r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 4714c95a0c854e38f9be444f9343bf14
07ce5eb635448f2b3bafbe51e4dfeef47cdf4f7b
4d47e08c9afb704096e93a51f6e95c0dc7c7bc31e67ded39998ff37ed56e0965
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D47E08C9AFB704096E93A51F6E95C0DC7C7BC31E67DED39998FF37ED56E0965"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7177
Expires: Sat, 21 Jan 2023 13:35:46 GMT
Date: Sat, 21 Jan 2023 11:36:09 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 20d267853e48ef7d476459ed67da5d97
06d1bd08efd69c0e93486d3c423fa2640f372d29
24323cd45ca2ed01c63f908233d9b2ad5bb6f63394884c45bf6abb0221d0edd6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "24323CD45CA2ED01C63F908233D9B2AD5BB6F63394884C45BF6ABB0221D0EDD6"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17378
Expires: Sat, 21 Jan 2023 16:25:47 GMT
Date: Sat, 21 Jan 2023 11:36:09 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 17094b856fde02b2c8c2d3845ad325cf
26dc3f2ebf81faf5ab96eb75ffcbead6085528b8
6547376c41dcaa352cc4e747291916902bcddc0032b750bd84c5e3b2fe6f7d16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6547376C41DCAA352CC4E747291916902BCDDC0032B750BD84C5E3B2FE6F7D16"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14472
Expires: Sat, 21 Jan 2023 15:37:22 GMT
Date: Sat, 21 Jan 2023 11:36:10 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 21 Jan 2023 11:34:44 GMT
content-type: application/json
age: 86
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: RkAz107IypXr+Ykr0O/QGXy1UpX6PRr9ahni6FxJwuRG89IRpjHlF826FpSuvImP4qAZGm9zvw0=
x-amz-request-id: HKF3KVZP9BJ98E47
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 21 Jan 2023 10:46:46 GMT
age: 2964
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 11:36:10 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
modgen.net/the-definitive-guide-to-bdsm-for-beginners
151.106.107.244301 Moved Permanently 707 B URL HTTP/1.1 modgen.net/the-definitive-guide-to-bdsm-for-beginners
IP 151.106.107.244:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Malware
GET /the-definitive-guide-to-bdsm-for-beginners HTTP/1.1
Host: modgen.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Sat, 21 Jan 2023 11:36:10 GMT
server: LiteSpeed
location: https://modgen.net/the-definitive-guide-to-bdsm-for-beginners
platform: hostinger
content-security-policy: upgrade-insecure-requests
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 21 Jan 2023 11:17:29 GMT
age: 1121
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fc96297d0b59147e8f6052b16f1ca13f
23aeddfa143bb9be19b2ed06f2024a3a8aa120ce
034327c6ada560c662f451f3c95cd8531482d4ab51629e95875fab54c8f3e49a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4279
Cache-Control: max-age=168117
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:10 GMT
Etag: "63cbab28-1d7"
Expires: Mon, 23 Jan 2023 10:18:07 GMT
Last-Modified: Sat, 21 Jan 2023 09:06:48 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
modgen.net/the-definitive-guide-to-bdsm-for-beginners
151.106.107.244301 Moved Permanently 0 B URL HTTP/2 modgen.net/the-definitive-guide-to-bdsm-for-beginners
IP 151.106.107.244:0
ASN #47583 Hostinger International Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /the-definitive-guide-to-bdsm-for-beginners HTTP/1.1
Host: modgen.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
x-powered-by: PHP/7.4.32
content-type: text/html; charset=UTF-8
x-pingback: https://modgen.net/xmlrpc.php
x-redirect-by: WordPress
location: https://modgen.net/the-definitive-guide-to-bdsm-for-beginners/
x-litespeed-cache: miss
content-length: 0
date: Sat, 21 Jan 2023 11:36:10 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
modgen.net/the-definitive-guide-to-bdsm-for-beginners/
151.106.107.244200 OK 22 kB URL HTTP/2 modgen.net/the-definitive-guide-to-bdsm-for-beginners/
IP 151.106.107.244:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9419), with CRLF, LF line terminators
Hash 05ddd38891547f07b73db8ca031a9a58
8ec9be2af438a63f84a8c35cb0a8b398467cb101
56059998425f8763c8f7e2cd754cf3e8b18549c95ec610fd38bce7e6618b7463
Analyzer Verdict Alert fortinet Malware
GET /the-definitive-guide-to-bdsm-for-beginners/ HTTP/1.1
Host: modgen.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/7.4.32
content-type: text/html; charset=UTF-8
x-pingback: https://modgen.net/xmlrpc.php
link: <https://modgen.net/wp-json/>; rel="https://api.w.org/", <https://modgen.net/wp-json/wp/v2/posts/205>; rel="alternate"; type="application/json", <https://modgen.net/?p=205>; rel=shortlink
etag: "16087-1674293233;br"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding
content-length: 21606
date: Sat, 21 Jan 2023 11:36:10 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.39.122.167101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.122.167:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: UxeutKoV6Z9w+Lr7ni1OtQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: KEMOZzfiLhDHsfBWJUhqqfkTYpU=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5422c49666fc195ae94aa0f5cf837bfc
e0f1dd926cd9328ccf9cc99389337056c62f1043
f639aad2dc85708fa922b793660f13ae597f275a8ebf61e7e72fb2bce257cc76
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5422c49666fc195ae94aa0f5cf837bfc
e0f1dd926cd9328ccf9cc99389337056c62f1043
f639aad2dc85708fa922b793660f13ae597f275a8ebf61e7e72fb2bce257cc76
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5422c49666fc195ae94aa0f5cf837bfc
e0f1dd926cd9328ccf9cc99389337056c62f1043
f639aad2dc85708fa922b793660f13ae597f275a8ebf61e7e72fb2bce257cc76
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5422c49666fc195ae94aa0f5cf837bfc
e0f1dd926cd9328ccf9cc99389337056c62f1043
f639aad2dc85708fa922b793660f13ae597f275a8ebf61e7e72fb2bce257cc76
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e6d21eff1927f7a74984663b16cfe21a
b747f7d42cdf7cfea6900348cd257066b2634222
a4343acb5bda29aa0d6d64bbefd6bc07a1c5e0166646171be74f4a1d266e3c92
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e6d21eff1927f7a74984663b16cfe21a
b747f7d42cdf7cfea6900348cd257066b2634222
a4343acb5bda29aa0d6d64bbefd6bc07a1c5e0166646171be74f4a1d266e3c92
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Josefin+Sans:ital,wght@0,300;0,400;0,500;0,600;0,700;1,400;1,500;1,600;1,700&display=swap
142.250.74.106200 OK 1.0 kB URL HTTP/2 fonts.googleapis.com/css?family=Josefin+Sans:ital,wght@0,300;0,400;0,500;0,600;0,700;1,400;1,500;1,600;1,700&display=swap
IP 142.250.74.106:0
Hash 5851082b9f0923bb65c113f38beea009
027b923332a87301bc4ccdb820b325edda1a8863
d952d8e3db1dd15125714ec53a9de71166b10fdb028bf1db0f466bb29b089018
GET /css?family=Josefin+Sans:ital,wght@0,300;0,400;0,500;0,600;0,700;1,400;1,500;1,600;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modgen.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 21 Jan 2023 11:36:11 GMT
date: Sat, 21 Jan 2023 11:36:11 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e6d21eff1927f7a74984663b16cfe21a
b747f7d42cdf7cfea6900348cd257066b2634222
a4343acb5bda29aa0d6d64bbefd6bc07a1c5e0166646171be74f4a1d266e3c92
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e6d21eff1927f7a74984663b16cfe21a
b747f7d42cdf7cfea6900348cd257066b2634222
a4343acb5bda29aa0d6d64bbefd6bc07a1c5e0166646171be74f4a1d266e3c92
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/muli/v28/7Auwp_0qiz-afTLGLQ.woff2
142.250.74.67200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/muli/v28/7Auwp_0qiz-afTLGLQ.woff2
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 31196, version 1.0\012- data
Hash ea2343c7dccad57360fb611d67204445
b603d9e68bb1ed5e4b33d5e31121160cb4d23452
2a04078f9550381b5148170ceaf5b378a1b31ed8274c6d0094aeba6f599462cc
GET /s/muli/v28/7Auwp_0qiz-afTLGLQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://modgen.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31196
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 18 Jan 2023 14:34:43 GMT
expires: Thu, 18 Jan 2024 14:34:43 GMT
cache-control: public, max-age=31536000
age: 248488
last-modified: Mon, 11 Jul 2022 20:43:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/josefinsans/v25/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2
142.250.74.67200 OK 27 kB URL HTTP/2 fonts.gstatic.com/s/josefinsans/v25/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 26592, version 1.0\012- data
Hash c2d66029cf6ae68a19e1398fc02feda6
c37e5907e49d2ed5b11f59841a3d16c911da7a5c
3701f4ae604d8fccb4ddca393e076a456aebfb06c1a9d94c1c13089293f55716
GET /s/josefinsans/v25/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://modgen.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 26592
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 18 Jan 2023 20:42:49 GMT
expires: Thu, 18 Jan 2024 20:42:49 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 20:56:22 GMT
content-type: font/woff2
age: 226402
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e6d21eff1927f7a74984663b16cfe21a
b747f7d42cdf7cfea6900348cd257066b2634222
a4343acb5bda29aa0d6d64bbefd6bc07a1c5e0166646171be74f4a1d266e3c92
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash fe538be960240e970aa1e22d0387e1cc
46e31b99970d49ef162089414c438c9c923e63d5
791b61ea4b218027c1d2f05d1f7652c87e676be88e869000004bc4341295c54a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "791B61EA4B218027C1D2F05D1F7652C87E676BE88E869000004BC4341295C54A"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2903
Expires: Sat, 21 Jan 2023 12:24:34 GMT
Date: Sat, 21 Jan 2023 11:36:11 GMT
Connection: keep-alive
www.acint.net/aci.js
193.3.184.228200 OK 7.8 kB IP 193.3.184.228:0
File type ASCII text, with very long lines (1649)
Hash 23df47b4330754db70e9c1e32f0092d6
dea956b3a9dad9fa3cc352180be435943e8d0352
0056d5c8969a597094abb6cc9f3a383631ba9c0f13ac620d735f0788807fb4de
GET /aci.js HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modgen.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Sat, 21 Jan 2023 11:36:11 GMT
content-type: application/x-javascript
content-length: 7757
last-modified: Mon, 09 Jan 2023 08:01:12 GMT
etag: "63bbc9c8-1e4d"
content-encoding: gzip
expires: Sat, 21 Jan 2023 23:36:11 GMT
cache-control: max-age=43200
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b6b06a47d5f35483956c51ae6b96af06
e49f5f703895b470f0afafe0d2182f0f49383b2c
b14f34188f8acb034cc830f2fb93521063d1089be92f0fac7b3e306d54ea8944
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b6b06a47d5f35483956c51ae6b96af06
e49f5f703895b470f0afafe0d2182f0f49383b2c
b14f34188f8acb034cc830f2fb93521063d1089be92f0fac7b3e306d54ea8944
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b6b06a47d5f35483956c51ae6b96af06
e49f5f703895b470f0afafe0d2182f0f49383b2c
b14f34188f8acb034cc830f2fb93521063d1089be92f0fac7b3e306d54ea8944
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b6b06a47d5f35483956c51ae6b96af06
e49f5f703895b470f0afafe0d2182f0f49383b2c
b14f34188f8acb034cc830f2fb93521063d1089be92f0fac7b3e306d54ea8944
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b6b06a47d5f35483956c51ae6b96af06
e49f5f703895b470f0afafe0d2182f0f49383b2c
b14f34188f8acb034cc830f2fb93521063d1089be92f0fac7b3e306d54ea8944
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.acint.net/hit/?v=0.5.0&uid=094ed70e-4dc6-486d-9d68-d833dc1f6c1e&dp=10&tz=%2B00%3A00&nc=24317762&u=https%3A%2F%2Fmodgen.net%2Fthe-definitive-guide-to-bdsm-for-beginners%2F&r=&rs=1280x1024&t=The%20Definitive%20Guide%20To%20BDSM%20For%20Beginners%20%7C%20Modgen&oE=1&oP=1&dT=2023-01-21T11%3A36%3A10.837&fu=0ce64878-07c9-4196-ac8b-b7c19ad223bc
193.3.184.228200 OK 43 B URL HTTP/2 www.acint.net/hit/?v=0.5.0&uid=094ed70e-4dc6-486d-9d68-d833dc1f6c1e&dp=10&tz=%2B00%3A00&nc=24317762&u=https%3A%2F%2Fmodgen.net%2Fthe-definitive-guide-to-bdsm-for-beginners%2F&r=&rs=1280x1024&t=The%20Definitive%20Guide%20To%20BDSM%20For%20Beginners%20%7C%20Modgen&oE=1&oP=1&dT=2023-01-21T11%3A36%3A10.837&fu=0ce64878-07c9-4196-ac8b-b7c19ad223bc
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hit/?v=0.5.0&uid=094ed70e-4dc6-486d-9d68-d833dc1f6c1e&dp=10&tz=%2B00%3A00&nc=24317762&u=https%3A%2F%2Fmodgen.net%2Fthe-definitive-guide-to-bdsm-for-beginners%2F&r=&rs=1280x1024&t=The%20Definitive%20Guide%20To%20BDSM%20For%20Beginners%20%7C%20Modgen&oE=1&oP=1&dT=2023-01-21T11%3A36%3A10.837&fu=0ce64878-07c9-4196-ac8b-b7c19ad223bc HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modgen.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 21 Jan 2023 11:36:11 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
set-cookie: aid=CkIDFWPLzisfRwtnx5wDAo6IhDKcKsK4pPWd3Ps/4icbjOS5; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
www.acint.net/mc/?dp=10
193.3.184.228302 Found 154 B IP 193.3.184.228:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /mc/?dp=10 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modgen.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 21 Jan 2023 11:36:11 GMT
content-type: text/html
content-length: 154
location: /mc/?dp=10&tc=1
set-cookie: test_cookie=CheckForPermission; path=/; Secure; SameSite=None; domain=.acint.net; expires=Sat, 21-Jan-23 11:46:11 GMT
aid=CkIDE2PLziuPEAggmQgbAnZI4ewViryebp98bvRop6OJ6bfF; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
a.utraff.com/sync?ssp=sape
172.67.217.151204 No Content 0 B URL HTTP/2 a.utraff.com/sync?ssp=sape
IP 172.67.217.151:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=sape HTTP/1.1
Host: a.utraff.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 21 Jan 2023 11:36:12 GMT
content-type: text/plain
set-cookie: preutid=1; Expires=Mon, 20 Feb 2023 14:36:11 GMT; Domain=.itraff.net; SameSite=None; Secure; Path=/
preutid=1; Expires=Mon, 20 Feb 2023 14:36:11 GMT; Domain=.utraff.com; SameSite=None; Secure; Path=/
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MQygpc5xGeQY7Fb7nG2vCkvmZGtFkUXPP%2Bhi8814LEHDmgr7e2KQGjkY3jUs0%2FFKXbk3%2Frjohh1Bq7Sgo0uxP129iMnUwxufg9lRNM57zRzEOzsoh7nSKZ%2Fz1NnS%2FfQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78cfc032dd62fab8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.acint.net/oci/?v=0.5.0&uid=094ed70e-4dc6-486d-9d68-d833dc1f6c1e&dp=10&tz=%2B00%3A00&nc=49040176&oid=39e8192718f4ed5a678fc273d654392b
193.3.184.228200 OK 43 B URL HTTP/2 www.acint.net/oci/?v=0.5.0&uid=094ed70e-4dc6-486d-9d68-d833dc1f6c1e&dp=10&tz=%2B00%3A00&nc=49040176&oid=39e8192718f4ed5a678fc273d654392b
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /oci/?v=0.5.0&uid=094ed70e-4dc6-486d-9d68-d833dc1f6c1e&dp=10&tz=%2B00%3A00&nc=49040176&oid=39e8192718f4ed5a678fc273d654392b HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modgen.net/
Cookie: aid=CkIDFWPLzisfRwtnx5wDAo6IhDKcKsK4pPWd3Ps/4icbjOS5; test_cookie=CheckForPermission; cSyncDp7v2=1674300971; cSyncDp14v3=1674300971; cSyncDp17=1674300971; cSyncDp32=1674300971; cSyncDp45v3=1674300971; cSyncDp53=1674300971; cSyncDp54v2=1674300971; cSyncDp62=1674300971; cSyncDp67v2=1674300971; cSyncDp68=1674300971; cSyncDp71=1674300971; cSyncDp77=1674300971; cSyncDp84=1674300971; cSyncDp85=1674300971; cSyncDp95v3=1674300971; cSyncDp101=1674300971; cSyncDp104v2=1674300971; cSyncDp107=1674300971; cSyncDp110=1674300971; cSyncDp111v2=1674300971; cSyncDp112v2=1674300971; cSyncDp125v2=1674300971; cSyncDp126=1674300971; cSyncDp127=1674300971; cSyncDp129=1674300971; cSyncDp136v2=1674300971; cSyncDp138=1674300971; cSyncDp146=1674300971; cSyncDp148=1674300971; cSyncDp149v2=1674300971; cSyncDp151=1674300971; cSyncDp178=1674300971; cSyncDp179=1674300971; cSyncDp186=1674300971; cSyncDp221=1674300971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 21 Jan 2023 11:36:11 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
dm-eu.hybrid.ai/match?id=106&vid=1503420A2BCECB63670B471F02039CC7
37.18.103.22204 No Content 0 B URL HTTP/2 dm-eu.hybrid.ai/match?id=106&vid=1503420A2BCECB63670B471F02039CC7
IP 37.18.103.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?id=106&vid=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: dm-eu.hybrid.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 21 Jan 2023 11:36:12 GMT
cache-control: no-cache, no-store
pragma: no-cache
expires: -1
set-cookie: vid=f6f92a7d441cebb8174a; Expires=Sun, 21 Jan 2024 11:36:11 GMT; Domain=.hybrid.ai; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC"
x-mode: 519
x-xss-protection: 1; mode=block
access-control-allow-origin: https://www.acint.net
access-control-allow-credentials: true
server: Hybrid Web Server
X-Firefox-Spdy: h2
lh3.googleusercontent.com/bkPY3nLy0OR9QFRxzkz7d6_KfgpWT1aK9ofKeS42m3CuacKosY8AJZbS9Bs2GN_k-jaLum-ukHtt955KF2dkRUYlds6aGwkTZbyS_WE1OpE5PB1J4Q4e55DrDqSBl5vn6fhvWImBfVOePnVBLURjIa5zq87nngfqH1NZnT4j4BNvq_EyA_Rxm0eoERk_4Q
142.250.74.97200 OK 752 kB URL HTTP/2 lh3.googleusercontent.com/bkPY3nLy0OR9QFRxzkz7d6_KfgpWT1aK9ofKeS42m3CuacKosY8AJZbS9Bs2GN_k-jaLum-ukHtt955KF2dkRUYlds6aGwkTZbyS_WE1OpE5PB1J4Q4e55DrDqSBl5vn6fhvWImBfVOePnVBLURjIa5zq87nngfqH1NZnT4j4BNvq_EyA_Rxm0eoERk_4Q
IP 142.250.74.97:0
File type PNG image data, 1084 x 567, 8-bit/color RGBA, non-interlaced\012- data
Size 752 kB (752413 bytes)
Hash 55165de4006a2cf3db117ac70342457e
b95987f31827c028b801e48692583925a40d7c3b
73b814d39ec4bf62a54524b083fe0498eaca5f62a4d5015ce8998941956c2035
GET /bkPY3nLy0OR9QFRxzkz7d6_KfgpWT1aK9ofKeS42m3CuacKosY8AJZbS9Bs2GN_k-jaLum-ukHtt955KF2dkRUYlds6aGwkTZbyS_WE1OpE5PB1J4Q4e55DrDqSBl5vn6fhvWImBfVOePnVBLURjIa5zq87nngfqH1NZnT4j4BNvq_EyA_Rxm0eoERk_4Q HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modgen.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sun, 22 Jan 2023 11:36:12 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="pasted image 0.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 21 Jan 2023 11:36:12 GMT
server: fife
content-length: 752413
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh6.googleusercontent.com/ul14pOrNJRujdM1d-e7G6snJoZ7Ca-zuYPe-cCgkmuEEnni8IzhMEycYLN5rrSf5N1U14cA96187728-GuE5fqFVaRQuZR_u5-FW6Y-m4eW6Ofl2gmKfkpuilzxFKSuCuV8CGUjucE98HEGU_KC5UVOjpO30OCwHa393QXLLwILsBmFs9guyAU5aCZyphQ
142.250.74.97200 OK 508 kB URL HTTP/2 lh6.googleusercontent.com/ul14pOrNJRujdM1d-e7G6snJoZ7Ca-zuYPe-cCgkmuEEnni8IzhMEycYLN5rrSf5N1U14cA96187728-GuE5fqFVaRQuZR_u5-FW6Y-m4eW6Ofl2gmKfkpuilzxFKSuCuV8CGUjucE98HEGU_KC5UVOjpO30OCwHa393QXLLwILsBmFs9guyAU5aCZyphQ
IP 142.250.74.97:0
File type PNG image data, 1080 x 566, 8-bit/color RGBA, non-interlaced\012- data
Size 508 kB (508385 bytes)
Hash 3d4a0450afab7b8befe2bc424f85a756
b26fc1f004516c3cfb4623d63e3b044fdfd5d4ed
73fa0778f87df60d0a20a9b435cd88545ef3d696e7089de8ead25d767f4b1e5a
GET /ul14pOrNJRujdM1d-e7G6snJoZ7Ca-zuYPe-cCgkmuEEnni8IzhMEycYLN5rrSf5N1U14cA96187728-GuE5fqFVaRQuZR_u5-FW6Y-m4eW6Ofl2gmKfkpuilzxFKSuCuV8CGUjucE98HEGU_KC5UVOjpO30OCwHa393QXLLwILsBmFs9guyAU5aCZyphQ HTTP/1.1
Host: lh6.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modgen.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sun, 22 Jan 2023 11:36:12 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="pasted image 0.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 21 Jan 2023 11:36:12 GMT
server: fife
content-length: 508385
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
sync.upravel.com/sape/sync
176.9.8.252302 Found 0 B URL HTTP/2 sync.upravel.com/sape/sync
IP 176.9.8.252:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/sync HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sat, 21 Jan 2023 11:36:12 GMT
content-type: image/png
content-length: 0
location: https://sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
set-cookie: session_tptc=1674300972208;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
session_tptc-legacy=1674300972208;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 9943ea6fc81128909c0064df7ccd2b13
321c8d0249618ffaa7f7cc7d3ad1cfd09c023d53
687f6212e05059a36e6cb9bf4e272fc80bc2e6faa98282a74ed2d5529092fdcd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "687F6212E05059A36E6CB9BF4E272FC80BC2E6FAA98282A74ED2D5529092FDCD"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4411
Expires: Sat, 21 Jan 2023 12:49:43 GMT
Date: Sat, 21 Jan 2023 11:36:12 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 77703d95589010020ffa7ffc4abbef43
6600d666e7b86003f6fb214c5e0dbe24f2fe4eb6
d2dff755c1ebc8e76be06928a46a9bbb029951cab2f8c44178976ff0aaa9f97b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2DFF755C1EBC8E76BE06928A46A9BBB029951CAB2F8C44178976FF0AAA9F97B"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18053
Expires: Sat, 21 Jan 2023 16:37:05 GMT
Date: Sat, 21 Jan 2023 11:36:12 GMT
Connection: keep-alive
lh6.googleusercontent.com/bdJtoyFI2kNbWFyTL3S0oBk9-ryNBeW3Uo4RPNGlpvPM1BNQYLSH6fRDklWFVrw-By7hE_bi_8MIrA87AYTKEY9UA4eyCHprMddLZg7w6ylQeJadBB6e6NYmGTxGwzUcZKJAxuDpsttM3oDLhRLRN4fnQHYmh7S_1KayWICmEOTqvy0SQD052aEDOjk69w
142.250.74.97200 OK 387 kB URL HTTP/2 lh6.googleusercontent.com/bdJtoyFI2kNbWFyTL3S0oBk9-ryNBeW3Uo4RPNGlpvPM1BNQYLSH6fRDklWFVrw-By7hE_bi_8MIrA87AYTKEY9UA4eyCHprMddLZg7w6ylQeJadBB6e6NYmGTxGwzUcZKJAxuDpsttM3oDLhRLRN4fnQHYmh7S_1KayWICmEOTqvy0SQD052aEDOjk69w
IP 142.250.74.97:0
File type PNG image data, 1080 x 565, 8-bit/color RGBA, non-interlaced\012- data
Size 387 kB (386717 bytes)
Hash 22247eaa83093751e7cd19f438720e8f
e321e35aab22a197ca40416d543f63f86df185e7
a806a8bab317f2e9be95534f332c89e9b3f17a85bbf8f6756dbbba325b0b3fd3
GET /bdJtoyFI2kNbWFyTL3S0oBk9-ryNBeW3Uo4RPNGlpvPM1BNQYLSH6fRDklWFVrw-By7hE_bi_8MIrA87AYTKEY9UA4eyCHprMddLZg7w6ylQeJadBB6e6NYmGTxGwzUcZKJAxuDpsttM3oDLhRLRN4fnQHYmh7S_1KayWICmEOTqvy0SQD052aEDOjk69w HTTP/1.1
Host: lh6.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modgen.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sun, 22 Jan 2023 11:36:12 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="pasted image 0.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 21 Jan 2023 11:36:12 GMT
server: fife
content-length: 386717
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 8b27fb1f20a10d9e9373381f470689ba
8b1f397924c468bfb9052fafdfe82e0de7f66bf1
7bb7fdc9de8838d9ca31732edf979b6c9d0dd20966438d8f480e435519406cbf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7BB7FDC9DE8838D9CA31732EDF979B6C9D0DD20966438D8F480E435519406CBF"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18622
Expires: Sat, 21 Jan 2023 16:46:34 GMT
Date: Sat, 21 Jan 2023 11:36:12 GMT
Connection: keep-alive
lh5.googleusercontent.com/w_jR9FZunkz1BB8_i1yB6ztJy2B3FAVT3wLgK0vQDbp-t7QaHSJ-nJwbIs-YM9sLbzn45lHUULq4dpD0nlcUHyxqmu1EboepcBq02AU_1bpRupHkc0yipNOowY97QYLrB9xWykVJOeaO4mRiAIcTvk0_aANFFravi4-YPfDev5q-BKLJN24WlWKUu1No8Q
142.250.74.97200 OK 586 kB URL HTTP/2 lh5.googleusercontent.com/w_jR9FZunkz1BB8_i1yB6ztJy2B3FAVT3wLgK0vQDbp-t7QaHSJ-nJwbIs-YM9sLbzn45lHUULq4dpD0nlcUHyxqmu1EboepcBq02AU_1bpRupHkc0yipNOowY97QYLrB9xWykVJOeaO4mRiAIcTvk0_aANFFravi4-YPfDev5q-BKLJN24WlWKUu1No8Q
IP 142.250.74.97:0
File type PNG image data, 1080 x 565, 8-bit/color RGBA, non-interlaced\012- data
Size 586 kB (585919 bytes)
Hash c87411fe12050f08fd1c04e3852d7aae
1c05156dcd73c9eb5115078396826dc2638f604e
f130b74697a673afec0c0b165d47ca0b9d8ec1df08e553e7f5e63134a60ca42e
GET /w_jR9FZunkz1BB8_i1yB6ztJy2B3FAVT3wLgK0vQDbp-t7QaHSJ-nJwbIs-YM9sLbzn45lHUULq4dpD0nlcUHyxqmu1EboepcBq02AU_1bpRupHkc0yipNOowY97QYLrB9xWykVJOeaO4mRiAIcTvk0_aANFFravi4-YPfDev5q-BKLJN24WlWKUu1No8Q HTTP/1.1
Host: lh5.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modgen.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sun, 22 Jan 2023 11:36:12 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="pasted image 0.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 21 Jan 2023 11:36:12 GMT
server: fife
content-length: 585919
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh6.googleusercontent.com/UUd6tElS4W4ry_GvCTdHWfKVq8ijkCGdNSgxTGysDAWqxGuPMCUuF7AoFa6tI2aZhgV8n_7ZL_HxRdD9Ly_oDPIkQ9dEN-Pe3SZ4YtUCowDM_XjvFiSoXkNJAzvBMyEfVTsJ8T81dlr3rxH1halICD7V33mbsVHAD_jYzhedLJxcw-zi9mdFeWBZjWysxA
142.250.74.97200 OK 580 kB URL HTTP/2 lh6.googleusercontent.com/UUd6tElS4W4ry_GvCTdHWfKVq8ijkCGdNSgxTGysDAWqxGuPMCUuF7AoFa6tI2aZhgV8n_7ZL_HxRdD9Ly_oDPIkQ9dEN-Pe3SZ4YtUCowDM_XjvFiSoXkNJAzvBMyEfVTsJ8T81dlr3rxH1halICD7V33mbsVHAD_jYzhedLJxcw-zi9mdFeWBZjWysxA
IP 142.250.74.97:0
File type PNG image data, 1081 x 566, 8-bit/color RGBA, non-interlaced\012- data
Size 580 kB (580305 bytes)
Hash e64c68e23ad0fdf87f87faf028226e7b
20cc12d239d55611d2e8e529f19a44ef4fbc5f43
00c1addc9fa3173fa243d103494239b7ec7d124a2c18efa0eca06b274b9a1101
GET /UUd6tElS4W4ry_GvCTdHWfKVq8ijkCGdNSgxTGysDAWqxGuPMCUuF7AoFa6tI2aZhgV8n_7ZL_HxRdD9Ly_oDPIkQ9dEN-Pe3SZ4YtUCowDM_XjvFiSoXkNJAzvBMyEfVTsJ8T81dlr3rxH1halICD7V33mbsVHAD_jYzhedLJxcw-zi9mdFeWBZjWysxA HTTP/1.1
Host: lh6.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modgen.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sun, 22 Jan 2023 11:36:12 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="pasted image 0.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 21 Jan 2023 11:36:12 GMT
server: fife
content-length: 580305
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.acint.net/oci.js?t=1674300970839
193.3.184.228200 OK 15 kB URL HTTP/2 www.acint.net/oci.js?t=1674300970839
IP 193.3.184.228:0
Hash 16ffeae491812c811d8d82e73ce7e9b3
01431010987ca7bbf69f09b8d265e84c972044e9
68a2b4a86953d59536fb36f6b602b598b8f57e9387bbff6f9c0c81bf8764f662
GET /oci.js?t=1674300970839 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modgen.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 21 Jan 2023 11:36:11 GMT
content-type: application/x-javascript
last-modified: Mon, 09 Jan 2023 08:01:14 GMT
etag: W/"63bbc9ca-7dac"
content-encoding: gzip
X-Firefox-Spdy: h2
sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
176.9.8.252302 Found 0 B URL HTTP/2 sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
IP 176.9.8.252:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0 HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: session_tptc=1674300972208
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Sat, 21 Jan 2023 11:36:12 GMT
content-type: image/png
content-length: 0
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: user_id=bd7eff70-b2bc-4c7f-8421-861a00820cc2;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
user_id-legacy=bd7eff70-b2bc-4c7f-8421-861a00820cc2;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
location: https://www.acint.net/match?dp=71&euid=bd7eff70-b2bc-4c7f-8421-861a00820cc2
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D
185.147.80.35302 Found 74 B URL HTTP/1.1 ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D
IP 185.147.80.35:0
File type HTML document, ASCII text
Hash ad65801ae28ee07705bd7a7b737719ed
cfbc0479399be057271a5cc4fab121e03c9387ed
1e53770b6c562a886452fdb3545a0cb9e7e94839c609050d51b3ad426694ae31
GET /sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D HTTP/1.1
Host: ssp.bestssp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.16.1
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 74
Connection: keep-alive
Location: https://www.acint.net/match?dp=95&euid=GRLOQXOP
Set-Cookie: uid=GRLOQXOP; Expires=Tue, 18 Jan 2033 11:36:12 GMT
sync.1dmp.io/pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1503420A2BCECB63670B471F02039CC7
136.243.148.229204 No Content 0 B URL HTTP/2 sync.1dmp.io/pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1503420A2BCECB63670B471F02039CC7
IP 136.243.148.229:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: sync.1dmp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Sat, 21 Jan 2023 11:36:12 GMT
X-Firefox-Spdy: h2
s.uuidksinc.net/match/396/?remote_uid=1503420A2BCECB63670B471F02039CC7
31.220.27.155302 Found 0 B URL HTTP/2 s.uuidksinc.net/match/396/?remote_uid=1503420A2BCECB63670B471F02039CC7
IP 31.220.27.155:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/396/?remote_uid=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: s.uuidksinc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx/1.19.0
date: Sat, 21 Jan 2023 11:36:12 GMT
content-length: 0
location: https://www.acint.net/match?dp=127&euid=Dqbq1GcOanGJwbfCJe9l
set-cookie: jcsuuid=Dqbq1GcOanGJwbfCJe9l; expires=Sun, 21 Jan 2024 11:36:12 GMT; domain=uuidksinc.net; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash c9ff5729c39d67a4281e7c72fd48830c
a458f8a6bea09f14880e0081007f2164ad906873
ad27328b5870615f5ea11fc87c9208aa86838bdf5a1c76507fdbb257824395f8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AD27328B5870615F5EA11FC87C9208AA86838BDF5A1C76507FDBB257824395F8"
Last-Modified: Sat, 21 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15925
Expires: Sat, 21 Jan 2023 16:01:37 GMT
Date: Sat, 21 Jan 2023 11:36:12 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 83c47178064b57c2b288520e26fb5051
f47f26d58381274ce8efca58244f79829ecb6f72
d01c1336adb8cde8052acab13cbdd89b40c92a33301f490148198f302a538741
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D01C1336ADB8CDE8052ACAB13CBDD89B40C92A33301F490148198F302A538741"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19486
Expires: Sat, 21 Jan 2023 17:00:58 GMT
Date: Sat, 21 Jan 2023 11:36:12 GMT
Connection: keep-alive
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.20.226:0
Hash 1a0d06631ed78b0a207c29e035002a49
c1f905b64e0fa4a4a843c9c9fc39ae976f4150d8
0579361ea961e718829686d0a1e3eb929c53f343e3a7a776e5b22f213df12f61
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Wed, 25 Jan 2023 10:25:37 GMT
ETag: "c1f905b64e0fa4a4a843c9c9fc39ae976f4150d8"
Last-Modified: Sat, 21 Jan 2023 10:25:38 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 686
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78cfc0356a8db51d-OSL
ocsp2.globalsign.com/gsalphasha2g2
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.20.226:0
Hash 1488eb6c4b7d7fb69c1ff6e132043388
f816051bfaf2aa14c659d021559ed953a2784cd1
d89881e2697bf2aa386ce0a1a0d1df325dfaa24bd7890953589f009690acbad7
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Wed, 25 Jan 2023 07:21:02 GMT
ETag: "f816051bfaf2aa14c659d021559ed953a2784cd1"
Last-Modified: Sat, 21 Jan 2023 07:21:03 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1462
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78cfc0358d79b4fd-OSL
lh6.googleusercontent.com/6n5MhEX6fvuuHLNnOq-E_frUCjl_tTYtEHEgK2sGMhu4F3d9fcjVFQ-yuHNg3J3K9a3HFYDLpbazMLj3Wxy5uilcNcp518C-1dHv-8QpD4kotT0FDnic0dTujy1IhMVB10k_tD_E5FNdZNBJFZqgV9eBdRbhmY7EbCjXs3Jb-K2RwCm0N5aQSjqIAx_2_w
142.250.74.97200 OK 726 kB URL HTTP/2 lh6.googleusercontent.com/6n5MhEX6fvuuHLNnOq-E_frUCjl_tTYtEHEgK2sGMhu4F3d9fcjVFQ-yuHNg3J3K9a3HFYDLpbazMLj3Wxy5uilcNcp518C-1dHv-8QpD4kotT0FDnic0dTujy1IhMVB10k_tD_E5FNdZNBJFZqgV9eBdRbhmY7EbCjXs3Jb-K2RwCm0N5aQSjqIAx_2_w
IP 142.250.74.97:0
File type PNG image data, 1083 x 563, 8-bit/color RGBA, non-interlaced\012- data
Size 726 kB (726465 bytes)
Hash 2eb1a44f988b8d94f76a1269628c7879
a939f3c09eca32b89687d8e5b4d84f13d539d9d5
ca3cc984aae89d6bda343a871542ad8898c5191290ddb49bc47d2ffdc3dbfd60
GET /6n5MhEX6fvuuHLNnOq-E_frUCjl_tTYtEHEgK2sGMhu4F3d9fcjVFQ-yuHNg3J3K9a3HFYDLpbazMLj3Wxy5uilcNcp518C-1dHv-8QpD4kotT0FDnic0dTujy1IhMVB10k_tD_E5FNdZNBJFZqgV9eBdRbhmY7EbCjXs3Jb-K2RwCm0N5aQSjqIAx_2_w HTTP/1.1
Host: lh6.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modgen.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sun, 22 Jan 2023 11:36:12 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="pasted image 0.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 21 Jan 2023 11:36:12 GMT
server: fife
content-length: 726465
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 39257c59af5caa4ae9e8ebc8ebbfb857
12ff928c40a03c3b363bcba594c0ed9f425f5408
106f302ce5ce5f501969dd50118597490bdf99d5d332a9220386aa5bd8cb05e0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "106F302CE5CE5F501969DD50118597490BDF99D5D332A9220386AA5BD8CB05E0"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11161
Expires: Sat, 21 Jan 2023 14:42:13 GMT
Date: Sat, 21 Jan 2023 11:36:12 GMT
Connection: keep-alive
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 00075bdbb023bd2868b245148a5e46b4
65585510874ff3738fb34fb4d8002887f71435fd
70dd5623503c3e3a0688f139e4610f7551d17011a9cadcf23378638625095176
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 21 Jan 2023 03:41:02 GMT
Expires: Sat, 28 Jan 2023 03:41:01 GMT
Etag: "65585510874ff3738fb34fb4d8002887f71435fd"
Cache-Control: max-age=575688,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78cfc0356bc6fac0-OSL
www.acint.net/match?dp=95&euid=GRLOQXOP
193.3.184.228200 OK 43 B URL HTTP/2 www.acint.net/match?dp=95&euid=GRLOQXOP
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=95&euid=GRLOQXOP HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDFWPLzisfRwtnx5wDAo6IhDKcKsK4pPWd3Ps/4icbjOS5; test_cookie=CheckForPermission; cSyncDp7v2=1674300971; cSyncDp14v3=1674300971; cSyncDp17=1674300971; cSyncDp32=1674300971; cSyncDp45v3=1674300971; cSyncDp53=1674300971; cSyncDp54v2=1674300971; cSyncDp62=1674300971; cSyncDp67v2=1674300971; cSyncDp68=1674300971; cSyncDp71=1674300971; cSyncDp77=1674300971; cSyncDp84=1674300971; cSyncDp85=1674300971; cSyncDp95v3=1674300971; cSyncDp101=1674300971; cSyncDp104v2=1674300971; cSyncDp107=1674300971; cSyncDp110=1674300971; cSyncDp111v2=1674300971; cSyncDp112v2=1674300971; cSyncDp125v2=1674300971; cSyncDp126=1674300971; cSyncDp127=1674300971; cSyncDp129=1674300971; cSyncDp136v2=1674300971; cSyncDp138=1674300971; cSyncDp146=1674300971; cSyncDp148=1674300971; cSyncDp149v2=1674300971; cSyncDp151=1674300971; cSyncDp178=1674300971; cSyncDp179=1674300971; cSyncDp186=1674300971; cSyncDp221=1674300971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 21 Jan 2023 11:36:12 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
www.acint.net/match?dp=71&euid=bd7eff70-b2bc-4c7f-8421-861a00820cc2
193.3.184.228200 OK 43 B URL HTTP/2 www.acint.net/match?dp=71&euid=bd7eff70-b2bc-4c7f-8421-861a00820cc2
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=71&euid=bd7eff70-b2bc-4c7f-8421-861a00820cc2 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDFWPLzisfRwtnx5wDAo6IhDKcKsK4pPWd3Ps/4icbjOS5; test_cookie=CheckForPermission; cSyncDp7v2=1674300971; cSyncDp14v3=1674300971; cSyncDp17=1674300971; cSyncDp32=1674300971; cSyncDp45v3=1674300971; cSyncDp53=1674300971; cSyncDp54v2=1674300971; cSyncDp62=1674300971; cSyncDp67v2=1674300971; cSyncDp68=1674300971; cSyncDp71=1674300971; cSyncDp77=1674300971; cSyncDp84=1674300971; cSyncDp85=1674300971; cSyncDp95v3=1674300971; cSyncDp101=1674300971; cSyncDp104v2=1674300971; cSyncDp107=1674300971; cSyncDp110=1674300971; cSyncDp111v2=1674300971; cSyncDp112v2=1674300971; cSyncDp125v2=1674300971; cSyncDp126=1674300971; cSyncDp127=1674300971; cSyncDp129=1674300971; cSyncDp136v2=1674300971; cSyncDp138=1674300971; cSyncDp146=1674300971; cSyncDp148=1674300971; cSyncDp149v2=1674300971; cSyncDp151=1674300971; cSyncDp178=1674300971; cSyncDp179=1674300971; cSyncDp186=1674300971; cSyncDp221=1674300971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 21 Jan 2023 11:36:12 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
www.acint.net/match?dp=127&euid=Dqbq1GcOanGJwbfCJe9l
193.3.184.228200 OK 43 B URL HTTP/2 www.acint.net/match?dp=127&euid=Dqbq1GcOanGJwbfCJe9l
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=127&euid=Dqbq1GcOanGJwbfCJe9l HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDFWPLzisfRwtnx5wDAo6IhDKcKsK4pPWd3Ps/4icbjOS5; test_cookie=CheckForPermission; cSyncDp7v2=1674300971; cSyncDp14v3=1674300971; cSyncDp17=1674300971; cSyncDp32=1674300971; cSyncDp45v3=1674300971; cSyncDp53=1674300971; cSyncDp54v2=1674300971; cSyncDp62=1674300971; cSyncDp67v2=1674300971; cSyncDp68=1674300971; cSyncDp71=1674300971; cSyncDp77=1674300971; cSyncDp84=1674300971; cSyncDp85=1674300971; cSyncDp95v3=1674300971; cSyncDp101=1674300971; cSyncDp104v2=1674300971; cSyncDp107=1674300971; cSyncDp110=1674300971; cSyncDp111v2=1674300971; cSyncDp112v2=1674300971; cSyncDp125v2=1674300971; cSyncDp126=1674300971; cSyncDp127=1674300971; cSyncDp129=1674300971; cSyncDp136v2=1674300971; cSyncDp138=1674300971; cSyncDp146=1674300971; cSyncDp148=1674300971; cSyncDp149v2=1674300971; cSyncDp151=1674300971; cSyncDp178=1674300971; cSyncDp179=1674300971; cSyncDp186=1674300971; cSyncDp221=1674300971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 21 Jan 2023 11:36:12 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
1503420a2bcecb63670b471f02039cc7-sp.ops.beeline.ru/p?ssp=sp&id=1503420A2BCECB63670B471F02039CC7
37.9.245.57301 Moved Permanently 0 B URL HTTP/2 1503420a2bcecb63670b471f02039cc7-sp.ops.beeline.ru/p?ssp=sp&id=1503420A2BCECB63670B471F02039CC7
IP 37.9.245.57:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=sp&id=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: 1503420a2bcecb63670b471f02039cc7-sp.ops.beeline.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 21 Jan 2023 11:36:12 GMT
content-length: 0
location: https://www.acint.net/match?dp=111&euid=0fd082a2-6c80-4844-9ba7-1f7e07e3ba96
access-control-allow-origin: *
cache-control: no-store, no-cache, must-revalidate
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: BeeAID=0fd082a2-6c80-4844-9ba7-1f7e07e3ba96; expires=Fri, 12 Jan 2024 11:36:12 GMT; domain=ops.beeline.ru; path=/; secure; SameSite=None
access-control-allow-credentials: true, true
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS, GET, HEAD, POST, OPTIONS, PUT, DELETE
access-control-allow-headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
x-route: http://upstream_cookiesync
x-host: 192.168.152.62
X-Firefox-Spdy: h2
sync.republer.com/match?dsp=sape
23.88.82.46204 No Content 0 B URL HTTP/2 sync.republer.com/match?dsp=sape
IP 23.88.82.46:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?dsp=sape HTTP/1.1
Host: sync.republer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Sat, 21 Jan 2023 11:36:12 GMT
strict-transport-security: max-age=0
X-Firefox-Spdy: h2
sync.dmp.otm-r.com/match/sape?id=1503420A2BCECB63670B471F02039CC7
194.55.244.183204 No Content 0 B URL HTTP/2 sync.dmp.otm-r.com/match/sape?id=1503420A2BCECB63670B471F02039CC7
IP 194.55.244.183:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/sape?id=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx/1.23.2
date: Sat, 21 Jan 2023 11:36:12 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
acint.net/match?dp=14&euid=2A03420A2CCECB633F001C9D023192B7
193.3.184.228200 OK 43 B URL HTTP/2 acint.net/match?dp=14&euid=2A03420A2CCECB633F001C9D023192B7
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=14&euid=2A03420A2CCECB633F001C9D023192B7 HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDFWPLzisfRwtnx5wDAo6IhDKcKsK4pPWd3Ps/4icbjOS5; test_cookie=CheckForPermission; cSyncDp7v2=1674300971; cSyncDp14v3=1674300971; cSyncDp17=1674300971; cSyncDp32=1674300971; cSyncDp45v3=1674300971; cSyncDp53=1674300971; cSyncDp54v2=1674300971; cSyncDp62=1674300971; cSyncDp67v2=1674300971; cSyncDp68=1674300971; cSyncDp71=1674300971; cSyncDp77=1674300971; cSyncDp84=1674300971; cSyncDp85=1674300971; cSyncDp95v3=1674300971; cSyncDp101=1674300971; cSyncDp104v2=1674300971; cSyncDp107=1674300971; cSyncDp110=1674300971; cSyncDp111v2=1674300971; cSyncDp112v2=1674300971; cSyncDp125v2=1674300971; cSyncDp126=1674300971; cSyncDp127=1674300971; cSyncDp129=1674300971; cSyncDp136v2=1674300971; cSyncDp138=1674300971; cSyncDp146=1674300971; cSyncDp148=1674300971; cSyncDp149v2=1674300971; cSyncDp151=1674300971; cSyncDp178=1674300971; cSyncDp179=1674300971; cSyncDp186=1674300971; cSyncDp221=1674300971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 21 Jan 2023 11:36:12 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
acint.net/match?dp=110&euid=abe8aa0eedda44ed98067a44a4251b3d
193.3.184.228200 OK 43 B URL HTTP/2 acint.net/match?dp=110&euid=abe8aa0eedda44ed98067a44a4251b3d
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=110&euid=abe8aa0eedda44ed98067a44a4251b3d HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDFWPLzisfRwtnx5wDAo6IhDKcKsK4pPWd3Ps/4icbjOS5; test_cookie=CheckForPermission; cSyncDp7v2=1674300971; cSyncDp14v3=1674300971; cSyncDp17=1674300971; cSyncDp32=1674300971; cSyncDp45v3=1674300971; cSyncDp53=1674300971; cSyncDp54v2=1674300971; cSyncDp62=1674300971; cSyncDp67v2=1674300971; cSyncDp68=1674300971; cSyncDp71=1674300971; cSyncDp77=1674300971; cSyncDp84=1674300971; cSyncDp85=1674300971; cSyncDp95v3=1674300971; cSyncDp101=1674300971; cSyncDp104v2=1674300971; cSyncDp107=1674300971; cSyncDp110=1674300971; cSyncDp111v2=1674300971; cSyncDp112v2=1674300971; cSyncDp125v2=1674300971; cSyncDp126=1674300971; cSyncDp127=1674300971; cSyncDp129=1674300971; cSyncDp136v2=1674300971; cSyncDp138=1674300971; cSyncDp146=1674300971; cSyncDp148=1674300971; cSyncDp149v2=1674300971; cSyncDp151=1674300971; cSyncDp178=1674300971; cSyncDp179=1674300971; cSyncDp186=1674300971; cSyncDp221=1674300971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 21 Jan 2023 11:36:12 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b6b06a47d5f35483956c51ae6b96af06
e49f5f703895b470f0afafe0d2182f0f49383b2c
b14f34188f8acb034cc830f2fb93521063d1089be92f0fac7b3e306d54ea8944
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stat.adlabs.ru/merge_gpsid/?sid=50&id=1503420A2BCECB63670B471F02039CC7
109.248.237.37302 Found 0 B URL HTTP/2 stat.adlabs.ru/merge_gpsid/?sid=50&id=1503420A2BCECB63670B471F02039CC7
IP 109.248.237.37:0
ASN #201009 Centre of server systems Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /merge_gpsid/?sid=50&id=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: stat.adlabs.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sat, 21 Jan 2023 11:36:12 GMT
content-length: 0
location: //adlmerge.com/merge_gpsid/?sid=50&id=1503420A2BCECB63670B471F02039CC7
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b6b06a47d5f35483956c51ae6b96af06
e49f5f703895b470f0afafe0d2182f0f49383b2c
b14f34188f8acb034cc830f2fb93521063d1089be92f0fac7b3e306d54ea8944
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ut.rktch.com/matchspm?pi=1000005&pui=1503420A2BCECB63670B471F02039CC7
89.108.97.2302 Found 0 B URL HTTP/1.1 ut.rktch.com/matchspm?pi=1000005&pui=1503420A2BCECB63670B471F02039CC7
IP 89.108.97.2:0
ASN #197695 Domain names registrar REG.RU, Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /matchspm?pi=1000005&pui=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: ut.rktch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.22.0
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Length: 0
Connection: keep-alive
location: https://redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D{WEBO_CID}%26noredirect
Set-Cookie: b_uid=33e015b30ce631e906f400b93305598df15a; Max-Age=2592000; Expires=Mon, 20 Feb 2023 11:36:12 GMT; Domain=rktch.com; Secure; SameSite=None
Access-Control-Allow-Methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
Access-Control-Allow-Headers: Content-Type, Accept, Authorization
Access-Control-Allow-Credentials: true
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 6c6367952de33175a6ac9e40d0b98938
db5c1e8c4ed9b72a02ef01cfdf96d8392f8529fe
dc7340aed99bf6edee2feae79ae67ab82fc3236f208c687650188aacdaa40b1f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 18 Jan 2023 23:26:43 GMT
Expires: Wed, 25 Jan 2023 23:26:42 GMT
Etag: "db5c1e8c4ed9b72a02ef01cfdf96d8392f8529fe"
Cache-Control: max-age=387629,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78cfc0359fb5fab8-OSL
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash a618971ebc90b5698ddbabc4637e3345
f920b73a7c9b57d77194ba8ba406664d8469b6b6
f7c66c647552a10c53d758e1eedd450226c969b0001a25a616773d57f10e16bf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7C66C647552A10C53D758E1EEDD450226C969B0001A25A616773D57F10E16BF"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11786
Expires: Sat, 21 Jan 2023 14:52:38 GMT
Date: Sat, 21 Jan 2023 11:36:12 GMT
Connection: keep-alive
exchange.buzzoola.com/cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D
167.235.33.115301 Moved Permanently 115 B URL HTTP/2 exchange.buzzoola.com/cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D
IP 167.235.33.115:0
ASN #24940 Hetzner Online GmbH
File type HTML document, ASCII text
Hash 0e76712bd235de7adf4b6aeda9c121dd
73a31fefdb72421331596fd3f6eabfab27b7fee1
76dc89267355a9252c5578c6ab0316448582b11fae1c2b2d533c19e11b0c9c91
GET /cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 21 Jan 2023 11:36:12 GMT
content-type: text/html; charset=utf-8
content-length: 115
location: https://www.acint.net/match?dp=126&euid=bacc3cef-a197-414a-4f46-aae072453d9b
serverid: TODO
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash a618971ebc90b5698ddbabc4637e3345
f920b73a7c9b57d77194ba8ba406664d8469b6b6
f7c66c647552a10c53d758e1eedd450226c969b0001a25a616773d57f10e16bf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7C66C647552A10C53D758E1EEDD450226C969B0001A25A616773D57F10E16BF"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11786
Expires: Sat, 21 Jan 2023 14:52:38 GMT
Date: Sat, 21 Jan 2023 11:36:12 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa19e2681-f167-4577-b7db-9afc7bd1ccf2.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa19e2681-f167-4577-b7db-9afc7bd1ccf2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d3af2d51fb89ef0261ba025d76169261
9b3f4e3f63b64030624e02ad6ab8ef43a676dd66
c3d5a6f829dc59db8ed27a92fcfc6d387633bb43388e2c19d68b89356a13b1cf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa19e2681-f167-4577-b7db-9afc7bd1ccf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13812
x-amzn-requestid: 7e3de1bc-a850-4a6e-891c-094996ee4a76
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fAmw2HldoAMF-Ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c9b805-5443ffce123461b44b9815b2;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 21:37:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: EUm5z7VSHRCILWZmLR5u_EuVtfVDerCwgAO7R19fDJZqYmsPa6Vz3Q==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 22:05:54 GMT
age: 48618
etag: "9b3f4e3f63b64030624e02ad6ab8ef43a676dd66"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash e475ae80b6e13ce089342876fb13ebf6
5d88a81da439ad896fd26b0fefefd84d656a1e82
e10eb1ad7816d2f01898faa00634b625c520465bac94637516847e86bf044225
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E10EB1AD7816D2F01898FAA00634B625C520465BAC94637516847E86BF044225"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11095
Expires: Sat, 21 Jan 2023 14:41:07 GMT
Date: Sat, 21 Jan 2023 11:36:12 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash e475ae80b6e13ce089342876fb13ebf6
5d88a81da439ad896fd26b0fefefd84d656a1e82
e10eb1ad7816d2f01898faa00634b625c520465bac94637516847e86bf044225
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E10EB1AD7816D2F01898FAA00634B625C520465BAC94637516847E86BF044225"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7229
Expires: Sat, 21 Jan 2023 13:36:41 GMT
Date: Sat, 21 Jan 2023 11:36:12 GMT
Connection: keep-alive
www.acint.net/match?dp=111&euid=0fd082a2-6c80-4844-9ba7-1f7e07e3ba96
193.3.184.228200 OK 43 B URL HTTP/2 www.acint.net/match?dp=111&euid=0fd082a2-6c80-4844-9ba7-1f7e07e3ba96
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=111&euid=0fd082a2-6c80-4844-9ba7-1f7e07e3ba96 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDFWPLzisfRwtnx5wDAo6IhDKcKsK4pPWd3Ps/4icbjOS5; test_cookie=CheckForPermission; cSyncDp7v2=1674300971; cSyncDp14v3=1674300971; cSyncDp17=1674300971; cSyncDp32=1674300971; cSyncDp45v3=1674300971; cSyncDp53=1674300971; cSyncDp54v2=1674300971; cSyncDp62=1674300971; cSyncDp67v2=1674300971; cSyncDp68=1674300971; cSyncDp71=1674300971; cSyncDp77=1674300971; cSyncDp84=1674300971; cSyncDp85=1674300971; cSyncDp95v3=1674300971; cSyncDp101=1674300971; cSyncDp104v2=1674300971; cSyncDp107=1674300971; cSyncDp110=1674300971; cSyncDp111v2=1674300971; cSyncDp112v2=1674300971; cSyncDp125v2=1674300971; cSyncDp126=1674300971; cSyncDp127=1674300971; cSyncDp129=1674300971; cSyncDp136v2=1674300971; cSyncDp138=1674300971; cSyncDp146=1674300971; cSyncDp148=1674300971; cSyncDp149v2=1674300971; cSyncDp151=1674300971; cSyncDp178=1674300971; cSyncDp179=1674300971; cSyncDp186=1674300971; cSyncDp221=1674300971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 21 Jan 2023 11:36:12 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f99971c-1473-40a1-8c51-d03ce30e94e6.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f99971c-1473-40a1-8c51-d03ce30e94e6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 868be33d3c4e2c509093599072ce6dc7
50d61f7462a41c8afe83f0beb00eb12d6d09bc5f
d698c324af46805e945d7d7a8a991ed032bfafa4014962edbb7b1d6a30eee4fd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f99971c-1473-40a1-8c51-d03ce30e94e6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11158
x-amzn-requestid: 8aef6294-7a98-4ced-b066-4a286dd7159f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: exb1HEVwoAMFWyg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c3a686-3252cc374b3ac7237f3b6b8d;Sampled=0
x-amzn-remapped-date: Sun, 15 Jan 2023 07:08:54 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: OQXPHaQhhuBxrUIT-qn6lSqieXcmM8c-1l-quG9cW844L2I65TTbBw==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 15:56:56 GMT
age: 70756
etag: "50d61f7462a41c8afe83f0beb00eb12d6d09bc5f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mediatoday.ru/core/match.gif?s=32&id=1503420A2BCECB63670B471F02039CC7
139.45.228.100200 OK 43 B URL HTTP/2 mediatoday.ru/core/match.gif?s=32&id=1503420A2BCECB63670B471F02039CC7
IP 139.45.228.100:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /core/match.gif?s=32&id=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: mediatoday.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.20.2
date: Sat, 21 Jan 2023 11:36:12 GMT
content-type: image/gif
content-length: 43
p3p: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA
cache-control: no-cache, max-age=0, must-revalidate, no-store
pragma: no-cache
expires: Thursday, 01-Jan-1970 00:00:00 GMT
set-cookie: idntfy=VUBYdE1aG7w47rK; expires=Tue, 18-Jan-2033 11:36:12 GMT; domain=mediatoday.ru; path=/core; SameSite=None; Secure
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb7874784-b02c-447d-8e16-f063fdd288aa.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb7874784-b02c-447d-8e16-f063fdd288aa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e3fd5bf2e8d88fed518583666d68bfe
69343cd051d27b517a7ea167cd6f755fbbc3bd98
923b733f5f44b8cd69b604d37dd1f1f12035e37a2c9835d77a5b6970ab2f3d69
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb7874784-b02c-447d-8e16-f063fdd288aa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7435
x-amzn-requestid: f717c884-7d70-4635-88a9-2a2413ff1448
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6xJkGe2oAMFdYg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c7623d-04021c3978618c584fc8c830;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 03:06:37 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8iyrTr5fUucanswzT8czlH2op2twCih3ufvZxdd5moT9802Fe5tfKg==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 09:10:16 GMT
age: 8756
etag: "69343cd051d27b517a7ea167cd6f755fbbc3bd98"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
dmp.gotechnology.io/match/sape?id=1503420A2BCECB63670B471F02039CC7
167.235.32.7302 Found 0 B URL HTTP/2 dmp.gotechnology.io/match/sape?id=1503420A2BCECB63670B471F02039CC7
IP 167.235.32.7:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/sape?id=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: dmp.gotechnology.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sat, 21 Jan 2023 11:36:12 GMT
content-length: 0
location: https://dmp.gotechnology.io/match/sape?id=1503420A2BCECB63670B471F02039CC7&chk=1
set-cookie: chk=1; path=/; secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7616632f-cfb4-4f45-819d-1970213c1ca5.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7616632f-cfb4-4f45-819d-1970213c1ca5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 62d64384cabb3ee773d9baa88c9fa9f5
3457882213a7c2d2ec863d75cf629ae4fe320092
7adc5cd3cc8a30b5c45c2995b27daf66fcf95280a4f5feaa46e559da464c75be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7616632f-cfb4-4f45-819d-1970213c1ca5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9669
x-amzn-requestid: d57517dd-07b7-4477-996d-5cb159f1e608
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: euIvoHVNIAMFVWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c254ca-2737608463cd6cd160497e42;Sampled=0
x-amzn-remapped-date: Sat, 14 Jan 2023 07:07:54 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: q29sVPPuKPCG6Q6jhlrnm79kQvNCAC2u36O1eNorlq8sGf7WoZYRRw==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 23:33:45 GMT
age: 43347
etag: "3457882213a7c2d2ec863d75cf629ae4fe320092"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
lh6.googleusercontent.com/REfu1Wqlodl6hSkxsbZcLPkbfbFcEh6d-RcP6zZtwMl1_9ZYruqzlm3De-9A_pWhXnmhvt_ocy3O9uNd4rUavFBkilvVK3Zl-D50hqnhME8IoBmykC0Xir3bdDmTIU5MFYDHGA4tVPRSioQdM45LqxCVNHUj2oYmYDFiTaolzmc-zA_WXEAZ0fO9Czcmrg
142.250.74.97200 OK 712 kB URL HTTP/2 lh6.googleusercontent.com/REfu1Wqlodl6hSkxsbZcLPkbfbFcEh6d-RcP6zZtwMl1_9ZYruqzlm3De-9A_pWhXnmhvt_ocy3O9uNd4rUavFBkilvVK3Zl-D50hqnhME8IoBmykC0Xir3bdDmTIU5MFYDHGA4tVPRSioQdM45LqxCVNHUj2oYmYDFiTaolzmc-zA_WXEAZ0fO9Czcmrg
IP 142.250.74.97:0
File type PNG image data, 1083 x 567, 8-bit/color RGBA, non-interlaced\012- data
Size 712 kB (711915 bytes)
Hash 05249de996ff08980d41f3a7f6020583
16d7de510315d2ac0dc4fe865daf7ef43d664f60
710a5669836acb5750165d4099a07013689eaf588ff5c4c6104afe7a7f46b5aa
GET /REfu1Wqlodl6hSkxsbZcLPkbfbFcEh6d-RcP6zZtwMl1_9ZYruqzlm3De-9A_pWhXnmhvt_ocy3O9uNd4rUavFBkilvVK3Zl-D50hqnhME8IoBmykC0Xir3bdDmTIU5MFYDHGA4tVPRSioQdM45LqxCVNHUj2oYmYDFiTaolzmc-zA_WXEAZ0fO9Czcmrg HTTP/1.1
Host: lh6.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modgen.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sun, 22 Jan 2023 11:36:12 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="pasted image 0.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 21 Jan 2023 11:36:12 GMT
server: fife
content-length: 711915
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5a7ab95a69ddfa5014258076e66a6e19
1a54cca86788536002d6d18c5180ccf265ba1169
09348afd6055b26b5dba6f8f6ef763d52e6e040c039c6f763d64f71b8ca08d51
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10988
x-amzn-requestid: 67c03c6c-3896-4890-a75b-ecd7c1c1a4e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3foHG8tIAMF3XQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61300-2de17e5b0225f9427c197bc5;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: cxuHpm9vR0_DvHdEtR5p5eRRNAFgCrOTnak0RsH3OeCccehhurKhJA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 01:38:03 GMT
age: 35889
etag: "1a54cca86788536002d6d18c5180ccf265ba1169"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
nr.bidderstack.com/sape/cm?user_id=1503420A2BCECB63670B471F02039CC7
23.88.12.14200 OK 44 B URL HTTP/1.1 nr.bidderstack.com/sape/cm?user_id=1503420A2BCECB63670B471F02039CC7
IP 23.88.12.14:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash f9d60352c70a2ba15616d1c9421f3844
e9abc8bea7721a4b6a50295850d13c515006a95c
82cb517a8f80c91dfcec543c6d140deb3baaf463ea9e77655475096eba7bc7d9
GET /sape/cm?user_id=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: nr.bidderstack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Type: image/gif
Content-Length: 44
Connection: keep-alive
Access-Control-Allow-Credentials: true
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02d903ef-00fc-4f25-8b4f-138ec32359bf.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02d903ef-00fc-4f25-8b4f-138ec32359bf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 893ea518ea7c11ec06ffea60b2ee7921
34675a13bbac6abd1b087e546425e141215cf072
675ec12ed5803fad5036cedc1a3b66229316836bb321b4ad3a34aab56a100ca7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02d903ef-00fc-4f25-8b4f-138ec32359bf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8698
x-amzn-requestid: 97c3bd04-2d8a-447e-85cb-376ea44b283c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0K85GOQIAMFbPw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4beb8-5b6517906d2f8bad6488e6f8;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:04:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: reROJ7ha0LKGWpSMN0ioNVaIrIEhJUn_cfprHVZlfyY7jBoFyKh0rw==
via: 1.1 c9b161639a9353c2354b895548ea9fca.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 13:48:55 GMT
age: 78437
etag: "34675a13bbac6abd1b087e546425e141215cf072"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.acint.net/match?dp=129&euid=erpthaiv9a
193.3.184.228200 OK 43 B URL HTTP/2 www.acint.net/match?dp=129&euid=erpthaiv9a
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=129&euid=erpthaiv9a HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDFWPLzisfRwtnx5wDAo6IhDKcKsK4pPWd3Ps/4icbjOS5; test_cookie=CheckForPermission; cSyncDp7v2=1674300971; cSyncDp14v3=1674300971; cSyncDp17=1674300971; cSyncDp32=1674300971; cSyncDp45v3=1674300971; cSyncDp53=1674300971; cSyncDp54v2=1674300971; cSyncDp62=1674300971; cSyncDp67v2=1674300971; cSyncDp68=1674300971; cSyncDp71=1674300971; cSyncDp77=1674300971; cSyncDp84=1674300971; cSyncDp85=1674300971; cSyncDp95v3=1674300971; cSyncDp101=1674300971; cSyncDp104v2=1674300971; cSyncDp107=1674300971; cSyncDp110=1674300971; cSyncDp111v2=1674300971; cSyncDp112v2=1674300971; cSyncDp125v2=1674300971; cSyncDp126=1674300971; cSyncDp127=1674300971; cSyncDp129=1674300971; cSyncDp136v2=1674300971; cSyncDp138=1674300971; cSyncDp146=1674300971; cSyncDp148=1674300971; cSyncDp149v2=1674300971; cSyncDp151=1674300971; cSyncDp178=1674300971; cSyncDp179=1674300971; cSyncDp186=1674300971; cSyncDp221=1674300971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 21 Jan 2023 11:36:12 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
sync.bumlam.com/?src=sap1&uid=1503420A2BCECB63670B471F02039CC7
31.172.81.160302 Moved Temporarily 0 B URL HTTP/1.1 sync.bumlam.com/?src=sap1&uid=1503420A2BCECB63670B471F02039CC7
IP 31.172.81.160:0
ASN #44066 diva-e Datacenters GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sap1&uid=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiRjZWFhOWFiNi05OTdmLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*; Path=/; Expires=Fri, 16 Jan 2043 11:36:12 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: //sync.bumlam.com/?src=sap1&s_data=CAIQARisnK-eBmIgMTUwMzQyMEEyQkNFQ0I2MzY3MEI0NzFGMDIwMzlDQzeiARDOqpq2mX8R7aHEACWQyCQ3
ETag: ceaa9ab6-997f-11ed-a1c4-002590c82437
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
pix.bumlam.com/sync/sape/check?sspuid=1503420A2BCECB63670B471F02039CC7
31.172.81.160302 Found 0 B URL HTTP/1.1 pix.bumlam.com/sync/sape/check?sspuid=1503420A2BCECB63670B471F02039CC7
IP 31.172.81.160:0
ASN #44066 diva-e Datacenters GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/sape/check?sspuid=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://sync.bumlam.com/?src=sape
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 3b0cf21b7f27c78c3dad993451e83b06
6a8cdef9409854ebfb3e86d13abea5c7a88d7757
8d10eae0064785a037fc47b6fdf941f41f310f5804dd1b92eefb52bd2978a766
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8D10EAE0064785A037FC47B6FDF941F41F310F5804DD1B92EEFB52BD2978A766"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16443
Expires: Sat, 21 Jan 2023 16:10:15 GMT
Date: Sat, 21 Jan 2023 11:36:12 GMT
Connection: keep-alive
dmp.gotechnology.io/match/sape?id=1503420A2BCECB63670B471F02039CC7&chk=1
167.235.32.7302 Found 0 B URL HTTP/2 dmp.gotechnology.io/match/sape?id=1503420A2BCECB63670B471F02039CC7&chk=1
IP 167.235.32.7:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/sape?id=1503420A2BCECB63670B471F02039CC7&chk=1 HTTP/1.1
Host: dmp.gotechnology.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: chk=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Sat, 21 Jan 2023 11:36:12 GMT
content-length: 0
location: https://an.yandex.ru/mapuid/gonetdspis/Njk3YzYwYjIxODExNDZiOA
set-cookie: pid=Njk3YzYwYjIxODExNDZiOA; expires=Sun, 21 Jan 2024 11:36:12 GMT; domain=.gotechnology.io; path=/; secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash e00449cf9936e8bfa4546164c4bb5d7a
7d4ec95347bd9fcbe489cc7ec6b1692c50dcb5ce
2dc9d68484e2dd015f8f2f225660d8bd4bf552bdcf9d46558ee3183a0309d733
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2DC9D68484E2DD015F8F2F225660D8BD4BF552BDCF9D46558EE3183A0309D733"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17254
Expires: Sat, 21 Jan 2023 16:23:46 GMT
Date: Sat, 21 Jan 2023 11:36:12 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 6d1edf07cfc008206ce837f6c3fb257f
6fae03b1d3305a4e671b8ab2af47bcb3176d0264
bef2fc9effc8a7c97bf2cbf1abcf15c407164dc779a70541ecd20262d60a6cc8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BEF2FC9EFFC8A7C97BF2CBF1ABCF15C407164DC779A70541ECD20262D60A6CC8"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10724
Expires: Sat, 21 Jan 2023 14:34:56 GMT
Date: Sat, 21 Jan 2023 11:36:12 GMT
Connection: keep-alive
www.acint.net/match?dp=126&euid=bacc3cef-a197-414a-4f46-aae072453d9b
193.3.184.228200 OK 43 B URL HTTP/2 www.acint.net/match?dp=126&euid=bacc3cef-a197-414a-4f46-aae072453d9b
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=126&euid=bacc3cef-a197-414a-4f46-aae072453d9b HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDFWPLzisfRwtnx5wDAo6IhDKcKsK4pPWd3Ps/4icbjOS5; test_cookie=CheckForPermission; cSyncDp7v2=1674300971; cSyncDp14v3=1674300971; cSyncDp17=1674300971; cSyncDp32=1674300971; cSyncDp45v3=1674300971; cSyncDp53=1674300971; cSyncDp54v2=1674300971; cSyncDp62=1674300971; cSyncDp67v2=1674300971; cSyncDp68=1674300971; cSyncDp71=1674300971; cSyncDp77=1674300971; cSyncDp84=1674300971; cSyncDp85=1674300971; cSyncDp95v3=1674300971; cSyncDp101=1674300971; cSyncDp104v2=1674300971; cSyncDp107=1674300971; cSyncDp110=1674300971; cSyncDp111v2=1674300971; cSyncDp112v2=1674300971; cSyncDp125v2=1674300971; cSyncDp126=1674300971; cSyncDp127=1674300971; cSyncDp129=1674300971; cSyncDp136v2=1674300971; cSyncDp138=1674300971; cSyncDp146=1674300971; cSyncDp148=1674300971; cSyncDp149v2=1674300971; cSyncDp151=1674300971; cSyncDp178=1674300971; cSyncDp179=1674300971; cSyncDp186=1674300971; cSyncDp221=1674300971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 21 Jan 2023 11:36:12 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
sync.bumlam.com/?src=sap1&s_data=CAIQARisnK-eBmIgMTUwMzQyMEEyQkNFQ0I2MzY3MEI0NzFGMDIwMzlDQzeiARDOqpq2mX8R7aHEACWQyCQ3
31.172.81.160200 OK 0 B URL HTTP/1.1 sync.bumlam.com/?src=sap1&s_data=CAIQARisnK-eBmIgMTUwMzQyMEEyQkNFQ0I2MzY3MEI0NzFGMDIwMzlDQzeiARDOqpq2mX8R7aHEACWQyCQ3
IP 31.172.81.160:0
ASN #44066 diva-e Datacenters GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sap1&s_data=CAIQARisnK-eBmIgMTUwMzQyMEEyQkNFQ0I2MzY3MEI0NzFGMDIwMzlDQzeiARDOqpq2mX8R7aHEACWQyCQ3 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiRjZWFhOWFiNi05OTdmLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiRjZWFhOWFiNi05OTdmLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*; Path=/; Expires=Fri, 16 Jan 2043 11:36:12 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
cs.agency2.ru/p?ssp=sp&uid=1503420A2BCECB63670B471F02039CC7
23.111.107.44301 Moved Permanently 0 B URL HTTP/1.1 cs.agency2.ru/p?ssp=sp&uid=1503420A2BCECB63670B471F02039CC7
IP 23.111.107.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=sp&uid=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: cs.agency2.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Length: 0
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://www.acint.net/match?dp=186&euid=6608a16b-31b7-4def-bbe0-86bdea02d552
Set-Cookie: uuid=6608a16b-31b7-4def-bbe0-86bdea02d552; expires=Fri, 12 Jan 2024 11:36:12 GMT; domain=agency2.ru; path=/; secure; SameSite=None
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.107.44
sync.bumlam.com/?src=sape
31.172.81.160302 Moved Temporarily 0 B URL HTTP/1.1 sync.bumlam.com/?src=sape
IP 31.172.81.160:0
ASN #44066 diva-e Datacenters GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sape HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiRjZWFhOWFiNi05OTdmLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiRjZWFhOWFiNi05OTdmLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*; Path=/; Expires=Fri, 16 Jan 2043 11:36:12 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: https://pix.bumlam.com/sync/sape/sync_ok?guid=ceaa9ab6-997f-11ed-a1c4-002590c82437
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
Access-Control-Allow-Origin: https://acint.net
Access-Control-Allow-Credentials: true
match.new-programmatic.com/userbind?src=sape&id=1503420A2BCECB63670B471F02039CC7
217.65.2.150204 No Content 0 B URL HTTP/1.1 match.new-programmatic.com/userbind?src=sape&id=1503420A2BCECB63670B471F02039CC7
IP 217.65.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userbind?src=sape&id=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: match.new-programmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx/1.18.0
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin
pix.bumlam.com/sync/sape/sync_ok?guid=ceaa9ab6-997f-11ed-a1c4-002590c82437
31.172.81.160302 Found 0 B URL HTTP/1.1 pix.bumlam.com/sync/sape/sync_ok?guid=ceaa9ab6-997f-11ed-a1c4-002590c82437
IP 31.172.81.160:0
ASN #44066 diva-e Datacenters GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/sape/sync_ok?guid=ceaa9ab6-997f-11ed-a1c4-002590c82437 HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiRjZWFhOWFiNi05OTdmLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://ceaa9ab6-997f-11ed-a1c4-002590c82437.n1.sync.bumlam.com/?src=sape
www.acint.net/match?dp=186&euid=6608a16b-31b7-4def-bbe0-86bdea02d552
193.3.184.228200 OK 43 B URL HTTP/2 www.acint.net/match?dp=186&euid=6608a16b-31b7-4def-bbe0-86bdea02d552
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=186&euid=6608a16b-31b7-4def-bbe0-86bdea02d552 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDFWPLzisfRwtnx5wDAo6IhDKcKsK4pPWd3Ps/4icbjOS5; test_cookie=CheckForPermission; cSyncDp7v2=1674300971; cSyncDp14v3=1674300971; cSyncDp17=1674300971; cSyncDp32=1674300971; cSyncDp45v3=1674300971; cSyncDp53=1674300971; cSyncDp54v2=1674300971; cSyncDp62=1674300971; cSyncDp67v2=1674300971; cSyncDp68=1674300971; cSyncDp71=1674300971; cSyncDp77=1674300971; cSyncDp84=1674300971; cSyncDp85=1674300971; cSyncDp95v3=1674300971; cSyncDp101=1674300971; cSyncDp104v2=1674300971; cSyncDp107=1674300971; cSyncDp110=1674300971; cSyncDp111v2=1674300971; cSyncDp112v2=1674300971; cSyncDp125v2=1674300971; cSyncDp126=1674300971; cSyncDp127=1674300971; cSyncDp129=1674300971; cSyncDp136v2=1674300971; cSyncDp138=1674300971; cSyncDp146=1674300971; cSyncDp148=1674300971; cSyncDp149v2=1674300971; cSyncDp151=1674300971; cSyncDp178=1674300971; cSyncDp179=1674300971; cSyncDp186=1674300971; cSyncDp221=1674300971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 21 Jan 2023 11:36:12 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 875fc1415608498b67d609fd3b7335ae
463aca613dcdfc3446e7c7f4663d9577ef92f94e
fcb4c1657bc5afb8c1adfbec67198211be206ff61b5cc7c13565d5ce492de66e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.20.226:0
Hash fc0e524a639d5795e6caf34e6b0b32dd
728d56404a9a86834fc21b0ff9c67bddca84cf25
2ac76257493de1eaea61a344582b16e040a6d8a78770ab8e6b6f209266483880
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Wed, 25 Jan 2023 08:10:16 GMT
ETag: "728d56404a9a86834fc21b0ff9c67bddca84cf25"
Last-Modified: Sat, 21 Jan 2023 08:10:17 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1044
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78cfc0384d7fb51d-OSL
cm.g.doubleclick.net/pixel?google_nid=agentstvo_sape_limited&google_hm=FQNCCivOy2NnC0cfAgOcxw
142.250.74.130200 OK 170 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=agentstvo_sape_limited&google_hm=FQNCCivOy2NnC0cfAgOcxw
IP 142.250.74.130:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash e7673c60af825466f83d46da72ca1635
fc0fcbee0835709ba2d28798a612bfd687903fb5
0b8a20373c6dd04e091902226d922b3688143a8938afb9d283d889de7b55ceb5
GET /pixel?google_nid=agentstvo_sape_limited&google_hm=FQNCCivOy2NnC0cfAgOcxw HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
date: Sat, 21 Jan 2023 11:36:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
server: HTTP server (unknown)
content-length: 170
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.20.226:0
Hash fc0e524a639d5795e6caf34e6b0b32dd
728d56404a9a86834fc21b0ff9c67bddca84cf25
2ac76257493de1eaea61a344582b16e040a6d8a78770ab8e6b6f209266483880
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Wed, 25 Jan 2023 08:10:16 GMT
ETag: "728d56404a9a86834fc21b0ff9c67bddca84cf25"
Last-Modified: Sat, 21 Jan 2023 08:10:17 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1044
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78cfc0387dc7b51d-OSL
ssp.adriver.ru/cgi-bin/sync.cgi?dsp_id=153&external_id=1503420A2BCECB63670B471F02039CC7
81.222.128.215200 OK 42 B URL HTTP/1.1 ssp.adriver.ru/cgi-bin/sync.cgi?dsp_id=153&external_id=1503420A2BCECB63670B471F02039CC7
IP 81.222.128.215:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /cgi-bin/sync.cgi?dsp_id=153&external_id=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: ssp.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691
195.209.108.45302 Moved Temporarily 0 B URL HTTP/1.1 ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691
IP 195.209.108.45:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691 HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-control: no-cache, max-age=0, must-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA
Set-Cookie: cid=-4464741497; expires=Mon, 20 Jan 2025 11:36:12 GMT; path=/; domain=.adriver.ru; SameSite=None; Secure
Location: /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-4464741497
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-4464741497
195.209.108.45302 Moved Temporarily 40 B URL HTTP/1.1 ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-4464741497
IP 195.209.108.45:0
File type ASCII text, with CRLF line terminators
Hash 251630b588179b239e8fab1ac9ef6d3a
91b91a97bc481dd2bbd5e0f3fea6ba1c4e843882
c95661e0ef6975b1df5361695a439f71a021d72c345023c3e668e84f35b3c38b
GET /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-4464741497 HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-control: no-cache, no-cache=Set-Cookie, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref="//adriver.ru/w3c/p3p.xml", CP="NON DSP COR CURa ADMa DEVa OUR BUS UNI COM NAV INT STA"
Set-Cookie: cid=0; expires=Mon, 20 Jan 2025 11:36:12 GMT; path=/; domain=.adriver.ru;
uid=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/; domain=.adriver.ru
Location: https://www.acint.net/rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D
ads.adlook.me/csync?url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D
5.101.76.186302 Found 472 B URL HTTP/2 ads.adlook.me/csync?url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D
IP 5.101.76.186:0
ASN #48096 Enterprise Cloud Ltd.
Hash 875fc1415608498b67d609fd3b7335ae
463aca613dcdfc3446e7c7f4663d9577ef92f94e
fcb4c1657bc5afb8c1adfbec67198211be206ff61b5cc7c13565d5ce492de66e
GET /csync?url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D HTTP/1.1
Host: ads.adlook.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://acint.net/match?dp=110&euid=abe8aa0eedda44ed98067a44a4251b3d
server: Microsoft-IIS/10.0
set-cookie: adlm_userId=abe8aa0eedda44ed98067a44a4251b3d; expires=Sat, 20 Jan 2024 21:00:00 GMT; path=/; SameSite=None; secure; samesite=lax
date: Sat, 21 Jan 2023 11:36:11 GMT
X-Firefox-Spdy: h2
www.acint.net/rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D
193.3.184.228302 Found 154 B URL HTTP/2 www.acint.net/rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D
IP 193.3.184.228:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDFWPLzisfRwtnx5wDAo6IhDKcKsK4pPWd3Ps/4icbjOS5; test_cookie=CheckForPermission; cSyncDp7v2=1674300971; cSyncDp14v3=1674300971; cSyncDp17=1674300971; cSyncDp32=1674300971; cSyncDp45v3=1674300971; cSyncDp53=1674300971; cSyncDp54v2=1674300971; cSyncDp62=1674300971; cSyncDp67v2=1674300971; cSyncDp68=1674300971; cSyncDp71=1674300971; cSyncDp77=1674300971; cSyncDp84=1674300971; cSyncDp85=1674300971; cSyncDp95v3=1674300971; cSyncDp101=1674300971; cSyncDp104v2=1674300971; cSyncDp107=1674300971; cSyncDp110=1674300971; cSyncDp111v2=1674300971; cSyncDp112v2=1674300971; cSyncDp125v2=1674300971; cSyncDp126=1674300971; cSyncDp127=1674300971; cSyncDp129=1674300971; cSyncDp136v2=1674300971; cSyncDp138=1674300971; cSyncDp146=1674300971; cSyncDp148=1674300971; cSyncDp149v2=1674300971; cSyncDp151=1674300971; cSyncDp178=1674300971; cSyncDp179=1674300971; cSyncDp186=1674300971; cSyncDp221=1674300971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 21 Jan 2023 11:36:12 GMT
content-type: text/html
content-length: 154
location: https://ssp.adriver.ru/cgi-bin/sync.cgi?ssp_id=43&external_id=1503420A2BCECB63670B471F02039CC7
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 734fb32537f4fb89bb4199a35fb88510
391dd9fb0516e2bf1ab76c0fd044f035b11b4add
5986e0a4b1d04a7dd3a739e076ee13311ae9913f4119f110d6445d9024651f36
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 21 Jan 2023 02:18:47 GMT
Expires: Sat, 28 Jan 2023 02:18:46 GMT
Etag: "391dd9fb0516e2bf1ab76c0fd044f035b11b4add"
Cache-Control: max-age=570753,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78cfc0390af40b31-OSL
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 6dd63254aa1d7afe1b1478f5b867cc69
e3ed009db1addb763904e2d07d6e407fb3a60036
d19487b1f69178e3d4fff171733ec0f1134d5d4143d9eaa2fe0f5dc63caaf281
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D19487B1F69178E3D4FFF171733EC0F1134D5D4143D9EAA2FE0F5DC63CAAF281"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6949
Expires: Sat, 21 Jan 2023 13:32:02 GMT
Date: Sat, 21 Jan 2023 11:36:13 GMT
Connection: keep-alive
ssp.adriver.ru/cgi-bin/sync.cgi?ssp_id=43&external_id=1503420A2BCECB63670B471F02039CC7
81.222.128.215200 OK 42 B URL HTTP/1.1 ssp.adriver.ru/cgi-bin/sync.cgi?ssp_id=43&external_id=1503420A2BCECB63670B471F02039CC7
IP 81.222.128.215:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /cgi-bin/sync.cgi?ssp_id=43&external_id=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: ssp.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
ocsp.globalsign.com/alphasslcasha256g4
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/alphasslcasha256g4
IP 104.18.20.226:0
Hash ce861ea8fa7c83123164d6c3ebf54504
c6d5e28d1b9836e8e208e4941fc6d1045dfbeccf
f56ccf89459b7e17b67e442d3e18281122e2b0e9ca67877da62e2cfa7d861b54
POST /alphasslcasha256g4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Type: application/ocsp-response
Content-Length: 1437
Connection: keep-alive
Expires: Wed, 25 Jan 2023 11:17:57 GMT
ETag: "c6d5e28d1b9836e8e208e4941fc6d1045dfbeccf"
Last-Modified: Sat, 21 Jan 2023 11:17:58 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 901
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78cfc0397ecdb51d-OSL
x01.aidata.io/0.gif?pid=9401454&id=1503420A2BCECB63670B471F02039CC7
89.108.119.43302 Found 0 B URL HTTP/2 x01.aidata.io/0.gif?pid=9401454&id=1503420A2BCECB63670B471F02039CC7
IP 89.108.119.43:0
ASN #197695 Domain names registrar REG.RU, Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /0.gif?pid=9401454&id=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sat, 21 Jan 2023 11:36:13 GMT
content-length: 0
location: https://x01.aidata.io/0.gif?pid=9401454&id=1503420A2BCECB63670B471F02039CC7&bounce=1
expires: Sat, 21 Jan 2023 11:36:12 GMT
access-control-allow-methods: GET, POST
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
last-modified: Sat, 21 Jan 2023 11:36:12 GMT
set-cookie: __upin=t69uzy1LZFcMcKWnpu0e4Q;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
__upints=1674300973;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
p3p: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
X-Firefox-Spdy: h2
tag.digitaltarget.ru/adcm.js
185.15.175.144200 OK 3.1 kB URL HTTP/1.1 tag.digitaltarget.ru/adcm.js
IP 185.15.175.144:0
File type ASCII text, with very long lines (3051), with no line terminators
Hash e7097284185069f52fc736bcd50cda13
1cdfdf2d869841202079ddf91e0a00a8610812e6
40f2a96f78f4c8484e9da6e172f5ddd3e4d7786ca29e04b96e1067a365190e80
GET /adcm.js HTTP/1.1
Host: tag.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Type: application/javascript
Content-Length: 3051
Last-Modified: Sat, 21 Jan 2023 11:34:13 GMT
Connection: keep-alive
ETag: "63cbcdb5-beb"
Accept-Ranges: bytes
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 9afca259ef3fcda09c7cfb2730f23939
8ed6d92d58f1d72ca99645d68c09c02ba8f7f90f
fce93922b915f3488fc4efa2b646878ce493ed5fdb7a0515f356658f391871e2
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 18 Jan 2023 02:03:25 GMT
Expires: Wed, 25 Jan 2023 02:03:24 GMT
Etag: "8ed6d92d58f1d72ca99645d68c09c02ba8f7f90f"
Cache-Control: max-age=310630,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78cfc0389dc3fac0-OSL
sync.adkernel.com/user-sync?zone=169736&t=image&r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D221%26euid%3D%7BUID%7D
77.245.57.72400 Bad Request 22 B URL HTTP/1.1 sync.adkernel.com/user-sync?zone=169736&t=image&r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D221%26euid%3D%7BUID%7D
IP 77.245.57.72:0
ASN #36057 WEBAIR-INTERNET-MTL
File type ASCII text, with no line terminators
Hash b0b11e1c78b526b61477f8e9ee540be0
d5e73002987ff54626542b116d98a8f4aa9ee2eb
4ca18c247df52dd22650bd7f72f71d7c98102243b0ec474f683c6a279ad3a668
GET /user-sync?zone=169736&t=image&r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D221%26euid%3D%7BUID%7D HTTP/1.1
Host: sync.adkernel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 400 Bad Request
Server: nginx
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Length: 22
Connection: close
Cache-Control: no-store
Age: 0
Pragma: no-cache
fonts.googleapis.com/css?family=Muli:400,400i,500,600,700&display=swap
142.250.74.106200 OK 2.3 kB URL HTTP/2 fonts.googleapis.com/css?family=Muli:400,400i,500,600,700&display=swap
IP 142.250.74.106:0
Hash ba5e05c988279277bce15b546646fa7b
37a81c4b0231cb11d1cb4b03ccf804d5e505a40b
872fd3b62bed3eda87c61263abb26ca2d35f00e151e942a0d58cc31e7c296f72
GET /css?family=Muli:400,400i,500,600,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modgen.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 21 Jan 2023 11:36:11 GMT
date: Sat, 21 Jan 2023 11:36:11 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash eac2c9b0b910f74d0e01ecc751fca22e
22ae0b1460c1c1b79a03246a8bb1fb04255e9b5d
9b9451cbc21f54c0b3bfcbc89de8032ba08faebefbe4fe415030a965a4f7b340
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 25 Jan 2023 09:30:40 GMT
ETag: "22ae0b1460c1c1b79a03246a8bb1fb04255e9b5d"
Last-Modified: Sat, 21 Jan 2023 09:30:41 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3407
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78cfc039ef41b51d-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 9afca259ef3fcda09c7cfb2730f23939
8ed6d92d58f1d72ca99645d68c09c02ba8f7f90f
fce93922b915f3488fc4efa2b646878ce493ed5fdb7a0515f356658f391871e2
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 18 Jan 2023 02:03:25 GMT
Expires: Wed, 25 Jan 2023 02:03:24 GMT
Etag: "8ed6d92d58f1d72ca99645d68c09c02ba8f7f90f"
Cache-Control: max-age=310630,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78cfc038ba08fab8-OSL
x01.aidata.io/0.gif?pid=9401454&id=1503420A2BCECB63670B471F02039CC7&bounce=1
89.108.119.43204 No Content 0 B URL HTTP/2 x01.aidata.io/0.gif?pid=9401454&id=1503420A2BCECB63670B471F02039CC7&bounce=1
IP 89.108.119.43:0
ASN #197695 Domain names registrar REG.RU, Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /0.gif?pid=9401454&id=1503420A2BCECB63670B471F02039CC7&bounce=1 HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sat, 21 Jan 2023 11:36:13 GMT
expires: Sat, 21 Jan 2023 11:36:12 GMT
access-control-allow-methods: GET, POST
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
last-modified: Sat, 21 Jan 2023 11:36:12 GMT
set-cookie: __upin=a0HpEoVB3Df41JOLRb9sqA;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
__upints=1674300973;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
p3p: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
X-Firefox-Spdy: h2
ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D
188.42.34.64302 Found 0 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D
IP 188.42.34.64:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: /match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Sun, 21 Jan 2024 11:36:13 GMT; Path=/; Domain=.betweendigital.com
tuuid=f43b2ba1-370a-5215-924f-8a5af1844477; Max-Age=31536000; Expires=Sun, 21 Jan 2024 11:36:13 GMT; Path=/; Domain=.betweendigital.com
ut=Y8vOLQAK1XDrykTSu2kbW0f3SOBkjdElkPgMhw==; Max-Age=31536000; Expires=Sun, 21 Jan 2024 11:36:13 GMT; Path=/; Domain=.betweendigital.com
content-length: 0
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash ecbb772d9be344566cbae818a1c73dcc
998f54efadc45077981b8b160e694bec78be30dd
fea65cdefe066d76edfb9a16ce80b7fd33cbd0b4a56d46ee2921d4dae967987f
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Wed, 25 Jan 2023 10:38:17 GMT
ETag: "998f54efadc45077981b8b160e694bec78be30dd"
Last-Modified: Sat, 21 Jan 2023 10:38:18 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 57
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78cfc03a0f65b51d-OSL
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash a745bcda1382b4e658c72a49e6b6925f
ce0369fc0c2e079de1ae46d74791c0ca63c5cb23
1d7de195c6d99370df23d1e65dd05a3aa048a9c6fba4875c119dfb8a0900e0d7
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Wed, 25 Jan 2023 09:15:06 GMT
ETag: "ce0369fc0c2e079de1ae46d74791c0ca63c5cb23"
Last-Modified: Sat, 21 Jan 2023 09:15:07 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2756
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78cfc03a1f75b51d-OSL
redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D{WEBO_CID}%26noredirect
35.190.24.218307 Temporary Redirect 0 B URL HTTP/2 redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D{WEBO_CID}%26noredirect
IP 35.190.24.218:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D{WEBO_CID}%26noredirect HTTP/1.1
Host: redirect.frontend.weborama.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
server: Weborama Collect Frontend
date: Sat, 21 Jan 2023 11:36:12 GMT
content-length: 0
location: https://redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D%7BWEBO_CID%7D%26noredirect&bounce=1&random=796117322
vary: Origin
access-control-allow-origin: *
p3p: CP="NOI DSP COR CURa DEVa PSAa OUR STP UNI DEM"
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
expires: Tue, 03 Jul 2001 06:00:00 GMT
last-modified: Sat, 21 Jan 2023 11:36:13 GMT
set-cookie: AFFICHE_W=B3i4ZxYSswAH77; expires=Sun, 18 Feb 2024 11:36:13 GMT; domain=.weborama.fr; path=/; secure; SameSite=None
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 475acf80e3aec284b64817d48539440b
d7ab1f9d3cbe4d0e9ac9fccf046ba7acfa0179f9
9e1157c3acd6a6f941b629df80441053170030eb58df82db1b7063bc1179a870
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9E1157C3ACD6A6F941B629DF80441053170030EB58DF82DB1B7063BC1179A870"
Last-Modified: Sat, 21 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21111
Expires: Sat, 21 Jan 2023 17:28:04 GMT
Date: Sat, 21 Jan 2023 11:36:13 GMT
Connection: keep-alive
ads.betweendigital.com/match?bidder_id=73&external_user_id=1503420A2BCECB63670B471F02039CC7
188.42.34.64302 Found 0 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=73&external_user_id=1503420A2BCECB63670B471F02039CC7
IP 188.42.34.64:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?bidder_id=73&external_user_id=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: /match?bidder_id=73&external_user_id=1503420A2BCECB63670B471F02039CC7&crf=1
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Sun, 21 Jan 2024 11:36:13 GMT; Path=/; Domain=.betweendigital.com
tuuid=d20dacae-6f13-5215-81dd-85ade2164b80; Max-Age=31536000; Expires=Sun, 21 Jan 2024 11:36:13 GMT; Path=/; Domain=.betweendigital.com
ut=Y8vOLQAH61i65sL-I3IH08tZyB1f6kdsTCOm5A==; Max-Age=31536000; Expires=Sun, 21 Jan 2024 11:36:13 GMT; Path=/; Domain=.betweendigital.com
content-length: 0
X-Firefox-Spdy: h2
px.adhigh.net/p/cm/sape?u=1503420A2BCECB63670B471F02039CC7
194.190.76.41302 Found 0 B URL HTTP/2 px.adhigh.net/p/cm/sape?u=1503420A2BCECB63670B471F02039CC7
IP 194.190.76.41:0
ASN #48061 Limited Liability Company GPM Digital Technologies
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/cm/sape?u=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: px.adhigh.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sat, 21 Jan 2023 11:36:13 GMT
content-length: 0
x-backend-id: f11-ru
access-control-allow-origin: *
access-control-allow-credentials: true
set-cookie: gi_u=8Q7B11x7WgY.AikABlGF1B1gXw;Path=/;Domain=.adhigh.net;Expires=Sun, 21-Jan-2024 11:36:13 GMT;Secure;SameSite=None
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
location: https://px.adhigh.net/p/cm/sape?u=1503420A2BCECB63670B471F02039CC7&bounced=1
X-Firefox-Spdy: h2
ceaa9ab6-997f-11ed-a1c4-002590c82437.n1.sync.bumlam.com/?src=sape
188.120.241.43302 Found 0 B URL HTTP/2 ceaa9ab6-997f-11ed-a1c4-002590c82437.n1.sync.bumlam.com/?src=sape
IP 188.120.241.43:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sape HTTP/1.1
Host: ceaa9ab6-997f-11ed-a1c4-002590c82437.n1.sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiRjZWFhOWFiNi05OTdmLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx/1.22.1
date: Sat, 21 Jan 2023 11:36:13 GMT
content-length: 0
location: https://pix.bumlam.com/sync/sape/done
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 4a55c5c17008ccd3683ebbb8ae6442d9
2a11fe1ef3f4f11098eebdd7eca317adccff9ce9
88b6646abee8ea0a4dbc8fcdcf91f98176591b6b8e60c495fe2bf31d7735641e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "88B6646ABEE8EA0A4DBC8FCDCF91F98176591B6B8E60C495FE2BF31D7735641E"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4019
Expires: Sat, 21 Jan 2023 12:43:12 GMT
Date: Sat, 21 Jan 2023 11:36:13 GMT
Connection: keep-alive
ocsp.usertrust.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 96da906ba9419e1d1a5a90b2f8a9a412
02003324572d653e3b527c78fcb6dad92272da5c
25b962ca5ec88ed98712ad2b90418a869818ccb30fd4053326082184b0bedec1
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 19 Jan 2023 16:18:21 GMT
Expires: Thu, 26 Jan 2023 16:18:20 GMT
Etag: "02003324572d653e3b527c78fcb6dad92272da5c"
Cache-Control: max-age=601402,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 1191
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78cfc03a9a25b4f3-OSL
pix.bumlam.com/sync/sape/done
31.172.81.160200 OK 43 B URL HTTP/1.1 pix.bumlam.com/sync/sape/done
IP 31.172.81.160:0
ASN #44066 diva-e Datacenters GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /sync/sape/done HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiRjZWFhOWFiNi05OTdmLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D%7BWEBO_CID%7D%26noredirect&bounce=1&random=796117322
35.190.24.218204 No Content 0 B URL HTTP/2 redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D%7BWEBO_CID%7D%26noredirect&bounce=1&random=796117322
IP 35.190.24.218:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D%7BWEBO_CID%7D%26noredirect&bounce=1&random=796117322 HTTP/1.1
Host: redirect.frontend.weborama.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: Weborama Collect Frontend
date: Sat, 21 Jan 2023 11:36:13 GMT
vary: Origin
access-control-allow-origin: *
p3p: CP="NOI DSP COR CURa DEVa PSAa OUR STP UNI DEM"
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
expires: Tue, 03 Jul 2001 06:00:00 GMT
last-modified: Sat, 21 Jan 2023 11:36:13 GMT
set-cookie: AFFICHE_W=; expires=Tue, 10 Nov 2009 23:00:00 GMT; domain=.weborama.fr; path=/; secure; SameSite=None
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash a6952a1835a68ef87b8182fce3b93451
ac2b02e18bcabf511682298b7d96c21ec6addb93
5d1b58b0cffaebc8d1ef2bdf56f7324676a59034738dfb5afa3a2e3d89cf9ac0
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 20 Jan 2023 22:16:26 GMT
Expires: Sat, 21 Jan 2023 22:16:26 GMT
ETag: "ac2b02e18bcabf511682298b7d96c21ec6addb93"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ads.betweendigital.com/match?bidder_id=73&external_user_id=1503420A2BCECB63670B471F02039CC7&crf=1
188.42.34.64200 OK 68 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=73&external_user_id=1503420A2BCECB63670B471F02039CC7&crf=1
IP 188.42.34.64:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
GET /match?bidder_id=73&external_user_id=1503420A2BCECB63670B471F02039CC7&crf=1 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Sun, 21 Jan 2024 11:36:13 GMT; Path=/; Domain=.betweendigital.com
tuuid=5f955299-b590-5215-9df9-ea42fe32246f; Max-Age=31536000; Expires=Sun, 21 Jan 2024 11:36:13 GMT; Path=/; Domain=.betweendigital.com
ut=Y8vOLQAOHUhglLzg7DJbnwJ8tHtVokpw8s8nBw==; Max-Age=31536000; Expires=Sun, 21 Jan 2024 11:36:13 GMT; Path=/; Domain=.betweendigital.com
content-length: 68
X-Firefox-Spdy: h2
ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1
188.42.34.64200 OK 68 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1
IP 188.42.34.64:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
GET /match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Sun, 21 Jan 2024 11:36:13 GMT; Path=/; Domain=.betweendigital.com
tuuid=f9c355e6-07c4-5215-8659-ec7fe5922252; Max-Age=31536000; Expires=Sun, 21 Jan 2024 11:36:13 GMT; Path=/; Domain=.betweendigital.com
ut=Y8vOLQAA8jDY-fcVGReyKZCsRVdPTXJZVpVn2A==; Max-Age=31536000; Expires=Sun, 21 Jan 2024 11:36:13 GMT; Path=/; Domain=.betweendigital.com
content-length: 68
X-Firefox-Spdy: h2
ad.mail.ru/cm.gif?p=48&id=1503420A2BCECB63670B471F02039CC7
95.163.41.56200 OK 43 B URL HTTP/2 ad.mail.ru/cm.gif?p=48&id=1503420A2BCECB63670B471F02039CC7
IP 95.163.41.56:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /cm.gif?p=48&id=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 11:36:13 GMT
content-type: image/gif
content-length: 43
set-cookie: VID=0Ffrk608vfIF0020hK2f0UoF:::0-0-0-8e626ed:CAASEIRVSSZIKOC3eugq9iwj-j0aYDBk12o5ehy5oQmF4iU5SOZmLfQBFi6gp6rPy2PMeBGPlq3iWuGSFaSoOtUSoWLUT9sydHs4-cPd57mkQzbLCATSPFia-KJSpm21Kb38Ap4DeTgicJuuoHLQra1b1lDdVw; path=/; expires=Mon, 22-Jan-24 11:36:13 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
expires: Sat, 21 Jan 2023 17:36:13 GMT
cache-control: max-age=21600
last-modified: Sat, 21 Jan 2023 11:36:13 GMT
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin
cross-origin-embedder-policy: require-corp
X-Firefox-Spdy: h2
sm.rtb.mts.ru/p?ssp=sape&id=1503420A2BCECB63670B471F02039CC7
217.66.147.33301 Moved Permanently 0 B URL HTTP/1.1 sm.rtb.mts.ru/p?ssp=sape&id=1503420A2BCECB63670B471F02039CC7
IP 217.66.147.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=sape&id=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: sm.rtb.mts.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin
Access-Control-Allow-Methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
Access-Control-Allow-Origin: *
Vary: Origin
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://sm.rtb.mts.ru/match/second?ssp=30&exu=1503420A2BCECB63670B471F02039CC7
Set-Cookie: dspid=94c6eb7b-7fc3-4c71-bda3-cff32c9feaa5; expires=Fri, 12 Jan 2024 11:36:13 GMT; domain=.mts.ru; path=/; secure; SameSite=None
adlmerge.com/merge_gpsid/?sid=50&id=1503420A2BCECB63670B471F02039CC7
95.211.66.35200 OK 43 B URL HTTP/2 adlmerge.com/merge_gpsid/?sid=50&id=1503420A2BCECB63670B471F02039CC7
IP 95.211.66.35:0
ASN #60781 LeaseWeb Netherlands B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /merge_gpsid/?sid=50&id=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: adlmerge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.16.0
date: Sat, 21 Jan 2023 11:36:12 GMT
content-type: image/gif
iseu: eu
X-Firefox-Spdy: h2
px.adhigh.net/p/cm/sape?u=1503420A2BCECB63670B471F02039CC7&bounced=1
194.190.76.41200 OK 49 B URL HTTP/2 px.adhigh.net/p/cm/sape?u=1503420A2BCECB63670B471F02039CC7&bounced=1
IP 194.190.76.41:0
ASN #48061 Limited Liability Company GPM Digital Technologies
File type GIF image data, version 89a, 1 x 1\012- data
Hash 889bc1fffc025af4685839fb516a0b8b
7f105137a4eafe93213ecd8cc34dd907c340467c
d0409a1b73dab4e29dc40f92fb431fa9133baa23b4a1ffae4897f39068110e32
GET /p/cm/sape?u=1503420A2BCECB63670B471F02039CC7&bounced=1 HTTP/1.1
Host: px.adhigh.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 11:36:13 GMT
content-type: image/gif
content-length: 49
x-backend-id: f11-ru
access-control-allow-origin: *
access-control-allow-credentials: true
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
X-Firefox-Spdy: h2
tag.digitaltarget.ru/processor.js?i=478188536337204
185.15.175.144200 OK 16 kB URL HTTP/1.1 tag.digitaltarget.ru/processor.js?i=478188536337204
IP 185.15.175.144:0
File type ASCII text, with very long lines (15892), with no line terminators
Hash 736e2fb1da94f3277e3f931048c1b9f3
196387db95a17da825b629de3542eff901b09905
4569d4e1b0e52b6316681f7312674f43ecb2b72ea8ab4adb2375e3686862c7dc
GET /processor.js?i=478188536337204 HTTP/1.1
Host: tag.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Type: application/javascript
Content-Length: 15892
Last-Modified: Sat, 21 Jan 2023 11:34:14 GMT
Connection: keep-alive
ETag: "63cbcdb6-3e14"
Accept-Ranges: bytes
www.acint.net/match?dp=104&euid=FmXnE_recLTT
193.3.184.228200 OK 43 B URL HTTP/2 www.acint.net/match?dp=104&euid=FmXnE_recLTT
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=104&euid=FmXnE_recLTT HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDFWPLzisfRwtnx5wDAo6IhDKcKsK4pPWd3Ps/4icbjOS5; test_cookie=CheckForPermission; cSyncDp7v2=1674300971; cSyncDp14v3=1674300971; cSyncDp17=1674300971; cSyncDp32=1674300971; cSyncDp45v3=1674300971; cSyncDp53=1674300971; cSyncDp54v2=1674300971; cSyncDp62=1674300971; cSyncDp67v2=1674300971; cSyncDp68=1674300971; cSyncDp71=1674300971; cSyncDp77=1674300971; cSyncDp84=1674300971; cSyncDp85=1674300971; cSyncDp95v3=1674300971; cSyncDp101=1674300971; cSyncDp104v2=1674300971; cSyncDp107=1674300971; cSyncDp110=1674300971; cSyncDp111v2=1674300971; cSyncDp112v2=1674300971; cSyncDp125v2=1674300971; cSyncDp126=1674300971; cSyncDp127=1674300971; cSyncDp129=1674300971; cSyncDp136v2=1674300971; cSyncDp138=1674300971; cSyncDp146=1674300971; cSyncDp148=1674300971; cSyncDp149v2=1674300971; cSyncDp151=1674300971; cSyncDp178=1674300971; cSyncDp179=1674300971; cSyncDp186=1674300971; cSyncDp221=1674300971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 21 Jan 2023 11:36:13 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
sm.rtb.mts.ru/match/second?ssp=30&exu=1503420A2BCECB63670B471F02039CC7
217.66.147.33200 OK 0 B URL HTTP/1.1 sm.rtb.mts.ru/match/second?ssp=30&exu=1503420A2BCECB63670B471F02039CC7
IP 217.66.147.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/second?ssp=30&exu=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: sm.rtb.mts.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin
Access-Control-Allow-Methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
Access-Control-Allow-Origin: *
Vary: Origin
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
an.yandex.ru/mapuid/sapeis/1503420A2BCECB63670B471F02039CC7?redir-setuniq=1
93.158.134.90200 OK 553 B URL HTTP/2 an.yandex.ru/mapuid/sapeis/1503420A2BCECB63670B471F02039CC7?redir-setuniq=1
IP 93.158.134.90:0
Hash fee5ffaf456fe107fc8e0090a840ea84
695b0241f4c5af27c5c75235efbacb78fc2dcd0c
d940cfd1dfb7b38a5bf140467760a44d3b34097e047ae9ff98499d0e4d03a3bb
GET /mapuid/sapeis/1503420A2BCECB63670B471F02039CC7?redir-setuniq=1 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
date: Sat, 21 Jan 2023 11:36:13 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 21 Jan 2023 11:36:13 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Sat, 21 Jan 2023 11:36:13 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif; charset=utf-8
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
dmg.digitaltarget.ru/1/1093/i/i?i=690963659592260.304046472715627&a=77&e=1503420A2BCECB63670B471F02039CC7&pref=https%3A%2F%2Fmodgen.net%2F&c=ss:77.up:1503420A2BCECB63670B471F02039CC7.sync:up.xdua:dudfED04c5oOK7GkPkM4Kmgh.xps:xpsdSsMt6CxsKN7L1GenWvxO6.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
185.15.175.158307 Temporary Redirect 0 B URL HTTP/1.1 dmg.digitaltarget.ru/1/1093/i/i?i=690963659592260.304046472715627&a=77&e=1503420A2BCECB63670B471F02039CC7&pref=https%3A%2F%2Fmodgen.net%2F&c=ss:77.up:1503420A2BCECB63670B471F02039CC7.sync:up.xdua:dudfED04c5oOK7GkPkM4Kmgh.xps:xpsdSsMt6CxsKN7L1GenWvxO6.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
IP 185.15.175.158:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1/1093/i/i?i=690963659592260.304046472715627&a=77&e=1503420A2BCECB63670B471F02039CC7&pref=https%3A%2F%2Fmodgen.net%2F&c=ss:77.up:1503420A2BCECB63670B471F02039CC7.sync:up.xdua:dudfED04c5oOK7GkPkM4Kmgh.xps:xpsdSsMt6CxsKN7L1GenWvxO6.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Length: 0
Connection: keep-alive
Location: https://dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1674300973536&i=690963659592260.304046472715627&a=77&e=1503420A2BCECB63670B471F02039CC7&pref=https%3A%2F%2Fmodgen.net%2F&c=ss:77.up:1503420A2BCECB63670B471F02039CC7.sync:up.xdua:dudfED04c5oOK7GkPkM4Kmgh.xps:xpsdSsMt6CxsKN7L1GenWvxO6.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
Set-Cookie: viuserid=wbMLJ1lbUscRFxK735oZ; Max-Age=93312000; Expires=Mon, 05 Jan 2026 11:36:13 GMT; SameSite=None; Path=/; Domain=dmg.digitaltarget.ru; Secure; HTTPOnly
Request-Time: 0
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only
dmg.digitaltarget.ru/1/1093/i/i?i=690963659592260.369295166567487&a=77&e=1503420A2BCECB63670B471F02039CC7&pref=https%3A%2F%2Fmodgen.net%2F&c=ss:77.up:1503420A2BCECB63670B471F02039CC7.sync:up.xdua:dudfED04c5oOK7GkPkM4Kmgh.xps:xpsdSsMt6CxsKN7L1GenWvxO6.dn:acint__net.adcm:hit.tg:adcmjs_noorient
185.15.175.158307 Temporary Redirect 0 B URL HTTP/1.1 dmg.digitaltarget.ru/1/1093/i/i?i=690963659592260.369295166567487&a=77&e=1503420A2BCECB63670B471F02039CC7&pref=https%3A%2F%2Fmodgen.net%2F&c=ss:77.up:1503420A2BCECB63670B471F02039CC7.sync:up.xdua:dudfED04c5oOK7GkPkM4Kmgh.xps:xpsdSsMt6CxsKN7L1GenWvxO6.dn:acint__net.adcm:hit.tg:adcmjs_noorient
IP 185.15.175.158:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1/1093/i/i?i=690963659592260.369295166567487&a=77&e=1503420A2BCECB63670B471F02039CC7&pref=https%3A%2F%2Fmodgen.net%2F&c=ss:77.up:1503420A2BCECB63670B471F02039CC7.sync:up.xdua:dudfED04c5oOK7GkPkM4Kmgh.xps:xpsdSsMt6CxsKN7L1GenWvxO6.dn:acint__net.adcm:hit.tg:adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Length: 0
Connection: keep-alive
Location: https://dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1674300973534&i=690963659592260.369295166567487&a=77&e=1503420A2BCECB63670B471F02039CC7&pref=https%3A%2F%2Fmodgen.net%2F&c=ss:77.up:1503420A2BCECB63670B471F02039CC7.sync:up.xdua:dudfED04c5oOK7GkPkM4Kmgh.xps:xpsdSsMt6CxsKN7L1GenWvxO6.dn:acint__net.adcm:hit.tg:adcmjs_noorient
Set-Cookie: viuserid=NryNi7tLuz5pokD7ky1r; Max-Age=93312000; Expires=Mon, 05 Jan 2026 11:36:13 GMT; SameSite=None; Path=/; Domain=dmg.digitaltarget.ru; Secure; HTTPOnly
Request-Time: 1
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only
dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1674300973536&i=690963659592260.304046472715627&a=77&e=1503420A2BCECB63670B471F02039CC7&pref=https%3A%2F%2Fmodgen.net%2F&c=ss:77.up:1503420A2BCECB63670B471F02039CC7.sync:up.xdua:dudfED04c5oOK7GkPkM4Kmgh.xps:xpsdSsMt6CxsKN7L1GenWvxO6.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
185.15.175.158200 OK 64 B URL HTTP/1.1 dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1674300973536&i=690963659592260.304046472715627&a=77&e=1503420A2BCECB63670B471F02039CC7&pref=https%3A%2F%2Fmodgen.net%2F&c=ss:77.up:1503420A2BCECB63670B471F02039CC7.sync:up.xdua:dudfED04c5oOK7GkPkM4Kmgh.xps:xpsdSsMt6CxsKN7L1GenWvxO6.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
IP 185.15.175.158:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ffd585dfb1ac6320633a0be46d579437
5a6033d23bc9cd5d1de9ee61de69a44428086dcb
df18d81deb0cc1c48ae87e6481bb4ee375b40cce0fec3d226e002704d49f6cc8
GET /awg/custom/1093/i/i?call_source=awg&ts=1674300973536&i=690963659592260.304046472715627&a=77&e=1503420A2BCECB63670B471F02039CC7&pref=https%3A%2F%2Fmodgen.net%2F&c=ss:77.up:1503420A2BCECB63670B471F02039CC7.sync:up.xdua:dudfED04c5oOK7GkPkM4Kmgh.xps:xpsdSsMt6CxsKN7L1GenWvxO6.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Type: image/gif
Content-Length: 64
Connection: keep-alive
Vary: Accept-Encoding
Request-Time: 7
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only
dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1674300973534&i=690963659592260.369295166567487&a=77&e=1503420A2BCECB63670B471F02039CC7&pref=https%3A%2F%2Fmodgen.net%2F&c=ss:77.up:1503420A2BCECB63670B471F02039CC7.sync:up.xdua:dudfED04c5oOK7GkPkM4Kmgh.xps:xpsdSsMt6CxsKN7L1GenWvxO6.dn:acint__net.adcm:hit.tg:adcmjs_noorient
185.15.175.158200 OK 64 B URL HTTP/1.1 dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1674300973534&i=690963659592260.369295166567487&a=77&e=1503420A2BCECB63670B471F02039CC7&pref=https%3A%2F%2Fmodgen.net%2F&c=ss:77.up:1503420A2BCECB63670B471F02039CC7.sync:up.xdua:dudfED04c5oOK7GkPkM4Kmgh.xps:xpsdSsMt6CxsKN7L1GenWvxO6.dn:acint__net.adcm:hit.tg:adcmjs_noorient
IP 185.15.175.158:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ffd585dfb1ac6320633a0be46d579437
5a6033d23bc9cd5d1de9ee61de69a44428086dcb
df18d81deb0cc1c48ae87e6481bb4ee375b40cce0fec3d226e002704d49f6cc8
GET /awg/custom/1093/i/i?call_source=awg&ts=1674300973534&i=690963659592260.369295166567487&a=77&e=1503420A2BCECB63670B471F02039CC7&pref=https%3A%2F%2Fmodgen.net%2F&c=ss:77.up:1503420A2BCECB63670B471F02039CC7.sync:up.xdua:dudfED04c5oOK7GkPkM4Kmgh.xps:xpsdSsMt6CxsKN7L1GenWvxO6.dn:acint__net.adcm:hit.tg:adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Type: image/gif
Content-Length: 64
Connection: keep-alive
Vary: Accept-Encoding
Request-Time: 3
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only
www.acint.net/ping/?v=0.5.0&uid=094ed70e-4dc6-486d-9d68-d833dc1f6c1e&dp=10&tz=%2B00%3A00&nc=51356649&dT=2023-01-21T11%3A36%3A13.840
193.3.184.228200 OK 43 B URL HTTP/2 www.acint.net/ping/?v=0.5.0&uid=094ed70e-4dc6-486d-9d68-d833dc1f6c1e&dp=10&tz=%2B00%3A00&nc=51356649&dT=2023-01-21T11%3A36%3A13.840
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /ping/?v=0.5.0&uid=094ed70e-4dc6-486d-9d68-d833dc1f6c1e&dp=10&tz=%2B00%3A00&nc=51356649&dT=2023-01-21T11%3A36%3A13.840 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modgen.net/
Cookie: aid=CkIDFWPLzisfRwtnx5wDAo6IhDKcKsK4pPWd3Ps/4icbjOS5; test_cookie=CheckForPermission; cSyncDp7v2=1674300971; cSyncDp14v3=1674300971; cSyncDp17=1674300971; cSyncDp32=1674300971; cSyncDp45v3=1674300971; cSyncDp53=1674300971; cSyncDp54v2=1674300971; cSyncDp62=1674300971; cSyncDp67v2=1674300971; cSyncDp68=1674300971; cSyncDp71=1674300971; cSyncDp77=1674300971; cSyncDp84=1674300971; cSyncDp85=1674300971; cSyncDp95v3=1674300971; cSyncDp101=1674300971; cSyncDp104v2=1674300971; cSyncDp107=1674300971; cSyncDp110=1674300971; cSyncDp111v2=1674300971; cSyncDp112v2=1674300971; cSyncDp125v2=1674300971; cSyncDp126=1674300971; cSyncDp127=1674300971; cSyncDp129=1674300971; cSyncDp136v2=1674300971; cSyncDp138=1674300971; cSyncDp146=1674300971; cSyncDp148=1674300971; cSyncDp149v2=1674300971; cSyncDp151=1674300971; cSyncDp178=1674300971; cSyncDp179=1674300971; cSyncDp186=1674300971; cSyncDp221=1674300971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 21 Jan 2023 11:36:14 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
an.yandex.ru/mapuid/sapeis/1503420A2BCECB63670B471F02039CC7
93.158.134.90302 Found 0 B URL HTTP/2 an.yandex.ru/mapuid/sapeis/1503420A2BCECB63670B471F02039CC7
IP 93.158.134.90:0
GET /mapuid/sapeis/1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
timing-allow-origin: *
location: https://an.yandex.ru/mapuid/sapeis/1503420A2BCECB63670B471F02039CC7?redir-setuniq=1
date: Sat, 21 Jan 2023 11:36:13 GMT
set-cookie: yandexuid=7167996731674300973; domain=.yandex.ru; path=/; expires=Tue, 18-Jan-2033 11:36:13 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 21 Jan 2023 11:36:13 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Sat, 21 Jan 2023 11:36:13 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
www.acint.net/mc/?dp=10&tc=1
193.3.184.228200 OK 0 B URL HTTP/2 www.acint.net/mc/?dp=10&tc=1
IP 193.3.184.228:0
GET /mc/?dp=10&tc=1 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://modgen.net/
Connection: keep-alive
Cookie: aid=CkIDFWPLzisfRwtnx5wDAo6IhDKcKsK4pPWd3Ps/4icbjOS5; test_cookie=CheckForPermission
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 21 Jan 2023 11:36:11 GMT
content-type: text/html
set-cookie: cSyncDp7v2=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp14v3=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp17=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp32=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp45v3=1674300971; expires=Sun, 22-Jan-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp53=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp54v2=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp62=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp67v2=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp68=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp71=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp77=1674300971; expires=Sat, 04-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp84=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp85=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp95v3=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp101=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp104v2=1674300971; expires=Sat, 04-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp107=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp110=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp111v2=1674300971; expires=Sat, 04-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp112v2=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp125v2=1674300971; expires=Sun, 05-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp126=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp127=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp129=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp136v2=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp138=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp146=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp148=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp149v2=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp151=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp178=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp179=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp186=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp221=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
content-encoding: gzip
X-Firefox-Spdy: h2
an.yandex.ru/mapuid/gonetdspis/Njk3YzYwYjIxODExNDZiOA?redir-setuniq=1
93.158.134.90200 OK 0 B URL HTTP/2 an.yandex.ru/mapuid/gonetdspis/Njk3YzYwYjIxODExNDZiOA?redir-setuniq=1
IP 93.158.134.90:0
GET /mapuid/gonetdspis/Njk3YzYwYjIxODExNDZiOA?redir-setuniq=1 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
date: Sat, 21 Jan 2023 11:36:13 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 21 Jan 2023 11:36:13 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Sat, 21 Jan 2023 11:36:13 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif; charset=utf-8
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
an.yandex.ru/mapuid/gonetdspis/Njk3YzYwYjIxODExNDZiOA
93.158.134.90302 Found 0 B URL HTTP/2 an.yandex.ru/mapuid/gonetdspis/Njk3YzYwYjIxODExNDZiOA
IP 93.158.134.90:0
GET /mapuid/gonetdspis/Njk3YzYwYjIxODExNDZiOA HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
timing-allow-origin: *
location: https://an.yandex.ru/mapuid/gonetdspis/Njk3YzYwYjIxODExNDZiOA?redir-setuniq=1
date: Sat, 21 Jan 2023 11:36:13 GMT
set-cookie: yandexuid=6710417901674300973; domain=.yandex.ru; path=/; expires=Tue, 18-Jan-2033 11:36:13 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 21 Jan 2023 11:36:13 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Sat, 21 Jan 2023 11:36:13 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Monsieur+La+Doulaise&display=swap
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Monsieur+La+Doulaise&display=swap
IP 142.250.74.106:0
GET /css?family=Monsieur+La+Doulaise&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modgen.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 21 Jan 2023 11:36:11 GMT
date: Sat, 21 Jan 2023 11:36:11 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ssp.bidvol.com/usersync?dspcsid=8&redirect=1
65.109.65.188302 Found 0 B URL HTTP/2 ssp.bidvol.com/usersync?dspcsid=8&redirect=1
IP 65.109.65.188:0
ASN #24940 Hetzner Online GmbH
GET /usersync?dspcsid=8&redirect=1 HTTP/1.1
Host: ssp.bidvol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx/1.22.0
date: Sat, 21 Jan 2023 11:36:12 GMT
x-request-id: bbd78765-3760-4c5a-8aa8-ef375fc08547
set-cookie: bvuid=erpthaiv9a; Max-Age=2147483647; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT; Secure; SameSite=None
bvuid2=erpthaiv9a; Max-Age=2147483647; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT
vary: Origin
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
pragma: no-cache
expires: 0
surrogate-control: no-store
location: https://www.acint.net/match?dp=129&euid=erpthaiv9a
X-Firefox-Spdy: h2