Report - modgen.net/the-definitive-guide-to-bdsm-for-beginners

Report Overview

Submitted URL
modgen.net/the-definitive-guide-to-bdsm-for-beginners
IP
151.106.107.244
ASN
#47583 Hostinger International Limited
Submitted
2023-01-21 11:36:21
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
6

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
sync.dmp.otm-r.com	19534	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	419 B	134 B	194.55.244.183
s.uuidksinc.net	3423	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	424 B	322 B	31.220.27.155
sync.republer.com	45392	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	386 B	133 B	23.88.82.46
adlmerge.com	146521	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	422 B	172 B	95.211.66.35
ads.betweendigital.com	1571	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.9 kB	2.4 kB	188.42.34.64
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	957 B	60 kB	142.250.74.67
lh6.googleusercontent.com	458	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.8 kB	2.9 MB	142.250.74.97
dmp.gotechnology.io	48839	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	875 B	904 B	167.235.32.7
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	4.8 kB	172.64.155.188
dmg.digitaltarget.ru	21471	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	3.2 kB	185.15.175.158
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5.8 kB	12 kB	142.250.74.131
ocsp.globalsign.com	2075	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.5 kB	12 kB	104.18.20.226
sync.1dmp.io	10017	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	502 B	95 B	136.243.148.229
mediatoday.ru	136083	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	423 B	521 B	139.45.228.100
sync.adkernel.com	4993	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	469 B	190 B	77.245.57.72
x01.aidata.io	12188	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	865 B	1.3 kB	89.108.119.43
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.39.122.167
ssp.bestssp.com	90974	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	438 B	361 B	185.147.80.35
acint.net	22962	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	780 B	193.3.184.228
lh3.googleusercontent.com	66	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	567 B	753 kB	142.250.74.97
ocsp2.globalsign.com	1544	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	357 B	1.9 kB	104.18.20.226
ceaa9ab6-997f-11ed-a1c4-002590c82437.n1.sync.bumlam.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	488 B	165 B	188.120.241.43
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
dm-eu.hybrid.ai	28847	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	419 B	528 B	37.18.103.22
exchange.buzzoola.com	18389	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	483 B	382 B	167.235.33.115
redirect.frontend.weborama.fr	8348	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	994 B	1.4 kB	35.190.24.218
modgen.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	24 kB	151.106.107.244
1503420a2bcecb63670b471f02039cc7-sp.ops.beeline.ru	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	449 B	828 B	37.9.245.57
sync.bumlam.com	3243	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	1.9 kB	31.172.81.160
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	5.6 kB	142.250.74.106
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	68 kB	34.120.237.76
ad.mail.ru	7643	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	412 B	756 B	95.163.41.56
lh5.googleusercontent.com	157	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	567 B	587 kB	142.250.74.97
cm.g.doubleclick.net	202	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	447 B	657 B	142.250.74.130
ocsp.godaddy.com	698	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	340 B	2.3 kB	192.124.249.24
an.yandex.ru	2577	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	2.7 kB	93.158.134.90
ssp.bidvol.com	31817	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	398 B	631 B	65.109.65.188
www.acint.net	29072	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	17 kB	32 kB	193.3.184.228
a.utraff.com	39874	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	380 B	1.1 kB	172.67.217.151
sync.upravel.com	28097	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	890 B	1.7 kB	176.9.8.252
tag.digitaltarget.ru	98193	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	745 B	19 kB	185.15.175.144
ocsp.usertrust.com	899	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	342 B	1.0 kB	172.64.155.188
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	341 B	797 B	93.184.220.29
ad.adriver.ru	19548	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	875 B	1.4 kB	195.209.108.45
match.new-programmatic.com	33613	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	434 B	213 B	217.65.2.150
ssp.adriver.ru	12439	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	881 B	376 B	81.222.128.215
ut.rktch.com	41215	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	423 B	593 B	89.108.97.2
pix.bumlam.com	92002	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.1 kB	31.172.81.160
cs.agency2.ru	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	721 B	23.111.107.44
ads.adlook.me	43352	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	442 B	797 B	5.101.76.186
px.adhigh.net	10272	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	848 B	1.0 kB	194.190.76.41
sm.rtb.mts.ru	27154	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	838 B	1.0 kB	217.66.147.33
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6.8 kB	18 kB	95.101.11.115
stat.adlabs.ru	200922	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	424 B	191 B	109.248.237.37
nr.bidderstack.com	352019	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	421 B	222 B	23.88.12.14

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-21	medium	modgen.net/the-definitive-guide-to-bdsm-for-beginners	Malware
2023-01-21	medium	modgen.net/the-definitive-guide-to-bdsm-for-beginners	Malware
2023-01-21	medium	modgen.net/the-definitive-guide-to-bdsm-for-beginners/	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (21)

	URL	Size	First Seen	Last Seen
	modgen.net/wp-content/themes/prefer/js/skip-link-focus-fix.js?ver=20200412	716 B	2023-03-07	2024-05-07
Pretty URL modgen.net/wp-content/themes/prefer/js/skip-link-focus-fix.js?ver=20200412 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:31 Last Seen2024-05-07 23:05:08 Times Seen898 Hash 306f7b49ccd55de683e972c4bc8edf0b f36f53cb950367fff7455566e6c0f293bfe863ae 93c964e1bd5719c525c73073cf64f4c2b03dd6d4fa846d5bce3142596b3f1e97 Loading...

	www.acint.net/aci.js	24 kB	2023-03-12	2023-03-13
Pretty URL www.acint.net/aci.js IP 193.3.184.228 ASN #50214 QWARTA LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 19:09:04 Last Seen2023-03-13 14:56:48 Times Seen1 Hash 2a3b4729cdc781aa2e88c6c401334a07 18ad3734a2be60b76759c16234ac977446aad8b5 10e905d0c5be1b88a72a3259db9500b7d3e2f5bc3787b7a36cf3d8dfb572dd7c Loading...

	tag.digitaltarget.ru/adcm.js	3.1 kB	2023-03-07	2023-05-06
Pretty URL tag.digitaltarget.ru/adcm.js IP 185.15.175.144 ASN #43226 SafeData LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:47 Last Seen2023-05-06 00:46:41 Times Seen299 Hash e7097284185069f52fc736bcd50cda13 1cdfdf2d869841202079ddf91e0a00a8610812e6 40f2a96f78f4c8484e9da6e172f5ddd3e4d7786ca29e04b96e1067a365190e80 Loading...

	modgen.net/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	90 kB	2023-03-08	2024-05-08
Pretty URL modgen.net/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-05-08 01:53:21 Times Seen31986 Hash 17738318d61d394f1de8890d589afaec f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3 cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981 Loading...

	modgen.net/wp-content/themes/prefer/assets/js/slick.js?ver=4.6.0	92 kB	2023-03-07	2024-05-03
Pretty URL modgen.net/wp-content/themes/prefer/assets/js/slick.js?ver=4.6.0 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:57 Last Seen2024-05-03 14:02:22 Times Seen523 Hash db662f1499e90a76fd4de2fbc87250b3 def1bf16e5ddfddd29e53546627b5cd6f3915de6 6596a1e2c00a9382621eecdd04431e99c4638499a25fe64389d690a05d838a15 Loading...

	modgen.net/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1	19 kB	2023-03-07	2024-05-08
Pretty URL modgen.net/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-05-08 01:53:21 Times Seen38212 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	modgen.net/wp-content/themes/prefer/assets/js/script.js?ver=20200412	2.1 kB	2023-03-13	2023-06-08
Pretty URL modgen.net/wp-content/themes/prefer/assets/js/script.js?ver=20200412 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 04:46:54 Last Seen2023-06-08 19:37:52 Times Seen3 Hash 9e7d619041170045032b427e1ff31c9d 48e3027f67b064800bffa5652716601ed35fd734 238d26c575f04147bafff512769ba97720dec608af0392ef913a6a6f6d7ba727 Loading...

	modgen.net/wp-content/themes/prefer/assets/js/custom.js?ver=20200412	1.9 kB	2023-03-13	2023-06-08
Pretty URL modgen.net/wp-content/themes/prefer/assets/js/custom.js?ver=20200412 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 04:46:54 Last Seen2023-06-08 19:37:52 Times Seen3 Hash 5d4aec7896f35934165e25b4e7e90127 5941b981152f06c214fd6b49fcd44b7bdd62c72d 1f11617ba2fcc9ec841ce3164552b2532059f38b98ddcb12ac864ba44a2a5f6a Loading...

	modgen.net/wp-content/themes/prefer/assets/js/canvi-custom.js?ver=4.6.0	710 B	2023-03-13	2023-06-08
Pretty URL modgen.net/wp-content/themes/prefer/assets/js/canvi-custom.js?ver=4.6.0 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 04:46:54 Last Seen2023-06-08 19:37:52 Times Seen3 Hash 0e7e05c348feff163af959c28186c8d0 303ae5b2e48cd4551705a1c0c0d5a294628d5dd2 82fc40b454bb92e2605d07e942cb995ec5f81aa319c3f6ad434d8c0fe4ec962c Loading...

	modgen.net/the-definitive-guide-to-bdsm-for-beginners/	205 B	2023-03-13	2023-03-13
Pretty URL modgen.net/the-definitive-guide-to-bdsm-for-beginners/ IP 151.106.107.244 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 04:46:54 Last Seen2023-03-13 04:46:54 Times Seen1 Hash f9f96f384c3e4b875648a0a7eddeaa7f 62649985d48341657fd825a18184218affc5133f 66ce5267354bc5137312bc0a1ea33309342854cee7f39bd2d451323db8766029 Loading...

	modgen.net/wp-includes/js/comment-reply.min.js?ver=6.1.1	3.0 kB	2023-03-07	2024-05-08
Pretty URL modgen.net/wp-includes/js/comment-reply.min.js?ver=6.1.1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-05-08 02:13:19 Times Seen29766 Hash 492f2c1a7ea7eb83fe42e0ff7cb51aa2 db36a77f6aaa2063bfbec02c2c0e967438c5a245 e174a58a503ab84b3d1b9de12fd3895788204485170f1289e445f7b5b98ec789 Loading...

	www.acint.net/oci.js?t=1674300970839	32 kB	2023-03-12	2024-05-08
Pretty URL www.acint.net/oci.js?t=1674300970839 IP 193.3.184.228 ASN #50214 QWARTA LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 19:09:04 Last Seen2024-05-08 01:05:24 Times Seen2178 Hash c3fa5133b6899a2abb39fb79ed94300f dc1d5c75420b38cd7509a783ed09345d0ff78ac4 66b141eb9ae44c86efc510844a71cf208c02d02abe03af3a7d8cc26736d3e19c Loading...

	modgen.net/the-definitive-guide-to-bdsm-for-beginners/	2.1 kB	2023-03-13	2023-03-13
Pretty URL modgen.net/the-definitive-guide-to-bdsm-for-beginners/ IP 151.106.107.244 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 04:46:54 Last Seen2023-03-13 04:46:54 Times Seen1 Hash 72946983d0f34b15e95e780f99c332d2 5bb4c15618b7fa6c32a65c7e16417fc74e97e2ed 015375160a42191c3c9129150a591f92a923368ad25a58f0bef27e1b2bc40a81 Loading...

	modgen.net/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-05-08
Pretty URL modgen.net/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-05-08 02:00:47 Times Seen69112 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	modgen.net/the-definitive-guide-to-bdsm-for-beginners/	250 B	2023-03-07	2024-05-06
Pretty URL modgen.net/the-definitive-guide-to-bdsm-for-beginners/ IP 151.106.107.244 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:22 Last Seen2024-05-06 22:55:09 Times Seen648 Hash 537357420024d824760d7686fbdf31fe 5e14660b667fdc602c82300ccf3253afc242e4bb ca2f5769fc415a62dd2cd8af83b9b64604715e602f6de4c7741f9992a7003a29 Loading...

	modgen.net/wp-content/themes/prefer/assets/js/theia-sticky-sidebar.js?ver=20200412	15 kB	2023-03-07	2024-04-30
Pretty URL modgen.net/wp-content/themes/prefer/assets/js/theia-sticky-sidebar.js?ver=20200412 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:57 Last Seen2024-04-30 21:01:13 Times Seen307 Hash 67563fd07e563662d39a3177f01554d3 ba7273cad71f8f3c050a1c29ce3ff23f4b3c5932 794b9e10816a6252aef7eb75ced45cf53dd47eafe1773ab94c141727132460b8 Loading...

	modgen.net/wp-content/themes/prefer/js/navigation.js?ver=20200412	3.1 kB	2023-03-07	2024-05-07
Pretty URL modgen.net/wp-content/themes/prefer/js/navigation.js?ver=20200412 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:29:54 Last Seen2024-05-07 23:05:09 Times Seen300 Hash 05c59609caf3eee24b0d68f988dadd3c c7fa827c00a3d9b61242d9bfb25f42b36e993650 960deecec99fa9f409481875149b5fc45c818119aea5bad16b1212b9e1bb8b71 Loading...

	modgen.net/wp-content/themes/prefer/assets/js/canvi.js?ver=4.6.0	9.8 kB	2023-03-13	2023-10-26
Pretty URL modgen.net/wp-content/themes/prefer/assets/js/canvi.js?ver=4.6.0 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 04:46:54 Last Seen2023-10-26 10:37:50 Times Seen5 Hash df74a83b2184eafeeb8e201499b1f881 00420e1f9d6271e5b0bd4eb9f3f4fc65c0440f53 0867367c8510d40b8680babbc11874ee8959fb2502505640c9870463d7feb177 Loading...

	modgen.net/wp-content/themes/prefer/assets/js/custom-sticky-sidebar.js?ver=20200412	449 B	2023-03-07	2024-02-25
Pretty URL modgen.net/wp-content/themes/prefer/assets/js/custom-sticky-sidebar.js?ver=20200412 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:59:16 Last Seen2024-02-25 09:14:16 Times Seen27 Hash 8a388807fdd028578dc13a3a387b57e8 75c11891a002aabb2a4f34ed87729de501dfb891 349365d9eaf813326b653727955337402d607c15f9293b366cdd9aafdaa306cc Loading...

	www.acint.net/mc/?dp=10&tc=1	199 B	2023-03-13	2023-03-13
Pretty URL www.acint.net/mc/?dp=10&tc=1 IP 193.3.184.228 ASN #50214 QWARTA LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 04:46:54 Last Seen2023-03-13 04:46:54 Times Seen1 Hash 3c3bf69e297033032964451a16c8068f 6bee79991b4f7f8c5484b9acaf73280835028351 0de670809cee4dbacbdc29800128d4e41e9cdb3f7aaead7a40dd541ef6002422 Loading...

	tag.digitaltarget.ru/processor.js?i=478188536337204	16 kB	2023-03-09	2023-05-06
Pretty URL tag.digitaltarget.ru/processor.js?i=478188536337204 IP 185.15.175.144 ASN #43226 SafeData LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:01:11 Last Seen2023-05-06 00:46:42 Times Seen346 Hash 736e2fb1da94f3277e3f931048c1b9f3 196387db95a17da825b629de3542eff901b09905 4569d4e1b0e52b6316681f7312674f43ecb2b72ea8ab4adb2375e3686862c7dc Loading...

HTTP Transactions (155)

URL IP Response Size

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4714c95a0c854e38f9be444f9343bf14
07ce5eb635448f2b3bafbe51e4dfeef47cdf4f7b
4d47e08c9afb704096e93a51f6e95c0dc7c7bc31e67ded39998ff37ed56e0965

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D47E08C9AFB704096E93A51F6E95C0DC7C7BC31E67DED39998FF37ED56E0965"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7177
Expires: Sat, 21 Jan 2023 13:35:46 GMT
Date: Sat, 21 Jan 2023 11:36:09 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
20d267853e48ef7d476459ed67da5d97
06d1bd08efd69c0e93486d3c423fa2640f372d29
24323cd45ca2ed01c63f908233d9b2ad5bb6f63394884c45bf6abb0221d0edd6

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "24323CD45CA2ED01C63F908233D9B2AD5BB6F63394884C45BF6ABB0221D0EDD6"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17378
Expires: Sat, 21 Jan 2023 16:25:47 GMT
Date: Sat, 21 Jan 2023 11:36:09 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
17094b856fde02b2c8c2d3845ad325cf
26dc3f2ebf81faf5ab96eb75ffcbead6085528b8
6547376c41dcaa352cc4e747291916902bcddc0032b750bd84c5e3b2fe6f7d16

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6547376C41DCAA352CC4E747291916902BCDDC0032B750BD84C5E3B2FE6F7D16"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14472
Expires: Sat, 21 Jan 2023 15:37:22 GMT
Date: Sat, 21 Jan 2023 11:36:10 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 21 Jan 2023 11:34:44 GMT
content-type: application/json
age: 86
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: RkAz107IypXr+Ykr0O/QGXy1UpX6PRr9ahni6FxJwuRG89IRpjHlF826FpSuvImP4qAZGm9zvw0=
x-amz-request-id: HKF3KVZP9BJ98E47
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 21 Jan 2023 10:46:46 GMT
age: 2964
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 11:36:10 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

modgen.net/the-definitive-guide-to-bdsm-for-beginners

151.106.107.244

301 Moved Permanently

707 B

URL HTTP/1.1
modgen.net/the-definitive-guide-to-bdsm-for-beginners
IP
151.106.107.244:0
ASN
#47583 Hostinger International Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
707 B (707 bytes)
Hash
1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /the-definitive-guide-to-bdsm-for-beginners HTTP/1.1
Host: modgen.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Sat, 21 Jan 2023 11:36:10 GMT
server: LiteSpeed
location: https://modgen.net/the-definitive-guide-to-bdsm-for-beginners
platform: hostinger
content-security-policy: upgrade-insecure-requests

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 21 Jan 2023 11:17:29 GMT
age: 1121
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
fc96297d0b59147e8f6052b16f1ca13f
23aeddfa143bb9be19b2ed06f2024a3a8aa120ce
034327c6ada560c662f451f3c95cd8531482d4ab51629e95875fab54c8f3e49a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4279
Cache-Control: max-age=168117
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:10 GMT
Etag: "63cbab28-1d7"
Expires: Mon, 23 Jan 2023 10:18:07 GMT
Last-Modified: Sat, 21 Jan 2023 09:06:48 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

modgen.net/the-definitive-guide-to-bdsm-for-beginners

151.106.107.244

301 Moved Permanently

0 B

URL HTTP/2
modgen.net/the-definitive-guide-to-bdsm-for-beginners
IP
151.106.107.244:0
ASN
#47583 Hostinger International Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /the-definitive-guide-to-bdsm-for-beginners HTTP/1.1
Host: modgen.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 301 Moved Permanently
x-powered-by: PHP/7.4.32
content-type: text/html; charset=UTF-8
x-pingback: https://modgen.net/xmlrpc.php
x-redirect-by: WordPress
location: https://modgen.net/the-definitive-guide-to-bdsm-for-beginners/
x-litespeed-cache: miss
content-length: 0
date: Sat, 21 Jan 2023 11:36:10 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

modgen.net/the-definitive-guide-to-bdsm-for-beginners/

151.106.107.244

200 OK

22 kB

URL HTTP/2
modgen.net/the-definitive-guide-to-bdsm-for-beginners/
IP
151.106.107.244:0
ASN
#47583 Hostinger International Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9419), with CRLF, LF line terminators
Size
22 kB (21606 bytes)
Hash
05ddd38891547f07b73db8ca031a9a58
8ec9be2af438a63f84a8c35cb0a8b398467cb101
56059998425f8763c8f7e2cd754cf3e8b18549c95ec610fd38bce7e6618b7463

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /the-definitive-guide-to-bdsm-for-beginners/ HTTP/1.1
Host: modgen.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

HTTP/2 200 OK
x-powered-by: PHP/7.4.32
content-type: text/html; charset=UTF-8
x-pingback: https://modgen.net/xmlrpc.php
link: <https://modgen.net/wp-json/>; rel="https://api.w.org/", <https://modgen.net/wp-json/wp/v2/posts/205>; rel="alternate"; type="application/json", <https://modgen.net/?p=205>; rel=shortlink
etag: "16087-1674293233;br"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding
content-length: 21606
date: Sat, 21 Jan 2023 11:36:10 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

push.services.mozilla.com/

52.39.122.167

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.39.122.167:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: UxeutKoV6Z9w+Lr7ni1OtQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: KEMOZzfiLhDHsfBWJUhqqfkTYpU=

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5422c49666fc195ae94aa0f5cf837bfc
e0f1dd926cd9328ccf9cc99389337056c62f1043
f639aad2dc85708fa922b793660f13ae597f275a8ebf61e7e72fb2bce257cc76

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5422c49666fc195ae94aa0f5cf837bfc
e0f1dd926cd9328ccf9cc99389337056c62f1043
f639aad2dc85708fa922b793660f13ae597f275a8ebf61e7e72fb2bce257cc76

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5422c49666fc195ae94aa0f5cf837bfc
e0f1dd926cd9328ccf9cc99389337056c62f1043
f639aad2dc85708fa922b793660f13ae597f275a8ebf61e7e72fb2bce257cc76

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5422c49666fc195ae94aa0f5cf837bfc
e0f1dd926cd9328ccf9cc99389337056c62f1043
f639aad2dc85708fa922b793660f13ae597f275a8ebf61e7e72fb2bce257cc76

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e6d21eff1927f7a74984663b16cfe21a
b747f7d42cdf7cfea6900348cd257066b2634222
a4343acb5bda29aa0d6d64bbefd6bc07a1c5e0166646171be74f4a1d266e3c92

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e6d21eff1927f7a74984663b16cfe21a
b747f7d42cdf7cfea6900348cd257066b2634222
a4343acb5bda29aa0d6d64bbefd6bc07a1c5e0166646171be74f4a1d266e3c92

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.googleapis.com/css?family=Josefin+Sans:ital,wght@0,300;0,400;0,500;0,600;0,700;1,400;1,500;1,600;1,700&display=swap

142.250.74.106

200 OK

1.0 kB

URL HTTP/2
fonts.googleapis.com/css?family=Josefin+Sans:ital,wght@0,300;0,400;0,500;0,600;0,700;1,400;1,500;1,600;1,700&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
data
Size
1.0 kB (1038 bytes)
Hash
5851082b9f0923bb65c113f38beea009
027b923332a87301bc4ccdb820b325edda1a8863
d952d8e3db1dd15125714ec53a9de71166b10fdb028bf1db0f466bb29b089018

HTTP Headers

GET /css?family=Josefin+Sans:ital,wght@0,300;0,400;0,500;0,600;0,700;1,400;1,500;1,600;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modgen.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 21 Jan 2023 11:36:11 GMT
date: Sat, 21 Jan 2023 11:36:11 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e6d21eff1927f7a74984663b16cfe21a
b747f7d42cdf7cfea6900348cd257066b2634222
a4343acb5bda29aa0d6d64bbefd6bc07a1c5e0166646171be74f4a1d266e3c92

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e6d21eff1927f7a74984663b16cfe21a
b747f7d42cdf7cfea6900348cd257066b2634222
a4343acb5bda29aa0d6d64bbefd6bc07a1c5e0166646171be74f4a1d266e3c92

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/muli/v28/7Auwp_0qiz-afTLGLQ.woff2

142.250.74.67

200 OK

31 kB

URL HTTP/2
fonts.gstatic.com/s/muli/v28/7Auwp_0qiz-afTLGLQ.woff2
IP
142.250.74.67:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 31196, version 1.0\012- data
Size
31 kB (31196 bytes)
Hash
ea2343c7dccad57360fb611d67204445
b603d9e68bb1ed5e4b33d5e31121160cb4d23452
2a04078f9550381b5148170ceaf5b378a1b31ed8274c6d0094aeba6f599462cc

HTTP Headers

GET /s/muli/v28/7Auwp_0qiz-afTLGLQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://modgen.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31196
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 18 Jan 2023 14:34:43 GMT
expires: Thu, 18 Jan 2024 14:34:43 GMT
cache-control: public, max-age=31536000
age: 248488
last-modified: Mon, 11 Jul 2022 20:43:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/josefinsans/v25/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2

142.250.74.67

200 OK

27 kB

URL HTTP/2
fonts.gstatic.com/s/josefinsans/v25/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2
IP
142.250.74.67:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 26592, version 1.0\012- data
Size
27 kB (26592 bytes)
Hash
c2d66029cf6ae68a19e1398fc02feda6
c37e5907e49d2ed5b11f59841a3d16c911da7a5c
3701f4ae604d8fccb4ddca393e076a456aebfb06c1a9d94c1c13089293f55716

HTTP Headers

GET /s/josefinsans/v25/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://modgen.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 26592
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 18 Jan 2023 20:42:49 GMT
expires: Thu, 18 Jan 2024 20:42:49 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 20:56:22 GMT
content-type: font/woff2
age: 226402
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e6d21eff1927f7a74984663b16cfe21a
b747f7d42cdf7cfea6900348cd257066b2634222
a4343acb5bda29aa0d6d64bbefd6bc07a1c5e0166646171be74f4a1d266e3c92

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe538be960240e970aa1e22d0387e1cc
46e31b99970d49ef162089414c438c9c923e63d5
791b61ea4b218027c1d2f05d1f7652c87e676be88e869000004bc4341295c54a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "791B61EA4B218027C1D2F05D1F7652C87E676BE88E869000004BC4341295C54A"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2903
Expires: Sat, 21 Jan 2023 12:24:34 GMT
Date: Sat, 21 Jan 2023 11:36:11 GMT
Connection: keep-alive

www.acint.net/aci.js

193.3.184.228

200 OK

7.8 kB

URL HTTP/2
www.acint.net/aci.js
IP
193.3.184.228:0
ASN
#50214 QWARTA LLC

File type
ASCII text, with very long lines (1649)
Size
7.8 kB (7757 bytes)
Hash
23df47b4330754db70e9c1e32f0092d6
dea956b3a9dad9fa3cc352180be435943e8d0352
0056d5c8969a597094abb6cc9f3a383631ba9c0f13ac620d735f0788807fb4de

HTTP Headers

GET /aci.js HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modgen.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: openresty
date: Sat, 21 Jan 2023 11:36:11 GMT
content-type: application/x-javascript
content-length: 7757
last-modified: Mon, 09 Jan 2023 08:01:12 GMT
etag: "63bbc9c8-1e4d"
content-encoding: gzip
expires: Sat, 21 Jan 2023 23:36:11 GMT
cache-control: max-age=43200
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b6b06a47d5f35483956c51ae6b96af06
e49f5f703895b470f0afafe0d2182f0f49383b2c
b14f34188f8acb034cc830f2fb93521063d1089be92f0fac7b3e306d54ea8944

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b6b06a47d5f35483956c51ae6b96af06
e49f5f703895b470f0afafe0d2182f0f49383b2c
b14f34188f8acb034cc830f2fb93521063d1089be92f0fac7b3e306d54ea8944

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b6b06a47d5f35483956c51ae6b96af06
e49f5f703895b470f0afafe0d2182f0f49383b2c
b14f34188f8acb034cc830f2fb93521063d1089be92f0fac7b3e306d54ea8944

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b6b06a47d5f35483956c51ae6b96af06
e49f5f703895b470f0afafe0d2182f0f49383b2c
b14f34188f8acb034cc830f2fb93521063d1089be92f0fac7b3e306d54ea8944

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b6b06a47d5f35483956c51ae6b96af06
e49f5f703895b470f0afafe0d2182f0f49383b2c
b14f34188f8acb034cc830f2fb93521063d1089be92f0fac7b3e306d54ea8944

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.acint.net/hit/?v=0.5.0&uid=094ed70e-4dc6-486d-9d68-d833dc1f6c1e&dp=10&tz=%2B00%3A00&nc=24317762&u=https%3A%2F%2Fmodgen.net%2Fthe-definitive-guide-to-bdsm-for-beginners%2F&r=&rs=1280x1024&t=The%20Definitive%20Guide%20To%20BDSM%20For%20Beginners%20%7C%20Modgen&oE=1&oP=1&dT=2023-01-21T11%3A36%3A10.837&fu=0ce64878-07c9-4196-ac8b-b7c19ad223bc

193.3.184.228

200 OK

43 B

URL HTTP/2
www.acint.net/hit/?v=0.5.0&uid=094ed70e-4dc6-486d-9d68-d833dc1f6c1e&dp=10&tz=%2B00%3A00&nc=24317762&u=https%3A%2F%2Fmodgen.net%2Fthe-definitive-guide-to-bdsm-for-beginners%2F&r=&rs=1280x1024&t=The%20Definitive%20Guide%20To%20BDSM%20For%20Beginners%20%7C%20Modgen&oE=1&oP=1&dT=2023-01-21T11%3A36%3A10.837&fu=0ce64878-07c9-4196-ac8b-b7c19ad223bc
IP
193.3.184.228:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /hit/?v=0.5.0&uid=094ed70e-4dc6-486d-9d68-d833dc1f6c1e&dp=10&tz=%2B00%3A00&nc=24317762&u=https%3A%2F%2Fmodgen.net%2Fthe-definitive-guide-to-bdsm-for-beginners%2F&r=&rs=1280x1024&t=The%20Definitive%20Guide%20To%20BDSM%20For%20Beginners%20%7C%20Modgen&oE=1&oP=1&dT=2023-01-21T11%3A36%3A10.837&fu=0ce64878-07c9-4196-ac8b-b7c19ad223bc HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modgen.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Sat, 21 Jan 2023 11:36:11 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
set-cookie: aid=CkIDFWPLzisfRwtnx5wDAo6IhDKcKsK4pPWd3Ps/4icbjOS5; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2

www.acint.net/mc/?dp=10

193.3.184.228

302 Found

154 B

URL HTTP/2
www.acint.net/mc/?dp=10
IP
193.3.184.228:0
ASN
#50214 QWARTA LLC

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
154 B (154 bytes)
Hash
cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319

HTTP Headers

GET /mc/?dp=10 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modgen.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: openresty
date: Sat, 21 Jan 2023 11:36:11 GMT
content-type: text/html
content-length: 154
location: /mc/?dp=10&tc=1
set-cookie: test_cookie=CheckForPermission; path=/; Secure; SameSite=None; domain=.acint.net; expires=Sat, 21-Jan-23 11:46:11 GMT
aid=CkIDE2PLziuPEAggmQgbAnZI4ewViryebp98bvRop6OJ6bfF; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2

a.utraff.com/sync?ssp=sape

172.67.217.151

204 No Content

0 B

URL HTTP/2
a.utraff.com/sync?ssp=sape
IP
172.67.217.151:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sync?ssp=sape HTTP/1.1
Host: a.utraff.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
date: Sat, 21 Jan 2023 11:36:12 GMT
content-type: text/plain
set-cookie: preutid=1; Expires=Mon, 20 Feb 2023 14:36:11 GMT; Domain=.itraff.net; SameSite=None; Secure; Path=/
preutid=1; Expires=Mon, 20 Feb 2023 14:36:11 GMT; Domain=.utraff.com; SameSite=None; Secure; Path=/
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MQygpc5xGeQY7Fb7nG2vCkvmZGtFkUXPP%2Bhi8814LEHDmgr7e2KQGjkY3jUs0%2FFKXbk3%2Frjohh1Bq7Sgo0uxP129iMnUwxufg9lRNM57zRzEOzsoh7nSKZ%2Fz1NnS%2FfQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78cfc032dd62fab8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.acint.net/oci/?v=0.5.0&uid=094ed70e-4dc6-486d-9d68-d833dc1f6c1e&dp=10&tz=%2B00%3A00&nc=49040176&oid=39e8192718f4ed5a678fc273d654392b

193.3.184.228

200 OK

43 B

URL HTTP/2
www.acint.net/oci/?v=0.5.0&uid=094ed70e-4dc6-486d-9d68-d833dc1f6c1e&dp=10&tz=%2B00%3A00&nc=49040176&oid=39e8192718f4ed5a678fc273d654392b
IP
193.3.184.228:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /oci/?v=0.5.0&uid=094ed70e-4dc6-486d-9d68-d833dc1f6c1e&dp=10&tz=%2B00%3A00&nc=49040176&oid=39e8192718f4ed5a678fc273d654392b HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modgen.net/
Cookie: aid=CkIDFWPLzisfRwtnx5wDAo6IhDKcKsK4pPWd3Ps/4icbjOS5; test_cookie=CheckForPermission; cSyncDp7v2=1674300971; cSyncDp14v3=1674300971; cSyncDp17=1674300971; cSyncDp32=1674300971; cSyncDp45v3=1674300971; cSyncDp53=1674300971; cSyncDp54v2=1674300971; cSyncDp62=1674300971; cSyncDp67v2=1674300971; cSyncDp68=1674300971; cSyncDp71=1674300971; cSyncDp77=1674300971; cSyncDp84=1674300971; cSyncDp85=1674300971; cSyncDp95v3=1674300971; cSyncDp101=1674300971; cSyncDp104v2=1674300971; cSyncDp107=1674300971; cSyncDp110=1674300971; cSyncDp111v2=1674300971; cSyncDp112v2=1674300971; cSyncDp125v2=1674300971; cSyncDp126=1674300971; cSyncDp127=1674300971; cSyncDp129=1674300971; cSyncDp136v2=1674300971; cSyncDp138=1674300971; cSyncDp146=1674300971; cSyncDp148=1674300971; cSyncDp149v2=1674300971; cSyncDp151=1674300971; cSyncDp178=1674300971; cSyncDp179=1674300971; cSyncDp186=1674300971; cSyncDp221=1674300971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Sat, 21 Jan 2023 11:36:11 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

dm-eu.hybrid.ai/match?id=106&vid=1503420A2BCECB63670B471F02039CC7

37.18.103.22

204 No Content

0 B

URL HTTP/2
dm-eu.hybrid.ai/match?id=106&vid=1503420A2BCECB63670B471F02039CC7
IP
37.18.103.22:0
ASN
#205675 Hybrid LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match?id=106&vid=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: dm-eu.hybrid.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
date: Sat, 21 Jan 2023 11:36:12 GMT
cache-control: no-cache, no-store
pragma: no-cache
expires: -1
set-cookie: vid=f6f92a7d441cebb8174a; Expires=Sun, 21 Jan 2024 11:36:11 GMT; Domain=.hybrid.ai; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC"
x-mode: 519
x-xss-protection: 1; mode=block
access-control-allow-origin: https://www.acint.net
access-control-allow-credentials: true
server: Hybrid Web Server
X-Firefox-Spdy: h2

lh3.googleusercontent.com/bkPY3nLy0OR9QFRxzkz7d6_KfgpWT1aK9ofKeS42m3CuacKosY8AJZbS9Bs2GN_k-jaLum-ukHtt955KF2dkRUYlds6aGwkTZbyS_WE1OpE5PB1J4Q4e55DrDqSBl5vn6fhvWImBfVOePnVBLURjIa5zq87nngfqH1NZnT4j4BNvq_EyA_Rxm0eoERk_4Q

142.250.74.97

200 OK

752 kB

URL HTTP/2
lh3.googleusercontent.com/bkPY3nLy0OR9QFRxzkz7d6_KfgpWT1aK9ofKeS42m3CuacKosY8AJZbS9Bs2GN_k-jaLum-ukHtt955KF2dkRUYlds6aGwkTZbyS_WE1OpE5PB1J4Q4e55DrDqSBl5vn6fhvWImBfVOePnVBLURjIa5zq87nngfqH1NZnT4j4BNvq_EyA_Rxm0eoERk_4Q
IP
142.250.74.97:0
ASN
#15169 GOOGLE

File type
PNG image data, 1084 x 567, 8-bit/color RGBA, non-interlaced\012- data
Size
752 kB (752413 bytes)
Hash
55165de4006a2cf3db117ac70342457e
b95987f31827c028b801e48692583925a40d7c3b
73b814d39ec4bf62a54524b083fe0498eaca5f62a4d5015ce8998941956c2035

