paramountace.com/a64ac6876fbe7803ce0dc8d545fb8bdcd/?sid1=&sid2=&sid3=&sid4=
23.90.57.134 6.6 kB URL paramountace.com/a64ac6876fbe7803ce0dc8d545fb8bdcd/?sid1=&sid2=&sid3=&sid4=
IP 23.90.57.134:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 09cb25357203b161d97800f42a99cc02
c6f8dcfeb29afba83267ba286d387916b76b8fdc
a23d6b09b1436379e63565a30ab2960d4cc12bc416f4c125ce63b49b47211396
GET /a64ac6876fbe7803ce0dc8d545fb8bdcd/?sid1=&sid2=&sid3=&sid4= HTTP/1.1
Host: paramountace.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.10.3
Date: Sat, 10 Jun 2023 15:31:47 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.3.25
Set-Cookie: clkcheck4740=06283ce2140d3aebaa6b11e7d255f05f_201060; expires=Mon, 10-Jul-2023 15:31:47 GMT; Max-Age=2592000; path=/; SameSite=Lax
ocsp.pki.goog/gts1c3
142.250.74.3 471 B IP 142.250.74.3:0
Hash 1a76ed3f9e8dce63de25d8ca587e2e0b
d6eca26adeed01d3e95c752b62b3884ec3f2511a
18af8bf760a0f7e0d7ebd251b851a86e2c55300aa66e5dafe1be71d8c323a959
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Jun 2023 15:31:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-MB79N3N
142.250.74.168 44 kB URL www.googletagmanager.com/gtm.js?id=GTM-MB79N3N
IP 142.250.74.168:0
File type ASCII text, with very long lines (2271)
Hash cd7b25beec8c0b9b4458f9babed746d9
4cfe8d5ccb540445766f29012cf17d444e746c59
15637b8fb2096ec78041896dda7c9a2ec785682af7dbff286c8e4a50bb37bb7f
GET /gtm.js?id=GTM-MB79N3N HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://paramountace.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 10 Jun 2023 15:31:47 GMT
expires: Sat, 10 Jun 2023 15:31:47 GMT
cache-control: private, max-age=900
last-modified: Sat, 10 Jun 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44184
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3 471 B IP 142.250.74.3:0
Hash 1a76ed3f9e8dce63de25d8ca587e2e0b
d6eca26adeed01d3e95c752b62b3884ec3f2511a
18af8bf760a0f7e0d7ebd251b851a86e2c55300aa66e5dafe1be71d8c323a959
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Jun 2023 15:31:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
paramountace.com/fp.php
23.90.57.134 0 B IP 23.90.57.134:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /fp.php HTTP/1.1
Host: paramountace.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: text/plain;charset=UTF-8
Content-Length: 761
Origin: http://paramountace.com
DNT: 1
Connection: keep-alive
Referer: http://paramountace.com/a64ac6876fbe7803ce0dc8d545fb8bdcd/?sid1=&sid2=&sid3=&sid4=
Cookie: clkcheck4740=06283ce2140d3aebaa6b11e7d255f05f_201060
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.10.3
Date: Sat, 10 Jun 2023 15:31:47 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.3.25
advertiserpages.com/notfound/
104.21.37.212200 OK 1.3 kB URL User Request GET HTTP/2 advertiserpages.com/notfound/
IP 104.21.37.212:443
Certificate IssuerLet's Encrypt
Subjectadvertiserpages.com
FingerprintD7:6F:D4:FF:14:D4:6A:76:08:B0:6D:3F:84:9E:66:9D:9D:80:81:6A
ValiditySun, 07 May 2023 04:53:42 GMT - Sat, 05 Aug 2023 04:53:41 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 89d3ffdce3617eae8645c148adf3ac35
1c58ddf7b8cef4b7d5d472c311f1bae2543c3c75
68aea588d8af29de4f7a706961fa6c595c6b6e45a90f2a67d74422519c0d6f7c
Analyzer Verdict Alert quad9 Sinkholed
GET /notfound/ HTTP/1.1
Host: advertiserpages.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://paramountace.com/
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 10 Jun 2023 15:31:48 GMT
content-type: text/html; charset=UTF-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hiQ9pH7VI3B9SEh1wLDgddKdtO53xLQCHTdRA%2BBydBoLCoxyBfF6TnANebTjWL9AYq3F8pdVrM%2BIRD%2FzHvfZc4%2BrU2p9Ba76NfCefxb9bXI4ubynkTsNDO0ibNmlqJP3XMt%2BP0KF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d52a9cfc8561c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-KQWFTZ7
142.250.74.168200 OK 43 kB URL GET HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-KQWFTZ7
IP 142.250.74.168:443
Requested by https://advertiserpages.com/notfound/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint73:BF:B0:D4:62:48:8E:EF:09:5F:00:57:95:98:82:16:BB:07:35:0C
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT
File type ASCII text, with very long lines (2271)
Hash 39c7b16b993c81ad8fbbfbd1c9ed3e58
37216214b9a60edecc799770a8a6156008480518
d0bc132d4a7182b099c6d934d27db5495d566e96b1f2785e425dfff96beb1895
GET /gtm.js?id=GTM-KQWFTZ7 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://advertiserpages.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 10 Jun 2023 15:31:48 GMT
expires: Sat, 10 Jun 2023 15:31:48 GMT
cache-control: private, max-age=900
last-modified: Sat, 10 Jun 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42831
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.aimtell.com/trackpush/trackpush.min.js
104.18.30.151200 OK 13 kB URL GET HTTP/2 cdn.aimtell.com/trackpush/trackpush.min.js
IP 104.18.30.151:443
Requested by https://advertiserpages.com/notfound/
Certificate IssuerCloudflare, Inc.
Subjectaimtell.com
Fingerprint1C:CD:DA:C4:62:7E:59:6E:A3:E5:F3:89:A3:BD:88:CA:D9:F0:F7:3D
ValiditySat, 08 Apr 2023 00:00:00 GMT - Sun, 07 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (47826), with no line terminators
Hash 7a95f30092a14e733916e5ba4212fe20
95d879028d85b8646a4ccc20781de227b5100769
0caf43fb08d17c0d3cecba626ba9fb455e231464d33931ff03c0cd3e4dbe5a4f
GET /trackpush/trackpush.min.js HTTP/1.1
Host: cdn.aimtell.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://advertiserpages.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 10 Jun 2023 15:31:48 GMT
content-type: text/javascript
content-length: 13293
last-modified: Wed, 31 May 2023 16:01:52 GMT
etag: "a4c9e416bb6100ab1a641b855964c419"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=86400
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HEgBtG_62b0QpoqVGLzDGszJmt4v3sB3Yyh9Wd2JxJY-nRtITA6Cdw==
age: 84406
cf-cache-status: HIT
expires: Sun, 11 Jun 2023 15:31:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d52a9d3d9900afa-OSL
X-Firefox-Spdy: h2
signals.aimtell.com/pageview?id_site=26914&v=3.976&support=0&state=default&wl=0&ref=aHR0cHM6Ly9hZHZlcnRpc2VycGFnZXMuY29tL25vdGZvdW5kLw==
104.18.30.151200 OK 43 B URL POST HTTP/2 signals.aimtell.com/pageview?id_site=26914&v=3.976&support=0&state=default&wl=0&ref=aHR0cHM6Ly9hZHZlcnRpc2VycGFnZXMuY29tL25vdGZvdW5kLw==
IP 104.18.30.151:443
Requested by https://advertiserpages.com/notfound/
Certificate IssuerCloudflare, Inc.
Subjectaimtell.com
Fingerprint1C:CD:DA:C4:62:7E:59:6E:A3:E5:F3:89:A3:BD:88:CA:D9:F0:F7:3D
ValiditySat, 08 Apr 2023 00:00:00 GMT - Sun, 07 Apr 2024 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
POST /pageview?id_site=26914&v=3.976&support=0&state=default&wl=0&ref=aHR0cHM6Ly9hZHZlcnRpc2VycGFnZXMuY29tL25vdGZvdW5kLw== HTTP/1.1
Host: signals.aimtell.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://advertiserpages.com
DNT: 1
Connection: keep-alive
Referer: https://advertiserpages.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
TE: trailers
HTTP/2 200 OK
date: Sat, 10 Jun 2023 15:31:48 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: https://advertiserpages.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-expose-headers: Aimtell-Hash-Exists, Aimtell-Traverse, Aimtell-Signal, Aimtell-Iso
aimtell-hash-exists: 0
aimtell-iso: NO
aimtell-signal: 0
aimtell-traverse: 0
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d52a9d48aa60afa-OSL
X-Firefox-Spdy: h2
advertiserpages.com/favicon.ico
104.21.37.212404 Not Found 162 B URL GET HTTP/3 advertiserpages.com/favicon.ico
IP 104.21.37.212:443
Requested by https://advertiserpages.com/notfound/
Certificate IssuerLet's Encrypt
Subjectadvertiserpages.com
FingerprintD7:6F:D4:FF:14:D4:6A:76:08:B0:6D:3F:84:9E:66:9D:9D:80:81:6A
ValiditySun, 07 May 2023 04:53:42 GMT - Sat, 05 Aug 2023 04:53:41 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with no line terminators
Hash 42b7c03ebcddafdb2aa3078e3a9ceb69
57570cf4712b36bce96f68228e6c72137c2156dd
a225bf8186e767cfb73fec2ac55678c083a3c2abd042bc1cf85f820bced5ec9f
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: advertiserpages.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://advertiserpages.com/notfound/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Sat, 10 Jun 2023 15:31:48 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4Ja%2FywTECDfRhn8VdKB%2FH%2F4hIc8gkILdhobSmuvGLyYnBdd5TFbL3b%2FkUSTAx7AzEiw23WZ0erJF0%2FCz27w1gVUQ8DYQjBymhEhUayLIk6yk1yXgBRD9QaixiWYkN%2BYckQabkSRF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d52a9d309aeb505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400