complex-oil.com/
45.130.41.179301 Moved Permanently 0 B IP 45.130.41.179:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: complex-oil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx-reuseport/1.21.1
Date: Sat, 28 Jan 2023 04:40:04 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Keep-Alive: timeout=30
X-Powered-By: PHP/7.2.34
Location: https://complex-oil.com/
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5050
Expires: Sat, 28 Jan 2023 06:04:14 GMT
Date: Sat, 28 Jan 2023 04:40:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 81dd5c5cc5b3278876cb44dcb520a60f
c0511a59e9eccdcdda98717b87c89c5d59974808
41736c303afdb3d31e48724b107dcb22883cae02f3562308eb52d9164001a2de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41736C303AFDB3D31E48724B107DCB22883CAE02F3562308EB52D9164001A2DE"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11472
Expires: Sat, 28 Jan 2023 07:51:16 GMT
Date: Sat, 28 Jan 2023 04:40:04 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 28 Jan 2023 03:43:03 GMT
content-type: application/json
age: 3421
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 03092d1a1bc7ac91ee342a1a7ab2a562
52db06ce1fd2c74ddd36b6a0a7aee1b5c891600a
03b8ff2629abac9fc30ebec059c2e2018fcbc41646ad5f71c965ff630fbf1ffd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "03B8FF2629ABAC9FC30EBEC059C2E2018FCBC41646AD5F71C965FF630FBF1FFD"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2474
Expires: Sat, 28 Jan 2023 05:21:18 GMT
Date: Sat, 28 Jan 2023 04:40:04 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: QsRIKJlttZSlTLP4UiMYlNdGXB1QeZFZjeKxcAjhMPph3mkhYNscaUN/if6Dwzuflizl7FbwGsA=
x-amz-request-id: RM28G3D18P2CZ3T2
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 28 Jan 2023 04:20:50 GMT
age: 1154
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 04:40:04 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6cc45850e7b9cc95fc3e5cf46c553c42
e7c301a38c488220a9fd5568e8f5731da7e2b0fd
78ce69b93a6a4d5cd502c335f490a46977b1f96ac92511518720f00de6fb6dd5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "78CE69B93A6A4D5CD502C335F490A46977B1F96AC92511518720F00DE6FB6DD5"
Last-Modified: Fri, 27 Jan 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21510
Expires: Sat, 28 Jan 2023 10:38:35 GMT
Date: Sat, 28 Jan 2023 04:40:05 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 36147c185553851c38547798733a9fb2
912ec40237eae2ed558d09103c86c41f87896eca
a4fd9090983c75e1b7faf5ea9439532f51d747faf1853138ac13bdaafa490246
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:40:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-126450778-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-126450778-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1759)
Hash 26fc41c474d410ba1d1b73bc244f6db7
d746656bdc4367254e6cb52e323540d88e16bf19
e466c4f90f702c7be98953c5bebc5ab70dcb35b80a8f37b0a67b0d06b81c8c53
GET /gtag/js?id=UA-126450778-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 28 Jan 2023 04:40:05 GMT
expires: Sat, 28 Jan 2023 04:40:05 GMT
cache-control: private, max-age=900
last-modified: Sat, 28 Jan 2023 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44020
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5997
Expires: Sat, 28 Jan 2023 06:20:02 GMT
Date: Sat, 28 Jan 2023 04:40:05 GMT
Connection: keep-alive
complex-oil.com/topbg.png
45.130.41.179200 OK 364 kB URL HTTP/2 complex-oil.com/topbg.png
IP 45.130.41.179:0
File type PNG image data, 750 x 286, 8-bit/color RGB, non-interlaced\012- data
Size 364 kB (363934 bytes)
Hash 445f072c0f75a37ebfde154b7767bdb7
2a8d7e56fa995eaf26e708141096f533bb08aaf6
dd63bfe6d30f6c57e777e7af13c685513045fdc663395354cd2f32484a349df8
GET /topbg.png HTTP/1.1
Host: complex-oil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 28 Jan 2023 04:40:05 GMT
content-type: image/png
content-length: 363934
last-modified: Sun, 24 Sep 2017 21:00:00 GMT
etag: "59c81cd0-58d9e"
expires: Mon, 27 Feb 2023 04:40:05 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
complex-oil.com/wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2023/01/1618576540_45-p-eroticheskii-massazh-devushke-erotika-51.jpg&w=120&h=80&zc=1&q=90
45.130.41.179200 OK 4.3 kB URL HTTP/2 complex-oil.com/wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2023/01/1618576540_45-p-eroticheskii-massazh-devushke-erotika-51.jpg&w=120&h=80&zc=1&q=90
IP 45.130.41.179:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 120x80, components 3\012- data
Hash d9b2438bf853e5245955a69120abbc79
3043a0058d2cd22220d4eb37651d3312cf9969b0
b61487f7ca90436d7d54aa3d80af211df0c65b46c95db0bc61e05abc0c09dba0
GET /wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2023/01/1618576540_45-p-eroticheskii-massazh-devushke-erotika-51.jpg&w=120&h=80&zc=1&q=90 HTTP/1.1
Host: complex-oil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 28 Jan 2023 04:40:05 GMT
content-type: image/jpeg
content-length: 4277
x-powered-by: PHP/7.2.34
last-modified: Sat, 28 Jan 2023 04:40:05 GMT
cache-control: max-age=864000, must-revalidate
expires: Tue, 07 Feb 2023 04:40:05 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
complex-oil.com/wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2022/09/61b6c99b8b022_61b6c99b8b027.jpg&w=120&h=80&zc=1&q=90
45.130.41.179200 OK 7.7 kB URL HTTP/2 complex-oil.com/wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2022/09/61b6c99b8b022_61b6c99b8b027.jpg&w=120&h=80&zc=1&q=90
IP 45.130.41.179:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 120x80, components 3\012- data
Hash 6c9612ebd42412a4fad7e8a25c1566b6
ceefd809ddc04c67fb048b1e8ba5577ba38d0bd9
f643af3c5f26c1a8a28075f96c0641a3529d760bf5dfa86766f65c2fa9f3349f
GET /wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2022/09/61b6c99b8b022_61b6c99b8b027.jpg&w=120&h=80&zc=1&q=90 HTTP/1.1
Host: complex-oil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 28 Jan 2023 04:40:05 GMT
content-type: image/jpeg
content-length: 7688
x-powered-by: PHP/7.2.34
last-modified: Sat, 28 Jan 2023 04:40:05 GMT
cache-control: max-age=864000, must-revalidate
expires: Tue, 07 Feb 2023 04:40:05 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 36147c185553851c38547798733a9fb2
912ec40237eae2ed558d09103c86c41f87896eca
a4fd9090983c75e1b7faf5ea9439532f51d747faf1853138ac13bdaafa490246
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:40:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 28 Jan 2023 03:49:03 GMT
age: 3062
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
complex-oil.com/wp-content/themes/complex-oil/images/header.jpg
45.130.41.179200 OK 51 kB URL HTTP/2 complex-oil.com/wp-content/themes/complex-oil/images/header.jpg
IP 45.130.41.179:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 1280x280, components 3\012- data
Hash 0e74af422e747fa4e774ec5919e6079e
3d6c80d1a24d88babf11dc76214dfabf3fb4dde3
72171cd1bcb56824289e1dd5c89400c29dd819f3ab4748681b35786b79c4c8ab
GET /wp-content/themes/complex-oil/images/header.jpg HTTP/1.1
Host: complex-oil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/wp-content/themes/complex-oil/css/header.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 28 Jan 2023 04:40:05 GMT
content-type: image/jpeg
content-length: 51115
last-modified: Sun, 24 Sep 2017 21:00:00 GMT
etag: "59c81cd0-c7ab"
expires: Mon, 27 Feb 2023 04:40:05 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
complex-oil.com/wp-content/themes/complex-oil/css/footer.css
45.130.41.179200 OK 20 kB URL HTTP/2 complex-oil.com/wp-content/themes/complex-oil/css/footer.css
IP 45.130.41.179:0
Hash 8556954e4a1a94fe74e0277d2210bae2
aabbebe323c7588590969769e077e151760ffafb
80bac931f8551a5f0077896f4786e29d126a181911be6f55e91899aa2a44f48d
GET /wp-content/themes/complex-oil/css/footer.css HTTP/1.1
Host: complex-oil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/wp-content/themes/complex-oil/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 28 Jan 2023 04:40:05 GMT
content-type: text/css
last-modified: Sun, 24 Sep 2017 21:00:00 GMT
vary: Accept-Encoding
etag: W/"59c81cd0-767"
expires: Sat, 04 Feb 2023 04:40:05 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
complex-oil.com/wp-content/themes/complex-oil/images/foot.jpg
45.130.41.179200 OK 28 kB URL HTTP/2 complex-oil.com/wp-content/themes/complex-oil/images/foot.jpg
IP 45.130.41.179:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 1101x181, components 3\012- data
Hash 1e86ecec15a66fdfbf7d57407422bdd5
57dd5e8a6eba27e5c84b0a602ce3cf88118e9ae4
c51f138a0874e3994396b225bad57c1e69d451c5f8f2f404657dfaffd0a18376
GET /wp-content/themes/complex-oil/images/foot.jpg HTTP/1.1
Host: complex-oil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/wp-content/themes/complex-oil/css/footer.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 28 Jan 2023 04:40:05 GMT
content-type: image/jpeg
content-length: 28483
last-modified: Sun, 24 Sep 2017 21:00:00 GMT
etag: "59c81cd0-6f43"
expires: Mon, 27 Feb 2023 04:40:05 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 039001faa7b4024c26418b4c44829754
271874298658c5936f486b1026b01dc6a68f2c6d
029266cabedd1e744cc6d96fe07abcd737bd7b880f7a9f06e483554fd4b02309
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "029266CABEDD1E744CC6D96FE07ABCD737BD7B880F7A9F06E483554FD4B02309"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10367
Expires: Sat, 28 Jan 2023 07:32:52 GMT
Date: Sat, 28 Jan 2023 04:40:05 GMT
Connection: keep-alive
push.services.mozilla.com/
52.88.101.41101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.88.101.41:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: j7ebgpvo+06D8nCGRAoOqA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: oPphlVQbni8gQpv55CpE1961QmQ=
www.acint.net/aci.js
193.3.184.228200 OK 7.8 kB IP 193.3.184.228:0
File type ASCII text, with very long lines (1649)
Hash 23df47b4330754db70e9c1e32f0092d6
dea956b3a9dad9fa3cc352180be435943e8d0352
0056d5c8969a597094abb6cc9f3a383631ba9c0f13ac620d735f0788807fb4de
GET /aci.js HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Sat, 28 Jan 2023 04:40:05 GMT
content-type: application/x-javascript
content-length: 7757
last-modified: Mon, 09 Jan 2023 08:01:05 GMT
etag: "63bbc9c1-1e4d"
content-encoding: gzip
expires: Sat, 28 Jan 2023 16:40:05 GMT
cache-control: max-age=43200
X-Firefox-Spdy: h2
complex-oil.com/wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2023/01/9af_depositphotos_184502518_s_2019.jpg&w=120&h=80&zc=1&q=90
45.130.41.179200 OK 9.0 kB URL HTTP/2 complex-oil.com/wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2023/01/9af_depositphotos_184502518_s_2019.jpg&w=120&h=80&zc=1&q=90
IP 45.130.41.179:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 120x80, components 3\012- data
Hash 5018f7b834f3df02fe032e00982e6d4a
af6d1382fd449930a671edab159aefbf9350d9d1
c5787afc7bad4e3b087b3c0382dd29df812187de94f8e66b6dd101477c97f389
GET /wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2023/01/9af_depositphotos_184502518_s_2019.jpg&w=120&h=80&zc=1&q=90 HTTP/1.1
Host: complex-oil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 28 Jan 2023 04:40:05 GMT
content-type: image/jpeg
content-length: 8993
x-powered-by: PHP/7.2.34
last-modified: Sat, 28 Jan 2023 04:40:05 GMT
cache-control: max-age=864000, must-revalidate
expires: Tue, 07 Feb 2023 04:40:05 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.acint.net/hit/?v=0.5.0&uid=007b6f8f-1aaa-4efb-8cc0-b909504d0e6b&dp=10&tz=%2B00%3A00&nc=66131814&u=https%3A%2F%2Fcomplex-oil.com%2F&r=&rs=1280x1024&t=%D0%9A%D0%BE%D0%BC%D0%BF%D0%BB%D0%B5%D0%BA%D1%81%D0%BE%D0%B9%D0%BB%20%D0%BD%D0%B5%D1%84%D1%82%D0%B5%D0%BF%D1%80%D0%BE%D0%B4%D1%83%D0%BA%D1%82%D1%8B%20%7C&oE=1&oP=1&dT=2023-01-28T04%3A40%3A07.029&fu=40b77631-7ebc-4932-9f7d-adf60529638f
193.3.184.228200 OK 43 B URL HTTP/2 www.acint.net/hit/?v=0.5.0&uid=007b6f8f-1aaa-4efb-8cc0-b909504d0e6b&dp=10&tz=%2B00%3A00&nc=66131814&u=https%3A%2F%2Fcomplex-oil.com%2F&r=&rs=1280x1024&t=%D0%9A%D0%BE%D0%BC%D0%BF%D0%BB%D0%B5%D0%BA%D1%81%D0%BE%D0%B9%D0%BB%20%D0%BD%D0%B5%D1%84%D1%82%D0%B5%D0%BF%D1%80%D0%BE%D0%B4%D1%83%D0%BA%D1%82%D1%8B%20%7C&oE=1&oP=1&dT=2023-01-28T04%3A40%3A07.029&fu=40b77631-7ebc-4932-9f7d-adf60529638f
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hit/?v=0.5.0&uid=007b6f8f-1aaa-4efb-8cc0-b909504d0e6b&dp=10&tz=%2B00%3A00&nc=66131814&u=https%3A%2F%2Fcomplex-oil.com%2F&r=&rs=1280x1024&t=%D0%9A%D0%BE%D0%BC%D0%BF%D0%BB%D0%B5%D0%BA%D1%81%D0%BE%D0%B9%D0%BB%20%D0%BD%D0%B5%D1%84%D1%82%D0%B5%D0%BF%D1%80%D0%BE%D0%B4%D1%83%D0%BA%D1%82%D1%8B%20%7C&oE=1&oP=1&dT=2023-01-28T04%3A40%3A07.029&fu=40b77631-7ebc-4932-9f7d-adf60529638f HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 28 Jan 2023 04:40:05 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
set-cookie: aid=CkIDE2PUpyVZuAlnZAzIAkQ2xZ7eE4qdzgw3sblnq98sMACY; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
www.acint.net/mc/?dp=10
193.3.184.228302 Found 154 B IP 193.3.184.228:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /mc/?dp=10 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 28 Jan 2023 04:40:06 GMT
content-type: text/html
content-length: 154
location: /mc/?dp=10&tc=1
set-cookie: test_cookie=CheckForPermission; path=/; Secure; SameSite=None; domain=.acint.net; expires=Sat, 28-Jan-23 04:50:06 GMT
aid=CkIDE2PUpyZcQQlq2cX5Ar7rHnzBWU7UWX1SQSg+/zYn/bRa; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
a.utraff.com/sync?ssp=Sape
104.21.59.66204 No Content 0 B URL HTTP/2 a.utraff.com/sync?ssp=Sape
IP 104.21.59.66:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=Sape HTTP/1.1
Host: a.utraff.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 28 Jan 2023 04:40:06 GMT
content-type: text/plain
set-cookie: preutid=1; Expires=Mon, 27 Feb 2023 07:40:06 GMT; Domain=.itraff.net; SameSite=None; Secure; Path=/
preutid=1; Expires=Mon, 27 Feb 2023 07:40:06 GMT; Domain=.utraff.com; SameSite=None; Secure; Path=/
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B2pDMm%2FSU6FclhV15YxwcQx%2ByomEgTaUK2tZm0%2BhxCKelAPn8xbDBZfBIj2XEHEm3T51ml7HXVU53pLsMLzMWDLf9I%2F6Sh4bdLoyV17u0s4jLf5GWYzgoFTxz1sYuZc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79070c4f591b0b02-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d5922d7d7a0587dd4f7bd1efda209331
114ff3c4d8948df7350b176a910bc91d8617d8c1
d769bd78f5c383c81c165fd85139ae31011d41d8e4f73aafa7db265a73a93114
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D769BD78F5C383C81C165FD85139AE31011D41D8E4F73AAFA7DB265A73A93114"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7963
Expires: Sat, 28 Jan 2023 06:52:49 GMT
Date: Sat, 28 Jan 2023 04:40:06 GMT
Connection: keep-alive
complex-oil.com/wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/themes/complex-oil/default.png&w=120&h=80&zc=1&q=70
45.130.41.179200 OK 26 kB URL HTTP/2 complex-oil.com/wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/themes/complex-oil/default.png&w=120&h=80&zc=1&q=70
IP 45.130.41.179:0
File type PNG image data, 120 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash b8eaa0761c394c1a92ee2aaf773ec610
dc27d89547ab0c70c81197733f972c0933e8bd89
1a3b550513ee2f2256eb054d3e938a54796ed8a27dafae3852f6ce3525767ae5
GET /wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/themes/complex-oil/default.png&w=120&h=80&zc=1&q=70 HTTP/1.1
Host: complex-oil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 28 Jan 2023 04:40:06 GMT
content-type: image/png
content-length: 26505
x-powered-by: PHP/7.2.34
last-modified: Sat, 28 Jan 2023 04:40:06 GMT
cache-control: max-age=864000, must-revalidate
expires: Tue, 07 Feb 2023 04:40:06 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
dm-eu.hybrid.ai/match?id=106&vid=1303420A25A7D4636709B85902C80C64
37.18.103.22204 No Content 0 B URL HTTP/2 dm-eu.hybrid.ai/match?id=106&vid=1303420A25A7D4636709B85902C80C64
IP 37.18.103.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?id=106&vid=1303420A25A7D4636709B85902C80C64 HTTP/1.1
Host: dm-eu.hybrid.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 28 Jan 2023 04:40:06 GMT
cache-control: no-cache, no-store
pragma: no-cache
expires: -1
set-cookie: vid=7966e8554712b007434c; Expires=Sun, 28 Jan 2024 04:40:04 GMT; Domain=.hybrid.ai; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC"
x-mode: 524
x-xss-protection: 1; mode=block
access-control-allow-origin: https://www.acint.net
access-control-allow-credentials: true
server: Hybrid Web Server
X-Firefox-Spdy: h2
www.acint.net/oci/?v=0.5.0&uid=007b6f8f-1aaa-4efb-8cc0-b909504d0e6b&dp=10&tz=%2B00%3A00&nc=77762078&oid=b2e3b40ba24804f2c106d1b697e85bef
193.3.184.228200 OK 43 B URL HTTP/2 www.acint.net/oci/?v=0.5.0&uid=007b6f8f-1aaa-4efb-8cc0-b909504d0e6b&dp=10&tz=%2B00%3A00&nc=77762078&oid=b2e3b40ba24804f2c106d1b697e85bef
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /oci/?v=0.5.0&uid=007b6f8f-1aaa-4efb-8cc0-b909504d0e6b&dp=10&tz=%2B00%3A00&nc=77762078&oid=b2e3b40ba24804f2c106d1b697e85bef HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Cookie: aid=CkIDE2PUpyVZuAlnZAzIAkQ2xZ7eE4qdzgw3sblnq98sMACY; test_cookie=CheckForPermission; cSyncDp7v2=1674880806; cSyncDp14v3=1674880806; cSyncDp17=1674880806; cSyncDp32=1674880806; cSyncDp45v3=1674880806; cSyncDp53v2=1674880806; cSyncDp54v2=1674880806; cSyncDp62=1674880806; cSyncDp67v2=1674880806; cSyncDp68=1674880806; cSyncDp71=1674880806; cSyncDp77=1674880806; cSyncDp84=1674880806; cSyncDp85=1674880806; cSyncDp95v3=1674880806; cSyncDp98v2=1674880806; cSyncDp101=1674880806; cSyncDp104v2=1674880806; cSyncDp107=1674880806; cSyncDp110=1674880806; cSyncDp111v2=1674880806; cSyncDp112v2=1674880806; cSyncDp125v3=1674880806; cSyncDp126=1674880806; cSyncDp127=1674880806; cSyncDp129=1674880806; cSyncDp136v2=1674880806; cSyncDp138=1674880806; cSyncDp146=1674880806; cSyncDp148=1674880806; cSyncDp149v2=1674880806; cSyncDp151=1674880806; cSyncDp178=1674880806; cSyncDp179=1674880806; cSyncDp186=1674880806; cSyncDp221=1674880806
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 28 Jan 2023 04:40:06 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.21.226:0
Hash 72227507a064008f0f855f128fc96dbc
1c269f0393b504d33e0b2ea9e0af517adceb625e
3299988e99478b5242d1916457915543d99518c487c9fde5989f040f457c8b9e
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:40:06 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Wed, 01 Feb 2023 02:14:30 GMT
ETag: "1c269f0393b504d33e0b2ea9e0af517adceb625e"
Last-Modified: Sat, 28 Jan 2023 02:14:31 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 233
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79070c4ffd08b527-OSL
complex-oil.com/wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2022/01/t30_1.jpg&w=220&h=120&zc=1&q=90
45.130.41.179200 OK 12 kB URL HTTP/2 complex-oil.com/wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2022/01/t30_1.jpg&w=220&h=120&zc=1&q=90
IP 45.130.41.179:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 220x120, components 3\012- data
Hash 3234ea5caa80338e851c7cc3f583013f
ff35de86873e44b1022ad494f0174cfcdf570e56
0b8582277f364baffb6d3b8bcaad9dc6bed08f0ecf91273b0a75efa91b4fe504
GET /wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2022/01/t30_1.jpg&w=220&h=120&zc=1&q=90 HTTP/1.1
Host: complex-oil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 28 Jan 2023 04:40:06 GMT
content-type: image/jpeg
content-length: 11575
x-powered-by: PHP/7.2.34
last-modified: Sat, 28 Jan 2023 04:40:06 GMT
cache-control: max-age=864000, must-revalidate
expires: Tue, 07 Feb 2023 04:40:06 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
sync.1dmp.io/pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1303420A25A7D4636709B85902C80C64
78.46.100.125204 No Content 0 B URL HTTP/2 sync.1dmp.io/pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1303420A25A7D4636709B85902C80C64
IP 78.46.100.125:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1303420A25A7D4636709B85902C80C64 HTTP/1.1
Host: sync.1dmp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Sat, 28 Jan 2023 04:40:06 GMT
X-Firefox-Spdy: h2
sync.dmp.otm-r.com/match/sape?id=1303420A25A7D4636709B85902C80C64
194.55.244.180204 No Content 0 B URL HTTP/2 sync.dmp.otm-r.com/match/sape?id=1303420A25A7D4636709B85902C80C64
IP 194.55.244.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/sape?id=1303420A25A7D4636709B85902C80C64 HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx/1.23.2
date: Sat, 28 Jan 2023 04:40:06 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 53c0ff47b60a331633e7b9fafa8ef578
dd85cb6a1d0b196a4193c0cc443fff5c686ee572
936ec0dda0dac37efa1e1dc1af3b0936d47b0a23ee36022b70f2c7aa1127cca2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "936EC0DDA0DAC37EFA1E1DC1AF3B0936D47B0A23EE36022B70F2C7AA1127CCA2"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7271
Expires: Sat, 28 Jan 2023 06:41:17 GMT
Date: Sat, 28 Jan 2023 04:40:06 GMT
Connection: keep-alive
complex-oil.com/wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2022/01/nwvlxabv7q5rebqlbrkqq55chnlntxqo.jpg&w=220&h=120&zc=1&q=90
45.130.41.179200 OK 11 kB URL HTTP/2 complex-oil.com/wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2022/01/nwvlxabv7q5rebqlbrkqq55chnlntxqo.jpg&w=220&h=120&zc=1&q=90
IP 45.130.41.179:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 220x120, components 3\012- data
Hash 1b969d4f72ce554f0dc63dbef29c5312
df690f078d1a3177b2819c025a9cedd4711ac58c
231406667eb10976aa1e59349923fbe542b8f0cf37ebf3f7a4d31f17f78d61a4
GET /wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2022/01/nwvlxabv7q5rebqlbrkqq55chnlntxqo.jpg&w=220&h=120&zc=1&q=90 HTTP/1.1
Host: complex-oil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 28 Jan 2023 04:40:06 GMT
content-type: image/jpeg
content-length: 10946
x-powered-by: PHP/7.2.34
last-modified: Sat, 28 Jan 2023 04:40:06 GMT
cache-control: max-age=864000, must-revalidate
expires: Tue, 07 Feb 2023 04:40:06 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 235f9af9ade2e15f312c64600ddda187
e6f73a95d201ca7d57ab22d9c0b9c220267c9413
469c16ae2108fbcb64bea4781d67e73dd4de3efbe3c07c2eea357c67312acb4b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "469C16AE2108FBCB64BEA4781D67E73DD4DE3EFBE3C07C2EEA357C67312ACB4B"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7914
Expires: Sat, 28 Jan 2023 06:52:00 GMT
Date: Sat, 28 Jan 2023 04:40:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4b0116f0afd22e87ef64fd8846222ef3
d2e7ffc330c76f252a439c305724bab42da48d72
88ebf08fcb7b4d329d6dbc44da70404c486de321684c268a0aef5818aa5146fe
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "88EBF08FCB7B4D329D6DBC44DA70404C486DE321684C268A0AEF5818AA5146FE"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11059
Expires: Sat, 28 Jan 2023 07:44:25 GMT
Date: Sat, 28 Jan 2023 04:40:06 GMT
Connection: keep-alive
www.acint.net/match?dp=129&euid=y5a09xj56m
193.3.184.228200 OK 43 B URL HTTP/2 www.acint.net/match?dp=129&euid=y5a09xj56m
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=129&euid=y5a09xj56m HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDE2PUpyVZuAlnZAzIAkQ2xZ7eE4qdzgw3sblnq98sMACY; test_cookie=CheckForPermission; cSyncDp7v2=1674880806; cSyncDp14v3=1674880806; cSyncDp17=1674880806; cSyncDp32=1674880806; cSyncDp45v3=1674880806; cSyncDp53v2=1674880806; cSyncDp54v2=1674880806; cSyncDp62=1674880806; cSyncDp67v2=1674880806; cSyncDp68=1674880806; cSyncDp71=1674880806; cSyncDp77=1674880806; cSyncDp84=1674880806; cSyncDp85=1674880806; cSyncDp95v3=1674880806; cSyncDp98v2=1674880806; cSyncDp101=1674880806; cSyncDp104v2=1674880806; cSyncDp107=1674880806; cSyncDp110=1674880806; cSyncDp111v2=1674880806; cSyncDp112v2=1674880806; cSyncDp125v3=1674880806; cSyncDp126=1674880806; cSyncDp127=1674880806; cSyncDp129=1674880806; cSyncDp136v2=1674880806; cSyncDp138=1674880806; cSyncDp146=1674880806; cSyncDp148=1674880806; cSyncDp149v2=1674880806; cSyncDp151=1674880806; cSyncDp178=1674880806; cSyncDp179=1674880806; cSyncDp186=1674880806; cSyncDp221=1674880806
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 28 Jan 2023 04:40:06 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0a25f371a954c455634e7b426531fc1d
51904886535a2e4d441483b5f3d35df7a32fa6a0
55ca874617410ff12bd201295c3ec43249c05120dcbd830984ab41e8017d98a8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "55CA874617410FF12BD201295C3EC43249C05120DCBD830984AB41E8017D98A8"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13244
Expires: Sat, 28 Jan 2023 08:20:50 GMT
Date: Sat, 28 Jan 2023 04:40:06 GMT
Connection: keep-alive
ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D
185.147.80.35302 Found 74 B URL HTTP/1.1 ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D
IP 185.147.80.35:0
File type HTML document, ASCII text
Hash 67cf785a84e188db22a8d76c1e5486b0
fb5989172225499d99f7678b57c9ca638ef1a059
482e1bc0cff274dbf0659d9ebb3b781cc986c54366ee1482bdc0538d30c5e20e
GET /sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D HTTP/1.1
Host: ssp.bestssp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.16.1
Date: Sat, 28 Jan 2023 04:40:06 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 74
Connection: keep-alive
Location: https://www.acint.net/match?dp=95&euid=UTYZGWZJ
Set-Cookie: uid=UTYZGWZJ; Expires=Tue, 25 Jan 2033 04:40:06 GMT
ssp-rtb.sape.ru/rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D
193.3.184.212302 Moved Temporarily 142 B URL HTTP/1.1 ssp-rtb.sape.ru/rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D
IP 193.3.184.212:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Sat, 28 Jan 2023 04:40:06 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
P3P: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Location: https://acint.net/match?dp=14&euid=3103420A26A7D4631B001A0902F49DEC
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Set-Cookie: sspuid=CkIDMWPUpyYJGgAb7J30AqnnhCkDsnMEBjtWlRAOgiZtnEb7; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.ssp-rtb.sape.ru; path=/; Secure; SameSite=None
complex-oil.com/wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/themes/complex-oil/default.png&w=220&h=120&zc=1&q=70
45.130.41.179200 OK 69 kB URL HTTP/2 complex-oil.com/wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/themes/complex-oil/default.png&w=220&h=120&zc=1&q=70
IP 45.130.41.179:0
File type PNG image data, 220 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash ff7fa87259a232ac1217762f6ec0e3f0
af656f7f0d45ec97e4fcae90dc3a6821eca9aa1f
d18b59d46e371b426c600d933efdc585f5e388de70d4b0c73733546a0b449bb3
GET /wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/themes/complex-oil/default.png&w=220&h=120&zc=1&q=70 HTTP/1.1
Host: complex-oil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 28 Jan 2023 04:40:06 GMT
content-type: image/png
content-length: 69106
x-powered-by: PHP/7.2.34
last-modified: Sat, 28 Jan 2023 04:40:06 GMT
cache-control: max-age=864000, must-revalidate
expires: Tue, 07 Feb 2023 04:40:06 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
complex-oil.com/wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2020/10/beton.jpg&w=220&h=120&zc=1&q=90
45.130.41.179200 OK 10 kB URL HTTP/2 complex-oil.com/wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2020/10/beton.jpg&w=220&h=120&zc=1&q=90
IP 45.130.41.179:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 220x120, components 3\012- data
Hash 2687a473b6cfd80c442c9e9444190956
b9cec0931399cd99cebaa0fff82e9c53606af179
35a7a942f9ededfbf5af00477fc72e69f2ec71da5c7724ec44588bb7931c5f2a
GET /wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2020/10/beton.jpg&w=220&h=120&zc=1&q=90 HTTP/1.1
Host: complex-oil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 28 Jan 2023 04:40:06 GMT
content-type: image/jpeg
content-length: 10231
x-powered-by: PHP/7.2.34
last-modified: Sat, 28 Jan 2023 04:40:06 GMT
cache-control: max-age=864000, must-revalidate
expires: Tue, 07 Feb 2023 04:40:06 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
complex-oil.com/wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2020/01/789589a80ceade90e7e1b9cb9bd20543.jpg&w=220&h=120&zc=1&q=90
45.130.41.179200 OK 14 kB URL HTTP/2 complex-oil.com/wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2020/01/789589a80ceade90e7e1b9cb9bd20543.jpg&w=220&h=120&zc=1&q=90
IP 45.130.41.179:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 220x120, components 3\012- data
Hash b67ddc20776101c7535e8675d92062a3
3996ce00316c169c8c25e11a71aaefb9af0ac3cd
87258e57a51e434e5554bb985df15b5d50a00766c59358ddda9c9dfd5f5dbb45
GET /wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2020/01/789589a80ceade90e7e1b9cb9bd20543.jpg&w=220&h=120&zc=1&q=90 HTTP/1.1
Host: complex-oil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 28 Jan 2023 04:40:06 GMT
content-type: image/jpeg
content-length: 14044
x-powered-by: PHP/7.2.34
last-modified: Sat, 28 Jan 2023 04:40:06 GMT
cache-control: max-age=864000, must-revalidate
expires: Tue, 07 Feb 2023 04:40:06 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash eb076ea82dfce7ba75b3e5f52802809a
a50d51d80b89e8c1d5e583ee9f6c7b4c0cc541fd
c9a500255f4bf0a7e1c54b76eb8f07ef94733f5660686df34ab5a2b588878684
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C9A500255F4BF0A7E1C54B76EB8F07EF94733F5660686DF34AB5A2B588878684"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17026
Expires: Sat, 28 Jan 2023 09:23:52 GMT
Date: Sat, 28 Jan 2023 04:40:06 GMT
Connection: keep-alive
www.acint.net/mc/?dp=10&tc=1
193.3.184.228200 OK 1.5 kB URL HTTP/2 www.acint.net/mc/?dp=10&tc=1
IP 193.3.184.228:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash dac4623e7c63e7073c7ae0a23b704571
3a15ec26afcd6684132e975d4073a76a9e25cac7
640d766a05b0b09d476d54dfbebcc863f2fbd03c7a3120d201f488e60df0e613
GET /mc/?dp=10&tc=1 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://complex-oil.com/
Connection: keep-alive
Cookie: aid=CkIDE2PUpyVZuAlnZAzIAkQ2xZ7eE4qdzgw3sblnq98sMACY; test_cookie=CheckForPermission
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 28 Jan 2023 04:40:06 GMT
content-type: text/html
set-cookie: cSyncDp7v2=1674880806; expires=Mon, 27-Feb-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp14v3=1674880806; expires=Mon, 27-Feb-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp17=1674880806; expires=Mon, 27-Feb-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp32=1674880806; expires=Mon, 27-Feb-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp45v3=1674880806; expires=Sun, 29-Jan-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp53v2=1674880806; expires=Mon, 27-Feb-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp54v2=1674880806; expires=Mon, 27-Feb-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp62=1674880806; expires=Mon, 27-Feb-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp67v2=1674880806; expires=Mon, 27-Feb-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp68=1674880806; expires=Mon, 27-Feb-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp71=1674880806; expires=Mon, 27-Feb-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp77=1674880806; expires=Sat, 11-Feb-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp84=1674880806; expires=Mon, 27-Feb-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp85=1674880806; expires=Mon, 27-Feb-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp95v3=1674880806; expires=Mon, 27-Feb-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp98v2=1674880806; expires=Mon, 27-Feb-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp101=1674880806; expires=Mon, 27-Feb-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp104v2=1674880806; expires=Sat, 11-Feb-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp107=1674880806; expires=Mon, 27-Feb-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp110=1674880806; expires=Mon, 27-Feb-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp111v2=1674880806; expires=Sat, 11-Feb-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp112v2=1674880806; expires=Mon, 27-Feb-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp125v3=1674880806; expires=Sun, 12-Feb-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp126=1674880806; expires=Mon, 27-Feb-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp127=1674880806; expires=Mon, 27-Feb-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp129=1674880806; expires=Mon, 27-Feb-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp136v2=1674880806; expires=Mon, 27-Feb-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp138=1674880806; expires=Mon, 27-Feb-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp146=1674880806; expires=Mon, 27-Feb-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp148=1674880806; expires=Mon, 27-Feb-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp149v2=1674880806; expires=Mon, 27-Feb-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp151=1674880806; expires=Mon, 27-Feb-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp178=1674880806; expires=Mon, 27-Feb-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp179=1674880806; expires=Mon, 27-Feb-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp186=1674880806; expires=Mon, 27-Feb-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp221=1674880806; expires=Mon, 27-Feb-23 04:40:06 GMT; path=/; Secure; SameSite=None; domain=.acint.net
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
content-encoding: gzip
X-Firefox-Spdy: h2
ut.rktch.com/matchspm?pi=1000005&pui=1303420A25A7D4636709B85902C80C64
89.108.97.2302 Found 0 B URL HTTP/1.1 ut.rktch.com/matchspm?pi=1000005&pui=1303420A25A7D4636709B85902C80C64
IP 89.108.97.2:0
ASN #197695 Domain names registrar REG.RU, Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /matchspm?pi=1000005&pui=1303420A25A7D4636709B85902C80C64 HTTP/1.1
Host: ut.rktch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.22.0
Date: Sat, 28 Jan 2023 04:40:06 GMT
Content-Length: 0
Connection: keep-alive
location: https://redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D{WEBO_CID}%26noredirect
Set-Cookie: b_uid=12dcf697b294f0d9b594c8167b2b7ad019c3; Max-Age=2592000; Expires=Mon, 27 Feb 2023 04:40:06 GMT; Domain=rktch.com; Secure; SameSite=None
Access-Control-Allow-Methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
Access-Control-Allow-Headers: Content-Type, Accept, Authorization
Access-Control-Allow-Credentials: true
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash de3e12d685cbe9769ef6242f05ab4891
4f3da85f47e1b1f9f119eb2ab5e9a6df4c0281de
5764d8b43ca6114127790c624db9698abd08a1b51c3f2cf23b7102461b855b28
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:40:06 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Wed, 01 Feb 2023 01:35:46 GMT
ETag: "4f3da85f47e1b1f9f119eb2ab5e9a6df4c0281de"
Last-Modified: Sat, 28 Jan 2023 01:35:47 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2122
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79070c50ac470b39-OSL
sync.upravel.com/sape/sync
78.46.16.13302 Found 0 B URL HTTP/2 sync.upravel.com/sape/sync
IP 78.46.16.13:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/sync HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sat, 28 Jan 2023 04:40:06 GMT
content-type: image/png
content-length: 0
location: https://sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
set-cookie: session_tptc=1674880806496;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
session_tptc-legacy=1674880806496;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
complex-oil.com/wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2019/12/000000.jpg&w=220&h=120&zc=1&q=90
45.130.41.179200 OK 12 kB URL HTTP/2 complex-oil.com/wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2019/12/000000.jpg&w=220&h=120&zc=1&q=90
IP 45.130.41.179:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 220x120, components 3\012- data
Hash 8a1d4b52fae6ad38ccb294ce6df95769
db65ccdcbb308c71c2e51a41586127732b08c1f1
838937abb50e1f040bf3e93ba217ccf5a603dfb2bfcaab6b05b1cec57fc77eb9
GET /wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2019/12/000000.jpg&w=220&h=120&zc=1&q=90 HTTP/1.1
Host: complex-oil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 28 Jan 2023 04:40:06 GMT
content-type: image/jpeg
content-length: 11903
x-powered-by: PHP/7.2.34
last-modified: Sat, 28 Jan 2023 04:40:06 GMT
cache-control: max-age=864000, must-revalidate
expires: Tue, 07 Feb 2023 04:40:06 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
complex-oil.com/wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2019/12/1-1.jpg&w=220&h=120&zc=1&q=90
45.130.41.179200 OK 15 kB URL HTTP/2 complex-oil.com/wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2019/12/1-1.jpg&w=220&h=120&zc=1&q=90
IP 45.130.41.179:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 220x120, components 3\012- data
Hash f812eb6a52b4fb0af04020514de42e04
28e515af03b977adb6147aa493bdd75b4a5e69bf
04e2e5a22a1a43aaf0709aa7b40662172d30a148ae2c2f69757790602dd542bf
GET /wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2019/12/1-1.jpg&w=220&h=120&zc=1&q=90 HTTP/1.1
Host: complex-oil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 28 Jan 2023 04:40:06 GMT
content-type: image/jpeg
content-length: 15440
x-powered-by: PHP/7.2.34
last-modified: Sat, 28 Jan 2023 04:40:06 GMT
cache-control: max-age=864000, must-revalidate
expires: Tue, 07 Feb 2023 04:40:06 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
complex-oil.com/wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2019/11/2018-07-30_115739-300x189.jpg&w=220&h=120&zc=1&q=90
45.130.41.179200 OK 13 kB URL HTTP/2 complex-oil.com/wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2019/11/2018-07-30_115739-300x189.jpg&w=220&h=120&zc=1&q=90
IP 45.130.41.179:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 220x120, components 3\012- data
Hash 397282186255b4026d9bdc8e1f76e4a5
bc3dd46a5c964987ebb1b412de3a06a8ddc563f8
2b2ccef3f9f103700c910f15fa85c0a36440df5f56381b45c77afa7bc6ed8b0d
GET /wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2019/11/2018-07-30_115739-300x189.jpg&w=220&h=120&zc=1&q=90 HTTP/1.1
Host: complex-oil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 28 Jan 2023 04:40:06 GMT
content-type: image/jpeg
content-length: 12550
x-powered-by: PHP/7.2.34
last-modified: Sat, 28 Jan 2023 04:40:06 GMT
cache-control: max-age=864000, must-revalidate
expires: Tue, 07 Feb 2023 04:40:06 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8bc64905ed0c46221e28418a82fe2c70
89af1faa2308b988a7f32aac2650e76da312d086
7d0d6fdccac2ecbcb2cb9fff60fe88e1eb34fbf1088c5ddae97542c672ad8a6f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D0D6FDCCAC2ECBCB2CB9FFF60FE88E1EB34FBF1088C5DDAE97542C672AD8A6F"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15076
Expires: Sat, 28 Jan 2023 08:51:22 GMT
Date: Sat, 28 Jan 2023 04:40:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash af1a7432747bd8bfeabace1396731828
bf5bfe75e9b4d269b264394b75e4a3b58d8971af
201e2e36228ae1a6fee0b1e5983cab85afb8516aa4f50f7e161c7f1e908dcc2a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "201E2E36228AE1A6FEE0B1E5983CAB85AFB8516AA4F50F7E161C7F1E908DCC2A"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14481
Expires: Sat, 28 Jan 2023 08:41:27 GMT
Date: Sat, 28 Jan 2023 04:40:06 GMT
Connection: keep-alive
www.acint.net/match?dp=95&euid=UTYZGWZJ
193.3.184.228200 OK 43 B URL HTTP/2 www.acint.net/match?dp=95&euid=UTYZGWZJ
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=95&euid=UTYZGWZJ HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDE2PUpyVZuAlnZAzIAkQ2xZ7eE4qdzgw3sblnq98sMACY; test_cookie=CheckForPermission; cSyncDp7v2=1674880806; cSyncDp14v3=1674880806; cSyncDp17=1674880806; cSyncDp32=1674880806; cSyncDp45v3=1674880806; cSyncDp53v2=1674880806; cSyncDp54v2=1674880806; cSyncDp62=1674880806; cSyncDp67v2=1674880806; cSyncDp68=1674880806; cSyncDp71=1674880806; cSyncDp77=1674880806; cSyncDp84=1674880806; cSyncDp85=1674880806; cSyncDp95v3=1674880806; cSyncDp98v2=1674880806; cSyncDp101=1674880806; cSyncDp104v2=1674880806; cSyncDp107=1674880806; cSyncDp110=1674880806; cSyncDp111v2=1674880806; cSyncDp112v2=1674880806; cSyncDp125v3=1674880806; cSyncDp126=1674880806; cSyncDp127=1674880806; cSyncDp129=1674880806; cSyncDp136v2=1674880806; cSyncDp138=1674880806; cSyncDp146=1674880806; cSyncDp148=1674880806; cSyncDp149v2=1674880806; cSyncDp151=1674880806; cSyncDp178=1674880806; cSyncDp179=1674880806; cSyncDp186=1674880806; cSyncDp221=1674880806
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 28 Jan 2023 04:40:06 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
1303420a25a7d4636709b85902c80c64-sp.ops.beeline.ru/p?ssp=sp&id=1303420A25A7D4636709B85902C80C64
37.9.245.57301 Moved Permanently 0 B URL HTTP/2 1303420a25a7d4636709b85902c80c64-sp.ops.beeline.ru/p?ssp=sp&id=1303420A25A7D4636709B85902C80C64
IP 37.9.245.57:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=sp&id=1303420A25A7D4636709B85902C80C64 HTTP/1.1
Host: 1303420a25a7d4636709b85902c80c64-sp.ops.beeline.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 28 Jan 2023 04:40:06 GMT
content-length: 0
location: https://www.acint.net/match?dp=111&euid=4a05d87c-a225-4f88-89d4-b20e39f3ac97
access-control-allow-origin: *
cache-control: no-store, no-cache, must-revalidate
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: BeeAID=4a05d87c-a225-4f88-89d4-b20e39f3ac97; expires=Fri, 19 Jan 2024 04:40:06 GMT; domain=ops.beeline.ru; path=/; secure; SameSite=None
access-control-allow-credentials: true, true
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS, GET, HEAD, POST, OPTIONS, PUT, DELETE
access-control-allow-headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
x-route: http://upstream_cookiesync
x-host: 192.168.152.38
X-Firefox-Spdy: h2
complex-oil.com/wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2023/01/1640689321_1-abrakadabra-fun-p-fon-dlya-stroitelnoi-kompanii-1-4.jpg&w=120&h=80&zc=1&q=90
45.130.41.179200 OK 5.7 kB URL HTTP/2 complex-oil.com/wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2023/01/1640689321_1-abrakadabra-fun-p-fon-dlya-stroitelnoi-kompanii-1-4.jpg&w=120&h=80&zc=1&q=90
IP 45.130.41.179:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 120x80, components 3\012- data
Hash 9d3b17eeae9acecd2b2e2f67830977ef
2f0a3a7ad239d711245e0d7822d5a867c598e275
f6a00bbb776c93eade2525514aaf5d1dd5e123a1f0dab019b6b9bfce8657c2fe
GET /wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2023/01/1640689321_1-abrakadabra-fun-p-fon-dlya-stroitelnoi-kompanii-1-4.jpg&w=120&h=80&zc=1&q=90 HTTP/1.1
Host: complex-oil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 28 Jan 2023 04:40:06 GMT
content-type: image/jpeg
content-length: 5729
x-powered-by: PHP/7.2.34
last-modified: Sat, 28 Jan 2023 04:40:06 GMT
cache-control: max-age=864000, must-revalidate
expires: Tue, 07 Feb 2023 04:40:06 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
acint.net/match?dp=14&euid=3103420A26A7D4631B001A0902F49DEC
193.3.184.228200 OK 43 B URL HTTP/2 acint.net/match?dp=14&euid=3103420A26A7D4631B001A0902F49DEC
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=14&euid=3103420A26A7D4631B001A0902F49DEC HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDE2PUpyVZuAlnZAzIAkQ2xZ7eE4qdzgw3sblnq98sMACY; test_cookie=CheckForPermission; cSyncDp7v2=1674880806; cSyncDp14v3=1674880806; cSyncDp17=1674880806; cSyncDp32=1674880806; cSyncDp45v3=1674880806; cSyncDp53v2=1674880806; cSyncDp54v2=1674880806; cSyncDp62=1674880806; cSyncDp67v2=1674880806; cSyncDp68=1674880806; cSyncDp71=1674880806; cSyncDp77=1674880806; cSyncDp84=1674880806; cSyncDp85=1674880806; cSyncDp95v3=1674880806; cSyncDp98v2=1674880806; cSyncDp101=1674880806; cSyncDp104v2=1674880806; cSyncDp107=1674880806; cSyncDp110=1674880806; cSyncDp111v2=1674880806; cSyncDp112v2=1674880806; cSyncDp125v3=1674880806; cSyncDp126=1674880806; cSyncDp127=1674880806; cSyncDp129=1674880806; cSyncDp136v2=1674880806; cSyncDp138=1674880806; cSyncDp146=1674880806; cSyncDp148=1674880806; cSyncDp149v2=1674880806; cSyncDp151=1674880806; cSyncDp178=1674880806; cSyncDp179=1674880806; cSyncDp186=1674880806; cSyncDp221=1674880806
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 28 Jan 2023 04:40:06 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
complex-oil.com/wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2023/01/7087_statya-2-kartinka.jpg&w=120&h=80&zc=1&q=90
45.130.41.179200 OK 8.3 kB URL HTTP/2 complex-oil.com/wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2023/01/7087_statya-2-kartinka.jpg&w=120&h=80&zc=1&q=90
IP 45.130.41.179:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 120x80, components 3\012- data
Hash 205cb902f926b12938aebac7392d7ddb
1944d0598a061e2af2da9f7b06ad4a72d2b94765
771851a90598282b57a32aa6fe054aa5443fcd1dd835e044500af362e3a20ad2
GET /wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2023/01/7087_statya-2-kartinka.jpg&w=120&h=80&zc=1&q=90 HTTP/1.1
Host: complex-oil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 28 Jan 2023 04:40:06 GMT
content-type: image/jpeg
content-length: 8327
x-powered-by: PHP/7.2.34
last-modified: Sat, 28 Jan 2023 04:40:06 GMT
cache-control: max-age=864000, must-revalidate
expires: Tue, 07 Feb 2023 04:40:06 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 81b13e3858cb0a6011fce23e78c2a1a3
82f66fbc3cb112c0068b9a592fb57e10b07ff353
99df08bf2c8de2ca458557cc956c4b68c621d2131545254a3bbbed5a00f167dc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "99DF08BF2C8DE2CA458557CC956C4B68C621D2131545254A3BBBED5A00F167DC"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7109
Expires: Sat, 28 Jan 2023 06:38:35 GMT
Date: Sat, 28 Jan 2023 04:40:06 GMT
Connection: keep-alive
sync.adspend.space/sape?uid=1303420A25A7D4636709B85902C80C64
212.76.129.183302 Found 149 B URL HTTP/2 sync.adspend.space/sape?uid=1303420A25A7D4636709B85902C80C64
IP 212.76.129.183:0
File type HTML document, ASCII text
Hash db8e818dc6c67e0628ba4e25c42e6411
0f262b59ccfdd97426a86b3a71c2afd9c1631650
bce910af6a70a8646a4cbd897381a4d8bdf0498fe7f7214c718c81010a325967
GET /sape?uid=1303420A25A7D4636709B85902C80C64 HTTP/1.1
Host: sync.adspend.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 28 Jan 2023 04:40:06 GMT
content-type: text/html; charset=utf-8
content-length: 149
location: https://sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3Dcff1574c-ee05-43b1-9e09-7690d4fe1340
set-cookie: as-user=cff1574c-ee05-43b1-9e09-7690d4fe1340; Path=/; Max-Age=31536000; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
acint.net/match?dp=110&euid=9429261d8f4d40f687ee60a3d79fe504
193.3.184.228200 OK 43 B URL HTTP/2 acint.net/match?dp=110&euid=9429261d8f4d40f687ee60a3d79fe504
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=110&euid=9429261d8f4d40f687ee60a3d79fe504 HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDE2PUpyVZuAlnZAzIAkQ2xZ7eE4qdzgw3sblnq98sMACY; test_cookie=CheckForPermission; cSyncDp7v2=1674880806; cSyncDp14v3=1674880806; cSyncDp17=1674880806; cSyncDp32=1674880806; cSyncDp45v3=1674880806; cSyncDp53v2=1674880806; cSyncDp54v2=1674880806; cSyncDp62=1674880806; cSyncDp67v2=1674880806; cSyncDp68=1674880806; cSyncDp71=1674880806; cSyncDp77=1674880806; cSyncDp84=1674880806; cSyncDp85=1674880806; cSyncDp95v3=1674880806; cSyncDp98v2=1674880806; cSyncDp101=1674880806; cSyncDp104v2=1674880806; cSyncDp107=1674880806; cSyncDp110=1674880806; cSyncDp111v2=1674880806; cSyncDp112v2=1674880806; cSyncDp125v3=1674880806; cSyncDp126=1674880806; cSyncDp127=1674880806; cSyncDp129=1674880806; cSyncDp136v2=1674880806; cSyncDp138=1674880806; cSyncDp146=1674880806; cSyncDp148=1674880806; cSyncDp149v2=1674880806; cSyncDp151=1674880806; cSyncDp178=1674880806; cSyncDp179=1674880806; cSyncDp186=1674880806; cSyncDp221=1674880806
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 28 Jan 2023 04:40:06 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
stat.adlabs.ru/merge_gpsid/?sid=50&id=1303420A25A7D4636709B85902C80C64
109.248.237.36302 Found 0 B URL HTTP/2 stat.adlabs.ru/merge_gpsid/?sid=50&id=1303420A25A7D4636709B85902C80C64
IP 109.248.237.36:0
ASN #201009 Centre of server systems Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /merge_gpsid/?sid=50&id=1303420A25A7D4636709B85902C80C64 HTTP/1.1
Host: stat.adlabs.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sat, 28 Jan 2023 04:24:43 GMT
content-length: 0
location: //adlmerge.com/merge_gpsid/?sid=50&id=1303420A25A7D4636709B85902C80C64
X-Firefox-Spdy: h2
complex-oil.com/wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2022/12/DSC03908-iloveimg-converted.jpg&w=120&h=80&zc=1&q=90
45.130.41.179200 OK 5.4 kB URL HTTP/2 complex-oil.com/wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2022/12/DSC03908-iloveimg-converted.jpg&w=120&h=80&zc=1&q=90
IP 45.130.41.179:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 120x80, components 3\012- data
Hash e27056a485a7d38d548d4c5264e0865d
cd96baa19085d9975404a20af5005063a97156aa
d54a013bde0d7387f60d0d2ba11dc2306574405f4c483df94e682a1b91184405
GET /wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2022/12/DSC03908-iloveimg-converted.jpg&w=120&h=80&zc=1&q=90 HTTP/1.1
Host: complex-oil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 28 Jan 2023 04:40:06 GMT
content-type: image/jpeg
content-length: 5365
x-powered-by: PHP/7.2.34
last-modified: Sat, 28 Jan 2023 04:40:06 GMT
cache-control: max-age=864000, must-revalidate
expires: Tue, 07 Feb 2023 04:40:06 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
s.uuidksinc.net/match/396/?remote_uid=1303420A25A7D4636709B85902C80C64
185.196.197.130302 Found 0 B URL HTTP/2 s.uuidksinc.net/match/396/?remote_uid=1303420A25A7D4636709B85902C80C64
IP 185.196.197.130:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/396/?remote_uid=1303420A25A7D4636709B85902C80C64 HTTP/1.1
Host: s.uuidksinc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx/1.19.0
date: Sat, 28 Jan 2023 04:40:06 GMT
content-length: 0
location: https://www.acint.net/match?dp=127&euid=jwaQWOLBmZwckslUhZ4a
set-cookie: jcsuuid=jwaQWOLBmZwckslUhZ4a; expires=Sun, 28 Jan 2024 04:40:06 GMT; domain=uuidksinc.net; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash af1a7432747bd8bfeabace1396731828
bf5bfe75e9b4d269b264394b75e4a3b58d8971af
201e2e36228ae1a6fee0b1e5983cab85afb8516aa4f50f7e161c7f1e908dcc2a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "201E2E36228AE1A6FEE0B1E5983CAB85AFB8516AA4F50F7E161C7F1E908DCC2A"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14481
Expires: Sat, 28 Jan 2023 08:41:27 GMT
Date: Sat, 28 Jan 2023 04:40:06 GMT
Connection: keep-alive
complex-oil.com/wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2022/12/1.jpg&w=120&h=80&zc=1&q=90
45.130.41.179200 OK 2.0 kB URL HTTP/2 complex-oil.com/wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2022/12/1.jpg&w=120&h=80&zc=1&q=90
IP 45.130.41.179:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 120x80, components 3\012- data
Hash ee0e2853972c268f1af6f9429d98ca53
8686335a826253de02700ff1847bfbeafe26da20
420bb8c9741af00019ad30c64ad794d488986d01b49693ba806465313c81ee66
GET /wp-content/themes/complex-oil/scripts/timthumb.php?src=https://complex-oil.com/wp-content/uploads/2022/12/1.jpg&w=120&h=80&zc=1&q=90 HTTP/1.1
Host: complex-oil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 28 Jan 2023 04:40:06 GMT
content-type: image/jpeg
content-length: 1955
x-powered-by: PHP/7.2.34
last-modified: Sat, 28 Jan 2023 04:40:06 GMT
cache-control: max-age=864000, must-revalidate
expires: Tue, 07 Feb 2023 04:40:06 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
sync.bumlam.com/?src=sap1&uid=1303420A25A7D4636709B85902C80C64
31.172.81.158302 Moved Temporarily 0 B URL HTTP/1.1 sync.bumlam.com/?src=sap1&uid=1303420A25A7D4636709B85902C80C64
IP 31.172.81.158:0
ASN #44066 diva-e Datacenters GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sap1&uid=1303420A25A7D4636709B85902C80C64 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 28 Jan 2023 04:40:06 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiRkNmFhOGRhMi05ZWM1LTExZWQtODZlMC0wMDI1OTBjMDY0N2M*; Path=/; Expires=Fri, 23 Jan 2043 04:40:06 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: //sync.bumlam.com/?src=sap1&s_data=CAIQARimztKeBmIgMTMwMzQyMEEyNUE3RDQ2MzY3MDlCODU5MDJDODBDNjSiARDWqo2insUR7YbgACWQwGR8
ETag: d6aa8da2-9ec5-11ed-86e0-002590c0647c
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
mediatoday.ru/core/match.gif?s=32&id=1303420A25A7D4636709B85902C80C64
139.45.228.111200 OK 43 B URL HTTP/2 mediatoday.ru/core/match.gif?s=32&id=1303420A25A7D4636709B85902C80C64
IP 139.45.228.111:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /core/match.gif?s=32&id=1303420A25A7D4636709B85902C80C64 HTTP/1.1
Host: mediatoday.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 04:40:06 GMT
content-type: image/gif
content-length: 43
p3p: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA
cache-control: no-cache, max-age=0, must-revalidate, no-store
pragma: no-cache
expires: Thursday, 01-Jan-1970 00:00:00 GMT
set-cookie: idntfy=VU6fqrVDDep6mTk; expires=Tue, 25-Jan-2033 04:40:06 GMT; domain=mediatoday.ru; path=/core; SameSite=None; Secure
X-Firefox-Spdy: h2
sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
78.46.16.13302 Found 0 B URL HTTP/2 sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
IP 78.46.16.13:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0 HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: session_tptc=1674880806496
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Sat, 28 Jan 2023 04:40:06 GMT
content-type: image/png
content-length: 0
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: user_id=5a8cc1e7-3d36-4af8-9cee-b4937d2ed885;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
user_id-legacy=5a8cc1e7-3d36-4af8-9cee-b4937d2ed885;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
location: https://www.acint.net/match?dp=71&euid=5a8cc1e7-3d36-4af8-9cee-b4937d2ed885
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b0ec3a28ed56e8a6f203dc71a162e063
c4f88f92fd723e5ada6ac790b91f2cd94a4f3889
60978447b10f7a2d6af22719e1aa841faac4145b9523498ba909f9e95ff371a0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60978447B10F7A2D6AF22719E1AA841FAAC4145B9523498BA909F9E95FF371A0"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7688
Expires: Sat, 28 Jan 2023 06:48:14 GMT
Date: Sat, 28 Jan 2023 04:40:06 GMT
Connection: keep-alive
nr.bidderstack.com/sape/cm?user_id=1303420A25A7D4636709B85902C80C64
23.88.12.14200 OK 44 B URL HTTP/1.1 nr.bidderstack.com/sape/cm?user_id=1303420A25A7D4636709B85902C80C64
IP 23.88.12.14:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash f9d60352c70a2ba15616d1c9421f3844
e9abc8bea7721a4b6a50295850d13c515006a95c
82cb517a8f80c91dfcec543c6d140deb3baaf463ea9e77655475096eba7bc7d9
GET /sape/cm?user_id=1303420A25A7D4636709B85902C80C64 HTTP/1.1
Host: nr.bidderstack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 28 Jan 2023 04:40:06 GMT
Content-Type: image/gif
Content-Length: 44
Connection: keep-alive
Access-Control-Allow-Credentials: true
pix.bumlam.com/sync/sape/check?sspuid=1303420A25A7D4636709B85902C80C64
31.172.81.160302 Found 0 B URL HTTP/1.1 pix.bumlam.com/sync/sape/check?sspuid=1303420A25A7D4636709B85902C80C64
IP 31.172.81.160:0
ASN #44066 diva-e Datacenters GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/sape/check?sspuid=1303420A25A7D4636709B85902C80C64 HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 28 Jan 2023 04:40:06 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://sync.bumlam.com/?src=sape
match.new-programmatic.com/userbind?src=sape&id=1303420A25A7D4636709B85902C80C64
217.65.2.150204 No Content 0 B URL HTTP/1.1 match.new-programmatic.com/userbind?src=sape&id=1303420A25A7D4636709B85902C80C64
IP 217.65.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userbind?src=sape&id=1303420A25A7D4636709B85902C80C64 HTTP/1.1
Host: match.new-programmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx/1.22.1
Date: Sat, 28 Jan 2023 04:40:06 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin
complex-oil.com/favicon.ico
45.130.41.179200 OK 0 B URL HTTP/2 complex-oil.com/favicon.ico
IP 45.130.41.179:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: complex-oil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Cookie: fid=40b77631-7ebc-4932-9f7d-adf60529638f; _ac_oid=b2e3b40ba24804f2c106d1b697e85bef%3A1674884407377
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 28 Jan 2023 04:40:06 GMT
content-type: image/vnd.microsoft.icon
content-length: 0
x-powered-by: PHP/7.2.34
X-Firefox-Spdy: h2
www.acint.net/match?dp=111&euid=4a05d87c-a225-4f88-89d4-b20e39f3ac97
193.3.184.228200 OK 43 B URL HTTP/2 www.acint.net/match?dp=111&euid=4a05d87c-a225-4f88-89d4-b20e39f3ac97
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=111&euid=4a05d87c-a225-4f88-89d4-b20e39f3ac97 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDE2PUpyVZuAlnZAzIAkQ2xZ7eE4qdzgw3sblnq98sMACY; test_cookie=CheckForPermission; cSyncDp7v2=1674880806; cSyncDp14v3=1674880806; cSyncDp17=1674880806; cSyncDp32=1674880806; cSyncDp45v3=1674880806; cSyncDp53v2=1674880806; cSyncDp54v2=1674880806; cSyncDp62=1674880806; cSyncDp67v2=1674880806; cSyncDp68=1674880806; cSyncDp71=1674880806; cSyncDp77=1674880806; cSyncDp84=1674880806; cSyncDp85=1674880806; cSyncDp95v3=1674880806; cSyncDp98v2=1674880806; cSyncDp101=1674880806; cSyncDp104v2=1674880806; cSyncDp107=1674880806; cSyncDp110=1674880806; cSyncDp111v2=1674880806; cSyncDp112v2=1674880806; cSyncDp125v3=1674880806; cSyncDp126=1674880806; cSyncDp127=1674880806; cSyncDp129=1674880806; cSyncDp136v2=1674880806; cSyncDp138=1674880806; cSyncDp146=1674880806; cSyncDp148=1674880806; cSyncDp149v2=1674880806; cSyncDp151=1674880806; cSyncDp178=1674880806; cSyncDp179=1674880806; cSyncDp186=1674880806; cSyncDp221=1674880806
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 28 Jan 2023 04:40:06 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 2161bb4c65c6a044dd64ec1e686db5fa
625990111ff304dd72155b344bf895115f90bb83
6bf8c3feee60db227017e2cdc057dcd7d6850c5e4274a1deede788142d8a9b17
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:40:06 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 23:26:46 GMT
Expires: Wed, 01 Feb 2023 23:26:45 GMT
Etag: "625990111ff304dd72155b344bf895115f90bb83"
Cache-Control: max-age=412598,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79070c5129beb517-OSL
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sat, 28 Jan 2023 03:46:59 GMT
expires: Sat, 28 Jan 2023 05:46:59 GMT
cache-control: public, max-age=7200
age: 3187
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sync.bumlam.com/?src=sape
31.172.81.158302 Moved Temporarily 0 B URL HTTP/1.1 sync.bumlam.com/?src=sape
IP 31.172.81.158:0
ASN #44066 diva-e Datacenters GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sape HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiRkNmFhOGRhMi05ZWM1LTExZWQtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 28 Jan 2023 04:40:06 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiRkNmFhOGRhMi05ZWM1LTExZWQtODZlMC0wMDI1OTBjMDY0N2M*; Path=/; Expires=Fri, 23 Jan 2043 04:40:06 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: https://pix.bumlam.com/sync/sape/sync_ok?guid=d6aa8da2-9ec5-11ed-86e0-002590c0647c
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
Access-Control-Allow-Origin: https://acint.net
Access-Control-Allow-Credentials: true
www.acint.net/match?dp=127&euid=jwaQWOLBmZwckslUhZ4a
193.3.184.228200 OK 43 B URL HTTP/2 www.acint.net/match?dp=127&euid=jwaQWOLBmZwckslUhZ4a
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=127&euid=jwaQWOLBmZwckslUhZ4a HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDE2PUpyVZuAlnZAzIAkQ2xZ7eE4qdzgw3sblnq98sMACY; test_cookie=CheckForPermission; cSyncDp7v2=1674880806; cSyncDp14v3=1674880806; cSyncDp17=1674880806; cSyncDp32=1674880806; cSyncDp45v3=1674880806; cSyncDp53v2=1674880806; cSyncDp54v2=1674880806; cSyncDp62=1674880806; cSyncDp67v2=1674880806; cSyncDp68=1674880806; cSyncDp71=1674880806; cSyncDp77=1674880806; cSyncDp84=1674880806; cSyncDp85=1674880806; cSyncDp95v3=1674880806; cSyncDp98v2=1674880806; cSyncDp101=1674880806; cSyncDp104v2=1674880806; cSyncDp107=1674880806; cSyncDp110=1674880806; cSyncDp111v2=1674880806; cSyncDp112v2=1674880806; cSyncDp125v3=1674880806; cSyncDp126=1674880806; cSyncDp127=1674880806; cSyncDp129=1674880806; cSyncDp136v2=1674880806; cSyncDp138=1674880806; cSyncDp146=1674880806; cSyncDp148=1674880806; cSyncDp149v2=1674880806; cSyncDp151=1674880806; cSyncDp178=1674880806; cSyncDp179=1674880806; cSyncDp186=1674880806; cSyncDp221=1674880806
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 28 Jan 2023 04:40:06 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3Dcff1574c-ee05-43b1-9e09-7690d4fe1340
212.76.129.183302 Found 102 B URL HTTP/2 sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3Dcff1574c-ee05-43b1-9e09-7690d4fe1340
IP 212.76.129.183:0
File type HTML document, ASCII text
Hash c43800b1f240e614129fe7705ca6c365
2587953067a8ece1690e1678fd03adfb969373c7
b0ac566f89ca0f5c0ac8be855aa2f1f73ed01aaddc63704917f2c9b1d8782bba
GET /check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3Dcff1574c-ee05-43b1-9e09-7690d4fe1340 HTTP/1.1
Host: sync.adspend.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: as-user=cff1574c-ee05-43b1-9e09-7690d4fe1340
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 28 Jan 2023 04:40:06 GMT
content-type: text/html; charset=utf-8
content-length: 102
location: https://www.acint.net/match?dp=98&euid=cff1574c-ee05-43b1-9e09-7690d4fe1340
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
www.acint.net/match?dp=71&euid=5a8cc1e7-3d36-4af8-9cee-b4937d2ed885
193.3.184.228200 OK 43 B URL HTTP/2 www.acint.net/match?dp=71&euid=5a8cc1e7-3d36-4af8-9cee-b4937d2ed885
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=71&euid=5a8cc1e7-3d36-4af8-9cee-b4937d2ed885 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDE2PUpyVZuAlnZAzIAkQ2xZ7eE4qdzgw3sblnq98sMACY; test_cookie=CheckForPermission; cSyncDp7v2=1674880806; cSyncDp14v3=1674880806; cSyncDp17=1674880806; cSyncDp32=1674880806; cSyncDp45v3=1674880806; cSyncDp53v2=1674880806; cSyncDp54v2=1674880806; cSyncDp62=1674880806; cSyncDp67v2=1674880806; cSyncDp68=1674880806; cSyncDp71=1674880806; cSyncDp77=1674880806; cSyncDp84=1674880806; cSyncDp85=1674880806; cSyncDp95v3=1674880806; cSyncDp98v2=1674880806; cSyncDp101=1674880806; cSyncDp104v2=1674880806; cSyncDp107=1674880806; cSyncDp110=1674880806; cSyncDp111v2=1674880806; cSyncDp112v2=1674880806; cSyncDp125v3=1674880806; cSyncDp126=1674880806; cSyncDp127=1674880806; cSyncDp129=1674880806; cSyncDp136v2=1674880806; cSyncDp138=1674880806; cSyncDp146=1674880806; cSyncDp148=1674880806; cSyncDp149v2=1674880806; cSyncDp151=1674880806; cSyncDp178=1674880806; cSyncDp179=1674880806; cSyncDp186=1674880806; cSyncDp221=1674880806
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 28 Jan 2023 04:40:06 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
cs.agency2.ru/p?ssp=sp&uid=1303420A25A7D4636709B85902C80C64
23.111.107.44301 Moved Permanently 0 B URL HTTP/1.1 cs.agency2.ru/p?ssp=sp&uid=1303420A25A7D4636709B85902C80C64
IP 23.111.107.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=sp&uid=1303420A25A7D4636709B85902C80C64 HTTP/1.1
Host: cs.agency2.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Date: Sat, 28 Jan 2023 04:40:06 GMT
Content-Length: 0
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://www.acint.net/match?dp=186&euid=42f6ee65-3e31-496d-bbb8-784e9d03f765
Set-Cookie: uuid=42f6ee65-3e31-496d-bbb8-784e9d03f765; expires=Fri, 19 Jan 2024 04:40:06 GMT; domain=agency2.ru; path=/; secure; SameSite=None
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.107.44
dmp.gotechnology.io/match/sape?id=1303420A25A7D4636709B85902C80C64
167.235.32.7302 Found 0 B URL HTTP/2 dmp.gotechnology.io/match/sape?id=1303420A25A7D4636709B85902C80C64
IP 167.235.32.7:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/sape?id=1303420A25A7D4636709B85902C80C64 HTTP/1.1
Host: dmp.gotechnology.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sat, 28 Jan 2023 04:40:06 GMT
content-length: 0
location: https://dmp.gotechnology.io/match/sape?id=1303420A25A7D4636709B85902C80C64&chk=1
set-cookie: chk=1; path=/; secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 940 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 8bfd8f953b3eb9334690d5e0dedb7282
dec918257d2304a80d446ac52960f100d0e21922
ad22ad0222f6be4b9095a121bdc6298d64fa74cca5d1f467dad1aadf224b9c16
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:40:06 GMT
Content-Type: application/ocsp-response
Content-Length: 940
Connection: keep-alive
Expires: Wed, 01 Feb 2023 02:50:04 GMT
ETag: "dec918257d2304a80d446ac52960f100d0e21922"
Last-Modified: Sat, 28 Jan 2023 02:50:05 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2501
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79070c51bc770b39-OSL
sync.bumlam.com/?src=sap1&s_data=CAIQARimztKeBmIgMTMwMzQyMEEyNUE3RDQ2MzY3MDlCODU5MDJDODBDNjSiARDWqo2insUR7YbgACWQwGR8
31.172.81.158200 OK 0 B URL HTTP/1.1 sync.bumlam.com/?src=sap1&s_data=CAIQARimztKeBmIgMTMwMzQyMEEyNUE3RDQ2MzY3MDlCODU5MDJDODBDNjSiARDWqo2insUR7YbgACWQwGR8
IP 31.172.81.158:0
ASN #44066 diva-e Datacenters GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sap1&s_data=CAIQARimztKeBmIgMTMwMzQyMEEyNUE3RDQ2MzY3MDlCODU5MDJDODBDNjSiARDWqo2insUR7YbgACWQwGR8 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiRkNmFhOGRhMi05ZWM1LTExZWQtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 28 Jan 2023 04:40:06 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiRkNmFhOGRhMi05ZWM1LTExZWQtODZlMC0wMDI1OTBjMDY0N2M*; Path=/; Expires=Fri, 23 Jan 2043 04:40:06 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
www.google-analytics.com/j/collect?v=1&_v=j99&a=1729611611&t=pageview&_s=1&dl=https%3A%2F%2Fcomplex-oil.com%2F&ul=en-us&de=UTF-8&dt=%D0%9A%D0%BE%D0%BC%D0%BF%D0%BB%D0%B5%D0%BA%D1%81%D0%BE%D0%B9%D0%BB%20%D0%BD%D0%B5%D1%84%D1%82%D0%B5%D0%BF%D1%80%D0%BE%D0%B4%D1%83%D0%BA%D1%82%D1%8B%20%7C&sd=24-bit&sr=1280x1024&vp=1140x836&je=0&_u=YEBAAUABAAAAACAAI~&jid=1717625958&gjid=1296407827&cid=1974704461.1674880808&tid=UA-126450778-1&_gid=1205539625.1674880808&_r=1&_slc=1>m=2ou1p0&z=1076372659
142.250.74.110200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=1729611611&t=pageview&_s=1&dl=https%3A%2F%2Fcomplex-oil.com%2F&ul=en-us&de=UTF-8&dt=%D0%9A%D0%BE%D0%BC%D0%BF%D0%BB%D0%B5%D0%BA%D1%81%D0%BE%D0%B9%D0%BB%20%D0%BD%D0%B5%D1%84%D1%82%D0%B5%D0%BF%D1%80%D0%BE%D0%B4%D1%83%D0%BA%D1%82%D1%8B%20%7C&sd=24-bit&sr=1280x1024&vp=1140x836&je=0&_u=YEBAAUABAAAAACAAI~&jid=1717625958&gjid=1296407827&cid=1974704461.1674880808&tid=UA-126450778-1&_gid=1205539625.1674880808&_r=1&_slc=1>m=2ou1p0&z=1076372659
IP 142.250.74.110:0
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j99&a=1729611611&t=pageview&_s=1&dl=https%3A%2F%2Fcomplex-oil.com%2F&ul=en-us&de=UTF-8&dt=%D0%9A%D0%BE%D0%BC%D0%BF%D0%BB%D0%B5%D0%BA%D1%81%D0%BE%D0%B9%D0%BB%20%D0%BD%D0%B5%D1%84%D1%82%D0%B5%D0%BF%D1%80%D0%BE%D0%B4%D1%83%D0%BA%D1%82%D1%8B%20%7C&sd=24-bit&sr=1280x1024&vp=1140x836&je=0&_u=YEBAAUABAAAAACAAI~&jid=1717625958&gjid=1296407827&cid=1974704461.1674880808&tid=UA-126450778-1&_gid=1205539625.1674880808&_r=1&_slc=1>m=2ou1p0&z=1076372659 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://complex-oil.com
Connection: keep-alive
Referer: https://complex-oil.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://complex-oil.com
date: Sat, 28 Jan 2023 04:40:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 940 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 8bfd8f953b3eb9334690d5e0dedb7282
dec918257d2304a80d446ac52960f100d0e21922
ad22ad0222f6be4b9095a121bdc6298d64fa74cca5d1f467dad1aadf224b9c16
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:40:06 GMT
Content-Type: application/ocsp-response
Content-Length: 940
Connection: keep-alive
Expires: Wed, 01 Feb 2023 02:50:04 GMT
ETag: "dec918257d2304a80d446ac52960f100d0e21922"
Last-Modified: Sat, 28 Jan 2023 02:50:05 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2501
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79070c51cc7c0b39-OSL
www.acint.net/match?dp=98&euid=cff1574c-ee05-43b1-9e09-7690d4fe1340
193.3.184.228200 OK 43 B URL HTTP/2 www.acint.net/match?dp=98&euid=cff1574c-ee05-43b1-9e09-7690d4fe1340
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=98&euid=cff1574c-ee05-43b1-9e09-7690d4fe1340 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDE2PUpyVZuAlnZAzIAkQ2xZ7eE4qdzgw3sblnq98sMACY; test_cookie=CheckForPermission; cSyncDp7v2=1674880806; cSyncDp14v3=1674880806; cSyncDp17=1674880806; cSyncDp32=1674880806; cSyncDp45v3=1674880806; cSyncDp53v2=1674880806; cSyncDp54v2=1674880806; cSyncDp62=1674880806; cSyncDp67v2=1674880806; cSyncDp68=1674880806; cSyncDp71=1674880806; cSyncDp77=1674880806; cSyncDp84=1674880806; cSyncDp85=1674880806; cSyncDp95v3=1674880806; cSyncDp98v2=1674880806; cSyncDp101=1674880806; cSyncDp104v2=1674880806; cSyncDp107=1674880806; cSyncDp110=1674880806; cSyncDp111v2=1674880806; cSyncDp112v2=1674880806; cSyncDp125v3=1674880806; cSyncDp126=1674880806; cSyncDp127=1674880806; cSyncDp129=1674880806; cSyncDp136v2=1674880806; cSyncDp138=1674880806; cSyncDp146=1674880806; cSyncDp148=1674880806; cSyncDp149v2=1674880806; cSyncDp151=1674880806; cSyncDp178=1674880806; cSyncDp179=1674880806; cSyncDp186=1674880806; cSyncDp221=1674880806
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 28 Jan 2023 04:40:06 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 940 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 8bfd8f953b3eb9334690d5e0dedb7282
dec918257d2304a80d446ac52960f100d0e21922
ad22ad0222f6be4b9095a121bdc6298d64fa74cca5d1f467dad1aadf224b9c16
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:40:06 GMT
Content-Type: application/ocsp-response
Content-Length: 940
Connection: keep-alive
Expires: Wed, 01 Feb 2023 02:50:04 GMT
ETag: "dec918257d2304a80d446ac52960f100d0e21922"
Last-Modified: Sat, 28 Jan 2023 02:50:05 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2501
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79070c51dc7e0b39-OSL
pix.bumlam.com/sync/sape/sync_ok?guid=d6aa8da2-9ec5-11ed-86e0-002590c0647c
31.172.81.160302 Found 0 B URL HTTP/1.1 pix.bumlam.com/sync/sape/sync_ok?guid=d6aa8da2-9ec5-11ed-86e0-002590c0647c
IP 31.172.81.160:0
ASN #44066 diva-e Datacenters GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/sape/sync_ok?guid=d6aa8da2-9ec5-11ed-86e0-002590c0647c HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiRkNmFhOGRhMi05ZWM1LTExZWQtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 28 Jan 2023 04:40:06 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://d6aa8da2-9ec5-11ed-86e0-002590c0647c.n3.sync.bumlam.com/?src=sape
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 448eee096991e3fb582942ba2934b6b5
de58b4da4bb6b4e4a6eca3af7b0cf6d3d62f193c
a383439aa0da9fc504a7a1005a27119e59207f58485cabdaf503e5c9fdc66e7b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A383439AA0DA9FC504A7A1005A27119E59207F58485CABDAF503E5C9FDC66E7B"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5511
Expires: Sat, 28 Jan 2023 06:11:57 GMT
Date: Sat, 28 Jan 2023 04:40:06 GMT
Connection: keep-alive
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash cd74174131d5447f2242c38a91f7d853
a74a982d078681499bb200b17f5cfc5124ba5be3
11c4f75434e9726d62eb73a73e1697c3c20e2d8b452ca2b263f4821481b06d89
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:40:06 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 03:41:02 GMT
Expires: Sat, 04 Feb 2023 03:41:01 GMT
Etag: "a74a982d078681499bb200b17f5cfc5124ba5be3"
Cache-Control: max-age=600654,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79070c50bb4db4e8-OSL
dmp.gotechnology.io/match/sape?id=1303420A25A7D4636709B85902C80C64&chk=1
167.235.32.7302 Found 0 B URL HTTP/2 dmp.gotechnology.io/match/sape?id=1303420A25A7D4636709B85902C80C64&chk=1
IP 167.235.32.7:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/sape?id=1303420A25A7D4636709B85902C80C64&chk=1 HTTP/1.1
Host: dmp.gotechnology.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: chk=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Sat, 28 Jan 2023 04:40:06 GMT
content-length: 0
location: https://ads.betweendigital.com/match?bidder_id=98&external_user_id=NmJjZjY0MjUyZGMwMzNmMA
set-cookie: pid=NmJjZjY0MjUyZGMwMzNmMA; expires=Sun, 28 Jan 2024 04:40:06 GMT; domain=.gotechnology.io; path=/; secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
www.acint.net/match?dp=186&euid=42f6ee65-3e31-496d-bbb8-784e9d03f765
193.3.184.228200 OK 43 B URL HTTP/2 www.acint.net/match?dp=186&euid=42f6ee65-3e31-496d-bbb8-784e9d03f765
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=186&euid=42f6ee65-3e31-496d-bbb8-784e9d03f765 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDE2PUpyVZuAlnZAzIAkQ2xZ7eE4qdzgw3sblnq98sMACY; test_cookie=CheckForPermission; cSyncDp7v2=1674880806; cSyncDp14v3=1674880806; cSyncDp17=1674880806; cSyncDp32=1674880806; cSyncDp45v3=1674880806; cSyncDp53v2=1674880806; cSyncDp54v2=1674880806; cSyncDp62=1674880806; cSyncDp67v2=1674880806; cSyncDp68=1674880806; cSyncDp71=1674880806; cSyncDp77=1674880806; cSyncDp84=1674880806; cSyncDp85=1674880806; cSyncDp95v3=1674880806; cSyncDp98v2=1674880806; cSyncDp101=1674880806; cSyncDp104v2=1674880806; cSyncDp107=1674880806; cSyncDp110=1674880806; cSyncDp111v2=1674880806; cSyncDp112v2=1674880806; cSyncDp125v3=1674880806; cSyncDp126=1674880806; cSyncDp127=1674880806; cSyncDp129=1674880806; cSyncDp136v2=1674880806; cSyncDp138=1674880806; cSyncDp146=1674880806; cSyncDp148=1674880806; cSyncDp149v2=1674880806; cSyncDp151=1674880806; cSyncDp178=1674880806; cSyncDp179=1674880806; cSyncDp186=1674880806; cSyncDp221=1674880806
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 28 Jan 2023 04:40:06 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
informer.yandex.ru/informer/46079889/1_1_FFFFFFFF_EFEFEFFF_0_visits
87.250.250.119200 OK 896 B URL HTTP/2 informer.yandex.ru/informer/46079889/1_1_FFFFFFFF_EFEFEFFF_0_visits
IP 87.250.250.119:0
File type PNG image data, 80 x 15, 8-bit/color RGBA, non-interlaced\012- data
Hash 74b37d72bb7288f917251468db8e8ec1
a1b98524ef790152bff01ba13c15de1de465bd9c
4b30a3f44764cf0a4635f85e1ade5a74e75eccb4b855e9c1140b21a234f9da6b
GET /informer/46079889/1_1_FFFFFFFF_EFEFEFFF_0_visits HTTP/1.1
Host: informer.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 896
last-modified: Sat, 28-Jan-2023 04:40:06 GMT
content-type: image/png
pragma: no-cache
strict-transport-security: max-age=31536000
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
x-xss-protection: 1; mode=block
expires: Sat, 28-Jan-2023 04:40:06 GMT
X-Firefox-Spdy: h2
exchange.buzzoola.com/cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D
138.201.34.238301 Moved Permanently 115 B URL HTTP/2 exchange.buzzoola.com/cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D
IP 138.201.34.238:0
ASN #24940 Hetzner Online GmbH
File type HTML document, ASCII text
Hash dc77d14ddc721e2a81c1eae2bdc40487
418b1521f073a1558331d5a7d0a2b38cfe005df5
a7fabe55ebbd60dda6cbd2e2bb6c2cbecc38b2c3d03452fa5b03b6d60cdf1e14
GET /cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 28 Jan 2023 04:40:06 GMT
content-type: text/html; charset=utf-8
content-length: 115
location: https://www.acint.net/match?dp=126&euid=4a98391c-ecb4-441d-4ace-7b2704896f82
serverid: TODO
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/watch.js
93.158.134.119200 OK 58 kB URL HTTP/2 mc.yandex.ru/metrika/watch.js
IP 93.158.134.119:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (554)
Hash 315a601116a9b3b0fbc85feb58375ba4
5d283ed923d0b3beb8a2ec4e80c2958d1d132fbf
251ba0fc04953e3615e7c19a9a10c5d6a4f25cc03bef190f8a5e7c6cd72a991a
GET /metrika/watch.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 58140
date: Sat, 28 Jan 2023 04:40:06 GMT
access-control-allow-origin: *
etag: "63c93a4b-e31c"
expires: Sat, 28 Jan 2023 05:40:06 GMT
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: application/javascript
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
adlmerge.com/merge_gpsid/?sid=50&id=1303420A25A7D4636709B85902C80C64
95.211.66.35200 OK 86 B URL HTTP/2 adlmerge.com/merge_gpsid/?sid=50&id=1303420A25A7D4636709B85902C80C64
IP 95.211.66.35:0
ASN #60781 LeaseWeb Netherlands B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash cd01ca32a344e7529987fed41a31de69
4558538a8b95d32e8209cabc21462c0cbb8789e1
d243a8594bf956ada2c21d571ef312c61cbcbfc655b50efd1a55c11c2c4427a7
GET /merge_gpsid/?sid=50&id=1303420A25A7D4636709B85902C80C64 HTTP/1.1
Host: adlmerge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.16.0
date: Sat, 28 Jan 2023 04:40:06 GMT
content-type: image/gif
iseu: eu
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 568c93ff4ce0b24387048413ddc44d4f
24cfed9200efd3a0f5525f280af318cd71889855
669a2fac01af429cad09224fce38f0dd73b26ab6b75b1fb705a69c784da626d9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "669A2FAC01AF429CAD09224FCE38F0DD73B26AB6B75B1FB705A69C784DA626D9"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10789
Expires: Sat, 28 Jan 2023 07:39:55 GMT
Date: Sat, 28 Jan 2023 04:40:06 GMT
Connection: keep-alive
d6aa8da2-9ec5-11ed-86e0-002590c0647c.n3.sync.bumlam.com/?src=sape
62.109.24.241302 Found 0 B URL HTTP/2 d6aa8da2-9ec5-11ed-86e0-002590c0647c.n3.sync.bumlam.com/?src=sape
IP 62.109.24.241:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sape HTTP/1.1
Host: d6aa8da2-9ec5-11ed-86e0-002590c0647c.n3.sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiRkNmFhOGRhMi05ZWM1LTExZWQtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx/1.22.1
date: Sat, 28 Jan 2023 04:40:06 GMT
content-length: 0
location: https://pix.bumlam.com/sync/sape/done
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash cd7a1c7d58f454b00e102055be8a33c8
388e4a1fad3b763b416d7c0c4adbe5b959542a1d
c729c9c538089a1fbd0b022f9a4145dfe9b07e9db1c1ad0febfe0b6f95e39acb
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:40:06 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Wed, 01 Feb 2023 02:35:49 GMT
ETag: "388e4a1fad3b763b416d7c0c4adbe5b959542a1d"
Last-Modified: Sat, 28 Jan 2023 02:35:50 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 149
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79070c53bccb0b39-OSL
mc.yandex.ru/metrika/advert.gif
93.158.134.119200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 93.158.134.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 28 Jan 2023 04:40:06 GMT
access-control-allow-origin: *
etag: "63c93a4b-2b"
expires: Sat, 28 Jan 2023 05:40:06 GMT
accept-ranges: bytes
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691
195.209.108.47302 Moved Temporarily 0 B URL HTTP/1.1 ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691
IP 195.209.108.47:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691 HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Date: Sat, 28 Jan 2023 04:40:07 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-control: no-cache, max-age=0, must-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA
Set-Cookie: cid=-5559176756; expires=Mon, 27 Jan 2025 04:40:07 GMT; path=/; domain=.adriver.ru; SameSite=None; Secure
Location: /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-5559176756
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
pix.bumlam.com/sync/sape/done
31.172.81.160200 OK 43 B URL HTTP/1.1 pix.bumlam.com/sync/sape/done
IP 31.172.81.160:0
ASN #44066 diva-e Datacenters GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /sync/sape/done HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiRkNmFhOGRhMi05ZWM1LTExZWQtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 28 Jan 2023 04:40:07 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
ssp.bidvol.com/usersync?dspcsid=8&redirect=1
65.109.65.187302 Found 1.4 kB URL HTTP/2 ssp.bidvol.com/usersync?dspcsid=8&redirect=1
IP 65.109.65.187:0
ASN #24940 Hetzner Online GmbH
Hash cd7a1c7d58f454b00e102055be8a33c8
388e4a1fad3b763b416d7c0c4adbe5b959542a1d
c729c9c538089a1fbd0b022f9a4145dfe9b07e9db1c1ad0febfe0b6f95e39acb
GET /usersync?dspcsid=8&redirect=1 HTTP/1.1
Host: ssp.bidvol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx/1.22.0
date: Sat, 28 Jan 2023 04:40:06 GMT
x-request-id: ad81636e-de57-4a49-ae5e-fbea125ba0ba
set-cookie: bvuid=y5a09xj56m; Max-Age=2147483647; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT; Secure; SameSite=None
bvuid2=y5a09xj56m; Max-Age=2147483647; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT
vary: Origin
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
pragma: no-cache
expires: 0
surrogate-control: no-store
location: https://www.acint.net/match?dp=129&euid=y5a09xj56m
X-Firefox-Spdy: h2
mc.yandex.ru/watch/46079889/1?wmode=7&page-url=https%3A%2F%2Fcomplex-oil.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afp%3A1250%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A983553179288%3Ahid%3A316141736%3Az%3A0%3Ai%3A20230128044007%3Aet%3A1674880808%3Ac%3A1%3Arn%3A665531075%3Arqn%3A1%3Au%3A1674880808806051325%3Aw%3A1140x836%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A5%2C288%2C172%2C1%2C289%2C0%2C%2C447%2C13%2C%2C%2C%2C1246%3Aco%3A0%3Ans%3A1674880805602%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1674880808%3At%3A%D0%9A%D0%BE%D0%BC%D0%BF%D0%BB%D0%B5%D0%BA%D1%81%D0%BE%D0%B9%D0%BB%20%D0%BD%D0%B5%D1%84%D1%82%D0%B5%D0%BF%D1%80%D0%BE%D0%B4%D1%83%D0%BA%D1%82%D1%8B%20%7C&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
93.158.134.119200 OK 419 B URL HTTP/2 mc.yandex.ru/watch/46079889/1?wmode=7&page-url=https%3A%2F%2Fcomplex-oil.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afp%3A1250%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A983553179288%3Ahid%3A316141736%3Az%3A0%3Ai%3A20230128044007%3Aet%3A1674880808%3Ac%3A1%3Arn%3A665531075%3Arqn%3A1%3Au%3A1674880808806051325%3Aw%3A1140x836%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A5%2C288%2C172%2C1%2C289%2C0%2C%2C447%2C13%2C%2C%2C%2C1246%3Aco%3A0%3Ans%3A1674880805602%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1674880808%3At%3A%D0%9A%D0%BE%D0%BC%D0%BF%D0%BB%D0%B5%D0%BA%D1%81%D0%BE%D0%B9%D0%BB%20%D0%BD%D0%B5%D1%84%D1%82%D0%B5%D0%BF%D1%80%D0%BE%D0%B4%D1%83%D0%BA%D1%82%D1%8B%20%7C&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
IP 93.158.134.119:0
File type JSON data\012- , ASCII text, with very long lines (419), with no line terminators
Hash ebea6b4f2f83be13770ffc2ea5bf069c
36266353e400aa364831e74029643b853a62eef3
d0189d97616d85f815ded1db9a24a89a847b57a413797cf672deaa4c2af7472e
GET /watch/46079889/1?wmode=7&page-url=https%3A%2F%2Fcomplex-oil.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afp%3A1250%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A983553179288%3Ahid%3A316141736%3Az%3A0%3Ai%3A20230128044007%3Aet%3A1674880808%3Ac%3A1%3Arn%3A665531075%3Arqn%3A1%3Au%3A1674880808806051325%3Aw%3A1140x836%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A5%2C288%2C172%2C1%2C289%2C0%2C%2C447%2C13%2C%2C%2C%2C1246%3Aco%3A0%3Ans%3A1674880805602%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1674880808%3At%3A%D0%9A%D0%BE%D0%BC%D0%BF%D0%BB%D0%B5%D0%BA%D1%81%D0%BE%D0%B9%D0%BB%20%D0%BD%D0%B5%D1%84%D1%82%D0%B5%D0%BF%D1%80%D0%BE%D0%B4%D1%83%D0%BA%D1%82%D1%8B%20%7C&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://complex-oil.com
Referer: https://complex-oil.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 419
date: Sat, 28 Jan 2023 04:40:07 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://complex-oil.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 28-Jan-2023 04:40:07 GMT
last-modified: Sat, 28-Jan-2023 04:40:07 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash e7ebbff54ced2c07469b302fc6d44078
f59983c844c398bd37705051ca685b2d07d85726
04eb3bd7658c1112bfc1d0098e8d7f5fafdb10459e3290c0d4e6a17e65a5494f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:40:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ssp.adriver.ru/cgi-bin/sync.cgi?dsp_id=153&external_id=1303420A25A7D4636709B85902C80C64
81.222.128.213200 OK 42 B URL HTTP/1.1 ssp.adriver.ru/cgi-bin/sync.cgi?dsp_id=153&external_id=1303420A25A7D4636709B85902C80C64
IP 81.222.128.213:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /cgi-bin/sync.cgi?dsp_id=153&external_id=1303420A25A7D4636709B85902C80C64 HTTP/1.1
Host: ssp.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 28 Jan 2023 04:40:06 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
cm.g.doubleclick.net/pixel?google_nid=agentstvo_sape_limited&google_hm=EwNCCiWn1GNnCbhZAsgMZA
142.250.74.2200 OK 170 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=agentstvo_sape_limited&google_hm=EwNCCiWn1GNnCbhZAsgMZA
IP 142.250.74.2:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash e7673c60af825466f83d46da72ca1635
fc0fcbee0835709ba2d28798a612bfd687903fb5
0b8a20373c6dd04e091902226d922b3688143a8938afb9d283d889de7b55ceb5
GET /pixel?google_nid=agentstvo_sape_limited&google_hm=EwNCCiWn1GNnCbhZAsgMZA HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
date: Sat, 28 Jan 2023 04:40:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
server: HTTP server (unknown)
content-length: 170
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 940 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 2e0e0eeadc1a1967cbe2289fe8512681
e2d4096e2710e08aaa8039c1644dddb367d2f978
66645ae6914b2271e0d7fed797992fc2796d993a3645cc0b22b0282ec209bfda
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:40:07 GMT
Content-Type: application/ocsp-response
Content-Length: 940
Connection: keep-alive
Expires: Wed, 01 Feb 2023 00:11:45 GMT
ETag: "e2d4096e2710e08aaa8039c1644dddb367d2f978"
Last-Modified: Sat, 28 Jan 2023 00:11:46 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3538
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79070c546cee0b39-OSL
ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-5559176756
195.209.108.47302 Moved Temporarily 40 B URL HTTP/1.1 ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-5559176756
IP 195.209.108.47:0
File type ASCII text, with CRLF line terminators
Hash 251630b588179b239e8fab1ac9ef6d3a
91b91a97bc481dd2bbd5e0f3fea6ba1c4e843882
c95661e0ef6975b1df5361695a439f71a021d72c345023c3e668e84f35b3c38b
GET /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-5559176756 HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Date: Sat, 28 Jan 2023 04:40:07 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-control: no-cache, no-cache=Set-Cookie, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref="//adriver.ru/w3c/p3p.xml", CP="NON DSP COR CURa ADMa DEVa OUR BUS UNI COM NAV INT STA"
Set-Cookie: cid=0; expires=Mon, 27 Jan 2025 04:40:07 GMT; path=/; domain=.adriver.ru;
uid=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/; domain=.adriver.ru
Location: https://www.acint.net/rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D
ocsp.usertrust.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 0e897c0ed51a17b199fe1b0e0c57c362
2f176923d551b1d80215e2ca1701020387a763b0
aae436e55c60fdf5316f181e6f8b16c3f1965733a268e4106f62b0511203c22c
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:40:07 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 26 Jan 2023 16:18:24 GMT
Expires: Thu, 02 Feb 2023 16:18:23 GMT
Etag: "2f176923d551b1d80215e2ca1701020387a763b0"
Cache-Control: max-age=600601,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 1690
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79070c5479adb4f9-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 7d356edd48bf05fba9a8fcdc9037c2a6
de672418fb6b1082b35935a23947a55b31229044
8b03bac05eefb5307769151d38462b0d8a4317aee20793e6c708f8110af51c26
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:40:07 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 02:03:25 GMT
Expires: Wed, 01 Feb 2023 02:03:24 GMT
Etag: "de672418fb6b1082b35935a23947a55b31229044"
Cache-Control: max-age=335596,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79070c543c4ab4e8-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8eac8ce1bd8aebf2c47ae9dc353b3b4b
1002b4e299288b97e9b2b52859d761071cbb37ea
269d4bdac0acc67f22a6bdceb67b66da86cc8c47a44f97cbd0b41941bfafe9b7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "269D4BDAC0ACC67F22A6BDCEB67B66DA86CC8C47A44F97CBD0B41941BFAFE9B7"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8819
Expires: Sat, 28 Jan 2023 07:07:06 GMT
Date: Sat, 28 Jan 2023 04:40:07 GMT
Connection: keep-alive
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 582b8086e006b2524d7f01894924296c
41ed1717f5060a08778842d2be4258e80b047dd3
8bfbf5858af116a3433dc405ab0ad165dd8a6a9c07a00101b399dfa925afd328
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 28 Jan 2023 04:40:06 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 27 Jan 2023 22:24:24 GMT
Expires: Sat, 28 Jan 2023 22:24:24 GMT
ETag: "41ed1717f5060a08778842d2be4258e80b047dd3"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.globalsign.com/alphasslcasha256g4
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/alphasslcasha256g4
IP 104.18.21.226:0
Hash 78eb6f562807f0db7d1e4b5ca31aafb1
0a31c4b962dc4d3cb09358bf02cdb98e5a282dbb
729130f6c5d4506ddcc1ba5c6306996ada6ea532332424f63a863fd218272d96
POST /alphasslcasha256g4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:40:07 GMT
Content-Type: application/ocsp-response
Content-Length: 1437
Connection: keep-alive
Expires: Wed, 01 Feb 2023 02:33:28 GMT
ETag: "0a31c4b962dc4d3cb09358bf02cdb98e5a282dbb"
Last-Modified: Sat, 28 Jan 2023 02:33:29 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3408
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79070c54acfd0b39-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6ec56325ae120905662863beaa4a05d0
d231add61643046fbf11dcb1d91d984957dd3228
8493d374a2d9da16580de73bbb3bef92dcb6745146c9e0abc0d54d690c1f25b9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8493D374A2D9DA16580DE73BBB3BEF92DCB6745146C9E0ABC0D54D690C1F25B9"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7205
Expires: Sat, 28 Jan 2023 06:40:12 GMT
Date: Sat, 28 Jan 2023 04:40:07 GMT
Connection: keep-alive
ads.betweendigital.com/match?bidder_id=73&external_user_id=1303420A25A7D4636709B85902C80C64
188.42.34.64302 Found 0 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=73&external_user_id=1303420A25A7D4636709B85902C80C64
IP 188.42.34.64:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?bidder_id=73&external_user_id=1303420A25A7D4636709B85902C80C64 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: /match?bidder_id=73&external_user_id=1303420A25A7D4636709B85902C80C64&crf=1
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Sun, 28 Jan 2024 04:40:07 GMT; Path=/; Domain=.betweendigital.com
tuuid=9add6560-ee15-521c-85bd-099fe669aeb8; Max-Age=31536000; Expires=Sun, 28 Jan 2024 04:40:07 GMT; Path=/; Domain=.betweendigital.com
ut=Y9SnJwAGm2i0tyDW0BDeT3UglPprSvSeTg4E6g==; Max-Age=31536000; Expires=Sun, 28 Jan 2024 04:40:07 GMT; Path=/; Domain=.betweendigital.com
content-length: 0
X-Firefox-Spdy: h2
www.acint.net/rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D
193.3.184.228302 Found 154 B URL HTTP/2 www.acint.net/rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D
IP 193.3.184.228:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDE2PUpyVZuAlnZAzIAkQ2xZ7eE4qdzgw3sblnq98sMACY; test_cookie=CheckForPermission; cSyncDp7v2=1674880806; cSyncDp14v3=1674880806; cSyncDp17=1674880806; cSyncDp32=1674880806; cSyncDp45v3=1674880806; cSyncDp53v2=1674880806; cSyncDp54v2=1674880806; cSyncDp62=1674880806; cSyncDp67v2=1674880806; cSyncDp68=1674880806; cSyncDp71=1674880806; cSyncDp77=1674880806; cSyncDp84=1674880806; cSyncDp85=1674880806; cSyncDp95v3=1674880806; cSyncDp98v2=1674880806; cSyncDp101=1674880806; cSyncDp104v2=1674880806; cSyncDp107=1674880806; cSyncDp110=1674880806; cSyncDp111v2=1674880806; cSyncDp112v2=1674880806; cSyncDp125v3=1674880806; cSyncDp126=1674880806; cSyncDp127=1674880806; cSyncDp129=1674880806; cSyncDp136v2=1674880806; cSyncDp138=1674880806; cSyncDp146=1674880806; cSyncDp148=1674880806; cSyncDp149v2=1674880806; cSyncDp151=1674880806; cSyncDp178=1674880806; cSyncDp179=1674880806; cSyncDp186=1674880806; cSyncDp221=1674880806
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 28 Jan 2023 04:40:07 GMT
content-type: text/html
content-length: 154
location: https://ssp.adriver.ru/cgi-bin/sync.cgi?ssp_id=43&external_id=1303420A25A7D4636709B85902C80C64
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
ad.mail.ru/cm.gif?p=48&id=1303420A25A7D4636709B85902C80C64
95.163.41.56200 OK 43 B URL HTTP/2 ad.mail.ru/cm.gif?p=48&id=1303420A25A7D4636709B85902C80C64
IP 95.163.41.56:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /cm.gif?p=48&id=1303420A25A7D4636709B85902C80C64 HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 04:40:07 GMT
content-type: image/gif
content-length: 43
set-cookie: VID=1OM7T-3xgVIF0021-F0UuJYF:::0-0-0-8eeffe7:CAASEBAmk5bzMiZQjuUFuZ99xSQaYEHE1n4BBjNzrzBnUufzTl8Ou0T3FEpRw9sOC5JBy0DDPsCQNVAdcPYY4_4ejRq-KVDJKlzn7x8OACCNBHbK1SHtFWo7ewlVCVP15eARdJsMoQIKQAweMTxe2mS2RCxE6w; path=/; expires=Mon, 29-Jan-24 04:40:07 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
expires: Sat, 28 Jan 2023 10:40:07 GMT
cache-control: max-age=21600
last-modified: Sat, 28 Jan 2023 04:40:07 GMT
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin
cross-origin-embedder-policy: require-corp
X-Firefox-Spdy: h2
sape-sync.rutarget.ru/sync
178.170.196.9302 Moved Temporarily 0 B URL HTTP/1.1 sape-sync.rutarget.ru/sync
IP 178.170.196.9:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync HTTP/1.1
Host: sape-sync.rutarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 28 Jan 2023 04:40:07 GMT
Content-Length: 0
Connection: close
Location: https://www.acint.net/match?dp=104&euid=Jo1h8Olt_L7E
P3P: CP="This is not a P3P policy. Please visit http://rutarget.ru/p3p/ to get more information."
Set-Cookie: userId=Jo1h8Olt_L7E; Path=/; Domain=.rutarget.ru; Expires=Thu, 27 Jul 2023 04:40:07 GMT; SameSite=None; Secure
redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D{WEBO_CID}%26noredirect
35.190.24.218307 Temporary Redirect 0 B URL HTTP/2 redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D{WEBO_CID}%26noredirect
IP 35.190.24.218:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D{WEBO_CID}%26noredirect HTTP/1.1
Host: redirect.frontend.weborama.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
server: Weborama Collect Frontend
date: Sat, 28 Jan 2023 04:40:06 GMT
content-length: 0
location: https://redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D%7BWEBO_CID%7D%26noredirect&bounce=1&random=2913063704
vary: Origin
access-control-allow-origin: *
p3p: CP="NOI DSP COR CURa DEVa PSAa OUR STP UNI DEM"
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
expires: Tue, 03 Jul 2001 06:00:00 GMT
last-modified: Sat, 28 Jan 2023 04:40:07 GMT
set-cookie: AFFICHE_W=RHdclcEGpXtE16; expires=Sun, 25 Feb 2024 04:40:07 GMT; domain=.weborama.fr; path=/; secure; SameSite=None
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sync.adkernel.com/user-sync?zone=169736&t=image&r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D221%26euid%3D%7BUID%7D
77.245.57.72400 Bad Request 22 B URL HTTP/1.1 sync.adkernel.com/user-sync?zone=169736&t=image&r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D221%26euid%3D%7BUID%7D
IP 77.245.57.72:0
ASN #36057 WEBAIR-INTERNET-MTL
File type ASCII text, with no line terminators
Hash b0b11e1c78b526b61477f8e9ee540be0
d5e73002987ff54626542b116d98a8f4aa9ee2eb
4ca18c247df52dd22650bd7f72f71d7c98102243b0ec474f683c6a279ad3a668
GET /user-sync?zone=169736&t=image&r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D221%26euid%3D%7BUID%7D HTTP/1.1
Host: sync.adkernel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 400 Bad Request
Server: nginx
Date: Sat, 28 Jan 2023 04:40:07 GMT
Content-Length: 22
Connection: close
Cache-Control: no-store
Age: 0
Pragma: no-cache
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 8a7850e038a6717ba6a3cbf4b34997d4
0d821c5166963aad408ab697099228723b1cba5a
28c5e4d9a564bff0eb4ce6a03599477a23145cec93833cd8e3d7c2d1ee4abe3a
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:40:07 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 01 Feb 2023 01:13:42 GMT
ETag: "0d821c5166963aad408ab697099228723b1cba5a"
Last-Modified: Sat, 28 Jan 2023 01:13:43 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2465
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79070c54ed060b39-OSL
tag.digitaltarget.ru/adcm.js
185.15.175.146200 OK 3.1 kB URL HTTP/1.1 tag.digitaltarget.ru/adcm.js
IP 185.15.175.146:0
File type ASCII text, with very long lines (3051), with no line terminators
Hash e7097284185069f52fc736bcd50cda13
1cdfdf2d869841202079ddf91e0a00a8610812e6
40f2a96f78f4c8484e9da6e172f5ddd3e4d7786ca29e04b96e1067a365190e80
GET /adcm.js HTTP/1.1
Host: tag.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 28 Jan 2023 04:40:07 GMT
Content-Type: application/javascript
Content-Length: 3051
Last-Modified: Sat, 28 Jan 2023 04:34:16 GMT
Connection: keep-alive
ETag: "63d4a5c8-beb"
Accept-Ranges: bytes
ads.betweendigital.com/match?bidder_id=98&external_user_id=NmJjZjY0MjUyZGMwMzNmMA
188.42.34.64302 Found 0 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=98&external_user_id=NmJjZjY0MjUyZGMwMzNmMA
IP 188.42.34.64:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?bidder_id=98&external_user_id=NmJjZjY0MjUyZGMwMzNmMA HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: /match?bidder_id=98&external_user_id=NmJjZjY0MjUyZGMwMzNmMA&crf=1
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Sun, 28 Jan 2024 04:40:08 GMT; Path=/; Domain=.betweendigital.com
tuuid=3c259a07-54cb-521c-ae9a-29c2cd4e8eea; Max-Age=31536000; Expires=Sun, 28 Jan 2024 04:40:08 GMT; Path=/; Domain=.betweendigital.com
ut=Y9SnKAADDUDAE_yE0aOGeV2IdVHIPbbi1pxMBQ==; Max-Age=31536000; Expires=Sun, 28 Jan 2024 04:40:08 GMT; Path=/; Domain=.betweendigital.com
content-length: 0
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 56ee2a95c3f02f4cea1c6985ec2826ee
6776e17fdc32aeb83b3018a139be877c5e951e44
7316b64e4fdba95711f91838f0551b4934354b1fed74b6bcf1734edad9797232
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:40:07 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Wed, 01 Feb 2023 02:27:39 GMT
ETag: "6776e17fdc32aeb83b3018a139be877c5e951e44"
Last-Modified: Sat, 28 Jan 2023 02:27:40 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 706
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79070c54fd080b39-OSL
ads.betweendigital.com/match?bidder_id=73&external_user_id=1303420A25A7D4636709B85902C80C64&crf=1
188.42.34.64200 OK 68 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=73&external_user_id=1303420A25A7D4636709B85902C80C64&crf=1
IP 188.42.34.64:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
GET /match?bidder_id=73&external_user_id=1303420A25A7D4636709B85902C80C64&crf=1 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Sun, 28 Jan 2024 04:40:07 GMT; Path=/; Domain=.betweendigital.com
tuuid=417e3b62-3504-521c-b416-7c76d7c2db51; Max-Age=31536000; Expires=Sun, 28 Jan 2024 04:40:07 GMT; Path=/; Domain=.betweendigital.com
ut=Y9SnJwAJ06DwApyhbI51tDJCzFR3VJq_Z-iESA==; Max-Age=31536000; Expires=Sun, 28 Jan 2024 04:40:07 GMT; Path=/; Domain=.betweendigital.com
content-length: 68
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash e7ebbff54ced2c07469b302fc6d44078
f59983c844c398bd37705051ca685b2d07d85726
04eb3bd7658c1112bfc1d0098e8d7f5fafdb10459e3290c0d4e6a17e65a5494f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:40:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sm.rtb.mts.ru/p?ssp=sape&id=1303420A25A7D4636709B85902C80C64
217.66.147.33301 Moved Permanently 0 B URL HTTP/1.1 sm.rtb.mts.ru/p?ssp=sape&id=1303420A25A7D4636709B85902C80C64
IP 217.66.147.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=sape&id=1303420A25A7D4636709B85902C80C64 HTTP/1.1
Host: sm.rtb.mts.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 28 Jan 2023 04:40:07 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin
Access-Control-Allow-Methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
Access-Control-Allow-Origin: *
Vary: Origin
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://sm.rtb.mts.ru/match/second?ssp=30&exu=1303420A25A7D4636709B85902C80C64
Set-Cookie: dspid=830aaf61-b8c8-476d-851e-30c3a06f73d9; expires=Fri, 19 Jan 2024 04:40:07 GMT; domain=.mts.ru; path=/; secure; SameSite=None
redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D%7BWEBO_CID%7D%26noredirect&bounce=1&random=2913063704
35.190.24.218204 No Content 0 B URL HTTP/2 redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D%7BWEBO_CID%7D%26noredirect&bounce=1&random=2913063704
IP 35.190.24.218:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D%7BWEBO_CID%7D%26noredirect&bounce=1&random=2913063704 HTTP/1.1
Host: redirect.frontend.weborama.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: Weborama Collect Frontend
date: Sat, 28 Jan 2023 04:40:07 GMT
vary: Origin
access-control-allow-origin: *
p3p: CP="NOI DSP COR CURa DEVa PSAa OUR STP UNI DEM"
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
expires: Tue, 03 Jul 2001 06:00:00 GMT
last-modified: Sat, 28 Jan 2023 04:40:07 GMT
set-cookie: AFFICHE_W=; expires=Tue, 10 Nov 2009 23:00:00 GMT; domain=.weborama.fr; path=/; secure; SameSite=None
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ads.betweendigital.com/match?bidder_id=98&external_user_id=NmJjZjY0MjUyZGMwMzNmMA&crf=1
188.42.34.64200 OK 68 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=98&external_user_id=NmJjZjY0MjUyZGMwMzNmMA&crf=1
IP 188.42.34.64:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
GET /match?bidder_id=98&external_user_id=NmJjZjY0MjUyZGMwMzNmMA&crf=1 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Sun, 28 Jan 2024 04:40:07 GMT; Path=/; Domain=.betweendigital.com
tuuid=975d5c9e-40df-521c-9fa6-c251fc726576; Max-Age=31536000; Expires=Sun, 28 Jan 2024 04:40:07 GMT; Path=/; Domain=.betweendigital.com
ut=Y9SnJwALx6D4lyEgcH8kmRvETENPE2zXeZDwgQ==; Max-Age=31536000; Expires=Sun, 28 Jan 2024 04:40:07 GMT; Path=/; Domain=.betweendigital.com
content-length: 68
X-Firefox-Spdy: h2
www.acint.net/match?dp=104&euid=Jo1h8Olt_L7E
193.3.184.228200 OK 43 B URL HTTP/2 www.acint.net/match?dp=104&euid=Jo1h8Olt_L7E
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=104&euid=Jo1h8Olt_L7E HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDE2PUpyVZuAlnZAzIAkQ2xZ7eE4qdzgw3sblnq98sMACY; test_cookie=CheckForPermission; cSyncDp7v2=1674880806; cSyncDp14v3=1674880806; cSyncDp17=1674880806; cSyncDp32=1674880806; cSyncDp45v3=1674880806; cSyncDp53v2=1674880806; cSyncDp54v2=1674880806; cSyncDp62=1674880806; cSyncDp67v2=1674880806; cSyncDp68=1674880806; cSyncDp71=1674880806; cSyncDp77=1674880806; cSyncDp84=1674880806; cSyncDp85=1674880806; cSyncDp95v3=1674880806; cSyncDp98v2=1674880806; cSyncDp101=1674880806; cSyncDp104v2=1674880806; cSyncDp107=1674880806; cSyncDp110=1674880806; cSyncDp111v2=1674880806; cSyncDp112v2=1674880806; cSyncDp125v3=1674880806; cSyncDp126=1674880806; cSyncDp127=1674880806; cSyncDp129=1674880806; cSyncDp136v2=1674880806; cSyncDp138=1674880806; cSyncDp146=1674880806; cSyncDp148=1674880806; cSyncDp149v2=1674880806; cSyncDp151=1674880806; cSyncDp178=1674880806; cSyncDp179=1674880806; cSyncDp186=1674880806; cSyncDp221=1674880806
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 28 Jan 2023 04:40:07 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
ssp.adriver.ru/cgi-bin/sync.cgi?ssp_id=43&external_id=1303420A25A7D4636709B85902C80C64
81.222.128.213200 OK 42 B URL HTTP/1.1 ssp.adriver.ru/cgi-bin/sync.cgi?ssp_id=43&external_id=1303420A25A7D4636709B85902C80C64
IP 81.222.128.213:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /cgi-bin/sync.cgi?ssp_id=43&external_id=1303420A25A7D4636709B85902C80C64 HTTP/1.1
Host: ssp.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 28 Jan 2023 04:40:07 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 7d356edd48bf05fba9a8fcdc9037c2a6
de672418fb6b1082b35935a23947a55b31229044
8b03bac05eefb5307769151d38462b0d8a4317aee20793e6c708f8110af51c26
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:40:07 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 02:03:25 GMT
Expires: Wed, 01 Feb 2023 02:03:24 GMT
Etag: "de672418fb6b1082b35935a23947a55b31229044"
Cache-Control: max-age=335596,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79070c541ae6b517-OSL
px.adhigh.net/p/cm/sape?u=1303420A25A7D4636709B85902C80C64
193.232.148.141302 Found 0 B URL HTTP/2 px.adhigh.net/p/cm/sape?u=1303420A25A7D4636709B85902C80C64
IP 193.232.148.141:0
ASN #48061 Limited Liability Company GPM Digital Technologies
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/cm/sape?u=1303420A25A7D4636709B85902C80C64 HTTP/1.1
Host: px.adhigh.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sat, 28 Jan 2023 04:40:07 GMT
content-length: 0
x-backend-id: f2-ru
access-control-allow-origin: *
access-control-allow-credentials: true
set-cookie: gi_u=ueniZvfdXgQS.AikABlGF9qzxOw;Path=/;Domain=.adhigh.net;Expires=Sun, 28-Jan-2024 04:40:07 GMT;Secure;SameSite=None
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
location: https://px.adhigh.net/p/cm/sape?u=1303420A25A7D4636709B85902C80C64&bounced=1
X-Firefox-Spdy: h2
ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D
188.42.34.64302 Found 0 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D
IP 188.42.34.64:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: /match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Sun, 28 Jan 2024 04:40:07 GMT; Path=/; Domain=.betweendigital.com
tuuid=0b8ccbbe-b181-521c-9500-7325f6d4d402; Max-Age=31536000; Expires=Sun, 28 Jan 2024 04:40:07 GMT; Path=/; Domain=.betweendigital.com
ut=Y9SnJwAHAPj5PDMKm_JkpTiKkORPLNwiAW4kBA==; Max-Age=31536000; Expires=Sun, 28 Jan 2024 04:40:07 GMT; Path=/; Domain=.betweendigital.com
content-length: 0
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 582b8086e006b2524d7f01894924296c
41ed1717f5060a08778842d2be4258e80b047dd3
8bfbf5858af116a3433dc405ab0ad165dd8a6a9c07a00101b399dfa925afd328
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 28 Jan 2023 04:40:06 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 27 Jan 2023 22:24:24 GMT
Expires: Sat, 28 Jan 2023 22:24:24 GMT
ETag: "41ed1717f5060a08778842d2be4258e80b047dd3"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
tag.digitaltarget.ru/processor.js?i=867346268092759
185.15.175.146200 OK 16 kB URL HTTP/1.1 tag.digitaltarget.ru/processor.js?i=867346268092759
IP 185.15.175.146:0
File type ASCII text, with very long lines (15892), with no line terminators
Hash 736e2fb1da94f3277e3f931048c1b9f3
196387db95a17da825b629de3542eff901b09905
4569d4e1b0e52b6316681f7312674f43ecb2b72ea8ab4adb2375e3686862c7dc
GET /processor.js?i=867346268092759 HTTP/1.1
Host: tag.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 28 Jan 2023 04:40:07 GMT
Content-Type: application/javascript
Content-Length: 15892
Last-Modified: Sat, 28 Jan 2023 04:34:17 GMT
Connection: keep-alive
ETag: "63d4a5c9-3e14"
Accept-Ranges: bytes
sm.rtb.mts.ru/match/second?ssp=30&exu=1303420A25A7D4636709B85902C80C64
217.66.147.33200 OK 0 B URL HTTP/1.1 sm.rtb.mts.ru/match/second?ssp=30&exu=1303420A25A7D4636709B85902C80C64
IP 217.66.147.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/second?ssp=30&exu=1303420A25A7D4636709B85902C80C64 HTTP/1.1
Host: sm.rtb.mts.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 28 Jan 2023 04:40:07 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin
Access-Control-Allow-Methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
Access-Control-Allow-Origin: *
Vary: Origin
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1
188.42.34.64200 OK 68 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1
IP 188.42.34.64:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
GET /match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Sun, 28 Jan 2024 04:40:07 GMT; Path=/; Domain=.betweendigital.com
tuuid=4ecb5df5-9589-521c-a4d2-faa0c7065d87; Max-Age=31536000; Expires=Sun, 28 Jan 2024 04:40:07 GMT; Path=/; Domain=.betweendigital.com
ut=Y9SnJwANH2ACG3mFdB3_7sekqaJY1XgBQbqujw==; Max-Age=31536000; Expires=Sun, 28 Jan 2024 04:40:07 GMT; Path=/; Domain=.betweendigital.com
content-length: 68
X-Firefox-Spdy: h2
px.adhigh.net/p/cm/sape?u=1303420A25A7D4636709B85902C80C64&bounced=1
193.232.148.141200 OK 49 B URL HTTP/2 px.adhigh.net/p/cm/sape?u=1303420A25A7D4636709B85902C80C64&bounced=1
IP 193.232.148.141:0
ASN #48061 Limited Liability Company GPM Digital Technologies
File type GIF image data, version 89a, 1 x 1\012- data
Hash 889bc1fffc025af4685839fb516a0b8b
7f105137a4eafe93213ecd8cc34dd907c340467c
d0409a1b73dab4e29dc40f92fb431fa9133baa23b4a1ffae4897f39068110e32
GET /p/cm/sape?u=1303420A25A7D4636709B85902C80C64&bounced=1 HTTP/1.1
Host: px.adhigh.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 04:40:07 GMT
content-type: image/gif
content-length: 49
x-backend-id: f2-ru
access-control-allow-origin: *
access-control-allow-credentials: true
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 75a5500127902348d80359c36c55b587
f8adb4286602ef7ffdc6db3beb2c9a3ee505853b
6d5a10b611936cffaf6aec9e431d70842e3476efae0b402d6cc6c3489e5e94a9
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:40:07 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 02:18:44 GMT
Expires: Sat, 04 Feb 2023 02:18:43 GMT
Etag: "f8adb4286602ef7ffdc6db3beb2c9a3ee505853b"
Cache-Control: max-age=595715,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79070c54cc8fb4e8-OSL
x01.aidata.io/0.gif?pid=9401454&id=1303420A25A7D4636709B85902C80C64
89.108.119.28302 Found 0 B URL HTTP/2 x01.aidata.io/0.gif?pid=9401454&id=1303420A25A7D4636709B85902C80C64
IP 89.108.119.28:0
ASN #197695 Domain names registrar REG.RU, Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /0.gif?pid=9401454&id=1303420A25A7D4636709B85902C80C64 HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sat, 28 Jan 2023 04:40:07 GMT
content-length: 0
location: https://x01.aidata.io/0.gif?pid=9401454&id=1303420A25A7D4636709B85902C80C64&bounce=1
expires: Sat, 28 Jan 2023 04:40:06 GMT
access-control-allow-methods: GET, POST
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
last-modified: Sat, 28 Jan 2023 04:40:06 GMT
set-cookie: __upin=I2+jDLlAhZa+KNS86eLtsA;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
__upints=1674880807;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
p3p: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2e475adb38619b1ced4af8b8ca473110
246fa62bdf1b38a9f6bd0ef1f223052ed3bc7137
e38dd6d492ab354eda38f8c762239e298e098b6f8446430b010aee19c80c0306
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E38DD6D492AB354EDA38F8C762239E298E098B6F8446430B010AEE19C80C0306"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12343
Expires: Sat, 28 Jan 2023 08:05:50 GMT
Date: Sat, 28 Jan 2023 04:40:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2e475adb38619b1ced4af8b8ca473110
246fa62bdf1b38a9f6bd0ef1f223052ed3bc7137
e38dd6d492ab354eda38f8c762239e298e098b6f8446430b010aee19c80c0306
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E38DD6D492AB354EDA38F8C762239E298E098B6F8446430B010AEE19C80C0306"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12343
Expires: Sat, 28 Jan 2023 08:05:50 GMT
Date: Sat, 28 Jan 2023 04:40:07 GMT
Connection: keep-alive
x01.aidata.io/0.gif?pid=9401454&id=1303420A25A7D4636709B85902C80C64&bounce=1
89.108.119.28204 No Content 0 B URL HTTP/2 x01.aidata.io/0.gif?pid=9401454&id=1303420A25A7D4636709B85902C80C64&bounce=1
IP 89.108.119.28:0
ASN #197695 Domain names registrar REG.RU, Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /0.gif?pid=9401454&id=1303420A25A7D4636709B85902C80C64&bounce=1 HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sat, 28 Jan 2023 04:40:07 GMT
expires: Sat, 28 Jan 2023 04:40:06 GMT
access-control-allow-methods: GET, POST
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
last-modified: Sat, 28 Jan 2023 04:40:06 GMT
set-cookie: __upin=VP5iLh9O5/5Wz8y1xidE2g;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
__upints=1674880807;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
p3p: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2195
Expires: Sat, 28 Jan 2023 05:16:42 GMT
Date: Sat, 28 Jan 2023 04:40:07 GMT
Connection: keep-alive
mc.yandex.ru/watch/46079889?wmode=7&page-url=https%3A%2F%2Fcomplex-oil.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afp%3A1250%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A983553179288%3Ahid%3A316141736%3Az%3A0%3Ai%3A20230128044007%3Aet%3A1674880808%3Ac%3A1%3Arn%3A665531075%3Arqn%3A1%3Au%3A1674880808806051325%3Aw%3A1140x836%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A5%2C288%2C172%2C1%2C289%2C0%2C%2C447%2C13%2C%2C%2C%2C1246%3Aco%3A0%3Ans%3A1674880805602%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1674880808%3At%3A%D0%9A%D0%BE%D0%BC%D0%BF%D0%BB%D0%B5%D0%BA%D1%81%D0%BE%D0%B9%D0%BB%20%D0%BD%D0%B5%D1%84%D1%82%D0%B5%D0%BF%D1%80%D0%BE%D0%B4%D1%83%D0%BA%D1%82%D1%8B%20%7C&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
93.158.134.119302 Found 503 B URL HTTP/2 mc.yandex.ru/watch/46079889?wmode=7&page-url=https%3A%2F%2Fcomplex-oil.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afp%3A1250%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A983553179288%3Ahid%3A316141736%3Az%3A0%3Ai%3A20230128044007%3Aet%3A1674880808%3Ac%3A1%3Arn%3A665531075%3Arqn%3A1%3Au%3A1674880808806051325%3Aw%3A1140x836%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A5%2C288%2C172%2C1%2C289%2C0%2C%2C447%2C13%2C%2C%2C%2C1246%3Aco%3A0%3Ans%3A1674880805602%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1674880808%3At%3A%D0%9A%D0%BE%D0%BC%D0%BF%D0%BB%D0%B5%D0%BA%D1%81%D0%BE%D0%B9%D0%BB%20%D0%BD%D0%B5%D1%84%D1%82%D0%B5%D0%BF%D1%80%D0%BE%D0%B4%D1%83%D0%BA%D1%82%D1%8B%20%7C&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
IP 93.158.134.119:0
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
GET /watch/46079889?wmode=7&page-url=https%3A%2F%2Fcomplex-oil.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afp%3A1250%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A983553179288%3Ahid%3A316141736%3Az%3A0%3Ai%3A20230128044007%3Aet%3A1674880808%3Ac%3A1%3Arn%3A665531075%3Arqn%3A1%3Au%3A1674880808806051325%3Aw%3A1140x836%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A5%2C288%2C172%2C1%2C289%2C0%2C%2C447%2C13%2C%2C%2C%2C1246%3Aco%3A0%3Ans%3A1674880805602%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1674880808%3At%3A%D0%9A%D0%BE%D0%BC%D0%BF%D0%BB%D0%B5%D0%BA%D1%81%D0%BE%D0%B9%D0%BB%20%D0%BD%D0%B5%D1%84%D1%82%D0%B5%D0%BF%D1%80%D0%BE%D0%B4%D1%83%D0%BA%D1%82%D1%8B%20%7C&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://complex-oil.com
Connection: keep-alive
Referer: https://complex-oil.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/46079889/1?wmode=7&page-url=https%3A%2F%2Fcomplex-oil.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afp%3A1250%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A983553179288%3Ahid%3A316141736%3Az%3A0%3Ai%3A20230128044007%3Aet%3A1674880808%3Ac%3A1%3Arn%3A665531075%3Arqn%3A1%3Au%3A1674880808806051325%3Aw%3A1140x836%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A5%2C288%2C172%2C1%2C289%2C0%2C%2C447%2C13%2C%2C%2C%2C1246%3Aco%3A0%3Ans%3A1674880805602%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1674880808%3At%3A%D0%9A%D0%BE%D0%BC%D0%BF%D0%BB%D0%B5%D0%BA%D1%81%D0%BE%D0%B9%D0%BB%20%D0%BD%D0%B5%D1%84%D1%82%D0%B5%D0%BF%D1%80%D0%BE%D0%B4%D1%83%D0%BA%D1%82%D1%8B%20%7C&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Sat, 28 Jan 2023 04:40:06 GMT
access-control-allow-origin: https://complex-oil.com
set-cookie: yabs-sid=249039261674880806; Path=/; SameSite=None; Secure
i=PNLf4Z7gTOQRW5bKOkB0X41mTyPS1SoPB+rxfmA83BZ53L2hBQ0R14efMl87ZWVqce/kHnx5GZTv/9iH6SeBtZONgAs=; Expires=Tue, 25-Jan-2033 04:40:05 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=6417960911674880806; Expires=Sun, 28-Jan-2024 04:40:06 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=6417960911674880806; Expires=Sun, 28-Jan-2024 04:40:06 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1706416806.yc.1674880806#1706416806.yrts.1674880806#1706416806.yrtsi.1674880806; Expires=Sun, 28-Jan-2024 04:40:06 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 28-Jan-2023 04:40:06 GMT
last-modified: Sat, 28-Jan-2023 04:40:06 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2195
Expires: Sat, 28 Jan 2023 05:16:42 GMT
Date: Sat, 28 Jan 2023 04:40:07 GMT
Connection: keep-alive
dmg.digitaltarget.ru/1/1093/i/i?i=163609144535942.156663556957116&a=77&e=1303420A25A7D4636709B85902C80C64&pref=https%3A%2F%2Fcomplex-oil.com%2F&c=ss:77.up:1303420A25A7D4636709B85902C80C64.sync:up.xdua:duwqqnYCrhSicPa34CpSlSmZ.xps:xpslsJknM8Cf4U8hFhIcrdExC.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
185.15.175.130307 Temporary Redirect 0 B URL HTTP/1.1 dmg.digitaltarget.ru/1/1093/i/i?i=163609144535942.156663556957116&a=77&e=1303420A25A7D4636709B85902C80C64&pref=https%3A%2F%2Fcomplex-oil.com%2F&c=ss:77.up:1303420A25A7D4636709B85902C80C64.sync:up.xdua:duwqqnYCrhSicPa34CpSlSmZ.xps:xpslsJknM8Cf4U8hFhIcrdExC.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
IP 185.15.175.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1/1093/i/i?i=163609144535942.156663556957116&a=77&e=1303420A25A7D4636709B85902C80C64&pref=https%3A%2F%2Fcomplex-oil.com%2F&c=ss:77.up:1303420A25A7D4636709B85902C80C64.sync:up.xdua:duwqqnYCrhSicPa34CpSlSmZ.xps:xpslsJknM8Cf4U8hFhIcrdExC.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Sat, 28 Jan 2023 04:40:07 GMT
Content-Length: 0
Connection: keep-alive
Location: https://dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1674880807503&i=163609144535942.156663556957116&a=77&e=1303420A25A7D4636709B85902C80C64&pref=https%3A%2F%2Fcomplex-oil.com%2F&c=ss:77.up:1303420A25A7D4636709B85902C80C64.sync:up.xdua:duwqqnYCrhSicPa34CpSlSmZ.xps:xpslsJknM8Cf4U8hFhIcrdExC.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
Set-Cookie: viuserid=Q2dCPmfbXLn0cAn7dsn3; Max-Age=93312000; Expires=Mon, 12 Jan 2026 04:40:07 GMT; SameSite=None; Path=/; Domain=dmg.digitaltarget.ru; Secure; HTTPOnly
Request-Time: 0
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only
dmg.digitaltarget.ru/1/1093/i/i?i=163609144535942.669336226276762&a=77&e=1303420A25A7D4636709B85902C80C64&pref=https%3A%2F%2Fcomplex-oil.com%2F&c=ss:77.up:1303420A25A7D4636709B85902C80C64.sync:up.xdua:duwqqnYCrhSicPa34CpSlSmZ.xps:xpslsJknM8Cf4U8hFhIcrdExC.dn:acint__net.adcm:hit.tg:adcmjs_noorient
185.15.175.130307 Temporary Redirect 0 B URL HTTP/1.1 dmg.digitaltarget.ru/1/1093/i/i?i=163609144535942.669336226276762&a=77&e=1303420A25A7D4636709B85902C80C64&pref=https%3A%2F%2Fcomplex-oil.com%2F&c=ss:77.up:1303420A25A7D4636709B85902C80C64.sync:up.xdua:duwqqnYCrhSicPa34CpSlSmZ.xps:xpslsJknM8Cf4U8hFhIcrdExC.dn:acint__net.adcm:hit.tg:adcmjs_noorient
IP 185.15.175.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1/1093/i/i?i=163609144535942.669336226276762&a=77&e=1303420A25A7D4636709B85902C80C64&pref=https%3A%2F%2Fcomplex-oil.com%2F&c=ss:77.up:1303420A25A7D4636709B85902C80C64.sync:up.xdua:duwqqnYCrhSicPa34CpSlSmZ.xps:xpslsJknM8Cf4U8hFhIcrdExC.dn:acint__net.adcm:hit.tg:adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Sat, 28 Jan 2023 04:40:07 GMT
Content-Length: 0
Connection: keep-alive
Location: https://dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1674880807501&i=163609144535942.669336226276762&a=77&e=1303420A25A7D4636709B85902C80C64&pref=https%3A%2F%2Fcomplex-oil.com%2F&c=ss:77.up:1303420A25A7D4636709B85902C80C64.sync:up.xdua:duwqqnYCrhSicPa34CpSlSmZ.xps:xpslsJknM8Cf4U8hFhIcrdExC.dn:acint__net.adcm:hit.tg:adcmjs_noorient
Set-Cookie: viuserid=GjqOSrZbo8ZUa0k7TXCQ; Max-Age=93312000; Expires=Mon, 12 Jan 2026 04:40:07 GMT; SameSite=None; Path=/; Domain=dmg.digitaltarget.ru; Secure; HTTPOnly
Request-Time: 0
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F238effff-cb43-479f-8853-06086fff1bd5.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F238effff-cb43-479f-8853-06086fff1bd5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f185f0b4f90d06dbb397b44ed9c73dbe
a48e2c369a048447e0e25e4791eb603859391c1c
b466060fc132cc8d23fcb83001206606e2d5502118c65e9f55795b5adbff2fa6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F238effff-cb43-479f-8853-06086fff1bd5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9364
x-amzn-requestid: e556be7b-567a-4c9a-931e-ff6fee42d3a7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_T8GbFoAMFySg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445b2-6f4476e9388c77a057153277;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:44:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: LPkLrx7l9Qf_GKdtJq_77RUkvgnKZlCaDN34xsB5bEO8c9VQEJPAew==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:38 GMT
etag: "a48e2c369a048447e0e25e4791eb603859391c1c"
content-type: image/jpeg
age: 24209
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3237aa3-30cf-4312-861c-8d923987ed4b.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3237aa3-30cf-4312-861c-8d923987ed4b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 335cb821617fe98e993190c93c616f86
130b6f6d592f3ab052015656653a1b3ac259599d
ee90912b731ff31e52ccd404bf45ec6b6d3802247a29f9397eed153ab709df96
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3237aa3-30cf-4312-861c-8d923987ed4b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8569
x-amzn-requestid: d97c9436-5e2d-42a2-ad40-84c7776cdac3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_rVFA_oAMF-2A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d44648-03ff23d6072683a067472191;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:46:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: FuvSHsmeURS0TVrB-5IPYpmsovQh5OWzvsmlT2nzkDGfO2Q8gwP3Xw==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:15:45 GMT
age: 23062
etag: "130b6f6d592f3ab052015656653a1b3ac259599d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25c808e0-eda9-4074-b1ed-65637dbd4ba9.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25c808e0-eda9-4074-b1ed-65637dbd4ba9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 940946e65210c717266c3a64751f1b72
f0e66aeef0c72865d565f48b563f66a184b758a9
1d031b8a530a1e6d84d79fae891f023e1ab7646596c00c57d83cfffce1f6fdf5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25c808e0-eda9-4074-b1ed-65637dbd4ba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5742
x-amzn-requestid: b22fd8a5-eefc-494e-a304-75b69eef069d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPFr2GsdoAMFpqw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf8318-69b5e7c726fa92134d08c775;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:04:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xBpEdVPmvtXlsyGTvZCkIahK7_Ivhq4yswhw23ixIOH1zlgWPyLH9Q==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 04:39:18 GMT
age: 49
etag: "f0e66aeef0c72865d565f48b563f66a184b758a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4cb7be12333fa7ea3353901b4b3215af
4b758cc432874384f330568177eef5a328d7e69a
d6f86c0ddbabd5c4fd7cee72ce4da62ccddd9d29139c9ab033bb1ab8425bae22
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11918
x-amzn-requestid: baf2eddf-03cc-4af7-b799-c2c68b90d7a3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUf4sFUYoAMFg6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1ad04-696c5dd015428f7429a5ccec;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 22:28:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: TqFzcoLfgMkYqL6JxAWyG4MdeGS_TA7jJs6eKHqlqe-wU174CAzKsw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:39:29 GMT
age: 21638
etag: "4b758cc432874384f330568177eef5a328d7e69a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
an.yandex.ru/mapuid/sapeis/1303420A25A7D4636709B85902C80C64
77.88.21.90302 Found 11 kB URL HTTP/2 an.yandex.ru/mapuid/sapeis/1303420A25A7D4636709B85902C80C64
IP 77.88.21.90:0
Hash f3b77b2bc54d9c0240d425619663d9b7
1bbf9c62325168b720c8576d50721e6fbc9c3946
54b87b4b2f3817600795aa049b6ab5cc8ec811aceabb95092ec1cfc1002119f0
GET /mapuid/sapeis/1303420A25A7D4636709B85902C80C64 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
timing-allow-origin: *
location: https://an.yandex.ru/mapuid/sapeis/1303420A25A7D4636709B85902C80C64?redir-setuniq=1
date: Sat, 28 Jan 2023 04:40:07 GMT
set-cookie: yandexuid=6689175101674880807; domain=.yandex.ru; path=/; expires=Tue, 25-Jan-2033 04:40:07 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 28 Jan 2023 04:40:07 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Sat, 28 Jan 2023 04:40:07 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:46 GMT
age: 24201
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1674880807503&i=163609144535942.156663556957116&a=77&e=1303420A25A7D4636709B85902C80C64&pref=https%3A%2F%2Fcomplex-oil.com%2F&c=ss:77.up:1303420A25A7D4636709B85902C80C64.sync:up.xdua:duwqqnYCrhSicPa34CpSlSmZ.xps:xpslsJknM8Cf4U8hFhIcrdExC.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
185.15.175.130200 OK 64 B URL HTTP/1.1 dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1674880807503&i=163609144535942.156663556957116&a=77&e=1303420A25A7D4636709B85902C80C64&pref=https%3A%2F%2Fcomplex-oil.com%2F&c=ss:77.up:1303420A25A7D4636709B85902C80C64.sync:up.xdua:duwqqnYCrhSicPa34CpSlSmZ.xps:xpslsJknM8Cf4U8hFhIcrdExC.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
IP 185.15.175.130:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ffd585dfb1ac6320633a0be46d579437
5a6033d23bc9cd5d1de9ee61de69a44428086dcb
df18d81deb0cc1c48ae87e6481bb4ee375b40cce0fec3d226e002704d49f6cc8
GET /awg/custom/1093/i/i?call_source=awg&ts=1674880807503&i=163609144535942.156663556957116&a=77&e=1303420A25A7D4636709B85902C80C64&pref=https%3A%2F%2Fcomplex-oil.com%2F&c=ss:77.up:1303420A25A7D4636709B85902C80C64.sync:up.xdua:duwqqnYCrhSicPa34CpSlSmZ.xps:xpslsJknM8Cf4U8hFhIcrdExC.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 28 Jan 2023 04:40:07 GMT
Content-Type: image/gif
Content-Length: 64
Connection: keep-alive
Vary: Accept-Encoding
Request-Time: 1
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only
dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1674880807501&i=163609144535942.669336226276762&a=77&e=1303420A25A7D4636709B85902C80C64&pref=https%3A%2F%2Fcomplex-oil.com%2F&c=ss:77.up:1303420A25A7D4636709B85902C80C64.sync:up.xdua:duwqqnYCrhSicPa34CpSlSmZ.xps:xpslsJknM8Cf4U8hFhIcrdExC.dn:acint__net.adcm:hit.tg:adcmjs_noorient
185.15.175.130200 OK 64 B URL HTTP/1.1 dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1674880807501&i=163609144535942.669336226276762&a=77&e=1303420A25A7D4636709B85902C80C64&pref=https%3A%2F%2Fcomplex-oil.com%2F&c=ss:77.up:1303420A25A7D4636709B85902C80C64.sync:up.xdua:duwqqnYCrhSicPa34CpSlSmZ.xps:xpslsJknM8Cf4U8hFhIcrdExC.dn:acint__net.adcm:hit.tg:adcmjs_noorient
IP 185.15.175.130:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ffd585dfb1ac6320633a0be46d579437
5a6033d23bc9cd5d1de9ee61de69a44428086dcb
df18d81deb0cc1c48ae87e6481bb4ee375b40cce0fec3d226e002704d49f6cc8
GET /awg/custom/1093/i/i?call_source=awg&ts=1674880807501&i=163609144535942.669336226276762&a=77&e=1303420A25A7D4636709B85902C80C64&pref=https%3A%2F%2Fcomplex-oil.com%2F&c=ss:77.up:1303420A25A7D4636709B85902C80C64.sync:up.xdua:duwqqnYCrhSicPa34CpSlSmZ.xps:xpslsJknM8Cf4U8hFhIcrdExC.dn:acint__net.adcm:hit.tg:adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 28 Jan 2023 04:40:07 GMT
Content-Type: image/gif
Content-Length: 64
Connection: keep-alive
Vary: Accept-Encoding
Request-Time: 1
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only
www.acint.net/ping/?v=0.5.0&uid=007b6f8f-1aaa-4efb-8cc0-b909504d0e6b&dp=10&tz=%2B00%3A00&nc=39340321&dT=2023-01-28T04%3A40%3A10.032
193.3.184.228200 OK 43 B URL HTTP/2 www.acint.net/ping/?v=0.5.0&uid=007b6f8f-1aaa-4efb-8cc0-b909504d0e6b&dp=10&tz=%2B00%3A00&nc=39340321&dT=2023-01-28T04%3A40%3A10.032
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /ping/?v=0.5.0&uid=007b6f8f-1aaa-4efb-8cc0-b909504d0e6b&dp=10&tz=%2B00%3A00&nc=39340321&dT=2023-01-28T04%3A40%3A10.032 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Cookie: aid=CkIDE2PUpyVZuAlnZAzIAkQ2xZ7eE4qdzgw3sblnq98sMACY; test_cookie=CheckForPermission; cSyncDp7v2=1674880806; cSyncDp14v3=1674880806; cSyncDp17=1674880806; cSyncDp32=1674880806; cSyncDp45v3=1674880806; cSyncDp53v2=1674880806; cSyncDp54v2=1674880806; cSyncDp62=1674880806; cSyncDp67v2=1674880806; cSyncDp68=1674880806; cSyncDp71=1674880806; cSyncDp77=1674880806; cSyncDp84=1674880806; cSyncDp85=1674880806; cSyncDp95v3=1674880806; cSyncDp98v2=1674880806; cSyncDp101=1674880806; cSyncDp104v2=1674880806; cSyncDp107=1674880806; cSyncDp110=1674880806; cSyncDp111v2=1674880806; cSyncDp112v2=1674880806; cSyncDp125v3=1674880806; cSyncDp126=1674880806; cSyncDp127=1674880806; cSyncDp129=1674880806; cSyncDp136v2=1674880806; cSyncDp138=1674880806; cSyncDp146=1674880806; cSyncDp148=1674880806; cSyncDp149v2=1674880806; cSyncDp151=1674880806; cSyncDp178=1674880806; cSyncDp179=1674880806; cSyncDp186=1674880806; cSyncDp221=1674880806
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 28 Jan 2023 04:40:09 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
complex-oil.com/wp-content/themes/complex-oil/style.css
45.130.41.179200 OK 0 B URL HTTP/2 complex-oil.com/wp-content/themes/complex-oil/style.css
IP 45.130.41.179:0
GET /wp-content/themes/complex-oil/style.css HTTP/1.1
Host: complex-oil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 28 Jan 2023 04:40:05 GMT
content-type: text/css
last-modified: Fri, 28 Sep 2018 06:26:48 GMT
vary: Accept-Encoding
etag: W/"5badc9a8-5b9d"
expires: Sat, 04 Feb 2023 04:40:05 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
complex-oil.com/wp-content/plugins/wp-pagenavi/pagenavi-css.css?ver=2.70
45.130.41.179200 OK 0 B URL HTTP/2 complex-oil.com/wp-content/plugins/wp-pagenavi/pagenavi-css.css?ver=2.70
IP 45.130.41.179:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-pagenavi/pagenavi-css.css?ver=2.70 HTTP/1.1
Host: complex-oil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 28 Jan 2023 04:40:05 GMT
content-type: text/css
last-modified: Tue, 10 Oct 2017 21:00:00 GMT
vary: Accept-Encoding
etag: W/"59dd34d0-176"
expires: Sat, 04 Feb 2023 04:40:05 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
complex-oil.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.0.1
45.130.41.179200 OK 0 B URL HTTP/2 complex-oil.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.0.1
IP 45.130.41.179:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.0.1 HTTP/1.1
Host: complex-oil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 28 Jan 2023 04:40:05 GMT
content-type: application/x-javascript
last-modified: Thu, 17 May 2018 18:22:12 GMT
vary: Accept-Encoding
etag: W/"5afdc854-38d7"
expires: Sat, 04 Feb 2023 04:40:05 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
complex-oil.com/wp-content/themes/complex-oil/css/sidebar.css
45.130.41.179200 OK 0 B URL HTTP/2 complex-oil.com/wp-content/themes/complex-oil/css/sidebar.css
IP 45.130.41.179:0
GET /wp-content/themes/complex-oil/css/sidebar.css HTTP/1.1
Host: complex-oil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/wp-content/themes/complex-oil/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 28 Jan 2023 04:40:05 GMT
content-type: text/css
last-modified: Sun, 24 Sep 2017 21:00:00 GMT
vary: Accept-Encoding
etag: W/"59c81cd0-17cd"
expires: Sat, 04 Feb 2023 04:40:05 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
complex-oil.com/
45.130.41.179200 OK 0 B IP 45.130.41.179:0
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: complex-oil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 28 Jan 2023 04:40:05 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.2.34
link: <https://complex-oil.com/wp-json/>; rel="https://api.w.org/"
content-encoding: gzip
X-Firefox-Spdy: h2
complex-oil.com/wp-content/plugins/table-of-contents-plus/screen.min.css?ver=1509
45.130.41.179200 OK 0 B URL HTTP/2 complex-oil.com/wp-content/plugins/table-of-contents-plus/screen.min.css?ver=1509
IP 45.130.41.179:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/table-of-contents-plus/screen.min.css?ver=1509 HTTP/1.1
Host: complex-oil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 28 Jan 2023 04:40:05 GMT
content-type: text/css
last-modified: Tue, 21 Nov 2017 09:09:00 GMT
vary: Accept-Encoding
etag: W/"5a13ed2c-484"
expires: Sat, 04 Feb 2023 04:40:05 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
complex-oil.com/wp-content/plugins/table-of-contents-plus/front.min.js?ver=1509
45.130.41.179200 OK 0 B URL HTTP/2 complex-oil.com/wp-content/plugins/table-of-contents-plus/front.min.js?ver=1509
IP 45.130.41.179:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/table-of-contents-plus/front.min.js?ver=1509 HTTP/1.1
Host: complex-oil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 28 Jan 2023 04:40:05 GMT
content-type: application/x-javascript
last-modified: Tue, 21 Nov 2017 09:09:00 GMT
vary: Accept-Encoding
etag: W/"5a13ed2c-17cb"
expires: Sat, 04 Feb 2023 04:40:05 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.acint.net/oci.js?t=1674880807031
193.3.184.228200 OK 0 B URL HTTP/2 www.acint.net/oci.js?t=1674880807031
IP 193.3.184.228:0
GET /oci.js?t=1674880807031 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 28 Jan 2023 04:40:06 GMT
content-type: application/x-javascript
last-modified: Mon, 09 Jan 2023 08:01:12 GMT
etag: W/"63bbc9c8-7dac"
content-encoding: gzip
X-Firefox-Spdy: h2
an.yandex.ru/mapuid/sapeis/1303420A25A7D4636709B85902C80C64?redir-setuniq=1
77.88.21.90200 OK 0 B URL HTTP/2 an.yandex.ru/mapuid/sapeis/1303420A25A7D4636709B85902C80C64?redir-setuniq=1
IP 77.88.21.90:0
GET /mapuid/sapeis/1303420A25A7D4636709B85902C80C64?redir-setuniq=1 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
date: Sat, 28 Jan 2023 04:40:07 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 28 Jan 2023 04:40:07 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Sat, 28 Jan 2023 04:40:07 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif; charset=utf-8
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
complex-oil.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.0.1
45.130.41.179200 OK 0 B URL HTTP/2 complex-oil.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.0.1
IP 45.130.41.179:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.0.1 HTTP/1.1
Host: complex-oil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 28 Jan 2023 04:40:05 GMT
content-type: text/css
last-modified: Thu, 17 May 2018 18:22:12 GMT
vary: Accept-Encoding
etag: W/"5afdc854-693"
expires: Sat, 04 Feb 2023 04:40:05 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
complex-oil.com/wp-includes/js/wp-embed.min.js?ver=4.9.22
45.130.41.179200 OK 0 B URL HTTP/2 complex-oil.com/wp-includes/js/wp-embed.min.js?ver=4.9.22
IP 45.130.41.179:0
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-embed.min.js?ver=4.9.22 HTTP/1.1
Host: complex-oil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 28 Jan 2023 04:40:05 GMT
content-type: application/x-javascript
last-modified: Thu, 15 Apr 2021 04:16:45 GMT
vary: Accept-Encoding
etag: W/"6077be2d-56f"
expires: Sat, 04 Feb 2023 04:40:05 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
complex-oil.com/wp-content/themes/complex-oil/css/header.css
45.130.41.179200 OK 0 B URL HTTP/2 complex-oil.com/wp-content/themes/complex-oil/css/header.css
IP 45.130.41.179:0
GET /wp-content/themes/complex-oil/css/header.css HTTP/1.1
Host: complex-oil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/wp-content/themes/complex-oil/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 28 Jan 2023 04:40:05 GMT
content-type: text/css
last-modified: Sun, 24 Sep 2017 21:00:00 GMT
vary: Accept-Encoding
etag: W/"59c81cd0-e54"
expires: Sat, 04 Feb 2023 04:40:05 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
complex-oil.com/wp-content/themes/complex-oil/css/dropmenu.css
45.130.41.179200 OK 0 B URL HTTP/2 complex-oil.com/wp-content/themes/complex-oil/css/dropmenu.css
IP 45.130.41.179:0
GET /wp-content/themes/complex-oil/css/dropmenu.css HTTP/1.1
Host: complex-oil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/wp-content/themes/complex-oil/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 28 Jan 2023 04:40:05 GMT
content-type: text/css
last-modified: Sun, 24 Sep 2017 21:00:00 GMT
vary: Accept-Encoding
etag: W/"59c81cd0-5b3"
expires: Sat, 04 Feb 2023 04:40:05 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
ads.adlook.me/csync?url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D
5.200.44.122302 Found 0 B URL HTTP/2 ads.adlook.me/csync?url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D
IP 5.200.44.122:0
ASN #48096 Enterprise Cloud Ltd.
GET /csync?url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D HTTP/1.1
Host: ads.adlook.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://acint.net/match?dp=110&euid=9429261d8f4d40f687ee60a3d79fe504
server: Microsoft-IIS/10.0
set-cookie: adlm_userId=9429261d8f4d40f687ee60a3d79fe504; expires=Sat, 27 Jan 2024 21:00:00 GMT; path=/; SameSite=None; secure; samesite=lax
date: Sat, 28 Jan 2023 04:40:05 GMT
X-Firefox-Spdy: h2
complex-oil.com/wp-includes/js/jquery/jquery.js?ver=1.12.4
45.130.41.179200 OK 0 B URL HTTP/2 complex-oil.com/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP 45.130.41.179:0
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: complex-oil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 28 Jan 2023 04:40:05 GMT
content-type: application/x-javascript
last-modified: Thu, 05 Sep 2019 04:16:35 GMT
vary: Accept-Encoding
etag: W/"5d708c23-17a6a"
expires: Sat, 04 Feb 2023 04:40:05 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
complex-oil.com/wp-content/themes/complex-oil/css/comments.css
45.130.41.179200 OK 0 B URL HTTP/2 complex-oil.com/wp-content/themes/complex-oil/css/comments.css
IP 45.130.41.179:0
GET /wp-content/themes/complex-oil/css/comments.css HTTP/1.1
Host: complex-oil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://complex-oil.com/wp-content/themes/complex-oil/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Sat, 28 Jan 2023 04:40:05 GMT
content-type: text/css
last-modified: Sun, 24 Sep 2017 21:00:00 GMT
vary: Accept-Encoding
etag: W/"59c81cd0-2279"
expires: Sat, 04 Feb 2023 04:40:05 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2