HTTP Headers

GET /bkPY3nLy0OR9QFRxzkz7d6_KfgpWT1aK9ofKeS42m3CuacKosY8AJZbS9Bs2GN_k-jaLum-ukHtt955KF2dkRUYlds6aGwkTZbyS_WE1OpE5PB1J4Q4e55DrDqSBl5vn6fhvWImBfVOePnVBLURjIa5zq87nngfqH1NZnT4j4BNvq_EyA_Rxm0eoERk_4Q HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modgen.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sun, 22 Jan 2023 11:36:12 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="pasted image 0.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 21 Jan 2023 11:36:12 GMT
server: fife
content-length: 752413
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

lh6.googleusercontent.com/ul14pOrNJRujdM1d-e7G6snJoZ7Ca-zuYPe-cCgkmuEEnni8IzhMEycYLN5rrSf5N1U14cA96187728-GuE5fqFVaRQuZR_u5-FW6Y-m4eW6Ofl2gmKfkpuilzxFKSuCuV8CGUjucE98HEGU_KC5UVOjpO30OCwHa393QXLLwILsBmFs9guyAU5aCZyphQ

142.250.74.97

200 OK

508 kB

URL HTTP/2
lh6.googleusercontent.com/ul14pOrNJRujdM1d-e7G6snJoZ7Ca-zuYPe-cCgkmuEEnni8IzhMEycYLN5rrSf5N1U14cA96187728-GuE5fqFVaRQuZR_u5-FW6Y-m4eW6Ofl2gmKfkpuilzxFKSuCuV8CGUjucE98HEGU_KC5UVOjpO30OCwHa393QXLLwILsBmFs9guyAU5aCZyphQ
IP
142.250.74.97:0
ASN
#15169 GOOGLE

File type
PNG image data, 1080 x 566, 8-bit/color RGBA, non-interlaced\012- data
Size
508 kB (508385 bytes)
Hash
3d4a0450afab7b8befe2bc424f85a756
b26fc1f004516c3cfb4623d63e3b044fdfd5d4ed
73fa0778f87df60d0a20a9b435cd88545ef3d696e7089de8ead25d767f4b1e5a

HTTP Headers

GET /ul14pOrNJRujdM1d-e7G6snJoZ7Ca-zuYPe-cCgkmuEEnni8IzhMEycYLN5rrSf5N1U14cA96187728-GuE5fqFVaRQuZR_u5-FW6Y-m4eW6Ofl2gmKfkpuilzxFKSuCuV8CGUjucE98HEGU_KC5UVOjpO30OCwHa393QXLLwILsBmFs9guyAU5aCZyphQ HTTP/1.1
Host: lh6.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modgen.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sun, 22 Jan 2023 11:36:12 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="pasted image 0.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 21 Jan 2023 11:36:12 GMT
server: fife
content-length: 508385
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

sync.upravel.com/sape/sync

176.9.8.252

302 Found

0 B

URL HTTP/2
sync.upravel.com/sape/sync
IP
176.9.8.252:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sape/sync HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx
date: Sat, 21 Jan 2023 11:36:12 GMT
content-type: image/png
content-length: 0
location: https://sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
set-cookie: session_tptc=1674300972208;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
session_tptc-legacy=1674300972208;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9943ea6fc81128909c0064df7ccd2b13
321c8d0249618ffaa7f7cc7d3ad1cfd09c023d53
687f6212e05059a36e6cb9bf4e272fc80bc2e6faa98282a74ed2d5529092fdcd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "687F6212E05059A36E6CB9BF4E272FC80BC2E6FAA98282A74ED2D5529092FDCD"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4411
Expires: Sat, 21 Jan 2023 12:49:43 GMT
Date: Sat, 21 Jan 2023 11:36:12 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
77703d95589010020ffa7ffc4abbef43
6600d666e7b86003f6fb214c5e0dbe24f2fe4eb6
d2dff755c1ebc8e76be06928a46a9bbb029951cab2f8c44178976ff0aaa9f97b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2DFF755C1EBC8E76BE06928A46A9BBB029951CAB2F8C44178976FF0AAA9F97B"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18053
Expires: Sat, 21 Jan 2023 16:37:05 GMT
Date: Sat, 21 Jan 2023 11:36:12 GMT
Connection: keep-alive

lh6.googleusercontent.com/bdJtoyFI2kNbWFyTL3S0oBk9-ryNBeW3Uo4RPNGlpvPM1BNQYLSH6fRDklWFVrw-By7hE_bi_8MIrA87AYTKEY9UA4eyCHprMddLZg7w6ylQeJadBB6e6NYmGTxGwzUcZKJAxuDpsttM3oDLhRLRN4fnQHYmh7S_1KayWICmEOTqvy0SQD052aEDOjk69w

142.250.74.97

200 OK

387 kB

URL HTTP/2
lh6.googleusercontent.com/bdJtoyFI2kNbWFyTL3S0oBk9-ryNBeW3Uo4RPNGlpvPM1BNQYLSH6fRDklWFVrw-By7hE_bi_8MIrA87AYTKEY9UA4eyCHprMddLZg7w6ylQeJadBB6e6NYmGTxGwzUcZKJAxuDpsttM3oDLhRLRN4fnQHYmh7S_1KayWICmEOTqvy0SQD052aEDOjk69w
IP
142.250.74.97:0
ASN
#15169 GOOGLE

File type
PNG image data, 1080 x 565, 8-bit/color RGBA, non-interlaced\012- data
Size
387 kB (386717 bytes)
Hash
22247eaa83093751e7cd19f438720e8f
e321e35aab22a197ca40416d543f63f86df185e7
a806a8bab317f2e9be95534f332c89e9b3f17a85bbf8f6756dbbba325b0b3fd3

HTTP Headers

GET /bdJtoyFI2kNbWFyTL3S0oBk9-ryNBeW3Uo4RPNGlpvPM1BNQYLSH6fRDklWFVrw-By7hE_bi_8MIrA87AYTKEY9UA4eyCHprMddLZg7w6ylQeJadBB6e6NYmGTxGwzUcZKJAxuDpsttM3oDLhRLRN4fnQHYmh7S_1KayWICmEOTqvy0SQD052aEDOjk69w HTTP/1.1
Host: lh6.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modgen.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sun, 22 Jan 2023 11:36:12 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="pasted image 0.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 21 Jan 2023 11:36:12 GMT
server: fife
content-length: 386717
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8b27fb1f20a10d9e9373381f470689ba
8b1f397924c468bfb9052fafdfe82e0de7f66bf1
7bb7fdc9de8838d9ca31732edf979b6c9d0dd20966438d8f480e435519406cbf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7BB7FDC9DE8838D9CA31732EDF979B6C9D0DD20966438D8F480E435519406CBF"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18622
Expires: Sat, 21 Jan 2023 16:46:34 GMT
Date: Sat, 21 Jan 2023 11:36:12 GMT
Connection: keep-alive

lh5.googleusercontent.com/w_jR9FZunkz1BB8_i1yB6ztJy2B3FAVT3wLgK0vQDbp-t7QaHSJ-nJwbIs-YM9sLbzn45lHUULq4dpD0nlcUHyxqmu1EboepcBq02AU_1bpRupHkc0yipNOowY97QYLrB9xWykVJOeaO4mRiAIcTvk0_aANFFravi4-YPfDev5q-BKLJN24WlWKUu1No8Q

142.250.74.97

200 OK

586 kB

URL HTTP/2
lh5.googleusercontent.com/w_jR9FZunkz1BB8_i1yB6ztJy2B3FAVT3wLgK0vQDbp-t7QaHSJ-nJwbIs-YM9sLbzn45lHUULq4dpD0nlcUHyxqmu1EboepcBq02AU_1bpRupHkc0yipNOowY97QYLrB9xWykVJOeaO4mRiAIcTvk0_aANFFravi4-YPfDev5q-BKLJN24WlWKUu1No8Q
IP
142.250.74.97:0
ASN
#15169 GOOGLE

File type
PNG image data, 1080 x 565, 8-bit/color RGBA, non-interlaced\012- data
Size
586 kB (585919 bytes)
Hash
c87411fe12050f08fd1c04e3852d7aae
1c05156dcd73c9eb5115078396826dc2638f604e
f130b74697a673afec0c0b165d47ca0b9d8ec1df08e553e7f5e63134a60ca42e

HTTP Headers

GET /w_jR9FZunkz1BB8_i1yB6ztJy2B3FAVT3wLgK0vQDbp-t7QaHSJ-nJwbIs-YM9sLbzn45lHUULq4dpD0nlcUHyxqmu1EboepcBq02AU_1bpRupHkc0yipNOowY97QYLrB9xWykVJOeaO4mRiAIcTvk0_aANFFravi4-YPfDev5q-BKLJN24WlWKUu1No8Q HTTP/1.1
Host: lh5.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modgen.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sun, 22 Jan 2023 11:36:12 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="pasted image 0.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 21 Jan 2023 11:36:12 GMT
server: fife
content-length: 585919
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

lh6.googleusercontent.com/UUd6tElS4W4ry_GvCTdHWfKVq8ijkCGdNSgxTGysDAWqxGuPMCUuF7AoFa6tI2aZhgV8n_7ZL_HxRdD9Ly_oDPIkQ9dEN-Pe3SZ4YtUCowDM_XjvFiSoXkNJAzvBMyEfVTsJ8T81dlr3rxH1halICD7V33mbsVHAD_jYzhedLJxcw-zi9mdFeWBZjWysxA

142.250.74.97

200 OK

580 kB

URL HTTP/2
lh6.googleusercontent.com/UUd6tElS4W4ry_GvCTdHWfKVq8ijkCGdNSgxTGysDAWqxGuPMCUuF7AoFa6tI2aZhgV8n_7ZL_HxRdD9Ly_oDPIkQ9dEN-Pe3SZ4YtUCowDM_XjvFiSoXkNJAzvBMyEfVTsJ8T81dlr3rxH1halICD7V33mbsVHAD_jYzhedLJxcw-zi9mdFeWBZjWysxA
IP
142.250.74.97:0
ASN
#15169 GOOGLE

File type
PNG image data, 1081 x 566, 8-bit/color RGBA, non-interlaced\012- data
Size
580 kB (580305 bytes)
Hash
e64c68e23ad0fdf87f87faf028226e7b
20cc12d239d55611d2e8e529f19a44ef4fbc5f43
00c1addc9fa3173fa243d103494239b7ec7d124a2c18efa0eca06b274b9a1101

HTTP Headers

GET /UUd6tElS4W4ry_GvCTdHWfKVq8ijkCGdNSgxTGysDAWqxGuPMCUuF7AoFa6tI2aZhgV8n_7ZL_HxRdD9Ly_oDPIkQ9dEN-Pe3SZ4YtUCowDM_XjvFiSoXkNJAzvBMyEfVTsJ8T81dlr3rxH1halICD7V33mbsVHAD_jYzhedLJxcw-zi9mdFeWBZjWysxA HTTP/1.1
Host: lh6.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modgen.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sun, 22 Jan 2023 11:36:12 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="pasted image 0.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 21 Jan 2023 11:36:12 GMT
server: fife
content-length: 580305
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.acint.net/oci.js?t=1674300970839

193.3.184.228

200 OK

15 kB

URL HTTP/2
www.acint.net/oci.js?t=1674300970839
IP
193.3.184.228:0
ASN
#50214 QWARTA LLC

File type
data
Size
15 kB (14703 bytes)
Hash
16ffeae491812c811d8d82e73ce7e9b3
01431010987ca7bbf69f09b8d265e84c972044e9
68a2b4a86953d59536fb36f6b602b598b8f57e9387bbff6f9c0c81bf8764f662

HTTP Headers

GET /oci.js?t=1674300970839 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modgen.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Sat, 21 Jan 2023 11:36:11 GMT
content-type: application/x-javascript
last-modified: Mon, 09 Jan 2023 08:01:14 GMT
etag: W/"63bbc9ca-7dac"
content-encoding: gzip
X-Firefox-Spdy: h2

sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0

176.9.8.252

302 Found

0 B

URL HTTP/2
sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
IP
176.9.8.252:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0 HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: session_tptc=1674300972208
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: nginx
date: Sat, 21 Jan 2023 11:36:12 GMT
content-type: image/png
content-length: 0
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: user_id=bd7eff70-b2bc-4c7f-8421-861a00820cc2;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
user_id-legacy=bd7eff70-b2bc-4c7f-8421-861a00820cc2;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
location: https://www.acint.net/match?dp=71&euid=bd7eff70-b2bc-4c7f-8421-861a00820cc2
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2

ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D

185.147.80.35

302 Found

74 B

URL HTTP/1.1
ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D
IP
185.147.80.35:0
ASN
#41722 Miran Ltd.

File type
HTML document, ASCII text
Size
74 B (74 bytes)
Hash
ad65801ae28ee07705bd7a7b737719ed
cfbc0479399be057271a5cc4fab121e03c9387ed
1e53770b6c562a886452fdb3545a0cb9e7e94839c609050d51b3ad426694ae31

HTTP Headers

GET /sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D HTTP/1.1
Host: ssp.bestssp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Server: nginx/1.16.1
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 74
Connection: keep-alive
Location: https://www.acint.net/match?dp=95&euid=GRLOQXOP
Set-Cookie: uid=GRLOQXOP; Expires=Tue, 18 Jan 2033 11:36:12 GMT

sync.1dmp.io/pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1503420A2BCECB63670B471F02039CC7

136.243.148.229

204 No Content

0 B

URL HTTP/2
sync.1dmp.io/pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1503420A2BCECB63670B471F02039CC7
IP
136.243.148.229:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: sync.1dmp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
server: nginx
date: Sat, 21 Jan 2023 11:36:12 GMT
X-Firefox-Spdy: h2

s.uuidksinc.net/match/396/?remote_uid=1503420A2BCECB63670B471F02039CC7

31.220.27.155

302 Found

0 B

URL HTTP/2
s.uuidksinc.net/match/396/?remote_uid=1503420A2BCECB63670B471F02039CC7
IP
31.220.27.155:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match/396/?remote_uid=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: s.uuidksinc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx/1.19.0
date: Sat, 21 Jan 2023 11:36:12 GMT
content-length: 0
location: https://www.acint.net/match?dp=127&euid=Dqbq1GcOanGJwbfCJe9l
set-cookie: jcsuuid=Dqbq1GcOanGJwbfCJe9l; expires=Sun, 21 Jan 2024 11:36:12 GMT; domain=uuidksinc.net; path=/; secure; SameSite=None
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c9ff5729c39d67a4281e7c72fd48830c
a458f8a6bea09f14880e0081007f2164ad906873
ad27328b5870615f5ea11fc87c9208aa86838bdf5a1c76507fdbb257824395f8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AD27328B5870615F5EA11FC87C9208AA86838BDF5A1C76507FDBB257824395F8"
Last-Modified: Sat, 21 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15925
Expires: Sat, 21 Jan 2023 16:01:37 GMT
Date: Sat, 21 Jan 2023 11:36:12 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83c47178064b57c2b288520e26fb5051
f47f26d58381274ce8efca58244f79829ecb6f72
d01c1336adb8cde8052acab13cbdd89b40c92a33301f490148198f302a538741

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D01C1336ADB8CDE8052ACAB13CBDD89B40C92A33301F490148198F302A538741"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19486
Expires: Sat, 21 Jan 2023 17:00:58 GMT
Date: Sat, 21 Jan 2023 11:36:12 GMT
Connection: keep-alive

ocsp.globalsign.com/gsgccr3dvtlsca2020

104.18.20.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1414 bytes)
Hash
1a0d06631ed78b0a207c29e035002a49
c1f905b64e0fa4a4a843c9c9fc39ae976f4150d8
0579361ea961e718829686d0a1e3eb929c53f343e3a7a776e5b22f213df12f61

HTTP Headers

POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Wed, 25 Jan 2023 10:25:37 GMT
ETag: "c1f905b64e0fa4a4a843c9c9fc39ae976f4150d8"
Last-Modified: Sat, 21 Jan 2023 10:25:38 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 686
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78cfc0356a8db51d-OSL

ocsp2.globalsign.com/gsalphasha2g2

104.18.20.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsalphasha2g2
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1423 bytes)
Hash
1488eb6c4b7d7fb69c1ff6e132043388
f816051bfaf2aa14c659d021559ed953a2784cd1
d89881e2697bf2aa386ce0a1a0d1df325dfaa24bd7890953589f009690acbad7

HTTP Headers

POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Wed, 25 Jan 2023 07:21:02 GMT
ETag: "f816051bfaf2aa14c659d021559ed953a2784cd1"
Last-Modified: Sat, 21 Jan 2023 07:21:03 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1462
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78cfc0358d79b4fd-OSL

lh6.googleusercontent.com/6n5MhEX6fvuuHLNnOq-E_frUCjl_tTYtEHEgK2sGMhu4F3d9fcjVFQ-yuHNg3J3K9a3HFYDLpbazMLj3Wxy5uilcNcp518C-1dHv-8QpD4kotT0FDnic0dTujy1IhMVB10k_tD_E5FNdZNBJFZqgV9eBdRbhmY7EbCjXs3Jb-K2RwCm0N5aQSjqIAx_2_w

142.250.74.97

200 OK

726 kB

URL HTTP/2
lh6.googleusercontent.com/6n5MhEX6fvuuHLNnOq-E_frUCjl_tTYtEHEgK2sGMhu4F3d9fcjVFQ-yuHNg3J3K9a3HFYDLpbazMLj3Wxy5uilcNcp518C-1dHv-8QpD4kotT0FDnic0dTujy1IhMVB10k_tD_E5FNdZNBJFZqgV9eBdRbhmY7EbCjXs3Jb-K2RwCm0N5aQSjqIAx_2_w
IP
142.250.74.97:0
ASN
#15169 GOOGLE

File type
PNG image data, 1083 x 563, 8-bit/color RGBA, non-interlaced\012- data
Size
726 kB (726465 bytes)
Hash
2eb1a44f988b8d94f76a1269628c7879
a939f3c09eca32b89687d8e5b4d84f13d539d9d5
ca3cc984aae89d6bda343a871542ad8898c5191290ddb49bc47d2ffdc3dbfd60

HTTP Headers

GET /6n5MhEX6fvuuHLNnOq-E_frUCjl_tTYtEHEgK2sGMhu4F3d9fcjVFQ-yuHNg3J3K9a3HFYDLpbazMLj3Wxy5uilcNcp518C-1dHv-8QpD4kotT0FDnic0dTujy1IhMVB10k_tD_E5FNdZNBJFZqgV9eBdRbhmY7EbCjXs3Jb-K2RwCm0N5aQSjqIAx_2_w HTTP/1.1
Host: lh6.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modgen.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sun, 22 Jan 2023 11:36:12 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="pasted image 0.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 21 Jan 2023 11:36:12 GMT
server: fife
content-length: 726465
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
39257c59af5caa4ae9e8ebc8ebbfb857
12ff928c40a03c3b363bcba594c0ed9f425f5408
106f302ce5ce5f501969dd50118597490bdf99d5d332a9220386aa5bd8cb05e0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "106F302CE5CE5F501969DD50118597490BDF99D5D332A9220386AA5BD8CB05E0"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11161
Expires: Sat, 21 Jan 2023 14:42:13 GMT
Date: Sat, 21 Jan 2023 11:36:12 GMT
Connection: keep-alive

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
00075bdbb023bd2868b245148a5e46b4
65585510874ff3738fb34fb4d8002887f71435fd
70dd5623503c3e3a0688f139e4610f7551d17011a9cadcf23378638625095176

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 21 Jan 2023 03:41:02 GMT
Expires: Sat, 28 Jan 2023 03:41:01 GMT
Etag: "65585510874ff3738fb34fb4d8002887f71435fd"
Cache-Control: max-age=575688,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78cfc0356bc6fac0-OSL

www.acint.net/match?dp=95&euid=GRLOQXOP

193.3.184.228

200 OK

43 B

URL HTTP/2
www.acint.net/match?dp=95&euid=GRLOQXOP
IP
193.3.184.228:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=95&euid=GRLOQXOP HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDFWPLzisfRwtnx5wDAo6IhDKcKsK4pPWd3Ps/4icbjOS5; test_cookie=CheckForPermission; cSyncDp7v2=1674300971; cSyncDp14v3=1674300971; cSyncDp17=1674300971; cSyncDp32=1674300971; cSyncDp45v3=1674300971; cSyncDp53=1674300971; cSyncDp54v2=1674300971; cSyncDp62=1674300971; cSyncDp67v2=1674300971; cSyncDp68=1674300971; cSyncDp71=1674300971; cSyncDp77=1674300971; cSyncDp84=1674300971; cSyncDp85=1674300971; cSyncDp95v3=1674300971; cSyncDp101=1674300971; cSyncDp104v2=1674300971; cSyncDp107=1674300971; cSyncDp110=1674300971; cSyncDp111v2=1674300971; cSyncDp112v2=1674300971; cSyncDp125v2=1674300971; cSyncDp126=1674300971; cSyncDp127=1674300971; cSyncDp129=1674300971; cSyncDp136v2=1674300971; cSyncDp138=1674300971; cSyncDp146=1674300971; cSyncDp148=1674300971; cSyncDp149v2=1674300971; cSyncDp151=1674300971; cSyncDp178=1674300971; cSyncDp179=1674300971; cSyncDp186=1674300971; cSyncDp221=1674300971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Sat, 21 Jan 2023 11:36:12 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

www.acint.net/match?dp=71&euid=bd7eff70-b2bc-4c7f-8421-861a00820cc2

193.3.184.228

200 OK

43 B

URL HTTP/2
www.acint.net/match?dp=71&euid=bd7eff70-b2bc-4c7f-8421-861a00820cc2
IP
193.3.184.228:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=71&euid=bd7eff70-b2bc-4c7f-8421-861a00820cc2 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDFWPLzisfRwtnx5wDAo6IhDKcKsK4pPWd3Ps/4icbjOS5; test_cookie=CheckForPermission; cSyncDp7v2=1674300971; cSyncDp14v3=1674300971; cSyncDp17=1674300971; cSyncDp32=1674300971; cSyncDp45v3=1674300971; cSyncDp53=1674300971; cSyncDp54v2=1674300971; cSyncDp62=1674300971; cSyncDp67v2=1674300971; cSyncDp68=1674300971; cSyncDp71=1674300971; cSyncDp77=1674300971; cSyncDp84=1674300971; cSyncDp85=1674300971; cSyncDp95v3=1674300971; cSyncDp101=1674300971; cSyncDp104v2=1674300971; cSyncDp107=1674300971; cSyncDp110=1674300971; cSyncDp111v2=1674300971; cSyncDp112v2=1674300971; cSyncDp125v2=1674300971; cSyncDp126=1674300971; cSyncDp127=1674300971; cSyncDp129=1674300971; cSyncDp136v2=1674300971; cSyncDp138=1674300971; cSyncDp146=1674300971; cSyncDp148=1674300971; cSyncDp149v2=1674300971; cSyncDp151=1674300971; cSyncDp178=1674300971; cSyncDp179=1674300971; cSyncDp186=1674300971; cSyncDp221=1674300971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Sat, 21 Jan 2023 11:36:12 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

www.acint.net/match?dp=127&euid=Dqbq1GcOanGJwbfCJe9l

193.3.184.228

200 OK

43 B

URL HTTP/2
www.acint.net/match?dp=127&euid=Dqbq1GcOanGJwbfCJe9l
IP
193.3.184.228:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=127&euid=Dqbq1GcOanGJwbfCJe9l HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDFWPLzisfRwtnx5wDAo6IhDKcKsK4pPWd3Ps/4icbjOS5; test_cookie=CheckForPermission; cSyncDp7v2=1674300971; cSyncDp14v3=1674300971; cSyncDp17=1674300971; cSyncDp32=1674300971; cSyncDp45v3=1674300971; cSyncDp53=1674300971; cSyncDp54v2=1674300971; cSyncDp62=1674300971; cSyncDp67v2=1674300971; cSyncDp68=1674300971; cSyncDp71=1674300971; cSyncDp77=1674300971; cSyncDp84=1674300971; cSyncDp85=1674300971; cSyncDp95v3=1674300971; cSyncDp101=1674300971; cSyncDp104v2=1674300971; cSyncDp107=1674300971; cSyncDp110=1674300971; cSyncDp111v2=1674300971; cSyncDp112v2=1674300971; cSyncDp125v2=1674300971; cSyncDp126=1674300971; cSyncDp127=1674300971; cSyncDp129=1674300971; cSyncDp136v2=1674300971; cSyncDp138=1674300971; cSyncDp146=1674300971; cSyncDp148=1674300971; cSyncDp149v2=1674300971; cSyncDp151=1674300971; cSyncDp178=1674300971; cSyncDp179=1674300971; cSyncDp186=1674300971; cSyncDp221=1674300971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Sat, 21 Jan 2023 11:36:12 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

1503420a2bcecb63670b471f02039cc7-sp.ops.beeline.ru/p?ssp=sp&id=1503420A2BCECB63670B471F02039CC7

37.9.245.57

301 Moved Permanently

0 B

URL HTTP/2
1503420a2bcecb63670b471f02039cc7-sp.ops.beeline.ru/p?ssp=sp&id=1503420A2BCECB63670B471F02039CC7
IP
37.9.245.57:0
ASN
#16345 PVimpelCom

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /p?ssp=sp&id=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: 1503420a2bcecb63670b471f02039cc7-sp.ops.beeline.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 21 Jan 2023 11:36:12 GMT
content-length: 0
location: https://www.acint.net/match?dp=111&euid=0fd082a2-6c80-4844-9ba7-1f7e07e3ba96
access-control-allow-origin: *
cache-control: no-store, no-cache, must-revalidate
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: BeeAID=0fd082a2-6c80-4844-9ba7-1f7e07e3ba96; expires=Fri, 12 Jan 2024 11:36:12 GMT; domain=ops.beeline.ru; path=/; secure; SameSite=None
access-control-allow-credentials: true, true
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS, GET, HEAD, POST, OPTIONS, PUT, DELETE
access-control-allow-headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
x-route: http://upstream_cookiesync
x-host: 192.168.152.62
X-Firefox-Spdy: h2

sync.republer.com/match?dsp=sape

23.88.82.46

204 No Content

0 B

URL HTTP/2
sync.republer.com/match?dsp=sape
IP
23.88.82.46:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match?dsp=sape HTTP/1.1
Host: sync.republer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
server: nginx
date: Sat, 21 Jan 2023 11:36:12 GMT
strict-transport-security: max-age=0
X-Firefox-Spdy: h2

sync.dmp.otm-r.com/match/sape?id=1503420A2BCECB63670B471F02039CC7

194.55.244.183

204 No Content

0 B

URL HTTP/2
sync.dmp.otm-r.com/match/sape?id=1503420A2BCECB63670B471F02039CC7
IP
194.55.244.183:0
ASN
#34959 Kviktel LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match/sape?id=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
server: nginx/1.23.2
date: Sat, 21 Jan 2023 11:36:12 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2

acint.net/match?dp=14&euid=2A03420A2CCECB633F001C9D023192B7

193.3.184.228

200 OK

43 B

URL HTTP/2
acint.net/match?dp=14&euid=2A03420A2CCECB633F001C9D023192B7
IP
193.3.184.228:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=14&euid=2A03420A2CCECB633F001C9D023192B7 HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDFWPLzisfRwtnx5wDAo6IhDKcKsK4pPWd3Ps/4icbjOS5; test_cookie=CheckForPermission; cSyncDp7v2=1674300971; cSyncDp14v3=1674300971; cSyncDp17=1674300971; cSyncDp32=1674300971; cSyncDp45v3=1674300971; cSyncDp53=1674300971; cSyncDp54v2=1674300971; cSyncDp62=1674300971; cSyncDp67v2=1674300971; cSyncDp68=1674300971; cSyncDp71=1674300971; cSyncDp77=1674300971; cSyncDp84=1674300971; cSyncDp85=1674300971; cSyncDp95v3=1674300971; cSyncDp101=1674300971; cSyncDp104v2=1674300971; cSyncDp107=1674300971; cSyncDp110=1674300971; cSyncDp111v2=1674300971; cSyncDp112v2=1674300971; cSyncDp125v2=1674300971; cSyncDp126=1674300971; cSyncDp127=1674300971; cSyncDp129=1674300971; cSyncDp136v2=1674300971; cSyncDp138=1674300971; cSyncDp146=1674300971; cSyncDp148=1674300971; cSyncDp149v2=1674300971; cSyncDp151=1674300971; cSyncDp178=1674300971; cSyncDp179=1674300971; cSyncDp186=1674300971; cSyncDp221=1674300971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Sat, 21 Jan 2023 11:36:12 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

acint.net/match?dp=110&euid=abe8aa0eedda44ed98067a44a4251b3d

193.3.184.228

200 OK

43 B

URL HTTP/2
acint.net/match?dp=110&euid=abe8aa0eedda44ed98067a44a4251b3d
IP
193.3.184.228:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=110&euid=abe8aa0eedda44ed98067a44a4251b3d HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDFWPLzisfRwtnx5wDAo6IhDKcKsK4pPWd3Ps/4icbjOS5; test_cookie=CheckForPermission; cSyncDp7v2=1674300971; cSyncDp14v3=1674300971; cSyncDp17=1674300971; cSyncDp32=1674300971; cSyncDp45v3=1674300971; cSyncDp53=1674300971; cSyncDp54v2=1674300971; cSyncDp62=1674300971; cSyncDp67v2=1674300971; cSyncDp68=1674300971; cSyncDp71=1674300971; cSyncDp77=1674300971; cSyncDp84=1674300971; cSyncDp85=1674300971; cSyncDp95v3=1674300971; cSyncDp101=1674300971; cSyncDp104v2=1674300971; cSyncDp107=1674300971; cSyncDp110=1674300971; cSyncDp111v2=1674300971; cSyncDp112v2=1674300971; cSyncDp125v2=1674300971; cSyncDp126=1674300971; cSyncDp127=1674300971; cSyncDp129=1674300971; cSyncDp136v2=1674300971; cSyncDp138=1674300971; cSyncDp146=1674300971; cSyncDp148=1674300971; cSyncDp149v2=1674300971; cSyncDp151=1674300971; cSyncDp178=1674300971; cSyncDp179=1674300971; cSyncDp186=1674300971; cSyncDp221=1674300971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Sat, 21 Jan 2023 11:36:12 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b6b06a47d5f35483956c51ae6b96af06
e49f5f703895b470f0afafe0d2182f0f49383b2c
b14f34188f8acb034cc830f2fb93521063d1089be92f0fac7b3e306d54ea8944

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stat.adlabs.ru/merge_gpsid/?sid=50&id=1503420A2BCECB63670B471F02039CC7

109.248.237.37

302 Found

0 B

URL HTTP/2
stat.adlabs.ru/merge_gpsid/?sid=50&id=1503420A2BCECB63670B471F02039CC7
IP
109.248.237.37:0
ASN
#201009 Centre of server systems Ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /merge_gpsid/?sid=50&id=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: stat.adlabs.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx
date: Sat, 21 Jan 2023 11:36:12 GMT
content-length: 0
location: //adlmerge.com/merge_gpsid/?sid=50&id=1503420A2BCECB63670B471F02039CC7
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b6b06a47d5f35483956c51ae6b96af06
e49f5f703895b470f0afafe0d2182f0f49383b2c
b14f34188f8acb034cc830f2fb93521063d1089be92f0fac7b3e306d54ea8944

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ut.rktch.com/matchspm?pi=1000005&pui=1503420A2BCECB63670B471F02039CC7

89.108.97.2

302 Found

0 B

URL HTTP/1.1
ut.rktch.com/matchspm?pi=1000005&pui=1503420A2BCECB63670B471F02039CC7
IP
89.108.97.2:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /matchspm?pi=1000005&pui=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: ut.rktch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Server: nginx/1.22.0
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Length: 0
Connection: keep-alive
location: https://redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D{WEBO_CID}%26noredirect
Set-Cookie: b_uid=33e015b30ce631e906f400b93305598df15a; Max-Age=2592000; Expires=Mon, 20 Feb 2023 11:36:12 GMT; Domain=rktch.com; Secure; SameSite=None
Access-Control-Allow-Methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
Access-Control-Allow-Headers: Content-Type, Accept, Authorization
Access-Control-Allow-Credentials: true

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
6c6367952de33175a6ac9e40d0b98938
db5c1e8c4ed9b72a02ef01cfdf96d8392f8529fe
dc7340aed99bf6edee2feae79ae67ab82fc3236f208c687650188aacdaa40b1f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 18 Jan 2023 23:26:43 GMT
Expires: Wed, 25 Jan 2023 23:26:42 GMT
Etag: "db5c1e8c4ed9b72a02ef01cfdf96d8392f8529fe"
Cache-Control: max-age=387629,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78cfc0359fb5fab8-OSL

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a618971ebc90b5698ddbabc4637e3345
f920b73a7c9b57d77194ba8ba406664d8469b6b6
f7c66c647552a10c53d758e1eedd450226c969b0001a25a616773d57f10e16bf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7C66C647552A10C53D758E1EEDD450226C969B0001A25A616773D57F10E16BF"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11786
Expires: Sat, 21 Jan 2023 14:52:38 GMT
Date: Sat, 21 Jan 2023 11:36:12 GMT
Connection: keep-alive

exchange.buzzoola.com/cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D

167.235.33.115

301 Moved Permanently

115 B

URL HTTP/2
exchange.buzzoola.com/cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D
IP
167.235.33.115:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document, ASCII text
Size
115 B (115 bytes)
Hash
0e76712bd235de7adf4b6aeda9c121dd
73a31fefdb72421331596fd3f6eabfab27b7fee1
76dc89267355a9252c5578c6ab0316448582b11fae1c2b2d533c19e11b0c9c91

HTTP Headers

GET /cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 21 Jan 2023 11:36:12 GMT
content-type: text/html; charset=utf-8
content-length: 115
location: https://www.acint.net/match?dp=126&euid=bacc3cef-a197-414a-4f46-aae072453d9b
serverid: TODO
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a618971ebc90b5698ddbabc4637e3345
f920b73a7c9b57d77194ba8ba406664d8469b6b6
f7c66c647552a10c53d758e1eedd450226c969b0001a25a616773d57f10e16bf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7C66C647552A10C53D758E1EEDD450226C969B0001A25A616773D57F10E16BF"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11786
Expires: Sat, 21 Jan 2023 14:52:38 GMT
Date: Sat, 21 Jan 2023 11:36:12 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa19e2681-f167-4577-b7db-9afc7bd1ccf2.jpeg

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa19e2681-f167-4577-b7db-9afc7bd1ccf2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (13812 bytes)
Hash
d3af2d51fb89ef0261ba025d76169261
9b3f4e3f63b64030624e02ad6ab8ef43a676dd66
c3d5a6f829dc59db8ed27a92fcfc6d387633bb43388e2c19d68b89356a13b1cf

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa19e2681-f167-4577-b7db-9afc7bd1ccf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13812
x-amzn-requestid: 7e3de1bc-a850-4a6e-891c-094996ee4a76
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fAmw2HldoAMF-Ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c9b805-5443ffce123461b44b9815b2;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 21:37:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: EUm5z7VSHRCILWZmLR5u_EuVtfVDerCwgAO7R19fDJZqYmsPa6Vz3Q==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 22:05:54 GMT
age: 48618
etag: "9b3f4e3f63b64030624e02ad6ab8ef43a676dd66"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e475ae80b6e13ce089342876fb13ebf6
5d88a81da439ad896fd26b0fefefd84d656a1e82
e10eb1ad7816d2f01898faa00634b625c520465bac94637516847e86bf044225

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E10EB1AD7816D2F01898FAA00634B625C520465BAC94637516847E86BF044225"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11095
Expires: Sat, 21 Jan 2023 14:41:07 GMT
Date: Sat, 21 Jan 2023 11:36:12 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e475ae80b6e13ce089342876fb13ebf6
5d88a81da439ad896fd26b0fefefd84d656a1e82
e10eb1ad7816d2f01898faa00634b625c520465bac94637516847e86bf044225

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E10EB1AD7816D2F01898FAA00634B625C520465BAC94637516847E86BF044225"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7229
Expires: Sat, 21 Jan 2023 13:36:41 GMT
Date: Sat, 21 Jan 2023 11:36:12 GMT
Connection: keep-alive

www.acint.net/match?dp=111&euid=0fd082a2-6c80-4844-9ba7-1f7e07e3ba96

193.3.184.228

200 OK

43 B

URL HTTP/2
www.acint.net/match?dp=111&euid=0fd082a2-6c80-4844-9ba7-1f7e07e3ba96
IP
193.3.184.228:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=111&euid=0fd082a2-6c80-4844-9ba7-1f7e07e3ba96 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDFWPLzisfRwtnx5wDAo6IhDKcKsK4pPWd3Ps/4icbjOS5; test_cookie=CheckForPermission; cSyncDp7v2=1674300971; cSyncDp14v3=1674300971; cSyncDp17=1674300971; cSyncDp32=1674300971; cSyncDp45v3=1674300971; cSyncDp53=1674300971; cSyncDp54v2=1674300971; cSyncDp62=1674300971; cSyncDp67v2=1674300971; cSyncDp68=1674300971; cSyncDp71=1674300971; cSyncDp77=1674300971; cSyncDp84=1674300971; cSyncDp85=1674300971; cSyncDp95v3=1674300971; cSyncDp101=1674300971; cSyncDp104v2=1674300971; cSyncDp107=1674300971; cSyncDp110=1674300971; cSyncDp111v2=1674300971; cSyncDp112v2=1674300971; cSyncDp125v2=1674300971; cSyncDp126=1674300971; cSyncDp127=1674300971; cSyncDp129=1674300971; cSyncDp136v2=1674300971; cSyncDp138=1674300971; cSyncDp146=1674300971; cSyncDp148=1674300971; cSyncDp149v2=1674300971; cSyncDp151=1674300971; cSyncDp178=1674300971; cSyncDp179=1674300971; cSyncDp186=1674300971; cSyncDp221=1674300971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Sat, 21 Jan 2023 11:36:12 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f99971c-1473-40a1-8c51-d03ce30e94e6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11158 bytes)
Hash
868be33d3c4e2c509093599072ce6dc7
50d61f7462a41c8afe83f0beb00eb12d6d09bc5f
d698c324af46805e945d7d7a8a991ed032bfafa4014962edbb7b1d6a30eee4fd

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f99971c-1473-40a1-8c51-d03ce30e94e6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11158
x-amzn-requestid: 8aef6294-7a98-4ced-b066-4a286dd7159f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: exb1HEVwoAMFWyg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c3a686-3252cc374b3ac7237f3b6b8d;Sampled=0
x-amzn-remapped-date: Sun, 15 Jan 2023 07:08:54 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: OQXPHaQhhuBxrUIT-qn6lSqieXcmM8c-1l-quG9cW844L2I65TTbBw==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 15:56:56 GMT
age: 70756
etag: "50d61f7462a41c8afe83f0beb00eb12d6d09bc5f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

mediatoday.ru/core/match.gif?s=32&id=1503420A2BCECB63670B471F02039CC7

139.45.228.100

200 OK

43 B

URL HTTP/2
mediatoday.ru/core/match.gif?s=32&id=1503420A2BCECB63670B471F02039CC7
IP
139.45.228.100:0
ASN
#9002 RETN Limited

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

HTTP Headers

GET /core/match.gif?s=32&id=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: mediatoday.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx/1.20.2
date: Sat, 21 Jan 2023 11:36:12 GMT
content-type: image/gif
content-length: 43
p3p: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA
cache-control: no-cache, max-age=0, must-revalidate, no-store
pragma: no-cache
expires: Thursday, 01-Jan-1970 00:00:00 GMT
set-cookie: idntfy=VUBYdE1aG7w47rK; expires=Tue, 18-Jan-2033 11:36:12 GMT; domain=mediatoday.ru; path=/core; SameSite=None; Secure
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb7874784-b02c-447d-8e16-f063fdd288aa.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.4 kB (7435 bytes)
Hash
4e3fd5bf2e8d88fed518583666d68bfe
69343cd051d27b517a7ea167cd6f755fbbc3bd98
923b733f5f44b8cd69b604d37dd1f1f12035e37a2c9835d77a5b6970ab2f3d69

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb7874784-b02c-447d-8e16-f063fdd288aa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7435
x-amzn-requestid: f717c884-7d70-4635-88a9-2a2413ff1448
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6xJkGe2oAMFdYg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c7623d-04021c3978618c584fc8c830;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 03:06:37 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8iyrTr5fUucanswzT8czlH2op2twCih3ufvZxdd5moT9802Fe5tfKg==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 09:10:16 GMT
age: 8756
etag: "69343cd051d27b517a7ea167cd6f755fbbc3bd98"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

dmp.gotechnology.io/match/sape?id=1503420A2BCECB63670B471F02039CC7

167.235.32.7

302 Found

0 B

URL HTTP/2
dmp.gotechnology.io/match/sape?id=1503420A2BCECB63670B471F02039CC7
IP
167.235.32.7:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match/sape?id=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: dmp.gotechnology.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx
date: Sat, 21 Jan 2023 11:36:12 GMT
content-length: 0
location: https://dmp.gotechnology.io/match/sape?id=1503420A2BCECB63670B471F02039CC7&chk=1
set-cookie: chk=1; path=/; secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7616632f-cfb4-4f45-819d-1970213c1ca5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.7 kB (9669 bytes)
Hash
62d64384cabb3ee773d9baa88c9fa9f5
3457882213a7c2d2ec863d75cf629ae4fe320092
7adc5cd3cc8a30b5c45c2995b27daf66fcf95280a4f5feaa46e559da464c75be

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7616632f-cfb4-4f45-819d-1970213c1ca5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9669
x-amzn-requestid: d57517dd-07b7-4477-996d-5cb159f1e608
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: euIvoHVNIAMFVWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c254ca-2737608463cd6cd160497e42;Sampled=0
x-amzn-remapped-date: Sat, 14 Jan 2023 07:07:54 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: q29sVPPuKPCG6Q6jhlrnm79kQvNCAC2u36O1eNorlq8sGf7WoZYRRw==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 23:33:45 GMT
age: 43347
etag: "3457882213a7c2d2ec863d75cf629ae4fe320092"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

lh6.googleusercontent.com/REfu1Wqlodl6hSkxsbZcLPkbfbFcEh6d-RcP6zZtwMl1_9ZYruqzlm3De-9A_pWhXnmhvt_ocy3O9uNd4rUavFBkilvVK3Zl-D50hqnhME8IoBmykC0Xir3bdDmTIU5MFYDHGA4tVPRSioQdM45LqxCVNHUj2oYmYDFiTaolzmc-zA_WXEAZ0fO9Czcmrg

142.250.74.97

200 OK

712 kB

URL HTTP/2
lh6.googleusercontent.com/REfu1Wqlodl6hSkxsbZcLPkbfbFcEh6d-RcP6zZtwMl1_9ZYruqzlm3De-9A_pWhXnmhvt_ocy3O9uNd4rUavFBkilvVK3Zl-D50hqnhME8IoBmykC0Xir3bdDmTIU5MFYDHGA4tVPRSioQdM45LqxCVNHUj2oYmYDFiTaolzmc-zA_WXEAZ0fO9Czcmrg
IP
142.250.74.97:0
ASN
#15169 GOOGLE

File type
PNG image data, 1083 x 567, 8-bit/color RGBA, non-interlaced\012- data
Size
712 kB (711915 bytes)
Hash
05249de996ff08980d41f3a7f6020583
16d7de510315d2ac0dc4fe865daf7ef43d664f60
710a5669836acb5750165d4099a07013689eaf588ff5c4c6104afe7a7f46b5aa

HTTP Headers

GET /REfu1Wqlodl6hSkxsbZcLPkbfbFcEh6d-RcP6zZtwMl1_9ZYruqzlm3De-9A_pWhXnmhvt_ocy3O9uNd4rUavFBkilvVK3Zl-D50hqnhME8IoBmykC0Xir3bdDmTIU5MFYDHGA4tVPRSioQdM45LqxCVNHUj2oYmYDFiTaolzmc-zA_WXEAZ0fO9Czcmrg HTTP/1.1
Host: lh6.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modgen.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sun, 22 Jan 2023 11:36:12 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="pasted image 0.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 21 Jan 2023 11:36:12 GMT
server: fife
content-length: 711915
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10988 bytes)
Hash
5a7ab95a69ddfa5014258076e66a6e19
1a54cca86788536002d6d18c5180ccf265ba1169
09348afd6055b26b5dba6f8f6ef763d52e6e040c039c6f763d64f71b8ca08d51

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10988
x-amzn-requestid: 67c03c6c-3896-4890-a75b-ecd7c1c1a4e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3foHG8tIAMF3XQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61300-2de17e5b0225f9427c197bc5;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: cxuHpm9vR0_DvHdEtR5p5eRRNAFgCrOTnak0RsH3OeCccehhurKhJA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 01:38:03 GMT
age: 35889
etag: "1a54cca86788536002d6d18c5180ccf265ba1169"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

nr.bidderstack.com/sape/cm?user_id=1503420A2BCECB63670B471F02039CC7

23.88.12.14

200 OK

44 B

URL HTTP/1.1
nr.bidderstack.com/sape/cm?user_id=1503420A2BCECB63670B471F02039CC7
IP
23.88.12.14:0
ASN
#24940 Hetzner Online GmbH

File type
GIF image data, version 89a, 1 x 1\012- data
Size
44 B (44 bytes)
Hash
f9d60352c70a2ba15616d1c9421f3844
e9abc8bea7721a4b6a50295850d13c515006a95c
82cb517a8f80c91dfcec543c6d140deb3baaf463ea9e77655475096eba7bc7d9

HTTP Headers

GET /sape/cm?user_id=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: nr.bidderstack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Type: image/gif
Content-Length: 44
Connection: keep-alive
Access-Control-Allow-Credentials: true

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02d903ef-00fc-4f25-8b4f-138ec32359bf.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8698 bytes)
Hash
893ea518ea7c11ec06ffea60b2ee7921
34675a13bbac6abd1b087e546425e141215cf072
675ec12ed5803fad5036cedc1a3b66229316836bb321b4ad3a34aab56a100ca7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02d903ef-00fc-4f25-8b4f-138ec32359bf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8698
x-amzn-requestid: 97c3bd04-2d8a-447e-85cb-376ea44b283c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0K85GOQIAMFbPw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4beb8-5b6517906d2f8bad6488e6f8;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:04:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: reROJ7ha0LKGWpSMN0ioNVaIrIEhJUn_cfprHVZlfyY7jBoFyKh0rw==
via: 1.1 c9b161639a9353c2354b895548ea9fca.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 13:48:55 GMT
age: 78437
etag: "34675a13bbac6abd1b087e546425e141215cf072"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.acint.net/match?dp=129&euid=erpthaiv9a

193.3.184.228

200 OK

43 B

URL HTTP/2
www.acint.net/match?dp=129&euid=erpthaiv9a
IP
193.3.184.228:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=129&euid=erpthaiv9a HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDFWPLzisfRwtnx5wDAo6IhDKcKsK4pPWd3Ps/4icbjOS5; test_cookie=CheckForPermission; cSyncDp7v2=1674300971; cSyncDp14v3=1674300971; cSyncDp17=1674300971; cSyncDp32=1674300971; cSyncDp45v3=1674300971; cSyncDp53=1674300971; cSyncDp54v2=1674300971; cSyncDp62=1674300971; cSyncDp67v2=1674300971; cSyncDp68=1674300971; cSyncDp71=1674300971; cSyncDp77=1674300971; cSyncDp84=1674300971; cSyncDp85=1674300971; cSyncDp95v3=1674300971; cSyncDp101=1674300971; cSyncDp104v2=1674300971; cSyncDp107=1674300971; cSyncDp110=1674300971; cSyncDp111v2=1674300971; cSyncDp112v2=1674300971; cSyncDp125v2=1674300971; cSyncDp126=1674300971; cSyncDp127=1674300971; cSyncDp129=1674300971; cSyncDp136v2=1674300971; cSyncDp138=1674300971; cSyncDp146=1674300971; cSyncDp148=1674300971; cSyncDp149v2=1674300971; cSyncDp151=1674300971; cSyncDp178=1674300971; cSyncDp179=1674300971; cSyncDp186=1674300971; cSyncDp221=1674300971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Sat, 21 Jan 2023 11:36:12 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

sync.bumlam.com/?src=sap1&uid=1503420A2BCECB63670B471F02039CC7

31.172.81.160

302 Moved Temporarily

0 B

URL HTTP/1.1
sync.bumlam.com/?src=sap1&uid=1503420A2BCECB63670B471F02039CC7
IP
31.172.81.160:0
ASN
#44066 diva-e Datacenters GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?src=sap1&uid=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiRjZWFhOWFiNi05OTdmLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*; Path=/; Expires=Fri, 16 Jan 2043 11:36:12 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: //sync.bumlam.com/?src=sap1&s_data=CAIQARisnK-eBmIgMTUwMzQyMEEyQkNFQ0I2MzY3MEI0NzFGMDIwMzlDQzeiARDOqpq2mX8R7aHEACWQyCQ3
ETag: ceaa9ab6-997f-11ed-a1c4-002590c82437
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0

pix.bumlam.com/sync/sape/check?sspuid=1503420A2BCECB63670B471F02039CC7

31.172.81.160

302 Found

0 B

URL HTTP/1.1
pix.bumlam.com/sync/sape/check?sspuid=1503420A2BCECB63670B471F02039CC7
IP
31.172.81.160:0
ASN
#44066 diva-e Datacenters GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sync/sape/check?sspuid=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Server: nginx
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://sync.bumlam.com/?src=sape

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3b0cf21b7f27c78c3dad993451e83b06
6a8cdef9409854ebfb3e86d13abea5c7a88d7757
8d10eae0064785a037fc47b6fdf941f41f310f5804dd1b92eefb52bd2978a766

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8D10EAE0064785A037FC47B6FDF941F41F310F5804DD1B92EEFB52BD2978A766"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16443
Expires: Sat, 21 Jan 2023 16:10:15 GMT
Date: Sat, 21 Jan 2023 11:36:12 GMT
Connection: keep-alive

dmp.gotechnology.io/match/sape?id=1503420A2BCECB63670B471F02039CC7&chk=1

167.235.32.7

302 Found

0 B

URL HTTP/2
dmp.gotechnology.io/match/sape?id=1503420A2BCECB63670B471F02039CC7&chk=1
IP
167.235.32.7:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match/sape?id=1503420A2BCECB63670B471F02039CC7&chk=1 HTTP/1.1
Host: dmp.gotechnology.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: chk=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: nginx
date: Sat, 21 Jan 2023 11:36:12 GMT
content-length: 0
location: https://an.yandex.ru/mapuid/gonetdspis/Njk3YzYwYjIxODExNDZiOA
set-cookie: pid=Njk3YzYwYjIxODExNDZiOA; expires=Sun, 21 Jan 2024 11:36:12 GMT; domain=.gotechnology.io; path=/; secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e00449cf9936e8bfa4546164c4bb5d7a
7d4ec95347bd9fcbe489cc7ec6b1692c50dcb5ce
2dc9d68484e2dd015f8f2f225660d8bd4bf552bdcf9d46558ee3183a0309d733

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2DC9D68484E2DD015F8F2F225660D8BD4BF552BDCF9D46558EE3183A0309D733"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17254
Expires: Sat, 21 Jan 2023 16:23:46 GMT
Date: Sat, 21 Jan 2023 11:36:12 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6d1edf07cfc008206ce837f6c3fb257f
6fae03b1d3305a4e671b8ab2af47bcb3176d0264
bef2fc9effc8a7c97bf2cbf1abcf15c407164dc779a70541ecd20262d60a6cc8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BEF2FC9EFFC8A7C97BF2CBF1ABCF15C407164DC779A70541ECD20262D60A6CC8"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10724
Expires: Sat, 21 Jan 2023 14:34:56 GMT
Date: Sat, 21 Jan 2023 11:36:12 GMT
Connection: keep-alive

www.acint.net/match?dp=126&euid=bacc3cef-a197-414a-4f46-aae072453d9b

193.3.184.228

200 OK

43 B

URL HTTP/2
www.acint.net/match?dp=126&euid=bacc3cef-a197-414a-4f46-aae072453d9b
IP
193.3.184.228:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=126&euid=bacc3cef-a197-414a-4f46-aae072453d9b HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDFWPLzisfRwtnx5wDAo6IhDKcKsK4pPWd3Ps/4icbjOS5; test_cookie=CheckForPermission; cSyncDp7v2=1674300971; cSyncDp14v3=1674300971; cSyncDp17=1674300971; cSyncDp32=1674300971; cSyncDp45v3=1674300971; cSyncDp53=1674300971; cSyncDp54v2=1674300971; cSyncDp62=1674300971; cSyncDp67v2=1674300971; cSyncDp68=1674300971; cSyncDp71=1674300971; cSyncDp77=1674300971; cSyncDp84=1674300971; cSyncDp85=1674300971; cSyncDp95v3=1674300971; cSyncDp101=1674300971; cSyncDp104v2=1674300971; cSyncDp107=1674300971; cSyncDp110=1674300971; cSyncDp111v2=1674300971; cSyncDp112v2=1674300971; cSyncDp125v2=1674300971; cSyncDp126=1674300971; cSyncDp127=1674300971; cSyncDp129=1674300971; cSyncDp136v2=1674300971; cSyncDp138=1674300971; cSyncDp146=1674300971; cSyncDp148=1674300971; cSyncDp149v2=1674300971; cSyncDp151=1674300971; cSyncDp178=1674300971; cSyncDp179=1674300971; cSyncDp186=1674300971; cSyncDp221=1674300971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Sat, 21 Jan 2023 11:36:12 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

sync.bumlam.com/?src=sap1&s_data=CAIQARisnK-eBmIgMTUwMzQyMEEyQkNFQ0I2MzY3MEI0NzFGMDIwMzlDQzeiARDOqpq2mX8R7aHEACWQyCQ3

31.172.81.160

200 OK

0 B

URL HTTP/1.1
sync.bumlam.com/?src=sap1&s_data=CAIQARisnK-eBmIgMTUwMzQyMEEyQkNFQ0I2MzY3MEI0NzFGMDIwMzlDQzeiARDOqpq2mX8R7aHEACWQyCQ3
IP
31.172.81.160:0
ASN
#44066 diva-e Datacenters GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?src=sap1&s_data=CAIQARisnK-eBmIgMTUwMzQyMEEyQkNFQ0I2MzY3MEI0NzFGMDIwMzlDQzeiARDOqpq2mX8R7aHEACWQyCQ3 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiRjZWFhOWFiNi05OTdmLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiRjZWFhOWFiNi05OTdmLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*; Path=/; Expires=Fri, 16 Jan 2043 11:36:12 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0

cs.agency2.ru/p?ssp=sp&uid=1503420A2BCECB63670B471F02039CC7

23.111.107.44

301 Moved Permanently

0 B

URL HTTP/1.1
cs.agency2.ru/p?ssp=sp&uid=1503420A2BCECB63670B471F02039CC7
IP
23.111.107.44:0
ASN
#7979 SERVERS-COM

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /p?ssp=sp&uid=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: cs.agency2.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 301 Moved Permanently
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Length: 0
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://www.acint.net/match?dp=186&euid=6608a16b-31b7-4def-bbe0-86bdea02d552
Set-Cookie: uuid=6608a16b-31b7-4def-bbe0-86bdea02d552; expires=Fri, 12 Jan 2024 11:36:12 GMT; domain=agency2.ru; path=/; secure; SameSite=None
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.107.44

sync.bumlam.com/?src=sape

31.172.81.160

302 Moved Temporarily

0 B

URL HTTP/1.1
sync.bumlam.com/?src=sape
IP
31.172.81.160:0
ASN
#44066 diva-e Datacenters GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?src=sape HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiRjZWFhOWFiNi05OTdmLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiRjZWFhOWFiNi05OTdmLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*; Path=/; Expires=Fri, 16 Jan 2043 11:36:12 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: https://pix.bumlam.com/sync/sape/sync_ok?guid=ceaa9ab6-997f-11ed-a1c4-002590c82437
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
Access-Control-Allow-Origin: https://acint.net
Access-Control-Allow-Credentials: true

match.new-programmatic.com/userbind?src=sape&id=1503420A2BCECB63670B471F02039CC7

217.65.2.150

204 No Content

0 B

URL HTTP/1.1
match.new-programmatic.com/userbind?src=sape&id=1503420A2BCECB63670B471F02039CC7
IP
217.65.2.150:0
ASN
#3175 Filanco LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /userbind?src=sape&id=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: match.new-programmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
Server: nginx/1.18.0
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin

pix.bumlam.com/sync/sape/sync_ok?guid=ceaa9ab6-997f-11ed-a1c4-002590c82437

31.172.81.160

302 Found

0 B

URL HTTP/1.1
pix.bumlam.com/sync/sape/sync_ok?guid=ceaa9ab6-997f-11ed-a1c4-002590c82437
IP
31.172.81.160:0
ASN
#44066 diva-e Datacenters GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sync/sape/sync_ok?guid=ceaa9ab6-997f-11ed-a1c4-002590c82437 HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiRjZWFhOWFiNi05OTdmLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Server: nginx
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://ceaa9ab6-997f-11ed-a1c4-002590c82437.n1.sync.bumlam.com/?src=sape

www.acint.net/match?dp=186&euid=6608a16b-31b7-4def-bbe0-86bdea02d552

193.3.184.228

200 OK

43 B

URL HTTP/2
www.acint.net/match?dp=186&euid=6608a16b-31b7-4def-bbe0-86bdea02d552
IP
193.3.184.228:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=186&euid=6608a16b-31b7-4def-bbe0-86bdea02d552 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDFWPLzisfRwtnx5wDAo6IhDKcKsK4pPWd3Ps/4icbjOS5; test_cookie=CheckForPermission; cSyncDp7v2=1674300971; cSyncDp14v3=1674300971; cSyncDp17=1674300971; cSyncDp32=1674300971; cSyncDp45v3=1674300971; cSyncDp53=1674300971; cSyncDp54v2=1674300971; cSyncDp62=1674300971; cSyncDp67v2=1674300971; cSyncDp68=1674300971; cSyncDp71=1674300971; cSyncDp77=1674300971; cSyncDp84=1674300971; cSyncDp85=1674300971; cSyncDp95v3=1674300971; cSyncDp101=1674300971; cSyncDp104v2=1674300971; cSyncDp107=1674300971; cSyncDp110=1674300971; cSyncDp111v2=1674300971; cSyncDp112v2=1674300971; cSyncDp125v2=1674300971; cSyncDp126=1674300971; cSyncDp127=1674300971; cSyncDp129=1674300971; cSyncDp136v2=1674300971; cSyncDp138=1674300971; cSyncDp146=1674300971; cSyncDp148=1674300971; cSyncDp149v2=1674300971; cSyncDp151=1674300971; cSyncDp178=1674300971; cSyncDp179=1674300971; cSyncDp186=1674300971; cSyncDp221=1674300971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Sat, 21 Jan 2023 11:36:12 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
875fc1415608498b67d609fd3b7335ae
463aca613dcdfc3446e7c7f4663d9577ef92f94e
fcb4c1657bc5afb8c1adfbec67198211be206ff61b5cc7c13565d5ce492de66e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 11:36:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.globalsign.com/gsgccr3dvtlsca2020

104.18.20.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1414 bytes)
Hash
fc0e524a639d5795e6caf34e6b0b32dd
728d56404a9a86834fc21b0ff9c67bddca84cf25
2ac76257493de1eaea61a344582b16e040a6d8a78770ab8e6b6f209266483880

HTTP Headers

POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Wed, 25 Jan 2023 08:10:16 GMT
ETag: "728d56404a9a86834fc21b0ff9c67bddca84cf25"
Last-Modified: Sat, 21 Jan 2023 08:10:17 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1044
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78cfc0384d7fb51d-OSL

cm.g.doubleclick.net/pixel?google_nid=agentstvo_sape_limited&google_hm=FQNCCivOy2NnC0cfAgOcxw

142.250.74.130

200 OK

170 B

URL HTTP/2
cm.g.doubleclick.net/pixel?google_nid=agentstvo_sape_limited&google_hm=FQNCCivOy2NnC0cfAgOcxw
IP
142.250.74.130:0
ASN
#15169 GOOGLE

File type
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Size
170 B (170 bytes)
Hash
e7673c60af825466f83d46da72ca1635
fc0fcbee0835709ba2d28798a612bfd687903fb5
0b8a20373c6dd04e091902226d922b3688143a8938afb9d283d889de7b55ceb5

HTTP Headers

GET /pixel?google_nid=agentstvo_sape_limited&google_hm=FQNCCivOy2NnC0cfAgOcxw HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/png
date: Sat, 21 Jan 2023 11:36:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
server: HTTP server (unknown)
content-length: 170
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.globalsign.com/gsgccr3dvtlsca2020

104.18.20.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1414 bytes)
Hash
fc0e524a639d5795e6caf34e6b0b32dd
728d56404a9a86834fc21b0ff9c67bddca84cf25
2ac76257493de1eaea61a344582b16e040a6d8a78770ab8e6b6f209266483880

HTTP Headers

POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Wed, 25 Jan 2023 08:10:16 GMT
ETag: "728d56404a9a86834fc21b0ff9c67bddca84cf25"
Last-Modified: Sat, 21 Jan 2023 08:10:17 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1044
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78cfc0387dc7b51d-OSL

ssp.adriver.ru/cgi-bin/sync.cgi?dsp_id=153&external_id=1503420A2BCECB63670B471F02039CC7

81.222.128.215

200 OK

42 B

URL HTTP/1.1
ssp.adriver.ru/cgi-bin/sync.cgi?dsp_id=153&external_id=1503420A2BCECB63670B471F02039CC7
IP
81.222.128.215:0
ASN
#20597 PVimpelCom

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /cgi-bin/sync.cgi?dsp_id=153&external_id=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: ssp.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive

ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691

195.209.108.45

302 Moved Temporarily

0 B

URL HTTP/1.1
ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691
IP
195.209.108.45:0
ASN
#52007 LLC AdRiver

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691 HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-control: no-cache, max-age=0, must-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA
Set-Cookie: cid=-4464741497; expires=Mon, 20 Jan 2025 11:36:12 GMT; path=/; domain=.adriver.ru; SameSite=None; Secure
Location: /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-4464741497
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true

ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-4464741497

195.209.108.45

302 Moved Temporarily

40 B

URL HTTP/1.1
ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-4464741497
IP
195.209.108.45:0
ASN
#52007 LLC AdRiver

File type
ASCII text, with CRLF line terminators
Size
40 B (40 bytes)
Hash
251630b588179b239e8fab1ac9ef6d3a
91b91a97bc481dd2bbd5e0f3fea6ba1c4e843882
c95661e0ef6975b1df5361695a439f71a021d72c345023c3e668e84f35b3c38b

HTTP Headers

GET /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-4464741497 HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-control: no-cache, no-cache=Set-Cookie, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref="//adriver.ru/w3c/p3p.xml", CP="NON DSP COR CURa ADMa DEVa OUR BUS UNI COM NAV INT STA"
Set-Cookie: cid=0; expires=Mon, 20 Jan 2025 11:36:12 GMT; path=/; domain=.adriver.ru;
uid=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/; domain=.adriver.ru
Location: https://www.acint.net/rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D

ads.adlook.me/csync?url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D

5.101.76.186

302 Found

472 B

URL HTTP/2
ads.adlook.me/csync?url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D
IP
5.101.76.186:0
ASN
#48096 Enterprise Cloud Ltd.

File type
data
Size
472 B (472 bytes)
Hash
875fc1415608498b67d609fd3b7335ae
463aca613dcdfc3446e7c7f4663d9577ef92f94e
fcb4c1657bc5afb8c1adfbec67198211be206ff61b5cc7c13565d5ce492de66e

HTTP Headers

GET /csync?url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D HTTP/1.1
Host: ads.adlook.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
location: https://acint.net/match?dp=110&euid=abe8aa0eedda44ed98067a44a4251b3d
server: Microsoft-IIS/10.0
set-cookie: adlm_userId=abe8aa0eedda44ed98067a44a4251b3d; expires=Sat, 20 Jan 2024 21:00:00 GMT; path=/; SameSite=None; secure; samesite=lax
date: Sat, 21 Jan 2023 11:36:11 GMT
X-Firefox-Spdy: h2

www.acint.net/rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D

193.3.184.228

302 Found

154 B

URL HTTP/2
www.acint.net/rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D
IP
193.3.184.228:0
ASN
#50214 QWARTA LLC

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
154 B (154 bytes)
Hash
cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319

HTTP Headers

GET /rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDFWPLzisfRwtnx5wDAo6IhDKcKsK4pPWd3Ps/4icbjOS5; test_cookie=CheckForPermission; cSyncDp7v2=1674300971; cSyncDp14v3=1674300971; cSyncDp17=1674300971; cSyncDp32=1674300971; cSyncDp45v3=1674300971; cSyncDp53=1674300971; cSyncDp54v2=1674300971; cSyncDp62=1674300971; cSyncDp67v2=1674300971; cSyncDp68=1674300971; cSyncDp71=1674300971; cSyncDp77=1674300971; cSyncDp84=1674300971; cSyncDp85=1674300971; cSyncDp95v3=1674300971; cSyncDp101=1674300971; cSyncDp104v2=1674300971; cSyncDp107=1674300971; cSyncDp110=1674300971; cSyncDp111v2=1674300971; cSyncDp112v2=1674300971; cSyncDp125v2=1674300971; cSyncDp126=1674300971; cSyncDp127=1674300971; cSyncDp129=1674300971; cSyncDp136v2=1674300971; cSyncDp138=1674300971; cSyncDp146=1674300971; cSyncDp148=1674300971; cSyncDp149v2=1674300971; cSyncDp151=1674300971; cSyncDp178=1674300971; cSyncDp179=1674300971; cSyncDp186=1674300971; cSyncDp221=1674300971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: openresty
date: Sat, 21 Jan 2023 11:36:12 GMT
content-type: text/html
content-length: 154
location: https://ssp.adriver.ru/cgi-bin/sync.cgi?ssp_id=43&external_id=1503420A2BCECB63670B471F02039CC7
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
734fb32537f4fb89bb4199a35fb88510
391dd9fb0516e2bf1ab76c0fd044f035b11b4add
5986e0a4b1d04a7dd3a739e076ee13311ae9913f4119f110d6445d9024651f36

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 21 Jan 2023 02:18:47 GMT
Expires: Sat, 28 Jan 2023 02:18:46 GMT
Etag: "391dd9fb0516e2bf1ab76c0fd044f035b11b4add"
Cache-Control: max-age=570753,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78cfc0390af40b31-OSL

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6dd63254aa1d7afe1b1478f5b867cc69
e3ed009db1addb763904e2d07d6e407fb3a60036
d19487b1f69178e3d4fff171733ec0f1134d5d4143d9eaa2fe0f5dc63caaf281

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D19487B1F69178E3D4FFF171733EC0F1134D5D4143D9EAA2FE0F5DC63CAAF281"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6949
Expires: Sat, 21 Jan 2023 13:32:02 GMT
Date: Sat, 21 Jan 2023 11:36:13 GMT
Connection: keep-alive

ssp.adriver.ru/cgi-bin/sync.cgi?ssp_id=43&external_id=1503420A2BCECB63670B471F02039CC7

81.222.128.215

200 OK

42 B

URL HTTP/1.1
ssp.adriver.ru/cgi-bin/sync.cgi?ssp_id=43&external_id=1503420A2BCECB63670B471F02039CC7
IP
81.222.128.215:0
ASN
#20597 PVimpelCom

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /cgi-bin/sync.cgi?ssp_id=43&external_id=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: ssp.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive

ocsp.globalsign.com/alphasslcasha256g4

104.18.20.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/alphasslcasha256g4
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1437 bytes)
Hash
ce861ea8fa7c83123164d6c3ebf54504
c6d5e28d1b9836e8e208e4941fc6d1045dfbeccf
f56ccf89459b7e17b67e442d3e18281122e2b0e9ca67877da62e2cfa7d861b54

HTTP Headers

POST /alphasslcasha256g4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Type: application/ocsp-response
Content-Length: 1437
Connection: keep-alive
Expires: Wed, 25 Jan 2023 11:17:57 GMT
ETag: "c6d5e28d1b9836e8e208e4941fc6d1045dfbeccf"
Last-Modified: Sat, 21 Jan 2023 11:17:58 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 901
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78cfc0397ecdb51d-OSL

x01.aidata.io/0.gif?pid=9401454&id=1503420A2BCECB63670B471F02039CC7

89.108.119.43

302 Found

0 B

URL HTTP/2
x01.aidata.io/0.gif?pid=9401454&id=1503420A2BCECB63670B471F02039CC7
IP
89.108.119.43:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /0.gif?pid=9401454&id=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx
date: Sat, 21 Jan 2023 11:36:13 GMT
content-length: 0
location: https://x01.aidata.io/0.gif?pid=9401454&id=1503420A2BCECB63670B471F02039CC7&bounce=1
expires: Sat, 21 Jan 2023 11:36:12 GMT
access-control-allow-methods: GET, POST
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
last-modified: Sat, 21 Jan 2023 11:36:12 GMT
set-cookie: __upin=t69uzy1LZFcMcKWnpu0e4Q;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
__upints=1674300973;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
p3p: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
X-Firefox-Spdy: h2

tag.digitaltarget.ru/adcm.js

185.15.175.144

200 OK

3.1 kB

URL HTTP/1.1
tag.digitaltarget.ru/adcm.js
IP
185.15.175.144:0
ASN
#43226 SafeData LLC

File type
ASCII text, with very long lines (3051), with no line terminators
Size
3.1 kB (3051 bytes)
Hash
e7097284185069f52fc736bcd50cda13
1cdfdf2d869841202079ddf91e0a00a8610812e6
40f2a96f78f4c8484e9da6e172f5ddd3e4d7786ca29e04b96e1067a365190e80

HTTP Headers

GET /adcm.js HTTP/1.1
Host: tag.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Type: application/javascript
Content-Length: 3051
Last-Modified: Sat, 21 Jan 2023 11:34:13 GMT
Connection: keep-alive
ETag: "63cbcdb5-beb"
Accept-Ranges: bytes

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
9afca259ef3fcda09c7cfb2730f23939
8ed6d92d58f1d72ca99645d68c09c02ba8f7f90f
fce93922b915f3488fc4efa2b646878ce493ed5fdb7a0515f356658f391871e2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 18 Jan 2023 02:03:25 GMT
Expires: Wed, 25 Jan 2023 02:03:24 GMT
Etag: "8ed6d92d58f1d72ca99645d68c09c02ba8f7f90f"
Cache-Control: max-age=310630,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78cfc0389dc3fac0-OSL

sync.adkernel.com/user-sync?zone=169736&t=image&r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D221%26euid%3D%7BUID%7D

77.245.57.72

400 Bad Request

22 B

URL HTTP/1.1
sync.adkernel.com/user-sync?zone=169736&t=image&r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D221%26euid%3D%7BUID%7D
IP
77.245.57.72:0
ASN
#36057 WEBAIR-INTERNET-MTL

File type
ASCII text, with no line terminators
Size
22 B (22 bytes)
Hash
b0b11e1c78b526b61477f8e9ee540be0
d5e73002987ff54626542b116d98a8f4aa9ee2eb
4ca18c247df52dd22650bd7f72f71d7c98102243b0ec474f683c6a279ad3a668

HTTP Headers

GET /user-sync?zone=169736&t=image&r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D221%26euid%3D%7BUID%7D HTTP/1.1
Host: sync.adkernel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 400 Bad Request
Server: nginx
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Length: 22
Connection: close
Cache-Control: no-store
Age: 0
Pragma: no-cache

fonts.googleapis.com/css?family=Muli:400,400i,500,600,700&display=swap

142.250.74.106

200 OK

2.3 kB

URL HTTP/2
fonts.googleapis.com/css?family=Muli:400,400i,500,600,700&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
data
Size
2.3 kB (2292 bytes)
Hash
ba5e05c988279277bce15b546646fa7b
37a81c4b0231cb11d1cb4b03ccf804d5e505a40b
872fd3b62bed3eda87c61263abb26ca2d35f00e151e942a0d58cc31e7c296f72

HTTP Headers

GET /css?family=Muli:400,400i,500,600,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modgen.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 21 Jan 2023 11:36:11 GMT
date: Sat, 21 Jan 2023 11:36:11 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.globalsign.com/gsrsaovsslca2018

104.18.20.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsrsaovsslca2018
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1432 bytes)
Hash
eac2c9b0b910f74d0e01ecc751fca22e
22ae0b1460c1c1b79a03246a8bb1fb04255e9b5d
9b9451cbc21f54c0b3bfcbc89de8032ba08faebefbe4fe415030a965a4f7b340

HTTP Headers

POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 25 Jan 2023 09:30:40 GMT
ETag: "22ae0b1460c1c1b79a03246a8bb1fb04255e9b5d"
Last-Modified: Sat, 21 Jan 2023 09:30:41 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3407
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78cfc039ef41b51d-OSL

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
9afca259ef3fcda09c7cfb2730f23939
8ed6d92d58f1d72ca99645d68c09c02ba8f7f90f
fce93922b915f3488fc4efa2b646878ce493ed5fdb7a0515f356658f391871e2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 18 Jan 2023 02:03:25 GMT
Expires: Wed, 25 Jan 2023 02:03:24 GMT
Etag: "8ed6d92d58f1d72ca99645d68c09c02ba8f7f90f"
Cache-Control: max-age=310630,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78cfc038ba08fab8-OSL

x01.aidata.io/0.gif?pid=9401454&id=1503420A2BCECB63670B471F02039CC7&bounce=1

89.108.119.43

204 No Content

0 B

URL HTTP/2
x01.aidata.io/0.gif?pid=9401454&id=1503420A2BCECB63670B471F02039CC7&bounce=1
IP
89.108.119.43:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /0.gif?pid=9401454&id=1503420A2BCECB63670B471F02039CC7&bounce=1 HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: nginx
date: Sat, 21 Jan 2023 11:36:13 GMT
expires: Sat, 21 Jan 2023 11:36:12 GMT
access-control-allow-methods: GET, POST
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
last-modified: Sat, 21 Jan 2023 11:36:12 GMT
set-cookie: __upin=a0HpEoVB3Df41JOLRb9sqA;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
__upints=1674300973;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
p3p: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
X-Firefox-Spdy: h2

ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D

188.42.34.64

302 Found

0 B

URL HTTP/2
ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D
IP
188.42.34.64:0
ASN
#7979 SERVERS-COM

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
location: /match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Sun, 21 Jan 2024 11:36:13 GMT; Path=/; Domain=.betweendigital.com
tuuid=f43b2ba1-370a-5215-924f-8a5af1844477; Max-Age=31536000; Expires=Sun, 21 Jan 2024 11:36:13 GMT; Path=/; Domain=.betweendigital.com
ut=Y8vOLQAK1XDrykTSu2kbW0f3SOBkjdElkPgMhw==; Max-Age=31536000; Expires=Sun, 21 Jan 2024 11:36:13 GMT; Path=/; Domain=.betweendigital.com
content-length: 0
X-Firefox-Spdy: h2

ocsp.globalsign.com/gseccovsslca2018

104.18.20.226

200 OK

938 B

URL HTTP/1.1
ocsp.globalsign.com/gseccovsslca2018
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
938 B (938 bytes)
Hash
ecbb772d9be344566cbae818a1c73dcc
998f54efadc45077981b8b160e694bec78be30dd
fea65cdefe066d76edfb9a16ce80b7fd33cbd0b4a56d46ee2921d4dae967987f

HTTP Headers

POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Wed, 25 Jan 2023 10:38:17 GMT
ETag: "998f54efadc45077981b8b160e694bec78be30dd"
Last-Modified: Sat, 21 Jan 2023 10:38:18 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 57
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78cfc03a0f65b51d-OSL

ocsp.globalsign.com/gseccovsslca2018

104.18.20.226

200 OK

939 B

URL HTTP/1.1
ocsp.globalsign.com/gseccovsslca2018
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
939 B (939 bytes)
Hash
a745bcda1382b4e658c72a49e6b6925f
ce0369fc0c2e079de1ae46d74791c0ca63c5cb23
1d7de195c6d99370df23d1e65dd05a3aa048a9c6fba4875c119dfb8a0900e0d7

HTTP Headers

POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Wed, 25 Jan 2023 09:15:06 GMT
ETag: "ce0369fc0c2e079de1ae46d74791c0ca63c5cb23"
Last-Modified: Sat, 21 Jan 2023 09:15:07 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2756
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78cfc03a1f75b51d-OSL

redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D{WEBO_CID}%26noredirect

35.190.24.218

307 Temporary Redirect

0 B

URL HTTP/2
redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D{WEBO_CID}%26noredirect
IP
35.190.24.218:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D{WEBO_CID}%26noredirect HTTP/1.1
Host: redirect.frontend.weborama.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 307 Temporary Redirect
server: Weborama Collect Frontend
date: Sat, 21 Jan 2023 11:36:12 GMT
content-length: 0
location: https://redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D%7BWEBO_CID%7D%26noredirect&bounce=1&random=796117322
vary: Origin
access-control-allow-origin: *
p3p: CP="NOI DSP COR CURa DEVa PSAa OUR STP UNI DEM"
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
expires: Tue, 03 Jul 2001 06:00:00 GMT
last-modified: Sat, 21 Jan 2023 11:36:13 GMT
set-cookie: AFFICHE_W=B3i4ZxYSswAH77; expires=Sun, 18 Feb 2024 11:36:13 GMT; domain=.weborama.fr; path=/; secure; SameSite=None
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
475acf80e3aec284b64817d48539440b
d7ab1f9d3cbe4d0e9ac9fccf046ba7acfa0179f9
9e1157c3acd6a6f941b629df80441053170030eb58df82db1b7063bc1179a870

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9E1157C3ACD6A6F941B629DF80441053170030EB58DF82DB1B7063BC1179A870"
Last-Modified: Sat, 21 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21111
Expires: Sat, 21 Jan 2023 17:28:04 GMT
Date: Sat, 21 Jan 2023 11:36:13 GMT
Connection: keep-alive

ads.betweendigital.com/match?bidder_id=73&external_user_id=1503420A2BCECB63670B471F02039CC7

188.42.34.64

302 Found

0 B

URL HTTP/2
ads.betweendigital.com/match?bidder_id=73&external_user_id=1503420A2BCECB63670B471F02039CC7
IP
188.42.34.64:0
ASN
#7979 SERVERS-COM

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match?bidder_id=73&external_user_id=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
location: /match?bidder_id=73&external_user_id=1503420A2BCECB63670B471F02039CC7&crf=1
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Sun, 21 Jan 2024 11:36:13 GMT; Path=/; Domain=.betweendigital.com
tuuid=d20dacae-6f13-5215-81dd-85ade2164b80; Max-Age=31536000; Expires=Sun, 21 Jan 2024 11:36:13 GMT; Path=/; Domain=.betweendigital.com
ut=Y8vOLQAH61i65sL-I3IH08tZyB1f6kdsTCOm5A==; Max-Age=31536000; Expires=Sun, 21 Jan 2024 11:36:13 GMT; Path=/; Domain=.betweendigital.com
content-length: 0
X-Firefox-Spdy: h2

px.adhigh.net/p/cm/sape?u=1503420A2BCECB63670B471F02039CC7

194.190.76.41

302 Found

0 B

URL HTTP/2
px.adhigh.net/p/cm/sape?u=1503420A2BCECB63670B471F02039CC7
IP
194.190.76.41:0
ASN
#48061 Limited Liability Company GPM Digital Technologies

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /p/cm/sape?u=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: px.adhigh.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx
date: Sat, 21 Jan 2023 11:36:13 GMT
content-length: 0
x-backend-id: f11-ru
access-control-allow-origin: *
access-control-allow-credentials: true
set-cookie: gi_u=8Q7B11x7WgY.AikABlGF1B1gXw;Path=/;Domain=.adhigh.net;Expires=Sun, 21-Jan-2024 11:36:13 GMT;Secure;SameSite=None
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
location: https://px.adhigh.net/p/cm/sape?u=1503420A2BCECB63670B471F02039CC7&bounced=1
X-Firefox-Spdy: h2

ceaa9ab6-997f-11ed-a1c4-002590c82437.n1.sync.bumlam.com/?src=sape

188.120.241.43

302 Found

0 B

URL HTTP/2
ceaa9ab6-997f-11ed-a1c4-002590c82437.n1.sync.bumlam.com/?src=sape
IP
188.120.241.43:0
ASN
#29182 JSC IOT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?src=sape HTTP/1.1
Host: ceaa9ab6-997f-11ed-a1c4-002590c82437.n1.sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiRjZWFhOWFiNi05OTdmLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx/1.22.1
date: Sat, 21 Jan 2023 11:36:13 GMT
content-length: 0
location: https://pix.bumlam.com/sync/sape/done
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4a55c5c17008ccd3683ebbb8ae6442d9
2a11fe1ef3f4f11098eebdd7eca317adccff9ce9
88b6646abee8ea0a4dbc8fcdcf91f98176591b6b8e60c495fe2bf31d7735641e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "88B6646ABEE8EA0A4DBC8FCDCF91F98176591B6B8E60C495FE2BF31D7735641E"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4019
Expires: Sat, 21 Jan 2023 12:43:12 GMT
Date: Sat, 21 Jan 2023 11:36:13 GMT
Connection: keep-alive

ocsp.usertrust.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.usertrust.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
96da906ba9419e1d1a5a90b2f8a9a412
02003324572d653e3b527c78fcb6dad92272da5c
25b962ca5ec88ed98712ad2b90418a869818ccb30fd4053326082184b0bedec1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 19 Jan 2023 16:18:21 GMT
Expires: Thu, 26 Jan 2023 16:18:20 GMT
Etag: "02003324572d653e3b527c78fcb6dad92272da5c"
Cache-Control: max-age=601402,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 1191
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78cfc03a9a25b4f3-OSL

pix.bumlam.com/sync/sape/done

31.172.81.160

200 OK

43 B

URL HTTP/1.1
pix.bumlam.com/sync/sape/done
IP
31.172.81.160:0
ASN
#44066 diva-e Datacenters GmbH

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /sync/sape/done HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiRjZWFhOWFiNi05OTdmLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"

redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D%7BWEBO_CID%7D%26noredirect&bounce=1&random=796117322

35.190.24.218

204 No Content

0 B

URL HTTP/2
redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D%7BWEBO_CID%7D%26noredirect&bounce=1&random=796117322
IP
35.190.24.218:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D%7BWEBO_CID%7D%26noredirect&bounce=1&random=796117322 HTTP/1.1
Host: redirect.frontend.weborama.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: Weborama Collect Frontend
date: Sat, 21 Jan 2023 11:36:13 GMT
vary: Origin
access-control-allow-origin: *
p3p: CP="NOI DSP COR CURa DEVa PSAa OUR STP UNI DEM"
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
expires: Tue, 03 Jul 2001 06:00:00 GMT
last-modified: Sat, 21 Jan 2023 11:36:13 GMT
set-cookie: AFFICHE_W=; expires=Tue, 10 Nov 2009 23:00:00 GMT; domain=.weborama.fr; path=/; secure; SameSite=None
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.godaddy.com/

192.124.249.24

200 OK

1.8 kB

URL HTTP/1.1
ocsp.godaddy.com/
IP
192.124.249.24:0
ASN
#30148 SUCURI-SEC

File type
data
Size
1.8 kB (1778 bytes)
Hash
a6952a1835a68ef87b8182fce3b93451
ac2b02e18bcabf511682298b7d96c21ec6addb93
5d1b58b0cffaebc8d1ef2bdf56f7324676a59034738dfb5afa3a2e3d89cf9ac0

HTTP Headers

POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 21 Jan 2023 11:36:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 20 Jan 2023 22:16:26 GMT
Expires: Sat, 21 Jan 2023 22:16:26 GMT
ETag: "ac2b02e18bcabf511682298b7d96c21ec6addb93"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

ads.betweendigital.com/match?bidder_id=73&external_user_id=1503420A2BCECB63670B471F02039CC7&crf=1

188.42.34.64

200 OK

68 B

URL HTTP/2
ads.betweendigital.com/match?bidder_id=73&external_user_id=1503420A2BCECB63670B471F02039CC7&crf=1
IP
188.42.34.64:0
ASN
#7979 SERVERS-COM

File type
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Size
68 B (68 bytes)
Hash
c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11

HTTP Headers

GET /match?bidder_id=73&external_user_id=1503420A2BCECB63670B471F02039CC7&crf=1 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Sun, 21 Jan 2024 11:36:13 GMT; Path=/; Domain=.betweendigital.com
tuuid=5f955299-b590-5215-9df9-ea42fe32246f; Max-Age=31536000; Expires=Sun, 21 Jan 2024 11:36:13 GMT; Path=/; Domain=.betweendigital.com
ut=Y8vOLQAOHUhglLzg7DJbnwJ8tHtVokpw8s8nBw==; Max-Age=31536000; Expires=Sun, 21 Jan 2024 11:36:13 GMT; Path=/; Domain=.betweendigital.com
content-length: 68
X-Firefox-Spdy: h2

ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1

188.42.34.64

200 OK

68 B

URL HTTP/2
ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1
IP
188.42.34.64:0
ASN
#7979 SERVERS-COM

File type
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Size
68 B (68 bytes)
Hash
c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11

HTTP Headers

GET /match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Sun, 21 Jan 2024 11:36:13 GMT; Path=/; Domain=.betweendigital.com
tuuid=f9c355e6-07c4-5215-8659-ec7fe5922252; Max-Age=31536000; Expires=Sun, 21 Jan 2024 11:36:13 GMT; Path=/; Domain=.betweendigital.com
ut=Y8vOLQAA8jDY-fcVGReyKZCsRVdPTXJZVpVn2A==; Max-Age=31536000; Expires=Sun, 21 Jan 2024 11:36:13 GMT; Path=/; Domain=.betweendigital.com
content-length: 68
X-Firefox-Spdy: h2

ad.mail.ru/cm.gif?p=48&id=1503420A2BCECB63670B471F02039CC7

95.163.41.56

200 OK

43 B

URL HTTP/2
ad.mail.ru/cm.gif?p=48&id=1503420A2BCECB63670B471F02039CC7
IP
95.163.41.56:0
ASN
#47764 Mail.Ru LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /cm.gif?p=48&id=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 11:36:13 GMT
content-type: image/gif
content-length: 43
set-cookie: VID=0Ffrk608vfIF0020hK2f0UoF:::0-0-0-8e626ed:CAASEIRVSSZIKOC3eugq9iwj-j0aYDBk12o5ehy5oQmF4iU5SOZmLfQBFi6gp6rPy2PMeBGPlq3iWuGSFaSoOtUSoWLUT9sydHs4-cPd57mkQzbLCATSPFia-KJSpm21Kb38Ap4DeTgicJuuoHLQra1b1lDdVw; path=/; expires=Mon, 22-Jan-24 11:36:13 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
expires: Sat, 21 Jan 2023 17:36:13 GMT
cache-control: max-age=21600
last-modified: Sat, 21 Jan 2023 11:36:13 GMT
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin
cross-origin-embedder-policy: require-corp
X-Firefox-Spdy: h2

sm.rtb.mts.ru/p?ssp=sape&id=1503420A2BCECB63670B471F02039CC7

217.66.147.33

301 Moved Permanently

0 B

URL HTTP/1.1
sm.rtb.mts.ru/p?ssp=sape&id=1503420A2BCECB63670B471F02039CC7
IP
217.66.147.33:0
ASN
#29209 MTS PJSC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /p?ssp=sape&id=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: sm.rtb.mts.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin
Access-Control-Allow-Methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
Access-Control-Allow-Origin: *
Vary: Origin
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://sm.rtb.mts.ru/match/second?ssp=30&exu=1503420A2BCECB63670B471F02039CC7
Set-Cookie: dspid=94c6eb7b-7fc3-4c71-bda3-cff32c9feaa5; expires=Fri, 12 Jan 2024 11:36:13 GMT; domain=.mts.ru; path=/; secure; SameSite=None

adlmerge.com/merge_gpsid/?sid=50&id=1503420A2BCECB63670B471F02039CC7

95.211.66.35

200 OK

43 B

URL HTTP/2
adlmerge.com/merge_gpsid/?sid=50&id=1503420A2BCECB63670B471F02039CC7
IP
95.211.66.35:0
ASN
#60781 LeaseWeb Netherlands B.V.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

HTTP Headers

GET /merge_gpsid/?sid=50&id=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: adlmerge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx/1.16.0
date: Sat, 21 Jan 2023 11:36:12 GMT
content-type: image/gif
iseu: eu
X-Firefox-Spdy: h2

px.adhigh.net/p/cm/sape?u=1503420A2BCECB63670B471F02039CC7&bounced=1

194.190.76.41

200 OK

49 B

URL HTTP/2
px.adhigh.net/p/cm/sape?u=1503420A2BCECB63670B471F02039CC7&bounced=1
IP
194.190.76.41:0
ASN
#48061 Limited Liability Company GPM Digital Technologies

File type
GIF image data, version 89a, 1 x 1\012- data
Size
49 B (49 bytes)
Hash
889bc1fffc025af4685839fb516a0b8b
7f105137a4eafe93213ecd8cc34dd907c340467c
d0409a1b73dab4e29dc40f92fb431fa9133baa23b4a1ffae4897f39068110e32

HTTP Headers

GET /p/cm/sape?u=1503420A2BCECB63670B471F02039CC7&bounced=1 HTTP/1.1
Host: px.adhigh.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 11:36:13 GMT
content-type: image/gif
content-length: 49
x-backend-id: f11-ru
access-control-allow-origin: *
access-control-allow-credentials: true
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
X-Firefox-Spdy: h2

tag.digitaltarget.ru/processor.js?i=478188536337204

185.15.175.144

200 OK

16 kB

URL HTTP/1.1
tag.digitaltarget.ru/processor.js?i=478188536337204
IP
185.15.175.144:0
ASN
#43226 SafeData LLC

File type
ASCII text, with very long lines (15892), with no line terminators
Size
16 kB (15892 bytes)
Hash
736e2fb1da94f3277e3f931048c1b9f3
196387db95a17da825b629de3542eff901b09905
4569d4e1b0e52b6316681f7312674f43ecb2b72ea8ab4adb2375e3686862c7dc

HTTP Headers

GET /processor.js?i=478188536337204 HTTP/1.1
Host: tag.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Type: application/javascript
Content-Length: 15892
Last-Modified: Sat, 21 Jan 2023 11:34:14 GMT
Connection: keep-alive
ETag: "63cbcdb6-3e14"
Accept-Ranges: bytes

www.acint.net/match?dp=104&euid=FmXnE_recLTT

193.3.184.228

200 OK

43 B

URL HTTP/2
www.acint.net/match?dp=104&euid=FmXnE_recLTT
IP
193.3.184.228:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=104&euid=FmXnE_recLTT HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDFWPLzisfRwtnx5wDAo6IhDKcKsK4pPWd3Ps/4icbjOS5; test_cookie=CheckForPermission; cSyncDp7v2=1674300971; cSyncDp14v3=1674300971; cSyncDp17=1674300971; cSyncDp32=1674300971; cSyncDp45v3=1674300971; cSyncDp53=1674300971; cSyncDp54v2=1674300971; cSyncDp62=1674300971; cSyncDp67v2=1674300971; cSyncDp68=1674300971; cSyncDp71=1674300971; cSyncDp77=1674300971; cSyncDp84=1674300971; cSyncDp85=1674300971; cSyncDp95v3=1674300971; cSyncDp101=1674300971; cSyncDp104v2=1674300971; cSyncDp107=1674300971; cSyncDp110=1674300971; cSyncDp111v2=1674300971; cSyncDp112v2=1674300971; cSyncDp125v2=1674300971; cSyncDp126=1674300971; cSyncDp127=1674300971; cSyncDp129=1674300971; cSyncDp136v2=1674300971; cSyncDp138=1674300971; cSyncDp146=1674300971; cSyncDp148=1674300971; cSyncDp149v2=1674300971; cSyncDp151=1674300971; cSyncDp178=1674300971; cSyncDp179=1674300971; cSyncDp186=1674300971; cSyncDp221=1674300971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Sat, 21 Jan 2023 11:36:13 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

sm.rtb.mts.ru/match/second?ssp=30&exu=1503420A2BCECB63670B471F02039CC7

217.66.147.33

200 OK

0 B

URL HTTP/1.1
sm.rtb.mts.ru/match/second?ssp=30&exu=1503420A2BCECB63670B471F02039CC7
IP
217.66.147.33:0
ASN
#29209 MTS PJSC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match/second?ssp=30&exu=1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: sm.rtb.mts.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin
Access-Control-Allow-Methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
Access-Control-Allow-Origin: *
Vary: Origin
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT

an.yandex.ru/mapuid/sapeis/1503420A2BCECB63670B471F02039CC7?redir-setuniq=1

93.158.134.90

200 OK

553 B

URL HTTP/2
an.yandex.ru/mapuid/sapeis/1503420A2BCECB63670B471F02039CC7?redir-setuniq=1
IP
93.158.134.90:0
ASN
#13238 YANDEX LLC

File type
data
Size
553 B (553 bytes)
Hash
fee5ffaf456fe107fc8e0090a840ea84
695b0241f4c5af27c5c75235efbacb78fc2dcd0c
d940cfd1dfb7b38a5bf140467760a44d3b34097e047ae9ff98499d0e4d03a3bb

HTTP Headers

GET /mapuid/sapeis/1503420A2BCECB63670B471F02039CC7?redir-setuniq=1 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
timing-allow-origin: *
date: Sat, 21 Jan 2023 11:36:13 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 21 Jan 2023 11:36:13 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Sat, 21 Jan 2023 11:36:13 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif; charset=utf-8
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

dmg.digitaltarget.ru/1/1093/i/i?i=690963659592260.304046472715627&a=77&e=1503420A2BCECB63670B471F02039CC7&pref=https%3A%2F%2Fmodgen.net%2F&c=ss:77.up:1503420A2BCECB63670B471F02039CC7.sync:up.xdua:dudfED04c5oOK7GkPkM4Kmgh.xps:xpsdSsMt6CxsKN7L1GenWvxO6.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient

185.15.175.158

307 Temporary Redirect

0 B

URL HTTP/1.1
dmg.digitaltarget.ru/1/1093/i/i?i=690963659592260.304046472715627&a=77&e=1503420A2BCECB63670B471F02039CC7&pref=https%3A%2F%2Fmodgen.net%2F&c=ss:77.up:1503420A2BCECB63670B471F02039CC7.sync:up.xdua:dudfED04c5oOK7GkPkM4Kmgh.xps:xpsdSsMt6CxsKN7L1GenWvxO6.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
IP
185.15.175.158:0
ASN
#43226 SafeData LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /1/1093/i/i?i=690963659592260.304046472715627&a=77&e=1503420A2BCECB63670B471F02039CC7&pref=https%3A%2F%2Fmodgen.net%2F&c=ss:77.up:1503420A2BCECB63670B471F02039CC7.sync:up.xdua:dudfED04c5oOK7GkPkM4Kmgh.xps:xpsdSsMt6CxsKN7L1GenWvxO6.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Length: 0
Connection: keep-alive
Location: https://dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1674300973536&i=690963659592260.304046472715627&a=77&e=1503420A2BCECB63670B471F02039CC7&pref=https%3A%2F%2Fmodgen.net%2F&c=ss:77.up:1503420A2BCECB63670B471F02039CC7.sync:up.xdua:dudfED04c5oOK7GkPkM4Kmgh.xps:xpsdSsMt6CxsKN7L1GenWvxO6.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
Set-Cookie: viuserid=wbMLJ1lbUscRFxK735oZ; Max-Age=93312000; Expires=Mon, 05 Jan 2026 11:36:13 GMT; SameSite=None; Path=/; Domain=dmg.digitaltarget.ru; Secure; HTTPOnly
Request-Time: 0
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only

dmg.digitaltarget.ru/1/1093/i/i?i=690963659592260.369295166567487&a=77&e=1503420A2BCECB63670B471F02039CC7&pref=https%3A%2F%2Fmodgen.net%2F&c=ss:77.up:1503420A2BCECB63670B471F02039CC7.sync:up.xdua:dudfED04c5oOK7GkPkM4Kmgh.xps:xpsdSsMt6CxsKN7L1GenWvxO6.dn:acint__net.adcm:hit.tg:adcmjs_noorient

185.15.175.158

307 Temporary Redirect

0 B

URL HTTP/1.1
dmg.digitaltarget.ru/1/1093/i/i?i=690963659592260.369295166567487&a=77&e=1503420A2BCECB63670B471F02039CC7&pref=https%3A%2F%2Fmodgen.net%2F&c=ss:77.up:1503420A2BCECB63670B471F02039CC7.sync:up.xdua:dudfED04c5oOK7GkPkM4Kmgh.xps:xpsdSsMt6CxsKN7L1GenWvxO6.dn:acint__net.adcm:hit.tg:adcmjs_noorient
IP
185.15.175.158:0
ASN
#43226 SafeData LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /1/1093/i/i?i=690963659592260.369295166567487&a=77&e=1503420A2BCECB63670B471F02039CC7&pref=https%3A%2F%2Fmodgen.net%2F&c=ss:77.up:1503420A2BCECB63670B471F02039CC7.sync:up.xdua:dudfED04c5oOK7GkPkM4Kmgh.xps:xpsdSsMt6CxsKN7L1GenWvxO6.dn:acint__net.adcm:hit.tg:adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Length: 0
Connection: keep-alive
Location: https://dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1674300973534&i=690963659592260.369295166567487&a=77&e=1503420A2BCECB63670B471F02039CC7&pref=https%3A%2F%2Fmodgen.net%2F&c=ss:77.up:1503420A2BCECB63670B471F02039CC7.sync:up.xdua:dudfED04c5oOK7GkPkM4Kmgh.xps:xpsdSsMt6CxsKN7L1GenWvxO6.dn:acint__net.adcm:hit.tg:adcmjs_noorient
Set-Cookie: viuserid=NryNi7tLuz5pokD7ky1r; Max-Age=93312000; Expires=Mon, 05 Jan 2026 11:36:13 GMT; SameSite=None; Path=/; Domain=dmg.digitaltarget.ru; Secure; HTTPOnly
Request-Time: 1
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only

dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1674300973536&i=690963659592260.304046472715627&a=77&e=1503420A2BCECB63670B471F02039CC7&pref=https%3A%2F%2Fmodgen.net%2F&c=ss:77.up:1503420A2BCECB63670B471F02039CC7.sync:up.xdua:dudfED04c5oOK7GkPkM4Kmgh.xps:xpsdSsMt6CxsKN7L1GenWvxO6.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient

185.15.175.158

200 OK

64 B

URL HTTP/1.1
dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1674300973536&i=690963659592260.304046472715627&a=77&e=1503420A2BCECB63670B471F02039CC7&pref=https%3A%2F%2Fmodgen.net%2F&c=ss:77.up:1503420A2BCECB63670B471F02039CC7.sync:up.xdua:dudfED04c5oOK7GkPkM4Kmgh.xps:xpsdSsMt6CxsKN7L1GenWvxO6.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
IP
185.15.175.158:0
ASN
#43226 SafeData LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
64 B (64 bytes)
Hash
ffd585dfb1ac6320633a0be46d579437
5a6033d23bc9cd5d1de9ee61de69a44428086dcb
df18d81deb0cc1c48ae87e6481bb4ee375b40cce0fec3d226e002704d49f6cc8

HTTP Headers

GET /awg/custom/1093/i/i?call_source=awg&ts=1674300973536&i=690963659592260.304046472715627&a=77&e=1503420A2BCECB63670B471F02039CC7&pref=https%3A%2F%2Fmodgen.net%2F&c=ss:77.up:1503420A2BCECB63670B471F02039CC7.sync:up.xdua:dudfED04c5oOK7GkPkM4Kmgh.xps:xpsdSsMt6CxsKN7L1GenWvxO6.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Type: image/gif
Content-Length: 64
Connection: keep-alive
Vary: Accept-Encoding
Request-Time: 7
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only

dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1674300973534&i=690963659592260.369295166567487&a=77&e=1503420A2BCECB63670B471F02039CC7&pref=https%3A%2F%2Fmodgen.net%2F&c=ss:77.up:1503420A2BCECB63670B471F02039CC7.sync:up.xdua:dudfED04c5oOK7GkPkM4Kmgh.xps:xpsdSsMt6CxsKN7L1GenWvxO6.dn:acint__net.adcm:hit.tg:adcmjs_noorient

185.15.175.158

200 OK

64 B

URL HTTP/1.1
dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1674300973534&i=690963659592260.369295166567487&a=77&e=1503420A2BCECB63670B471F02039CC7&pref=https%3A%2F%2Fmodgen.net%2F&c=ss:77.up:1503420A2BCECB63670B471F02039CC7.sync:up.xdua:dudfED04c5oOK7GkPkM4Kmgh.xps:xpsdSsMt6CxsKN7L1GenWvxO6.dn:acint__net.adcm:hit.tg:adcmjs_noorient
IP
185.15.175.158:0
ASN
#43226 SafeData LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
64 B (64 bytes)
Hash
ffd585dfb1ac6320633a0be46d579437
5a6033d23bc9cd5d1de9ee61de69a44428086dcb
df18d81deb0cc1c48ae87e6481bb4ee375b40cce0fec3d226e002704d49f6cc8

HTTP Headers

GET /awg/custom/1093/i/i?call_source=awg&ts=1674300973534&i=690963659592260.369295166567487&a=77&e=1503420A2BCECB63670B471F02039CC7&pref=https%3A%2F%2Fmodgen.net%2F&c=ss:77.up:1503420A2BCECB63670B471F02039CC7.sync:up.xdua:dudfED04c5oOK7GkPkM4Kmgh.xps:xpsdSsMt6CxsKN7L1GenWvxO6.dn:acint__net.adcm:hit.tg:adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 11:36:13 GMT
Content-Type: image/gif
Content-Length: 64
Connection: keep-alive
Vary: Accept-Encoding
Request-Time: 3
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only

www.acint.net/ping/?v=0.5.0&uid=094ed70e-4dc6-486d-9d68-d833dc1f6c1e&dp=10&tz=%2B00%3A00&nc=51356649&dT=2023-01-21T11%3A36%3A13.840

193.3.184.228

200 OK

43 B

URL HTTP/2
www.acint.net/ping/?v=0.5.0&uid=094ed70e-4dc6-486d-9d68-d833dc1f6c1e&dp=10&tz=%2B00%3A00&nc=51356649&dT=2023-01-21T11%3A36%3A13.840
IP
193.3.184.228:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /ping/?v=0.5.0&uid=094ed70e-4dc6-486d-9d68-d833dc1f6c1e&dp=10&tz=%2B00%3A00&nc=51356649&dT=2023-01-21T11%3A36%3A13.840 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modgen.net/
Cookie: aid=CkIDFWPLzisfRwtnx5wDAo6IhDKcKsK4pPWd3Ps/4icbjOS5; test_cookie=CheckForPermission; cSyncDp7v2=1674300971; cSyncDp14v3=1674300971; cSyncDp17=1674300971; cSyncDp32=1674300971; cSyncDp45v3=1674300971; cSyncDp53=1674300971; cSyncDp54v2=1674300971; cSyncDp62=1674300971; cSyncDp67v2=1674300971; cSyncDp68=1674300971; cSyncDp71=1674300971; cSyncDp77=1674300971; cSyncDp84=1674300971; cSyncDp85=1674300971; cSyncDp95v3=1674300971; cSyncDp101=1674300971; cSyncDp104v2=1674300971; cSyncDp107=1674300971; cSyncDp110=1674300971; cSyncDp111v2=1674300971; cSyncDp112v2=1674300971; cSyncDp125v2=1674300971; cSyncDp126=1674300971; cSyncDp127=1674300971; cSyncDp129=1674300971; cSyncDp136v2=1674300971; cSyncDp138=1674300971; cSyncDp146=1674300971; cSyncDp148=1674300971; cSyncDp149v2=1674300971; cSyncDp151=1674300971; cSyncDp178=1674300971; cSyncDp179=1674300971; cSyncDp186=1674300971; cSyncDp221=1674300971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Sat, 21 Jan 2023 11:36:14 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

an.yandex.ru/mapuid/sapeis/1503420A2BCECB63670B471F02039CC7

93.158.134.90

302 Found

0 B

URL HTTP/2
an.yandex.ru/mapuid/sapeis/1503420A2BCECB63670B471F02039CC7
IP
93.158.134.90:0
ASN
#13238 YANDEX LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /mapuid/sapeis/1503420A2BCECB63670B471F02039CC7 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
timing-allow-origin: *
location: https://an.yandex.ru/mapuid/sapeis/1503420A2BCECB63670B471F02039CC7?redir-setuniq=1
date: Sat, 21 Jan 2023 11:36:13 GMT
set-cookie: yandexuid=7167996731674300973; domain=.yandex.ru; path=/; expires=Tue, 18-Jan-2033 11:36:13 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 21 Jan 2023 11:36:13 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Sat, 21 Jan 2023 11:36:13 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.acint.net/mc/?dp=10&tc=1

193.3.184.228

200 OK

0 B

URL HTTP/2
www.acint.net/mc/?dp=10&tc=1
IP
193.3.184.228:0
ASN
#50214 QWARTA LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /mc/?dp=10&tc=1 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://modgen.net/
Connection: keep-alive
Cookie: aid=CkIDFWPLzisfRwtnx5wDAo6IhDKcKsK4pPWd3Ps/4icbjOS5; test_cookie=CheckForPermission
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Sat, 21 Jan 2023 11:36:11 GMT
content-type: text/html
set-cookie: cSyncDp7v2=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp14v3=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp17=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp32=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp45v3=1674300971; expires=Sun, 22-Jan-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp53=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp54v2=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp62=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp67v2=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp68=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp71=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp77=1674300971; expires=Sat, 04-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp84=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp85=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp95v3=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp101=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp104v2=1674300971; expires=Sat, 04-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp107=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp110=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp111v2=1674300971; expires=Sat, 04-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp112v2=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp125v2=1674300971; expires=Sun, 05-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp126=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp127=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp129=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp136v2=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp138=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp146=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp148=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp149v2=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp151=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp178=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp179=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp186=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp221=1674300971; expires=Mon, 20-Feb-23 11:36:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
content-encoding: gzip
X-Firefox-Spdy: h2

an.yandex.ru/mapuid/gonetdspis/Njk3YzYwYjIxODExNDZiOA?redir-setuniq=1

93.158.134.90

200 OK

0 B

URL HTTP/2
an.yandex.ru/mapuid/gonetdspis/Njk3YzYwYjIxODExNDZiOA?redir-setuniq=1
IP
93.158.134.90:0
ASN
#13238 YANDEX LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /mapuid/gonetdspis/Njk3YzYwYjIxODExNDZiOA?redir-setuniq=1 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
timing-allow-origin: *
date: Sat, 21 Jan 2023 11:36:13 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 21 Jan 2023 11:36:13 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Sat, 21 Jan 2023 11:36:13 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif; charset=utf-8
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

an.yandex.ru/mapuid/gonetdspis/Njk3YzYwYjIxODExNDZiOA

93.158.134.90

302 Found

0 B

URL HTTP/2
an.yandex.ru/mapuid/gonetdspis/Njk3YzYwYjIxODExNDZiOA
IP
93.158.134.90:0
ASN
#13238 YANDEX LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /mapuid/gonetdspis/Njk3YzYwYjIxODExNDZiOA HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
timing-allow-origin: *
location: https://an.yandex.ru/mapuid/gonetdspis/Njk3YzYwYjIxODExNDZiOA?redir-setuniq=1
date: Sat, 21 Jan 2023 11:36:13 GMT
set-cookie: yandexuid=6710417901674300973; domain=.yandex.ru; path=/; expires=Tue, 18-Jan-2033 11:36:13 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 21 Jan 2023 11:36:13 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Sat, 21 Jan 2023 11:36:13 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Monsieur+La+Doulaise&display=swap

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Monsieur+La+Doulaise&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Monsieur+La+Doulaise&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modgen.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 21 Jan 2023 11:36:11 GMT
date: Sat, 21 Jan 2023 11:36:11 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ssp.bidvol.com/usersync?dspcsid=8&redirect=1

65.109.65.188

302 Found

0 B

URL HTTP/2
ssp.bidvol.com/usersync?dspcsid=8&redirect=1
IP
65.109.65.188:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /usersync?dspcsid=8&redirect=1 HTTP/1.1
Host: ssp.bidvol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx/1.22.0
date: Sat, 21 Jan 2023 11:36:12 GMT
x-request-id: bbd78765-3760-4c5a-8aa8-ef375fc08547
set-cookie: bvuid=erpthaiv9a; Max-Age=2147483647; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT; Secure; SameSite=None
bvuid2=erpthaiv9a; Max-Age=2147483647; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT
vary: Origin
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
pragma: no-cache
expires: 0
surrogate-control: no-store
location: https://www.acint.net/match?dp=129&euid=erpthaiv9a
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (21)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML