mc.acint.net/rmatch?dp=126&euid=32b290db-22f3-40a4-78fa-cd4b36f1d20d&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D126
IP
193.3.184.131:443
ASN
#50214 QWARTA LLC

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
154 B (154 bytes)
Hash
cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319

HTTP Headers

GET /rmatch?dp=126&euid=32b290db-22f3-40a4-78fa-cd4b36f1d20d&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D126 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: aid=fwAAB2Yg6ZaqgSzMn1vJAhkc5RHNpHlUrCTPE5sKABvIvVKI; test_cookie=CheckForPermission; cSyncDp14v6=1713432982; cSyncDp17v2=1713432982; cSyncDp45v5=1713432982; cSyncDp53v5=1713432982; cSyncDp62v2=1713432982; cSyncDp67v3=1713432982; cSyncDp68v3=1713432982; cSyncDp71v2=1713432982; cSyncDp80v2=1713432982; cSyncDp85v2=1713432982; cSyncDp95v4=1713432982; cSyncDp98v3=1713432982; cSyncDp104v2=1713432982; cSyncDp107v2=1713432982; cSyncDp110v3=1713432982; cSyncDp125v4=1713432982; cSyncDp126v3=1713432982; cSyncDp127v2=1713432982; cSyncDp129v2=1713432982; cSyncDp136v3=1713432982; cSyncDp146v2=1713432982; cSyncDp148v2=1713432982; cSyncDp149v3=1713432982; cSyncDp151v2=1713432982; cSyncDp251v1=1713432982; cSyncDp186v2=1713432982; cSyncDp217v2=1713432982; cSyncDp235v2=1713432982; cSyncDp239v2=1713432982; cSyncDp243v2=1713432982; cSyncDp260v2=1713432982; cSyncDp244v2=1713432982; cSyncDp248v2=1713432982; cSyncDp261v1=1713432982; cSyncDp289v2=1713432982; cSyncDp293v1=1713432982; cSyncDp296v2=1713432982; cSyncDp14v4=1713432982
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
server: openresty
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: text/html
content-length: 154
location: https://mc.acint.net/cmatch?dp=126
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

acint.net/match?dp=14&euid=5003420A96E920666300B17402EF0806

193.3.184.131

200 OK

43 B

URL GET HTTP/2
acint.net/match?dp=14&euid=5003420A96E920666300B17402EF0806
IP
193.3.184.131:443
ASN
#50214 QWARTA LLC

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=14&euid=5003420A96E920666300B17402EF0806 HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: aid=fwAAB2Yg6ZaqgSzMn1vJAhkc5RHNpHlUrCTPE5sKABvIvVKI; test_cookie=CheckForPermission; cSyncDp14v6=1713432982; cSyncDp17v2=1713432982; cSyncDp45v5=1713432982; cSyncDp53v5=1713432982; cSyncDp62v2=1713432982; cSyncDp67v3=1713432982; cSyncDp68v3=1713432982; cSyncDp71v2=1713432982; cSyncDp80v2=1713432982; cSyncDp85v2=1713432982; cSyncDp95v4=1713432982; cSyncDp98v3=1713432982; cSyncDp104v2=1713432982; cSyncDp107v2=1713432982; cSyncDp110v3=1713432982; cSyncDp125v4=1713432982; cSyncDp126v3=1713432982; cSyncDp127v2=1713432982; cSyncDp129v2=1713432982; cSyncDp136v3=1713432982; cSyncDp146v2=1713432982; cSyncDp148v2=1713432982; cSyncDp149v3=1713432982; cSyncDp151v2=1713432982; cSyncDp251v1=1713432982; cSyncDp186v2=1713432982; cSyncDp217v2=1713432982; cSyncDp235v2=1713432982; cSyncDp239v2=1713432982; cSyncDp243v2=1713432982; cSyncDp260v2=1713432982; cSyncDp244v2=1713432982; cSyncDp248v2=1713432982; cSyncDp261v1=1713432982; cSyncDp289v2=1713432982; cSyncDp293v1=1713432982; cSyncDp296v2=1713432982; cSyncDp14v4=1713432982
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

www.acint.net/rmatch?dp=71&euid=21c447f6-3324-4426-a264-4512c520c1f0&r=https%3A%2F%2Facint.net%2Fcmatch%3Fdp%3D71

193.3.184.131

302 Found

154 B

URL GET HTTP/2
www.acint.net/rmatch?dp=71&euid=21c447f6-3324-4426-a264-4512c520c1f0&r=https%3A%2F%2Facint.net%2Fcmatch%3Fdp%3D71
IP
193.3.184.131:443
ASN
#50214 QWARTA LLC

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
154 B (154 bytes)
Hash
cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319

HTTP Headers

GET /rmatch?dp=71&euid=21c447f6-3324-4426-a264-4512c520c1f0&r=https%3A%2F%2Facint.net%2Fcmatch%3Fdp%3D71 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: aid=fwAAB2Yg6ZaqgSzMn1vJAhkc5RHNpHlUrCTPE5sKABvIvVKI; test_cookie=CheckForPermission; cSyncDp14v6=1713432982; cSyncDp17v2=1713432982; cSyncDp45v5=1713432982; cSyncDp53v5=1713432982; cSyncDp62v2=1713432982; cSyncDp67v3=1713432982; cSyncDp68v3=1713432982; cSyncDp71v2=1713432982; cSyncDp80v2=1713432982; cSyncDp85v2=1713432982; cSyncDp95v4=1713432982; cSyncDp98v3=1713432982; cSyncDp104v2=1713432982; cSyncDp107v2=1713432982; cSyncDp110v3=1713432982; cSyncDp125v4=1713432982; cSyncDp126v3=1713432982; cSyncDp127v2=1713432982; cSyncDp129v2=1713432982; cSyncDp136v3=1713432982; cSyncDp146v2=1713432982; cSyncDp148v2=1713432982; cSyncDp149v3=1713432982; cSyncDp151v2=1713432982; cSyncDp251v1=1713432982; cSyncDp186v2=1713432982; cSyncDp217v2=1713432982; cSyncDp235v2=1713432982; cSyncDp239v2=1713432982; cSyncDp243v2=1713432982; cSyncDp260v2=1713432982; cSyncDp244v2=1713432982; cSyncDp248v2=1713432982; cSyncDp261v1=1713432982; cSyncDp289v2=1713432982; cSyncDp293v1=1713432982; cSyncDp296v2=1713432982; cSyncDp14v4=1713432982
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
server: openresty
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: text/html
content-length: 154
location: https://acint.net/cmatch?dp=71
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

mc.acint.net/cmatch?dp=110

193.3.184.131

200 OK

43 B

URL GET HTTP/2
mc.acint.net/cmatch?dp=110
IP
193.3.184.131:443
ASN
#50214 QWARTA LLC

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /cmatch?dp=110 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: aid=fwAAB2Yg6ZaqgSzMn1vJAhkc5RHNpHlUrCTPE5sKABvIvVKI; test_cookie=CheckForPermission; cSyncDp14v6=1713432982; cSyncDp17v2=1713432982; cSyncDp45v5=1713432982; cSyncDp53v5=1713432982; cSyncDp62v2=1713432982; cSyncDp67v3=1713432982; cSyncDp68v3=1713432982; cSyncDp71v2=1713432982; cSyncDp80v2=1713432982; cSyncDp85v2=1713432982; cSyncDp95v4=1713432982; cSyncDp98v3=1713432982; cSyncDp104v2=1713432982; cSyncDp107v2=1713432982; cSyncDp110v3=1713432982; cSyncDp125v4=1713432982; cSyncDp126v3=1713432982; cSyncDp127v2=1713432982; cSyncDp129v2=1713432982; cSyncDp136v3=1713432982; cSyncDp146v2=1713432982; cSyncDp148v2=1713432982; cSyncDp149v3=1713432982; cSyncDp151v2=1713432982; cSyncDp251v1=1713432982; cSyncDp186v2=1713432982; cSyncDp217v2=1713432982; cSyncDp235v2=1713432982; cSyncDp239v2=1713432982; cSyncDp243v2=1713432982; cSyncDp260v2=1713432982; cSyncDp244v2=1713432982; cSyncDp248v2=1713432982; cSyncDp261v1=1713432982; cSyncDp289v2=1713432982; cSyncDp293v1=1713432982; cSyncDp296v2=1713432982; cSyncDp14v4=1713432982
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

mc.acint.net/rmatch?dp=95&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D95&euid=FTEOAQTE

193.3.184.131

302 Found

154 B

URL GET HTTP/2
mc.acint.net/rmatch?dp=95&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D95&euid=FTEOAQTE
IP
193.3.184.131:443
ASN
#50214 QWARTA LLC

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
154 B (154 bytes)
Hash
cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319

HTTP Headers

GET /rmatch?dp=95&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D95&euid=FTEOAQTE HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: aid=fwAAB2Yg6ZaqgSzMn1vJAhkc5RHNpHlUrCTPE5sKABvIvVKI; test_cookie=CheckForPermission; cSyncDp14v6=1713432982; cSyncDp17v2=1713432982; cSyncDp45v5=1713432982; cSyncDp53v5=1713432982; cSyncDp62v2=1713432982; cSyncDp67v3=1713432982; cSyncDp68v3=1713432982; cSyncDp71v2=1713432982; cSyncDp80v2=1713432982; cSyncDp85v2=1713432982; cSyncDp95v4=1713432982; cSyncDp98v3=1713432982; cSyncDp104v2=1713432982; cSyncDp107v2=1713432982; cSyncDp110v3=1713432982; cSyncDp125v4=1713432982; cSyncDp126v3=1713432982; cSyncDp127v2=1713432982; cSyncDp129v2=1713432982; cSyncDp136v3=1713432982; cSyncDp146v2=1713432982; cSyncDp148v2=1713432982; cSyncDp149v3=1713432982; cSyncDp151v2=1713432982; cSyncDp251v1=1713432982; cSyncDp186v2=1713432982; cSyncDp217v2=1713432982; cSyncDp235v2=1713432982; cSyncDp239v2=1713432982; cSyncDp243v2=1713432982; cSyncDp260v2=1713432982; cSyncDp244v2=1713432982; cSyncDp248v2=1713432982; cSyncDp261v1=1713432982; cSyncDp289v2=1713432982; cSyncDp293v1=1713432982; cSyncDp296v2=1713432982; cSyncDp14v4=1713432982
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
server: openresty
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: text/html
content-length: 154
location: https://mc.acint.net/cmatch?dp=95
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

mc.acint.net/rmatch?dp=261&euid=cb518daa-ecba-4793-8043-4ac04dc857e8&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D261

193.3.184.131

302 Found

154 B

URL GET HTTP/2
mc.acint.net/rmatch?dp=261&euid=cb518daa-ecba-4793-8043-4ac04dc857e8&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D261
IP
193.3.184.131:443
ASN
#50214 QWARTA LLC

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
154 B (154 bytes)
Hash
cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319

HTTP Headers

GET /rmatch?dp=261&euid=cb518daa-ecba-4793-8043-4ac04dc857e8&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D261 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: aid=fwAAB2Yg6ZaqgSzMn1vJAhkc5RHNpHlUrCTPE5sKABvIvVKI; test_cookie=CheckForPermission; cSyncDp14v6=1713432982; cSyncDp17v2=1713432982; cSyncDp45v5=1713432982; cSyncDp53v5=1713432982; cSyncDp62v2=1713432982; cSyncDp67v3=1713432982; cSyncDp68v3=1713432982; cSyncDp71v2=1713432982; cSyncDp80v2=1713432982; cSyncDp85v2=1713432982; cSyncDp95v4=1713432982; cSyncDp98v3=1713432982; cSyncDp104v2=1713432982; cSyncDp107v2=1713432982; cSyncDp110v3=1713432982; cSyncDp125v4=1713432982; cSyncDp126v3=1713432982; cSyncDp127v2=1713432982; cSyncDp129v2=1713432982; cSyncDp136v3=1713432982; cSyncDp146v2=1713432982; cSyncDp148v2=1713432982; cSyncDp149v3=1713432982; cSyncDp151v2=1713432982; cSyncDp251v1=1713432982; cSyncDp186v2=1713432982; cSyncDp217v2=1713432982; cSyncDp235v2=1713432982; cSyncDp239v2=1713432982; cSyncDp243v2=1713432982; cSyncDp260v2=1713432982; cSyncDp244v2=1713432982; cSyncDp248v2=1713432982; cSyncDp261v1=1713432982; cSyncDp289v2=1713432982; cSyncDp293v1=1713432982; cSyncDp296v2=1713432982; cSyncDp14v4=1713432982
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
server: openresty
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: text/html
content-length: 154
location: https://mc.acint.net/cmatch?dp=261
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

www.acint.net/match?dp=186&euid=ebe6b608-5d7f-437f-a532-075c850d812a

193.3.184.131

200 OK

43 B

URL GET HTTP/2
www.acint.net/match?dp=186&euid=ebe6b608-5d7f-437f-a532-075c850d812a
IP
193.3.184.131:443
ASN
#50214 QWARTA LLC

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=186&euid=ebe6b608-5d7f-437f-a532-075c850d812a HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: aid=fwAAB2Yg6ZaqgSzMn1vJAhkc5RHNpHlUrCTPE5sKABvIvVKI; test_cookie=CheckForPermission; cSyncDp14v6=1713432982; cSyncDp17v2=1713432982; cSyncDp45v5=1713432982; cSyncDp53v5=1713432982; cSyncDp62v2=1713432982; cSyncDp67v3=1713432982; cSyncDp68v3=1713432982; cSyncDp71v2=1713432982; cSyncDp80v2=1713432982; cSyncDp85v2=1713432982; cSyncDp95v4=1713432982; cSyncDp98v3=1713432982; cSyncDp104v2=1713432982; cSyncDp107v2=1713432982; cSyncDp110v3=1713432982; cSyncDp125v4=1713432982; cSyncDp126v3=1713432982; cSyncDp127v2=1713432982; cSyncDp129v2=1713432982; cSyncDp136v3=1713432982; cSyncDp146v2=1713432982; cSyncDp148v2=1713432982; cSyncDp149v3=1713432982; cSyncDp151v2=1713432982; cSyncDp251v1=1713432982; cSyncDp186v2=1713432982; cSyncDp217v2=1713432982; cSyncDp235v2=1713432982; cSyncDp239v2=1713432982; cSyncDp243v2=1713432982; cSyncDp260v2=1713432982; cSyncDp244v2=1713432982; cSyncDp248v2=1713432982; cSyncDp261v1=1713432982; cSyncDp289v2=1713432982; cSyncDp293v1=1713432982; cSyncDp296v2=1713432982; cSyncDp14v4=1713432982
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

mc.acint.net/cmatch?dp=126

193.3.184.131

200 OK

43 B

URL GET HTTP/2
mc.acint.net/cmatch?dp=126
IP
193.3.184.131:443
ASN
#50214 QWARTA LLC

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /cmatch?dp=126 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: aid=fwAAB2Yg6ZaqgSzMn1vJAhkc5RHNpHlUrCTPE5sKABvIvVKI; test_cookie=CheckForPermission; cSyncDp14v6=1713432982; cSyncDp17v2=1713432982; cSyncDp45v5=1713432982; cSyncDp53v5=1713432982; cSyncDp62v2=1713432982; cSyncDp67v3=1713432982; cSyncDp68v3=1713432982; cSyncDp71v2=1713432982; cSyncDp80v2=1713432982; cSyncDp85v2=1713432982; cSyncDp95v4=1713432982; cSyncDp98v3=1713432982; cSyncDp104v2=1713432982; cSyncDp107v2=1713432982; cSyncDp110v3=1713432982; cSyncDp125v4=1713432982; cSyncDp126v3=1713432982; cSyncDp127v2=1713432982; cSyncDp129v2=1713432982; cSyncDp136v3=1713432982; cSyncDp146v2=1713432982; cSyncDp148v2=1713432982; cSyncDp149v3=1713432982; cSyncDp151v2=1713432982; cSyncDp251v1=1713432982; cSyncDp186v2=1713432982; cSyncDp217v2=1713432982; cSyncDp235v2=1713432982; cSyncDp239v2=1713432982; cSyncDp243v2=1713432982; cSyncDp260v2=1713432982; cSyncDp244v2=1713432982; cSyncDp248v2=1713432982; cSyncDp261v1=1713432982; cSyncDp289v2=1713432982; cSyncDp293v1=1713432982; cSyncDp296v2=1713432982; cSyncDp14v4=1713432982
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

acint.net/cmatch?dp=71

193.3.184.131

200 OK

43 B

URL GET HTTP/2
acint.net/cmatch?dp=71
IP
193.3.184.131:443
ASN
#50214 QWARTA LLC

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /cmatch?dp=71 HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: aid=fwAAB2Yg6ZaqgSzMn1vJAhkc5RHNpHlUrCTPE5sKABvIvVKI; test_cookie=CheckForPermission; cSyncDp14v6=1713432982; cSyncDp17v2=1713432982; cSyncDp45v5=1713432982; cSyncDp53v5=1713432982; cSyncDp62v2=1713432982; cSyncDp67v3=1713432982; cSyncDp68v3=1713432982; cSyncDp71v2=1713432982; cSyncDp80v2=1713432982; cSyncDp85v2=1713432982; cSyncDp95v4=1713432982; cSyncDp98v3=1713432982; cSyncDp104v2=1713432982; cSyncDp107v2=1713432982; cSyncDp110v3=1713432982; cSyncDp125v4=1713432982; cSyncDp126v3=1713432982; cSyncDp127v2=1713432982; cSyncDp129v2=1713432982; cSyncDp136v3=1713432982; cSyncDp146v2=1713432982; cSyncDp148v2=1713432982; cSyncDp149v3=1713432982; cSyncDp151v2=1713432982; cSyncDp251v1=1713432982; cSyncDp186v2=1713432982; cSyncDp217v2=1713432982; cSyncDp235v2=1713432982; cSyncDp239v2=1713432982; cSyncDp243v2=1713432982; cSyncDp260v2=1713432982; cSyncDp244v2=1713432982; cSyncDp248v2=1713432982; cSyncDp261v1=1713432982; cSyncDp289v2=1713432982; cSyncDp293v1=1713432982; cSyncDp296v2=1713432982; cSyncDp14v4=1713432982
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

mc.acint.net/cmatch?dp=95

193.3.184.131

200 OK

43 B

URL GET HTTP/2
mc.acint.net/cmatch?dp=95
IP
193.3.184.131:443
ASN
#50214 QWARTA LLC

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /cmatch?dp=95 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: aid=fwAAB2Yg6ZaqgSzMn1vJAhkc5RHNpHlUrCTPE5sKABvIvVKI; test_cookie=CheckForPermission; cSyncDp14v6=1713432982; cSyncDp17v2=1713432982; cSyncDp45v5=1713432982; cSyncDp53v5=1713432982; cSyncDp62v2=1713432982; cSyncDp67v3=1713432982; cSyncDp68v3=1713432982; cSyncDp71v2=1713432982; cSyncDp80v2=1713432982; cSyncDp85v2=1713432982; cSyncDp95v4=1713432982; cSyncDp98v3=1713432982; cSyncDp104v2=1713432982; cSyncDp107v2=1713432982; cSyncDp110v3=1713432982; cSyncDp125v4=1713432982; cSyncDp126v3=1713432982; cSyncDp127v2=1713432982; cSyncDp129v2=1713432982; cSyncDp136v3=1713432982; cSyncDp146v2=1713432982; cSyncDp148v2=1713432982; cSyncDp149v3=1713432982; cSyncDp151v2=1713432982; cSyncDp251v1=1713432982; cSyncDp186v2=1713432982; cSyncDp217v2=1713432982; cSyncDp235v2=1713432982; cSyncDp239v2=1713432982; cSyncDp243v2=1713432982; cSyncDp260v2=1713432982; cSyncDp244v2=1713432982; cSyncDp248v2=1713432982; cSyncDp261v1=1713432982; cSyncDp289v2=1713432982; cSyncDp293v1=1713432982; cSyncDp296v2=1713432982; cSyncDp14v4=1713432982
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

mc.acint.net/cmatch?dp=261

193.3.184.131

200 OK

43 B

URL GET HTTP/2
mc.acint.net/cmatch?dp=261
IP
193.3.184.131:443
ASN
#50214 QWARTA LLC

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /cmatch?dp=261 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: aid=fwAAB2Yg6ZaqgSzMn1vJAhkc5RHNpHlUrCTPE5sKABvIvVKI; test_cookie=CheckForPermission; cSyncDp14v6=1713432982; cSyncDp17v2=1713432982; cSyncDp45v5=1713432982; cSyncDp53v5=1713432982; cSyncDp62v2=1713432982; cSyncDp67v3=1713432982; cSyncDp68v3=1713432982; cSyncDp71v2=1713432982; cSyncDp80v2=1713432982; cSyncDp85v2=1713432982; cSyncDp95v4=1713432982; cSyncDp98v3=1713432982; cSyncDp104v2=1713432982; cSyncDp107v2=1713432982; cSyncDp110v3=1713432982; cSyncDp125v4=1713432982; cSyncDp126v3=1713432982; cSyncDp127v2=1713432982; cSyncDp129v2=1713432982; cSyncDp136v3=1713432982; cSyncDp146v2=1713432982; cSyncDp148v2=1713432982; cSyncDp149v3=1713432982; cSyncDp151v2=1713432982; cSyncDp251v1=1713432982; cSyncDp186v2=1713432982; cSyncDp217v2=1713432982; cSyncDp235v2=1713432982; cSyncDp239v2=1713432982; cSyncDp243v2=1713432982; cSyncDp260v2=1713432982; cSyncDp244v2=1713432982; cSyncDp248v2=1713432982; cSyncDp261v1=1713432982; cSyncDp289v2=1713432982; cSyncDp293v1=1713432982; cSyncDp296v2=1713432982; cSyncDp14v4=1713432982
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

sync.bumlam.com/?src=sape

31.172.81.160

302 Moved Temporarily

0 B

URL GET HTTP/1.1
sync.bumlam.com/?src=sape
IP
31.172.81.160:443
ASN
#44066 firstcolo GmbH

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subject*.bumlam.com
Fingerprint9F:E0:4A:B3:57:B0:3C:3E:13:7F:9F:FF:82:A2:91:87:45:9F:A4:7F
ValidityThu, 28 Mar 2024 09:09:43 GMT - Wed, 26 Jun 2024 09:09:42 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?src=sape HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Thu, 18 Apr 2024 09:36:22 GMT
Content-Length: 0
Connection: close
Set-Cookie: suuid3=IiQxZTdhM2Y0Ni1mZDY3LTExZWUtOWI3Yi0wMDI1OTBjODI0MzY*; Path=/; Expires=Wed, 13 Apr 2044 09:36:22 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: //sync.bumlam.com/?src=sape&s_data=CAIQARiW04OxBqIBEB56P0b9ZxHum3sAJZDIJDY*
ETag: 1e7a3f46-fd67-11ee-9b7b-002590c82436
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
Access-Control-Allow-Origin: https://acint.net
Access-Control-Allow-Credentials: true

sync.bumlam.com/?src=sap1&uid=0700007F96E92066CC2C81AA02C95B9F

31.172.81.160

302 Moved Temporarily

0 B

URL GET HTTP/1.1
sync.bumlam.com/?src=sap1&uid=0700007F96E92066CC2C81AA02C95B9F
IP
31.172.81.160:443
ASN
#44066 firstcolo GmbH

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subject*.bumlam.com
Fingerprint9F:E0:4A:B3:57:B0:3C:3E:13:7F:9F:FF:82:A2:91:87:45:9F:A4:7F
ValidityThu, 28 Mar 2024 09:09:43 GMT - Wed, 26 Jun 2024 09:09:42 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?src=sap1&uid=0700007F96E92066CC2C81AA02C95B9F HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Thu, 18 Apr 2024 09:36:23 GMT
Content-Length: 0
Connection: close
Set-Cookie: suuid3=IiQxZTdhN2VhYy1mZDY3LTExZWUtOWI3Yi0wMDI1OTBjODI0MzY*; Path=/; Expires=Wed, 13 Apr 2044 09:36:22 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: //sync.bumlam.com/?src=sap1&s_data=CAIQARiW04OxBmIgMDcwMDAwN0Y5NkU5MjA2NkNDMkM4MUFBMDJDOTVCOUaiARAeen6s_WcR7pt7ACWQyCQ2
ETag: 1e7a7eac-fd67-11ee-9b7b-002590c82436
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0

sync.bumlam.com/?src=sape&s_data=CAIQARiW04OxBqIBEB56P0b9ZxHum3sAJZDIJDY*

31.172.81.160

302 Moved Temporarily

0 B

URL GET HTTP/1.1
sync.bumlam.com/?src=sape&s_data=CAIQARiW04OxBqIBEB56P0b9ZxHum3sAJZDIJDY*
IP
31.172.81.160:443
ASN
#44066 firstcolo GmbH

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subject*.bumlam.com
Fingerprint9F:E0:4A:B3:57:B0:3C:3E:13:7F:9F:FF:82:A2:91:87:45:9F:A4:7F
ValidityThu, 28 Mar 2024 09:09:43 GMT - Wed, 26 Jun 2024 09:09:42 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?src=sape&s_data=CAIQARiW04OxBqIBEB56P0b9ZxHum3sAJZDIJDY* HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiQxZTdhN2VhYy1mZDY3LTExZWUtOWI3Yi0wMDI1OTBjODI0MzY*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Thu, 18 Apr 2024 09:36:23 GMT
Content-Length: 0
Connection: close
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: //sync.bumlam.com/?src=sape&s_data=CAIQAhiW04OxBqIBEB56fqz9ZxHum3sAJZDIJDY*
ETag: 1e7a7eac-fd67-11ee-9b7b-002590c82436
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
Access-Control-Allow-Origin: https://acint.net
Access-Control-Allow-Credentials: true

sync.bumlam.com/?src=sap1&s_data=CAIQARiW04OxBmIgMDcwMDAwN0Y5NkU5MjA2NkNDMkM4MUFBMDJDOTVCOUaiARAeen6s_WcR7pt7ACWQyCQ2

31.172.81.160

200 OK

0 B

URL GET HTTP/1.1
sync.bumlam.com/?src=sap1&s_data=CAIQARiW04OxBmIgMDcwMDAwN0Y5NkU5MjA2NkNDMkM4MUFBMDJDOTVCOUaiARAeen6s_WcR7pt7ACWQyCQ2
IP
31.172.81.160:443
ASN
#44066 firstcolo GmbH

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subject*.bumlam.com
Fingerprint9F:E0:4A:B3:57:B0:3C:3E:13:7F:9F:FF:82:A2:91:87:45:9F:A4:7F
ValidityThu, 28 Mar 2024 09:09:43 GMT - Wed, 26 Jun 2024 09:09:42 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?src=sap1&s_data=CAIQARiW04OxBmIgMDcwMDAwN0Y5NkU5MjA2NkNDMkM4MUFBMDJDOTVCOUaiARAeen6s_WcR7pt7ACWQyCQ2 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiQxZTdhN2VhYy1mZDY3LTExZWUtOWI3Yi0wMDI1OTBjODI0MzY*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 18 Apr 2024 09:36:23 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: close
Set-Cookie: suuid3=IiQxZTdhN2VhYy1mZDY3LTExZWUtOWI3Yi0wMDI1OTBjODI0MzY*; Path=/; Expires=Wed, 13 Apr 2044 09:36:23 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0

gw-iad-bid.ymmobi.com/dsp/user/sync?dspid=c2FwZV9kc3A=&gdpr=0&gdpr_consent=0&us_privacy=0&callback=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D293%26euid%3D%7Bym_user_id%7D

47.253.61.56

302 Found

0 B

URL GET HTTP/2
gw-iad-bid.ymmobi.com/dsp/user/sync?dspid=c2FwZV9kc3A=&gdpr=0&gdpr_consent=0&us_privacy=0&callback=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D293%26euid%3D%7Bym_user_id%7D
IP
47.253.61.56:443
ASN
#45102 Alibaba US Technology Co., Ltd.

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerDigiCert, Inc.
Subject*.ymmobi.com
FingerprintAA:CB:8B:48:C7:AB:0D:56:82:39:63:A5:E1:5E:34:8B:62:7B:6F:52
ValiditySun, 04 Feb 2024 00:00:00 GMT - Mon, 03 Feb 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /dsp/user/sync?dspid=c2FwZV9kc3A=&gdpr=0&gdpr_consent=0&us_privacy=0&callback=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D293%26euid%3D%7Bym_user_id%7D HTTP/1.1
Host: gw-iad-bid.ymmobi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Thu, 18 Apr 2024 09:36:23 GMT
content-length: 0
location: https://mc.acint.net/match?dp=293&euid=ym_user_bbaecedc-ae94-4f07-925d-65d24c2963f2
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token
access-control-allow-credentials: true
set-cookie: ym_user_cookie=ym_user_bbaecedc-ae94-4f07-925d-65d24c2963f2; max-age=31104000; domain=ymmobi.com; path=/; secure; SameSite=None
X-Firefox-Spdy: h2

mc.acint.net/match?dp=293&euid=ym_user_bbaecedc-ae94-4f07-925d-65d24c2963f2

193.3.184.131

200 OK

43 B

URL GET HTTP/2
mc.acint.net/match?dp=293&euid=ym_user_bbaecedc-ae94-4f07-925d-65d24c2963f2
IP
193.3.184.131:443
ASN
#50214 QWARTA LLC

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=293&euid=ym_user_bbaecedc-ae94-4f07-925d-65d24c2963f2 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: aid=fwAAB2Yg6ZaqgSzMn1vJAhkc5RHNpHlUrCTPE5sKABvIvVKI; test_cookie=CheckForPermission; cSyncDp14v6=1713432982; cSyncDp17v2=1713432982; cSyncDp45v5=1713432982; cSyncDp53v5=1713432982; cSyncDp62v2=1713432982; cSyncDp67v3=1713432982; cSyncDp68v3=1713432982; cSyncDp71v2=1713432982; cSyncDp80v2=1713432982; cSyncDp85v2=1713432982; cSyncDp95v4=1713432982; cSyncDp98v3=1713432982; cSyncDp104v2=1713432982; cSyncDp107v2=1713432982; cSyncDp110v3=1713432982; cSyncDp125v4=1713432982; cSyncDp126v3=1713432982; cSyncDp127v2=1713432982; cSyncDp129v2=1713432982; cSyncDp136v3=1713432982; cSyncDp146v2=1713432982; cSyncDp148v2=1713432982; cSyncDp149v3=1713432982; cSyncDp151v2=1713432982; cSyncDp251v1=1713432982; cSyncDp186v2=1713432982; cSyncDp217v2=1713432982; cSyncDp235v2=1713432982; cSyncDp239v2=1713432982; cSyncDp243v2=1713432982; cSyncDp260v2=1713432982; cSyncDp244v2=1713432982; cSyncDp248v2=1713432982; cSyncDp261v1=1713432982; cSyncDp289v2=1713432982; cSyncDp293v1=1713432982; cSyncDp296v2=1713432982; cSyncDp14v4=1713432982
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 18 Apr 2024 09:36:23 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

sync.bumlam.com/?src=sape&s_data=CAIQAhiW04OxBqIBEB56fqz9ZxHum3sAJZDIJDY*

31.172.81.160

302 Moved Temporarily

0 B

URL GET HTTP/1.1
sync.bumlam.com/?src=sape&s_data=CAIQAhiW04OxBqIBEB56fqz9ZxHum3sAJZDIJDY*
IP
31.172.81.160:443
ASN
#44066 firstcolo GmbH

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subject*.bumlam.com
Fingerprint9F:E0:4A:B3:57:B0:3C:3E:13:7F:9F:FF:82:A2:91:87:45:9F:A4:7F
ValidityThu, 28 Mar 2024 09:09:43 GMT - Wed, 26 Jun 2024 09:09:42 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?src=sape&s_data=CAIQAhiW04OxBqIBEB56fqz9ZxHum3sAJZDIJDY* HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiQxZTdhN2VhYy1mZDY3LTExZWUtOWI3Yi0wMDI1OTBjODI0MzY*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Thu, 18 Apr 2024 09:36:23 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: close
Set-Cookie: suuid3=IiQxZTdhN2VhYy1mZDY3LTExZWUtOWI3Yi0wMDI1OTBjODI0MzY*; Path=/; Expires=Wed, 13 Apr 2044 09:36:23 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: https://pix.bumlam.com/sync/sape/sync_ok?guid=1e7a7eac-fd67-11ee-9b7b-002590c82436
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
Access-Control-Allow-Origin: https://acint.net
Access-Control-Allow-Credentials: true

pix.bumlam.com/sync/sape/sync_ok?guid=1e7a7eac-fd67-11ee-9b7b-002590c82436

31.172.81.172

302 Found

0 B

URL GET HTTP/1.1
pix.bumlam.com/sync/sape/sync_ok?guid=1e7a7eac-fd67-11ee-9b7b-002590c82436
IP
31.172.81.172:443
ASN
#44066 firstcolo GmbH

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subject*.bumlam.com
Fingerprint9F:E0:4A:B3:57:B0:3C:3E:13:7F:9F:FF:82:A2:91:87:45:9F:A4:7F
ValidityThu, 28 Mar 2024 09:09:43 GMT - Wed, 26 Jun 2024 09:09:42 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sync/sape/sync_ok?guid=1e7a7eac-fd67-11ee-9b7b-002590c82436 HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiQxZTdhN2VhYy1mZDY3LTExZWUtOWI3Yi0wMDI1OTBjODI0MzY*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Server: nginx
Date: Thu, 18 Apr 2024 09:36:23 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://1e7a7eac-fd67-11ee-9b7b-002590c82436.n3.sync.bumlam.com/?src=sape

1e7a7eac-fd67-11ee-9b7b-002590c82436.n3.sync.bumlam.com/?src=sape

62.109.24.241

302 Found

0 B

URL GET HTTP/2
1e7a7eac-fd67-11ee-9b7b-002590c82436.n3.sync.bumlam.com/?src=sape
IP
62.109.24.241:443
ASN
#29182 JSC IOT

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subject*.n1.sync.bumlam.com
Fingerprint56:15:00:9D:2E:AA:5A:76:1C:B1:0B:D1:55:0B:30:25:EA:DA:C9:FA
ValidityTue, 12 Mar 2024 12:36:27 GMT - Mon, 10 Jun 2024 12:36:26 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?src=sape HTTP/1.1
Host: 1e7a7eac-fd67-11ee-9b7b-002590c82436.n3.sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiQxZTdhN2VhYy1mZDY3LTExZWUtOWI3Yi0wMDI1OTBjODI0MzY*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: nginx/1.24.0
date: Thu, 18 Apr 2024 09:36:23 GMT
content-length: 0
location: https://pix.bumlam.com/sync/sape/done
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
X-Firefox-Spdy: h2

pix.bumlam.com/sync/sape/done

31.172.81.172

200 OK

43 B

URL GET HTTP/1.1
pix.bumlam.com/sync/sape/done
IP
31.172.81.172:443
ASN
#44066 firstcolo GmbH

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subject*.bumlam.com
Fingerprint9F:E0:4A:B3:57:B0:3C:3E:13:7F:9F:FF:82:A2:91:87:45:9F:A4:7F
ValidityThu, 28 Mar 2024 09:09:43 GMT - Wed, 26 Jun 2024 09:09:42 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /sync/sape/done HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiQxZTdhN2VhYy1mZDY3LTExZWUtOWI3Yi0wMDI1OTBjODI0MzY*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 18 Apr 2024 09:36:23 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"

nr.bidderstack.com/sape/cm?user_id=0700007F96E92066CC2C81AA02C95B9F

167.235.176.63

302 Found

0 B

URL GET HTTP/1.1
nr.bidderstack.com/sape/cm?user_id=0700007F96E92066CC2C81AA02C95B9F
IP
167.235.176.63:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerGoDaddy.com, Inc.
Subject*.bidderstack.com
Fingerprint7A:83:29:BF:37:01:78:02:DF:C1:07:D8:A2:10:AB:0A:DD:11:66:B0
ValidityTue, 21 Nov 2023 08:57:57 GMT - Sun, 22 Dec 2024 08:57:57 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sape/cm?user_id=0700007F96E92066CC2C81AA02C95B9F HTTP/1.1
Host: nr.bidderstack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Server: nginx
Date: Thu, 18 Apr 2024 09:36:23 GMT
Content-Length: 0
Connection: keep-alive
Location: /sape/cm?user_id=0700007F96E92066CC2C81AA02C95B9F&pupa=1
Set-Cookie: pupa=187da8a4-5e7b-8768-ed39-68cc113f0aec; domain=.bidderstack.com; path=/; expires=Fri, 18-Apr-2025 09:36:23 GMT;
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true

nr.bidderstack.com/sape/cm?user_id=0700007F96E92066CC2C81AA02C95B9F&pupa=1

167.235.176.63

302 Found

0 B

URL GET HTTP/1.1
nr.bidderstack.com/sape/cm?user_id=0700007F96E92066CC2C81AA02C95B9F&pupa=1
IP
167.235.176.63:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerGoDaddy.com, Inc.
Subject*.bidderstack.com
Fingerprint7A:83:29:BF:37:01:78:02:DF:C1:07:D8:A2:10:AB:0A:DD:11:66:B0
ValidityTue, 21 Nov 2023 08:57:57 GMT - Sun, 22 Dec 2024 08:57:57 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sape/cm?user_id=0700007F96E92066CC2C81AA02C95B9F&pupa=1 HTTP/1.1
Host: nr.bidderstack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Server: nginx
Date: Thu, 18 Apr 2024 09:36:24 GMT
Content-Length: 0
Connection: keep-alive
Location: https://exchange.buzzoola.com/cookiesync/dsp/hyperadx-video?uid=187da8a4-5e7b-8768-ed39-68cc113f0aec
Set-Cookie: pupa=187da8a4-5e7b-8768-ed39-68cc113f0aec; domain=.bidderstack.com; path=/; expires=Fri, 18-Apr-2025 09:36:24 GMT;
csorigin2=3; domain=.bidderstack.com; path=/; expires=Thu, 18-Apr-2024 09:41:24 GMT;
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true

exchange.buzzoola.com/cookiesync/dsp/hyperadx-video?uid=187da8a4-5e7b-8768-ed39-68cc113f0aec

176.9.158.88

200 OK

43 B

URL GET HTTP/2
exchange.buzzoola.com/cookiesync/dsp/hyperadx-video?uid=187da8a4-5e7b-8768-ed39-68cc113f0aec
IP
176.9.158.88:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerSectigo Limited
Subject*.buzzoola.com
FingerprintE6:7F:94:98:CF:E4:CF:88:C7:8C:FC:16:A3:D7:D0:10:4E:EC:AB:F1
ValidityMon, 04 Sep 2023 00:00:00 GMT - Fri, 04 Oct 2024 23:59:59 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

HTTP Headers

GET /cookiesync/dsp/hyperadx-video?uid=187da8a4-5e7b-8768-ed39-68cc113f0aec HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: uuid=32b290db-22f3-40a4-78fa-cd4b36f1d20d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 09:36:24 GMT
content-type: image/gif
content-length: 43
set-cookie: uuid=; Path=/; Domain=exchange.buzzoola.com; Expires=Thu, 01 Jan 1970 00:00:01 GMT; Max-Age=0; Secure; SameSite=None
uuid=32b290db-22f3-40a4-78fa-cd4b36f1d20d; Path=/; Domain=buzzoola.com; Expires=Sat, 18 May 2024 09:36:24 GMT; Max-Age=2592000; Secure; SameSite=None
serverid: TODO
X-Firefox-Spdy: h2

www.acint.net/ping/?v=0.7.0&uid=ce9ce236-23cf-40f2-9c8c-509c73232946&dp=10&tz=%2B00%3A00&nc=056628&dT=2024-04-18T09%3A36%3A25.080

193.3.184.131

200 OK

43 B

URL GET HTTP/2
www.acint.net/ping/?v=0.7.0&uid=ce9ce236-23cf-40f2-9c8c-509c73232946&dp=10&tz=%2B00%3A00&nc=056628&dT=2024-04-18T09%3A36%3A25.080
IP
193.3.184.131:443
ASN
#50214 QWARTA LLC

Requested by
http://fittoday.ru/
Certificate
IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /ping/?v=0.7.0&uid=ce9ce236-23cf-40f2-9c8c-509c73232946&dp=10&tz=%2B00%3A00&nc=056628&dT=2024-04-18T09%3A36%3A25.080 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://fittoday.ru/
Cookie: aid=fwAAB2Yg6ZaqgSzMn1vJAhkc5RHNpHlUrCTPE5sKABvIvVKI; test_cookie=CheckForPermission; cSyncDp14v6=1713432982; cSyncDp17v2=1713432982; cSyncDp45v5=1713432982; cSyncDp53v5=1713432982; cSyncDp62v2=1713432982; cSyncDp67v3=1713432982; cSyncDp68v3=1713432982; cSyncDp71v2=1713432982; cSyncDp80v2=1713432982; cSyncDp85v2=1713432982; cSyncDp95v4=1713432982; cSyncDp98v3=1713432982; cSyncDp104v2=1713432982; cSyncDp107v2=1713432982; cSyncDp110v3=1713432982; cSyncDp125v4=1713432982; cSyncDp126v3=1713432982; cSyncDp127v2=1713432982; cSyncDp129v2=1713432982; cSyncDp136v3=1713432982; cSyncDp146v2=1713432982; cSyncDp148v2=1713432982; cSyncDp149v3=1713432982; cSyncDp151v2=1713432982; cSyncDp251v1=1713432982; cSyncDp186v2=1713432982; cSyncDp217v2=1713432982; cSyncDp235v2=1713432982; cSyncDp239v2=1713432982; cSyncDp243v2=1713432982; cSyncDp260v2=1713432982; cSyncDp244v2=1713432982; cSyncDp248v2=1713432982; cSyncDp261v1=1713432982; cSyncDp289v2=1713432982; cSyncDp293v1=1713432982; cSyncDp296v2=1713432982; cSyncDp14v4=1713432982
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 18 Apr 2024 09:36:25 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

www.acint.net/mc/?dp=10&tc=1

193.3.184.131

200 OK

6.4 kB

URL GET HTTP/2
www.acint.net/mc/?dp=10&tc=1
IP
193.3.184.131:443
ASN
#50214 QWARTA LLC

Requested by
http://fittoday.ru/
Certificate
IssuerLet's Encrypt
Subject*.acint.net
FingerprintA3:BC:DF:1A:52:04:14:64:D6:13:8F:61:6D:A3:DF:F9:C5:01:1C:26
ValidityThu, 29 Feb 2024 01:31:10 GMT - Wed, 29 May 2024 01:31:09 GMT

File type
HTML document, ASCII text, with very long lines (6625), with no line terminators
Size
6.4 kB (6350 bytes)
Hash
bb9a638448d1e13535fa18d5cfbc4ff7
ee95479bdc16c837a96624fd8d3871edf3f0474f
89abbb2215458fd289b01f96c6db26f06cd4147655863d0846eba4004cdf6584

HTTP Headers

GET /mc/?dp=10&tc=1 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://fittoday.ru/
DNT: 1
Connection: keep-alive
Cookie: aid=fwAAB2Yg6ZaqgSzMn1vJAhkc5RHNpHlUrCTPE5sKABvIvVKI; test_cookie=CheckForPermission
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty
date: Thu, 18 Apr 2024 09:36:22 GMT
content-type: text/html
set-cookie: cSyncDp14v6=1713432982; expires=Sat, 18-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp17v2=1713432982; expires=Sat, 18-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp45v5=1713432982; expires=Fri, 19-Apr-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp53v5=1713432982; expires=Sat, 18-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp62v2=1713432982; expires=Sat, 18-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp67v3=1713432982; expires=Sat, 18-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp68v3=1713432982; expires=Sat, 18-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp71v2=1713432982; expires=Sat, 18-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp80v2=1713432982; expires=Sat, 18-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp85v2=1713432982; expires=Sat, 18-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp95v4=1713432982; expires=Sat, 18-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp98v3=1713432982; expires=Sat, 18-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp104v2=1713432982; expires=Thu, 02-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp107v2=1713432982; expires=Sat, 18-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp110v3=1713432982; expires=Sat, 18-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp125v4=1713432982; expires=Fri, 03-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp126v3=1713432982; expires=Sat, 18-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp127v2=1713432982; expires=Sat, 18-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp129v2=1713432982; expires=Sat, 18-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp136v3=1713432982; expires=Sat, 18-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp146v2=1713432982; expires=Sat, 18-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp148v2=1713432982; expires=Sat, 18-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp149v3=1713432982; expires=Sat, 18-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp151v2=1713432982; expires=Sat, 18-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp251v1=1713432982; expires=Sat, 18-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp186v2=1713432982; expires=Sat, 18-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp217v2=1713432982; expires=Sat, 18-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp235v2=1713432982; expires=Sat, 18-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp239v2=1713432982; expires=Sat, 18-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp243v2=1713432982; expires=Sat, 18-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp260v2=1713432982; expires=Sat, 18-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp244v2=1713432982; expires=Sat, 18-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp248v2=1713432982; expires=Sat, 18-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp261v1=1713432982; expires=Sat, 18-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp289v2=1713432982; expires=Sat, 18-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp293v1=1713432982; expires=Sat, 18-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp296v2=1713432982; expires=Sat, 18-May-24 09:36:22 GMT; path=/; Secure; SameSite=None; domain=.acint.net
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
content-encoding: gzip
X-Firefox-Spdy: h2

ssp.bidvol.com/usersync?dspcsid=8&redirect=1

65.109.111.89

302 Found

43 B

URL GET HTTP/2
ssp.bidvol.com/usersync?dspcsid=8&redirect=1
IP
65.109.111.89:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerLet's Encrypt
Subjectssp.bidvol.com
Fingerprint88:71:A6:CF:DE:04:2A:17:21:03:CC:49:FE:2E:35:F8:6D:FB:6C:C0
ValidityWed, 07 Feb 2024 11:42:32 GMT - Tue, 07 May 2024 11:42:31 GMT

File type

Size
43 B (43 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /usersync?dspcsid=8&redirect=1 HTTP/1.1
Host: ssp.bidvol.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: nginx/1.22.0
date: Thu, 18 Apr 2024 09:36:22 GMT
x-request-id: 5743113d-5a52-40bd-88c9-8057bf80e248
vary: Origin
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
pragma: no-cache
expires: 0
surrogate-control: no-store
set-cookie: bvuid=gw2whqn592; Max-Age=2147483647; Domain=.bidvol.com; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT; Secure; SameSite=None
bvuid2=gw2whqn592; Max-Age=2147483647; Domain=.bidvol.com; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT
location: https://www.acint.net/match?dp=129&euid=gw2whqn592
X-Firefox-Spdy: h2

ads.adlook.me/csync?pid=sape&uid=0700007F96E92066CC2C81AA02C95B9F&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D110%26euid%3D%7BuserId%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D110

176.122.21.226

302 Found

43 B

URL GET HTTP/2
ads.adlook.me/csync?pid=sape&uid=0700007F96E92066CC2C81AA02C95B9F&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D110%26euid%3D%7BuserId%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D110
IP
176.122.21.226:443
ASN
#48096 Enterprise Cloud Ltd.

Requested by
https://www.acint.net/mc/?dp=10&tc=1
Certificate
IssuerGlobalSign nv-sa
Subject*.adlook.me
FingerprintBB:74:3B:09:F5:13:79:CE:CF:22:44:22:AD:AF:A7:74:23:4F:98:32
ValidityTue, 06 Jun 2023 15:02:11 GMT - Sun, 07 Jul 2024 15:02:10 GMT

File type

Size
43 B (43 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /csync?pid=sape&uid=0700007F96E92066CC2C81AA02C95B9F&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D110%26euid%3D%7BuserId%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D110 HTTP/1.1
Host: ads.adlook.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
location: https://mc.acint.net/rmatch?dp=110&euid=5438f7e3a03e48c49c797161aa14ff75&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D110
server: Microsoft-IIS/10.0
set-cookie: adlm_userId=5438f7e3a03e48c49c797161aa14ff75; expires=Thu, 17 Apr 2025 21:00:00 GMT; path=/; SameSite=None; secure; samesite=none
adlk_cmatch=sape%3A0700007F96E92066CC2C81AA02C95B9F; expires=Fri, 31 Dec 9999 20:59:59 GMT; path=/; SameSite=None; secure; samesite=none
date: Thu, 18 Apr 2024 09:36:21 GMT
X-Firefox-Spdy: h2

s.ccsyncuuid.net/match/5/?remote_uid=0700007F96E92066CC2C81AA02C95B9F

0.0.0.0

0 B

URL GET
s.ccsyncuuid.net/match/5/?remote_uid=0700007F96E92066CC2C81AA02C95B9F
IP
0.0.0.0:0
ASN
#0

Requested by
https://www.acint.net/mc/?dp=10&tc=1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /match/5/?remote_uid=0700007F96E92066CC2C81AA02C95B9F HTTP/1.1
Host: s.ccsyncuuid.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (22)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML